$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: wEDq6wdVk7NBtmfI4G2fompCUOgZZxli9+riWs4S4TM= Subject key identifier: F1:9D:5E:F0:80:78:9A:FE:50:7C:41:28:3A:E1:C4:A1:0F:93:49:48 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0D15 Signing time: Thu 16 Apr 2026 18:11:51 +0000 Manifest this update: Thu 16 Apr 2026 18:11:50 +0000 Manifest next update: Thu 23 Apr 2026 18:11:50 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: kDb4vYXtTh9nGonpwY3XnQwYhHFuezBUj2/xa9KOXbM=) 2: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: 0sjZzbtNPaRKIT8BWTNvX39eUNvRnj582Bf5dTCbgrM=) 3: E0848D606F7611EDB491621FC4F9AE02.roa (hash: xiW1z5MnYSbZsJleNKbRUxhfgx/8JzW+eccLEQ4prS4=) 4: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: mRpEBKmKyN90J4ooDi4lVCO6RHEBTfUlYtWenKg0wlw=) 5: 430342A4C02B11EA85244830C4F9AE02.roa (hash: YAO0UnDpIZbyVXdmfYYOuYA82NNvp7ggEwgpiP6F4Bk=) 6: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 0K2FVxGUCok0THMVBJfOUwq75tBpXjABY8rj5QwPc6w=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: 3Nv/ZHqsawJ0Jp2g16W+htBijpcWto8dbP6tcgAmIIk=) 8: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: qfOd2NsPmW/dThRfgUKaZ/2OAjQ7wZ+VSVJWExUQjSo=) 9: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: rJLxdr4XZ4oqpkH7S/LP6Q9L0HTP8eSINSv/SKNt+vc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3438 (0xd6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Apr 16 18:11:50 2026 GMT Not After : Apr 23 18:11:50 2026 GMT Subject: CN=69e12667-5cc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0f:ef:d9:38:7b:bd:7d:b4:21:10:1f:6a:c2: b6:a2:ce:c6:88:97:b3:b8:02:f9:5b:3b:92:a4:70: 4e:d7:6f:97:88:2c:4c:7b:2b:3e:60:5b:5e:40:34: ca:ba:c9:99:9c:40:8d:cb:d2:28:1a:18:26:9b:87: d9:3d:d1:60:91:89:6d:8d:37:04:9d:76:32:8b:2d: 6e:77:20:97:48:1a:9c:46:40:68:d9:73:b1:f2:c3: 28:ef:24:09:79:87:c1:38:3f:36:5d:5c:f0:dd:4f: 7d:87:2e:b4:af:1f:a5:c9:53:96:d5:70:a6:a5:2b: f6:03:f7:1a:52:c4:ae:c9:0f:30:31:c1:36:48:af: b9:97:df:a2:9c:87:a2:81:53:79:d9:7a:a8:84:b1: bf:06:0a:e4:2c:ad:a8:d8:e5:88:63:8f:c3:20:b6: 14:5a:df:23:88:ec:df:ec:0a:a7:8b:c0:be:f4:72: 13:14:24:b1:8a:96:d3:fb:a7:bd:a6:f1:11:64:75: 17:b2:e2:59:f0:79:a0:3f:49:f8:ac:66:9b:cf:55: 8f:e7:3b:df:37:29:3a:76:33:32:68:39:2e:10:97: c2:ac:41:ed:de:dc:5f:4b:56:d2:94:d8:b5:fb:81: aa:1d:4a:d6:df:0e:d4:f1:74:37:18:7e:e8:74:bc: b8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9D:5E:F0:80:78:9A:FE:50:7C:41:28:3A:E1:C4:A1:0F:93:49:48 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:5d:dd:ea:e1:f1:84:27:40:a1:d0:7d:fa:9d:22:36:b0:98: 4e:31:ff:60:c1:10:f1:28:30:0c:6e:e2:4e:da:ff:14:78:a4: 77:9c:9b:15:35:37:fe:c6:c5:29:b0:ff:d2:63:66:26:7e:f6: 4b:d7:46:30:50:cb:4b:8d:cd:12:63:ad:37:21:bd:6e:8c:ac: 85:e4:dc:b2:d9:43:07:eb:8f:c5:f7:02:94:b1:d1:97:1e:84: a8:e0:9d:5e:6c:da:ee:b6:02:1d:92:2d:10:a1:9b:12:05:30: 07:45:7e:d7:27:70:68:c3:31:2b:b2:49:ae:d8:01:d6:30:20: c1:e7:5b:8f:05:1d:8d:38:62:6d:66:df:68:d6:cc:d0:ce:82: 01:a6:a2:66:45:af:8e:3d:b7:3c:a4:34:d0:64:ed:6d:e3:d5: 13:05:8a:ca:1b:c6:75:d9:03:08:6a:71:ac:d7:68:70:39:65: b7:a2:07:c5:b0:6d:f9:81:83:17:e8:3e:c2:de:ca:6b:5d:1e: 8d:7a:31:f9:ea:50:28:f7:3d:27:8e:c9:d0:83:71:fe:70:dc: 98:f5:67:8b:ae:69:19:3c:a4:e5:4b:df:1d:1b:3c:bc:7f:a7: 70:e8:2a:6d:30:25:3a:f1:24:10:82:fe:14:cf:b4:d7:43:7d: 98:71:a9:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjYwNDE2MTgxMTUwWhcNMjYwNDIzMTgxMTUwWjAYMRYwFAYD VQQDEw02OWUxMjY2Ny01Y2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww/v2Th7vX20IRAfasK2os7GiJezuAL5WzuSpHBO12+XiCxMeys+YFteQDTK usmZnECNy9IoGhgmm4fZPdFgkYltjTcEnXYyiy1udyCXSBqcRkBo2XOx8sMo7yQJ eYfBOD82XVzw3U99hy60rx+lyVOW1XCmpSv2A/caUsSuyQ8wMcE2SK+5l9+inIei gVN52XqohLG/BgrkLK2o2OWIY4/DILYUWt8jiOzf7Aqni8C+9HITFCSxipbT+6e9 pvERZHUXsuJZ8HmgP0n4rGabz1WP5zvfNyk6djMyaDkuEJfCrEHt3txfS1bSlNi1 +4GqHUrW3w7U8XQ3GH7odLy4YwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPGdXvCA eJr+UHxBKDrhxKEPk0lIMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeV3d6uHxhCdAodB9+p0iNrCYTjH/YMEQ8SgwDG7iTtr/FHikd5ybFTU3/sbF KbD/0mNmJn72S9dGMFDLS43NEmOtNyG9boysheTcstlDB+uPxfcClLHRlx6EqOCd Xmza7rYCHZItEKGbEgUwB0V+1ydwaMMxK7JJrtgB1jAgwedbjwUdjThibWbfaNbM 0M6CAaaiZkWvjj23PKQ00GTtbePVEwWKyhvGddkDCGpxrNdocDllt6IHxbBt+YGD F+g+wt7Ka10ejXox+epQKPc9J47J0INx/nDcmPVni65pGTyk5UvfHRs8vH+ncOgq bTAlOvEkEIL+FM+010N9mHGpgA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:23:03 2026 by rpki-client