$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: dL7ilFslWR/eGHEiH8bMCI5dVeeU1QzFRQ9BvVvGIQ0= Subject key identifier: 88:37:AC:9B:E5:8D:9E:84:52:57:71:FB:F9:33:87:85:66:AD:F5:B2 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 0138 Signing time: Fri 17 Apr 2026 05:13:52 +0000 Manifest this update: Fri 17 Apr 2026 05:13:51 +0000 Manifest next update: Fri 24 Apr 2026 05:13:51 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: 5d4boxdGlG9GT4yONSz68Dp8jUSXnOeYOtV0fwiRMNc=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: xaj9ev9gObxEarMjWAx7hyuUavQ9BGr2NQce4XrNjSg=) 3: 43749A72824E11F0A1C4B018C4F9AE02.roa (hash: o9Xs3io38RTaw4LTZVDWVNHdH5+V8NMTsg37SGZ03EY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Apr 17 05:13:51 2026 GMT Not After : Apr 24 05:13:51 2026 GMT Subject: CN=69e1c190-73a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6c:30:71:53:9d:ad:c1:b8:0c:a0:c8:04:24: 41:32:28:20:d1:46:2d:3d:40:ad:1c:b5:db:31:d1: d1:04:bc:66:76:19:6d:f1:7a:cb:7e:53:e4:f6:cd: fe:99:cf:ad:1b:b7:52:24:94:62:7a:ca:9e:d3:9e: 17:02:b4:67:c7:18:02:f4:eb:5b:8c:4b:c7:db:b5: 29:cb:45:da:c9:50:cc:2b:99:46:cc:74:51:ef:39: fa:11:56:4c:a7:d1:b0:01:ab:08:1a:a5:e7:f3:db: 7e:8e:61:b1:79:f2:36:2f:9e:b9:29:5a:5a:0d:ef: 02:53:4f:cf:77:6a:8e:11:a8:a5:ca:97:6c:1c:98: a8:0e:1b:99:14:77:5f:58:20:e5:ba:24:53:43:3b: 71:1c:fa:da:4a:7c:4e:e4:6f:18:d4:b4:20:72:59: 3f:c7:3d:64:cb:3a:47:90:93:97:41:c2:35:f5:c4: df:f1:47:b4:90:c9:3f:56:3d:8c:88:ba:05:0e:55: 98:70:07:23:66:47:63:0f:b6:4f:3f:24:7a:e2:1e: 13:95:1c:ce:8d:9f:05:43:dc:03:30:97:fe:18:89: 8f:92:4f:fb:fe:fe:5a:17:a5:b0:91:68:83:fa:14: e7:3b:01:a9:f7:a7:20:e3:7c:bf:95:4c:cd:fa:d3: 12:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:37:AC:9B:E5:8D:9E:84:52:57:71:FB:F9:33:87:85:66:AD:F5:B2 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:5d:ee:a0:16:6f:ba:a5:54:1b:c0:09:c4:df:94:99:8c:a1: ef:80:50:1e:22:19:73:8c:4b:69:65:a0:87:e8:22:f2:5e:6e: 0e:e5:15:86:4f:98:ae:67:bb:ff:e1:05:ab:19:fa:7e:60:8d: c3:6b:9b:90:f0:3c:f5:0b:eb:89:09:9b:69:a7:78:98:c4:dc: 9e:ab:43:43:b1:d0:33:26:71:33:80:2e:c7:db:27:29:13:7a: 4d:74:ec:eb:ee:8d:b7:2e:3c:1e:54:ee:ef:f6:34:11:a9:05: b0:b1:55:f9:f1:c7:80:55:1a:3c:7d:7c:a3:03:5d:b0:74:d7: 43:d6:73:63:fe:0e:fe:23:08:de:75:3e:b7:4e:77:f3:90:0f: 7a:78:e3:f8:7b:75:eb:0d:fe:73:73:6c:d6:dd:e3:0c:ff:3f: bc:6a:8d:2a:00:29:c7:8a:d0:9b:e8:31:f4:b2:81:c2:1d:5a: 9f:d3:48:ad:ec:53:c4:42:73:c2:95:3d:0e:a4:ff:cc:46:10: 1f:fe:75:e4:8c:0c:cc:5b:98:41:74:19:b1:49:1a:51:11:10: 4a:13:90:47:c1:18:db:cb:1c:75:be:03:cd:56:7a:f7:a7:2b: 84:31:61:a9:1f:ca:b2:af:72:67:97:aa:c2:4a:2d:58:ce:71: bd:31:af:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjYwNDE3MDUxMzUxWhcNMjYwNDI0MDUxMzUxWjAYMRYwFAYD VQQDEw02OWUxYzE5MC03M2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmwwcVOdrcG4DKDIBCRBMigg0UYtPUCtHLXbMdHRBLxmdhlt8XrLflPk9s3+ mc+tG7dSJJRiesqe054XArRnxxgC9OtbjEvH27Upy0XayVDMK5lGzHRR7zn6EVZM p9GwAasIGqXn89t+jmGxefI2L565KVpaDe8CU0/Pd2qOEailypdsHJioDhuZFHdf WCDluiRTQztxHPraSnxO5G8Y1LQgclk/xz1kyzpHkJOXQcI19cTf8Ue0kMk/Vj2M iLoFDlWYcAcjZkdjD7ZPPyR64h4TlRzOjZ8FQ9wDMJf+GImPkk/7/v5aF6WwkWiD +hTnOwGp96cg43y/lUzN+tMSEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIg3rJvl jZ6EUldx+/kzh4VmrfWyMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ13uoBZvuqVUG8AJxN+UmYyh74BQHiIZc4xLaWWgh+gi8l5uDuUVhk+Yrme7 /+EFqxn6fmCNw2ubkPA89QvriQmbaad4mMTcnqtDQ7HQMyZxM4Aux9snKRN6TXTs 6+6Nty48HlTu7/Y0EakFsLFV+fHHgFUaPH18owNdsHTXQ9ZzY/4O/iMI3nU+t053 85APenjj+Ht16w3+c3Ns1t3jDP8/vGqNKgApx4rQm+gx9LKBwh1an9NIrexTxEJz wpU9DqT/zEYQH/515IwMzFuYQXQZsUkaUREQShOQR8EY28scdb4DzVZ696crhDFh qR/Ksq9yZ5eqwkotWM5xvTGvjA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:36:21 2026 by rpki-client