$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft File: 7CxkBsqh85689Fh1MVANVrlTYsA.mft (raw, json) Hash identifier: NkIKD3E5WODTIUbSZj8LGdreSaGTGZlFbBrE3sEX1LM= Subject key identifier: 4C:9F:1B:BB:3B:52:0F:87:F3:EC:16:74:1A:4A:D9:F6:9D:87:22:DE Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 3578 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft Manifest number: 354C Signing time: Thu 16 Apr 2026 14:16:45 +0000 Manifest this update: Thu 16 Apr 2026 14:16:45 +0000 Manifest next update: Thu 23 Apr 2026 14:16:45 +0000 Files and hashes: 1: 7CxkBsqh85689Fh1MVANVrlTYsA.crl (hash: QydjbgiDnWttbWSYsXQm0eYWdQcyA+EpcGoTTz/Q7dk=) 2: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (hash: cXxlTlh2e8x7rwEZccluqoXbQOcppLc/t/OKxLCL9Es=) 3: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (hash: iodpqPzJXCkEMjXNizFOPmkITOS3ty8iD6q0/vbWTBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13688 (0x3578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Apr 16 14:16:45 2026 GMT Not After : Apr 23 14:16:45 2026 GMT Subject: CN=69e0ef4d-626f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7b:ed:0c:e3:1f:8e:e2:86:9a:2e:63:c1:f3: be:6b:1c:57:a6:72:5c:02:3d:1c:21:5a:89:a4:a7: 97:99:15:87:64:35:a5:b3:ed:38:41:b2:45:d7:70: f1:7e:a4:8a:99:bb:16:3e:0c:05:31:0a:c1:34:f6: 60:5d:9d:53:22:8d:c2:6a:b3:b5:5d:a5:2d:4c:e5: 57:3b:1c:3b:ee:10:27:ea:25:d6:f1:53:ab:ad:98: 3a:04:83:e5:94:fd:52:72:91:d1:e8:a4:57:86:52: 45:a6:ab:0c:d1:d1:fb:96:20:46:ce:6e:c5:ec:83: d4:55:a1:b6:28:a0:cf:f3:73:6f:31:d7:4f:6d:9e: 14:2e:af:c1:0c:09:92:99:8a:04:87:8a:47:35:ac: 18:73:8c:be:d3:81:5a:09:39:ec:29:5a:a3:f9:27: f0:df:9f:bd:f0:8f:91:e4:8e:2c:98:89:a4:44:01: f9:95:62:97:10:60:20:90:8f:e4:44:c0:85:af:95: 3d:1a:32:ee:27:d3:be:bc:5f:98:4c:da:ed:76:89: 35:15:42:2f:08:25:8c:75:35:ee:b1:e1:cf:e1:f0: a1:b7:7c:63:19:e8:11:78:aa:70:e8:69:df:4e:cc: f8:08:06:c8:b1:94:7e:9b:ae:f4:92:da:2a:2f:d6: 4b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:9F:1B:BB:3B:52:0F:87:F3:EC:16:74:1A:4A:D9:F6:9D:87:22:DE X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0e:e2:50:d4:7a:7c:57:2d:16:dd:f3:56:71:e4:0e:64:53: 87:fe:3e:ce:43:ed:1b:1e:fd:51:d4:5b:6a:af:73:fc:d5:dc: fb:06:52:85:41:e5:89:fe:90:68:61:91:55:73:bc:74:8f:b5: 5b:99:4b:c5:42:44:1e:ce:cf:7e:20:d4:f4:24:dc:9a:03:00: f7:c9:97:b8:6c:ed:2d:ae:d6:07:33:84:1d:df:e6:cb:c5:94: aa:db:ed:58:6a:6d:e8:e5:30:5b:05:6f:a1:6f:f3:8c:3c:62: 44:e3:90:f5:d7:a7:dc:5b:cd:50:2c:a4:0d:17:94:e5:7c:c2: ad:67:34:b0:63:ae:e6:94:69:ac:9a:0a:cf:6b:b5:84:ac:fe: 58:4a:e7:95:17:d0:f5:87:23:73:9a:86:1b:ca:41:c9:e3:b8: 9d:fb:c3:b5:79:80:29:61:69:eb:a5:64:4b:ca:62:a1:ce:1a: 4d:78:31:64:ee:39:33:39:34:c3:19:93:5f:73:01:5c:6a:1a: 02:79:41:b7:b5:c1:c3:bb:93:c4:b0:91:7f:1a:12:bc:85:69: f4:5c:bd:f9:e4:53:68:be:34:aa:99:d1:a9:65:b6:14:89:96: 5b:0f:6d:e7:c2:1d:e0:b3:d4:15:1b:49:37:7f:61:66:6a:7d: 5c:ef:3d:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjYwNDE2MTQxNjQ1WhcNMjYwNDIzMTQxNjQ1WjAYMRYwFAYD VQQDEw02OWUwZWY0ZC02MjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23vtDOMfjuKGmi5jwfO+axxXpnJcAj0cIVqJpKeXmRWHZDWls+04QbJF13Dx fqSKmbsWPgwFMQrBNPZgXZ1TIo3CarO1XaUtTOVXOxw77hAn6iXW8VOrrZg6BIPl lP1ScpHR6KRXhlJFpqsM0dH7liBGzm7F7IPUVaG2KKDP83NvMddPbZ4ULq/BDAmS mYoEh4pHNawYc4y+04FaCTnsKVqj+Sfw35+98I+R5I4smImkRAH5lWKXEGAgkI/k RMCFr5U9GjLuJ9O+vF+YTNrtdok1FUIvCCWMdTXuseHP4fCht3xjGegReKpw6Gnf Tsz4CAbIsZR+m670ktoqL9ZLEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEyfG7s7 Ug+H8+wWdBpK2fadhyLeMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC80RTg2NDUwQzFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1 Njg5RmgxTVZBTlZybFRZc0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABw7iUNR6fFctFt3zVnHkDmRTh/4+zkPtGx79UdRbaq9z/NXc+wZShUHlif6Q aGGRVXO8dI+1W5lLxUJEHs7PfiDU9CTcmgMA98mXuGztLa7WBzOEHd/my8WUqtvt WGpt6OUwWwVvoW/zjDxiROOQ9den3FvNUCykDReU5XzCrWc0sGOu5pRprJoKz2u1 hKz+WErnlRfQ9Ycjc5qGG8pByeO4nfvDtXmAKWFp66VkS8pioc4aTXgxZO45Mzk0 wxmTX3MBXGoaAnlBt7XBw7uTxLCRfxoSvIVp9Fy9+eRTaL40qpnRqWW2FImWWw9t 58Id4LPUFRtJN39hZmp9XO89hw== -----END CERTIFICATE-----Generated at Fri Apr 17 23:42:33 2026 by rpki-client