$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: bvBz1S5RPjiU3QB3MwK38ULQE+04+92CbYbmoWrPYwk= Subject key identifier: 4F:D6:80:2E:66:E5:8A:B1:4C:9D:62:A7:3D:BC:4E:31:F4:D1:0A:0F Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A63 Signing time: Thu 16 Apr 2026 19:32:59 +0000 Manifest this update: Thu 16 Apr 2026 19:32:59 +0000 Manifest next update: Thu 23 Apr 2026 19:32:59 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: sSxD5iVWQI+uwler9RNMGPHzf+xf34AHj1gGjcsXkLw=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: LPpHOK81C3pNsWyGa2Q2W3gfstRuGd26hh2KRKuaOPE=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2677 (0xa75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Apr 16 19:32:59 2026 GMT Not After : Apr 23 19:32:59 2026 GMT Subject: CN=69e1396b-1214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f8:e0:b6:61:f6:80:93:d2:67:4f:a2:4f:09: fc:a8:dd:44:09:4c:1d:60:cc:90:76:2a:52:f8:8d: 64:48:76:cd:d2:51:a1:d7:3f:bd:ee:04:58:16:84: 2e:5d:90:6b:6b:5a:12:47:e7:85:62:40:9d:3e:4f: 28:d9:2d:a6:f3:46:ea:95:7c:f6:50:6a:d4:d7:4c: 4d:17:ec:ea:ec:cd:ab:59:3e:5d:e2:86:27:65:59: 7c:41:29:39:e0:6a:e2:d0:f8:6f:97:e3:5b:c4:b1: e0:b7:59:66:60:e0:e9:16:1b:f1:71:40:72:41:c6: 30:74:c2:77:59:45:a3:a1:ea:ad:59:bb:5e:23:4e: 4c:7e:cf:2a:f2:bd:aa:1b:bb:d8:3d:4b:dc:27:ea: b0:0e:18:3e:22:94:a2:ff:88:6b:05:e1:1a:dd:19: 27:29:cd:5f:44:4f:84:fa:7c:be:17:56:ea:bb:ad: 9e:d8:0e:75:5f:1a:95:58:ca:00:e1:e6:bb:c1:dc: 3c:20:df:52:72:1d:c6:65:5d:50:8b:20:fb:54:28: 30:6b:ad:eb:25:df:d8:c4:b5:bc:59:3d:7c:de:f8: f2:d8:48:0d:bb:f6:8a:d5:8b:c1:db:6f:5f:19:13: 86:62:b7:be:52:24:11:be:cc:14:86:f7:46:ba:ea: a0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D6:80:2E:66:E5:8A:B1:4C:9D:62:A7:3D:BC:4E:31:F4:D1:0A:0F X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:d4:1d:88:11:42:74:cf:ff:66:9a:36:fa:d3:90:38:b5:93: 98:ee:b4:c8:77:d8:79:87:e4:69:db:69:6c:de:92:61:ac:1f: a6:7c:6c:c9:d7:9d:50:67:24:f4:b9:0e:e9:42:ca:a4:a7:b9: 25:c2:14:93:c8:d4:90:60:80:88:4d:7c:6d:df:f8:82:0d:7e: 15:bf:56:a6:e8:91:1b:13:7a:ff:46:e4:2c:b0:f7:1d:1d:f6: ac:5a:32:d8:70:9d:84:f0:0f:48:a4:cb:ef:34:55:34:d5:16: be:69:11:83:13:5f:df:30:e7:1b:e0:d7:25:6b:b6:6c:1a:e3: d5:c1:37:37:bc:5b:4c:ac:9b:98:0a:f8:63:a6:df:b3:0e:f1: 35:ca:db:e5:1e:fb:6b:67:63:37:b2:fc:6c:86:e1:14:49:10: 19:b1:54:ba:f3:e8:98:55:3e:67:be:bc:4f:fa:e0:6e:f6:1e: 8b:90:fa:f4:d3:42:58:35:78:6c:95:45:06:0e:63:11:5b:d4: f9:db:fc:d2:a5:ef:42:84:10:d9:b1:10:84:af:f9:e0:a0:33: 8a:be:a2:6e:59:57:de:0c:04:88:b1:f2:d2:68:a9:88:ed:0d: 60:ad:f5:5a:4d:73:86:3a:20:7c:67:9f:5b:cd:ff:a6:d5:9c: d1:0f:dc:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjYwNDE2MTkzMjU5WhcNMjYwNDIzMTkzMjU5WjAYMRYwFAYD VQQDEw02OWUxMzk2Yi0xMjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fjgtmH2gJPSZ0+iTwn8qN1ECUwdYMyQdipS+I1kSHbN0lGh1z+97gRYFoQu XZBra1oSR+eFYkCdPk8o2S2m80bqlXz2UGrU10xNF+zq7M2rWT5d4oYnZVl8QSk5 4Gri0Phvl+NbxLHgt1lmYODpFhvxcUByQcYwdMJ3WUWjoeqtWbteI05Mfs8q8r2q G7vYPUvcJ+qwDhg+IpSi/4hrBeEa3RknKc1fRE+E+ny+F1bqu62e2A51XxqVWMoA 4ea7wdw8IN9Sch3GZV1QiyD7VCgwa63rJd/YxLW8WT183vjy2EgNu/aK1YvB229f GROGYre+UiQRvswUhvdGuuqgxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE/WgC5m 5YqxTJ1ipz28TjH00QoPMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr9QdiBFCdM//Zpo2+tOQOLWTmO60yHfYeYfkadtpbN6SYawfpnxsydedUGck 9LkO6ULKpKe5JcIUk8jUkGCAiE18bd/4gg1+Fb9WpuiRGxN6/0bkLLD3HR32rFoy 2HCdhPAPSKTL7zRVNNUWvmkRgxNf3zDnG+DXJWu2bBrj1cE3N7xbTKybmAr4Y6bf sw7xNcrb5R77a2djN7L8bIbhFEkQGbFUuvPomFU+Z768T/rgbvYei5D69NNCWDV4 bJVFBg5jEVvU+dv80qXvQoQQ2bEQhK/54KAzir6ibllX3gwEiLHy0mipiO0NYK31 Wk1zhjogfGefW83/ptWc0Q/cCQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:44:28 2026 by rpki-client