$ rpki-client -vvf rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft File: P9OJWVL9hJqXvBEkdJUChMaGhkU.mft (raw, json) Hash identifier: wuSVXILC7rM9Z71eFFnPE3HZlIXS5gYzF+fr6taOOfw= Subject key identifier: CE:CC:9B:4D:94:9E:D0:E1:C5:14:69:0A:F4:C2:92:69:1C:7D:11:39 Authority key identifier: 3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 Certificate issuer: /CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Certificate serial: 0870 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft Manifest number: 0863 Signing time: Thu 16 Apr 2026 20:39:51 +0000 Manifest this update: Thu 16 Apr 2026 20:39:50 +0000 Manifest next update: Thu 23 Apr 2026 20:39:50 +0000 Files and hashes: 1: P9OJWVL9hJqXvBEkdJUChMaGhkU.crl (hash: IRJy1UT015z3P6ixUspoanlANNrKnFadT+7KlSMTPSE=) 2: A84FB264FD7011EAA1DF3534C4F9AE02.roa (hash: amf5yXNl2Dgr3AOxZkSrfGo/rK5Q2TPmeviiMZD4ZqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2160 (0x870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C609A, serialNumber=3FD3895952FD849A97BC112474950284C6868645 Validity Not Before: Apr 16 20:39:50 2026 GMT Not After : Apr 23 20:39:50 2026 GMT Subject: CN=69e14916-e89b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:57:1f:e9:3b:09:17:21:b7:cd:ab:75:e1:63: 28:1f:0a:37:56:31:b1:98:6d:dc:8a:a8:c8:6f:c7: 17:db:57:c5:75:0b:0d:d7:17:fc:35:02:ad:37:f4: 5a:74:c3:90:11:6e:b3:31:26:59:1d:64:82:22:a5: 21:6c:57:9c:98:31:88:28:76:76:95:da:6d:19:b9: ff:fd:4c:6b:5d:77:c8:3f:d9:f1:05:2b:0b:c0:3b: 95:8c:01:34:6e:b0:80:b5:06:17:3f:4c:dc:20:a6: fa:f7:b0:2e:d8:01:b6:b0:ce:f7:2e:a3:33:8d:32: 14:61:23:5d:42:8e:18:f1:97:65:37:d2:47:86:67: 6c:72:6f:15:7b:12:eb:92:0d:f5:24:c5:f3:54:17: 8a:3e:0e:a9:9b:ee:95:68:80:32:82:3c:19:ae:cb: c5:2d:39:05:bd:e8:a2:9c:22:f7:58:4e:f5:20:98: 87:a9:06:bb:a9:a6:c6:d4:4e:f6:10:8d:ba:ba:a6: 6f:19:90:1c:ba:80:f1:ff:8e:09:2e:3b:e7:4e:a5: 16:98:df:f1:7e:02:2e:36:d2:b7:93:7c:d4:ca:aa: 05:ec:ef:5b:2e:a8:23:72:3f:25:d5:9b:40:7a:04: 89:19:37:34:6b:de:65:8d:47:8c:55:cf:2e:d7:a0: de:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CC:9B:4D:94:9E:D0:E1:C5:14:69:0A:F4:C2:92:69:1C:7D:11:39 X509v3 Authority Key Identifier: keyid:3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:1c:a4:ee:60:7e:4e:24:a9:80:cf:50:cb:96:48:7e:85:3d: b0:d3:70:c5:75:03:ae:4d:82:b9:4c:4a:48:37:b2:75:8a:79: 8c:8f:df:8a:27:35:17:93:ec:f1:f2:30:52:19:9b:12:2f:3c: df:4d:4f:be:24:0f:d3:9f:8c:8e:12:7b:04:7e:1c:6d:88:9f: 7c:11:99:13:fb:77:8c:4b:34:fe:11:0c:6a:e6:6d:63:ba:62: f8:f2:5d:11:83:bc:23:b9:0a:3b:0a:40:a5:39:45:a8:d3:34: 0d:1f:90:b7:3b:08:73:93:f4:3b:50:75:0f:40:7b:37:2e:dd: ac:79:06:9c:8e:d1:89:35:e4:c4:b0:23:72:bb:fe:93:48:2f: 68:5f:7d:84:1f:b9:a1:90:07:5d:7e:e5:61:22:5e:0e:dc:81: a9:1a:56:47:de:a2:f7:c1:46:97:e7:89:66:dd:4f:85:c0:bd: 95:68:4f:67:35:32:26:5a:fc:e6:51:e6:fd:10:0e:85:cc:0b: 75:62:66:d3:9b:3b:06:7d:ce:cc:db:fc:4f:2e:eb:58:3b:86: d1:9b:02:06:95:82:94:ae:45:97:8d:56:54:7b:73:2a:40:de: 0d:47:20:30:7d:de:ef:ec:3f:65:d0:74:93:82:36:8b:df:d9: a9:ed:e3:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYwOUExMTAvBgNVBAUTKDNGRDM4OTU5NTJGRDg0OUE5N0JDMTEyNDc0OTUwMjg0 QzY4Njg2NDUwHhcNMjYwNDE2MjAzOTUwWhcNMjYwNDIzMjAzOTUwWjAYMRYwFAYD VQQDEw02OWUxNDkxNi1lODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlcf6TsJFyG3zat14WMoHwo3VjGxmG3ciqjIb8cX21fFdQsN1xf8NQKtN/Ra dMOQEW6zMSZZHWSCIqUhbFecmDGIKHZ2ldptGbn//UxrXXfIP9nxBSsLwDuVjAE0 brCAtQYXP0zcIKb697Au2AG2sM73LqMzjTIUYSNdQo4Y8ZdlN9JHhmdscm8VexLr kg31JMXzVBeKPg6pm+6VaIAygjwZrsvFLTkFveiinCL3WE71IJiHqQa7qabG1E72 EI26uqZvGZAcuoDx/44JLjvnTqUWmN/xfgIuNtK3k3zUyqoF7O9bLqgjcj8l1ZtA egSJGTc0a95ljUeMVc8u16De8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM7Mm02U ntDhxRRpCvTCkmkcfRE5MB8GA1UdIwQYMBaAFD/TiVlS/YSal7wRJHSVAoTGhoZF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjA5QS9BMzdBRTkyNkZE NkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhKcVh2QkVrZEpVQ2hNYUdo a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5T0pXVkw5aEpxWHZCRWtkSlVDaE1hR2hrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjA5QS9BMzdBRTkyNkZENkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhK cVh2QkVrZEpVQ2hNYUdoa1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIRyk7mB+TiSpgM9Qy5ZIfoU9sNNwxXUDrk2CuUxKSDeydYp5jI/fiic1F5Ps 8fIwUhmbEi88301PviQP05+MjhJ7BH4cbYiffBGZE/t3jEs0/hEMauZtY7pi+PJd EYO8I7kKOwpApTlFqNM0DR+QtzsIc5P0O1B1D0B7Ny7drHkGnI7RiTXkxLAjcrv+ k0gvaF99hB+5oZAHXX7lYSJeDtyBqRpWR96i98FGl+eJZt1PhcC9lWhPZzUyJlr8 5lHm/RAOhcwLdWJm05s7Bn3OzNv8Ty7rWDuG0ZsCBpWClK5Fl41WVHtzKkDeDUcg MH3e7+w/ZdB0k4I2i9/Zqe3jEg== -----END CERTIFICATE-----Generated at Fri Apr 17 14:37:13 2026 by rpki-client