$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: oWEbIiuZsfjmfkjW0B1su8bv18gKlgEclD3EhF5UVC8= Subject key identifier: E2:D7:03:B2:DB:73:A0:6C:11:8C:F2:5A:08:F5:49:40:91:2B:EC:88 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0CD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0CB1 Signing time: Thu 16 Apr 2026 18:26:31 +0000 Manifest this update: Thu 16 Apr 2026 18:26:30 +0000 Manifest next update: Thu 23 Apr 2026 18:26:30 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: pXenaP3xy5AgiSCG424U8fTESvrvAFB4GiajFgBD1gI=) 2: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: pUo1M6Sm4lp9c2XrgF+LDSj3mLXP2pG6wm3MhRuMa6w=) 3: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: 4GtPeohLS8OTUPDc8RgozS35ewcE3lUXQAukx2eqQRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Apr 16 18:26:30 2026 GMT Not After : Apr 23 18:26:30 2026 GMT Subject: CN=69e129d6-a902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1d:39:07:50:d7:79:63:95:e7:24:cb:3c:89: d2:b8:55:5a:91:f7:d7:23:60:43:e5:ae:f8:b9:94: a1:75:a0:b7:c2:16:05:be:0d:16:74:1e:2d:0f:71: 1b:f7:2e:cf:7f:09:39:4b:6c:17:dd:2a:27:e8:65: 76:31:fa:57:97:29:ad:a7:70:b5:88:58:71:64:90: e0:9b:83:ae:60:a1:19:96:6e:0d:0d:37:2c:00:ee: 65:99:5a:e6:06:82:f9:bc:05:c3:42:fc:60:2e:2e: 91:42:ce:fd:3c:85:87:a2:c6:c7:93:20:ba:c8:4d: 18:6c:62:58:56:26:10:0b:8c:b9:56:05:90:59:87: a2:7c:38:ed:95:4b:2a:f5:da:9f:13:a1:a3:88:93: 55:11:40:cd:d1:72:dc:12:62:04:76:d8:09:a9:8d: 57:45:a7:81:57:c6:b3:c7:82:be:a2:d5:72:09:6e: 8c:9d:a1:16:97:bc:e3:bf:ff:d5:c5:9a:99:a6:ee: 00:57:75:5b:93:e8:40:59:ae:40:48:45:e8:49:a7: c4:98:92:35:a6:06:8b:aa:ce:3f:de:96:d4:af:b2: 49:ff:b5:c7:cf:d0:db:da:31:83:ae:db:fb:d0:0a: 34:49:84:6c:fd:82:89:a3:ec:03:fb:1e:71:8a:9b: 30:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D7:03:B2:DB:73:A0:6C:11:8C:F2:5A:08:F5:49:40:91:2B:EC:88 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:25:e6:1e:6f:c6:40:57:0a:77:82:f8:87:20:3c:23:ff:de: 69:b8:ad:32:87:b4:88:6a:86:cf:1d:ca:91:9c:47:51:42:ef: bb:55:7d:d8:94:e6:f5:f1:f9:99:29:33:2f:4a:e1:19:9f:03: c7:ea:fb:4e:b7:bf:22:cc:fb:b5:09:f6:4b:6b:e8:12:96:cb: 41:86:37:21:88:82:72:ff:3a:64:56:de:f0:61:14:8d:6a:ec: af:03:7a:44:b2:a9:f7:3d:fe:0f:73:5f:e5:78:aa:32:8d:ef: 66:19:1f:b3:c7:13:66:0f:5e:bb:9c:c3:57:96:e5:b9:08:ea: 62:c2:18:cf:2e:db:2c:af:df:44:93:55:65:ba:44:77:fa:18: 8e:b3:8e:7d:a8:b7:a2:40:04:3e:57:c4:27:2d:c1:2a:01:23: 23:f6:c3:5b:b3:22:0d:7c:4b:29:53:13:ab:b4:ec:71:cc:02: e8:39:89:48:58:d3:31:fc:a9:b4:db:51:9c:89:f6:7e:dd:c9: e1:55:b0:d1:17:e1:8e:75:70:9f:11:2e:e3:09:c4:22:e0:e9: e4:dc:ed:e8:40:4b:f6:99:fe:e9:96:40:0c:02:58:1d:f6:56: 81:7b:1b:56:86:17:f6:9e:72:89:e0:91:e1:52:0d:92:61:cc: d1:b9:ed:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjYwNDE2MTgyNjMwWhcNMjYwNDIzMTgyNjMwWjAYMRYwFAYD VQQDEw02OWUxMjlkNi1hOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtB05B1DXeWOV5yTLPInSuFVakffXI2BD5a74uZShdaC3whYFvg0WdB4tD3Eb 9y7Pfwk5S2wX3Son6GV2MfpXlymtp3C1iFhxZJDgm4OuYKEZlm4NDTcsAO5lmVrm BoL5vAXDQvxgLi6RQs79PIWHosbHkyC6yE0YbGJYViYQC4y5VgWQWYeifDjtlUsq 9dqfE6GjiJNVEUDN0XLcEmIEdtgJqY1XRaeBV8azx4K+otVyCW6MnaEWl7zjv//V xZqZpu4AV3Vbk+hAWa5ASEXoSafEmJI1pgaLqs4/3pbUr7JJ/7XHz9Db2jGDrtv7 0Ao0SYRs/YKJo+wD+x5xipswHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOLXA7Lb c6BsEYzyWgj1SUCRK+yIMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjCXmHm/GQFcKd4L4hyA8I//eabitMoe0iGqGzx3KkZxHUULvu1V92JTm9fH5 mSkzL0rhGZ8Dx+r7Tre/Isz7tQn2S2voEpbLQYY3IYiCcv86ZFbe8GEUjWrsrwN6 RLKp9z3+D3Nf5XiqMo3vZhkfs8cTZg9eu5zDV5bluQjqYsIYzy7bLK/fRJNVZbpE d/oYjrOOfai3okAEPlfEJy3BKgEjI/bDW7MiDXxLKVMTq7TsccwC6DmJSFjTMfyp tNtRnIn2ft3J4VWw0RfhjnVwnxEu4wnEIuDp5Nzt6EBL9pn+6ZZADAJYHfZWgXsb VoYX9p5yieCR4VINkmHM0bntVA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:40:37 2026 by rpki-client