$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: JSWtP610vl9XbtquCGAJNrZyOO36u/8Sz1J7evb+DR0= Subject key identifier: AF:31:FB:03:FC:BD:1A:F8:36:FA:2D:8B:88:C5:40:2F:8A:5C:9E:59 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 1178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 1157 Signing time: Thu 16 Apr 2026 17:09:29 +0000 Manifest this update: Thu 16 Apr 2026 17:09:29 +0000 Manifest next update: Thu 23 Apr 2026 17:09:29 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: m2xFqAmiC3ETU3XB738BaxDXNByjT0Rxt7cFmi4Bexw=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: W4h7IWYUmM/hyejWwAL7UxMd6DDsYA0doq+8X7am/ms=) 3: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: FMzrYGVGOtWt5cmIpjK8kf84YehxjN48qZYSg0E+H9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4472 (0x1178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Apr 16 17:09:29 2026 GMT Not After : Apr 23 17:09:29 2026 GMT Subject: CN=69e117c9-ac8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:83:e7:8f:d2:90:a1:23:7b:71:06:da:bd:81: 28:55:cb:59:dd:0e:b1:13:93:be:8d:7e:45:b7:1c: 9c:af:5d:93:8d:ba:f4:88:7f:47:b1:ce:06:17:b8: 0f:67:2c:61:45:24:4d:b0:93:b9:59:4b:88:9b:cf: 1d:10:50:a0:28:b3:02:30:d1:8a:66:c4:47:42:7e: 73:d4:91:f5:3b:04:7d:f3:28:4a:33:d5:ff:f5:50: 82:56:4b:54:5f:69:ca:f2:7f:ea:f7:e9:dd:02:e7: 67:4f:07:4a:6f:19:18:ef:5e:44:16:c5:d2:bf:ae: 93:35:89:08:16:8f:52:1b:ef:dc:de:c7:dc:93:4c: 67:66:cb:52:86:f9:23:a5:5f:fc:57:f0:d2:e0:93: 9f:78:80:9a:23:2f:23:c8:71:0d:bf:71:3d:f9:b1: 5b:ca:1a:d7:51:39:c6:72:d2:a1:64:51:9b:3b:c4: 69:37:9f:d4:a6:01:4a:d1:64:c7:1d:01:90:00:9f: 8d:23:5d:e4:cc:65:0e:69:57:4e:8f:ed:83:4b:e8: d3:69:5f:29:ba:e1:6c:98:e0:0f:56:a9:72:66:69: b2:ee:e2:09:38:93:d9:c1:b8:47:06:7b:a8:1f:84: b5:5e:48:a7:1c:b0:09:8a:6c:7e:20:61:84:16:16: 64:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:31:FB:03:FC:BD:1A:F8:36:FA:2D:8B:88:C5:40:2F:8A:5C:9E:59 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ec:47:e4:03:78:c8:e0:eb:62:19:5d:dd:17:cb:a1:e4:86: 83:49:e3:21:4b:8c:a7:10:67:60:35:da:b5:74:30:ac:e7:4e: 4d:12:66:4f:97:b3:6a:d0:28:ea:08:82:ce:eb:40:af:13:cf: 7f:7e:d6:8b:1b:b0:88:03:92:e3:53:f2:5a:10:5b:b0:03:1b: 74:0c:48:22:c3:55:ae:e8:94:53:f2:45:2b:ee:39:87:8c:10: d7:2f:ad:2b:bc:bb:76:4b:52:9d:47:91:bf:f8:27:fc:9f:f0: 67:81:e8:66:be:d8:4e:ee:3a:c7:bb:dd:dd:d7:45:93:88:84: b3:7f:89:aa:9e:9c:de:66:79:50:92:24:09:b0:d8:a1:ba:85: d6:f7:60:83:c1:99:d1:d2:d4:3f:70:36:50:a0:80:ef:15:a9: 9b:4c:19:59:bf:28:16:89:dc:26:60:6e:da:0c:cd:b6:f5:ed: f0:45:7d:ea:7e:27:55:88:d1:4d:bd:7d:32:a8:d6:49:4e:ab: 3f:7e:8b:e6:33:45:63:1c:8f:29:43:4e:d5:99:60:f6:f1:e2: b0:6b:4b:91:8a:c9:6b:a1:13:1b:07:bc:ae:ed:14:32:85:43: 94:b1:6c:ba:b0:7c:71:8b:4f:dc:ad:f6:67:b4:47:1b:7d:a0: 8c:9e:b5:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjYwNDE2MTcwOTI5WhcNMjYwNDIzMTcwOTI5WjAYMRYwFAYD VQQDEw02OWUxMTdjOS1hYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj4Pnj9KQoSN7cQbavYEoVctZ3Q6xE5O+jX5Ftxycr12Tjbr0iH9Hsc4GF7gP ZyxhRSRNsJO5WUuIm88dEFCgKLMCMNGKZsRHQn5z1JH1OwR98yhKM9X/9VCCVktU X2nK8n/q9+ndAudnTwdKbxkY715EFsXSv66TNYkIFo9SG+/c3sfck0xnZstShvkj pV/8V/DS4JOfeICaIy8jyHENv3E9+bFbyhrXUTnGctKhZFGbO8RpN5/UpgFK0WTH HQGQAJ+NI13kzGUOaVdOj+2DS+jTaV8puuFsmOAPVqlyZmmy7uIJOJPZwbhHBnuo H4S1XkinHLAJimx+IGGEFhZk7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK8x+wP8 vRr4Nvoti4jFQC+KXJ5ZMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAruxH5AN4yODrYhld3RfLoeSGg0njIUuMpxBnYDXatXQwrOdOTRJmT5ezatAo 6giCzutArxPPf37WixuwiAOS41PyWhBbsAMbdAxIIsNVruiUU/JFK+45h4wQ1y+t K7y7dktSnUeRv/gn/J/wZ4HoZr7YTu46x7vd3ddFk4iEs3+Jqp6c3mZ5UJIkCbDY obqF1vdgg8GZ0dLUP3A2UKCA7xWpm0wZWb8oFoncJmBu2gzNtvXt8EV96n4nVYjR Tb19MqjWSU6rP36L5jNFYxyPKUNO1Zlg9vHisGtLkYrJa6ETGwe8ru0UMoVDlLFs urB8cYtP3K32Z7RHG32gjJ61hA== -----END CERTIFICATE-----Generated at Fri Apr 17 20:36:08 2026 by rpki-client