$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft File: p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft (raw, json) Hash identifier: RECXc2380PWLpx9TACuX9Z91fBtT4pyXOtH2u8BotQU= Subject key identifier: 53:87:20:4C:4E:43:4B:17:A9:F1:3E:E1:89:1B:4A:45:1B:A6:FF:7B Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0EA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft Manifest number: 0E98 Signing time: Sat 04 Apr 2026 17:36:27 +0000 Manifest this update: Sat 04 Apr 2026 17:36:26 +0000 Manifest next update: Sat 11 Apr 2026 17:36:26 +0000 Files and hashes: 1: p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl (hash: bQb6BEsom1bAaBiyG166Y3Nlm2ZHwdV1JoiBjAr5Mwc=) 2: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (hash: Arkrsyo5+ae+fzAV/8rJkRmaTl2oT1Ort1Y2T29kOdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3749 (0xea5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Apr 4 17:36:26 2026 GMT Not After : Apr 11 17:36:26 2026 GMT Subject: CN=69d14c1b-0371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ea:db:33:0f:33:a0:ff:33:b2:db:ce:ec:1a: 1f:dc:64:60:c2:8a:d9:e5:28:70:49:3d:48:9a:85: 7b:3a:6e:b3:9f:ab:02:a2:a9:38:e5:b6:73:8e:fb: c4:00:02:07:45:97:a1:6f:65:f6:06:90:4c:c2:b3: b2:9a:7b:89:ab:a6:ae:b7:be:20:dd:b7:7f:3a:f3: 80:82:4a:ea:f2:70:eb:33:56:c6:64:67:1a:d3:11: 97:b2:f8:56:be:6f:c7:5b:01:16:3f:93:33:c1:00: 3b:11:4a:e3:77:1e:06:50:27:53:58:04:83:47:e8: 35:b3:cf:7f:af:6a:68:5d:75:32:c4:75:f1:52:56: e8:fc:ab:ca:f1:d1:1a:b8:70:d6:ba:d7:67:b1:f3: b4:bb:0c:08:00:ca:71:62:10:20:8c:b4:b4:b8:51: bf:6a:eb:d8:ce:79:de:e1:54:95:cd:e0:a4:d9:2f: 8d:d3:3b:e8:1a:2b:e0:ef:7a:69:ce:5f:83:46:d6: 7d:c5:56:d8:dc:5d:35:53:e0:03:25:37:dc:b1:bf: 12:ee:b2:05:79:24:13:fb:0e:60:be:3e:fb:b8:c0: e7:32:23:24:5d:71:50:c9:a6:9f:a2:ab:f5:82:0b: ec:9a:3f:1b:d0:7d:c8:6d:54:8d:39:aa:a6:0c:19: 38:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:87:20:4C:4E:43:4B:17:A9:F1:3E:E1:89:1B:4A:45:1B:A6:FF:7B X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:68:fa:cd:1a:2f:8a:1f:10:32:fc:a5:73:c0:0e:12:32:04: 37:7f:4c:6f:ba:6e:f9:00:d2:db:0a:e6:78:6d:f8:59:d3:14: 34:0c:df:17:24:5b:3e:7d:dd:ac:fd:f0:9f:6f:40:27:ef:bd: 06:ed:e1:f8:cf:9e:0b:0a:67:ea:cf:06:a4:8b:3f:a5:2f:9e: 2e:86:2e:70:79:0e:5f:43:dd:92:e4:95:0b:93:76:39:0c:2b: 42:81:2d:d5:c5:30:d1:f6:9b:94:c9:15:f3:d6:fe:f0:e3:a6: 90:a5:11:36:df:89:58:4b:fc:8b:a3:ad:20:0f:b3:e9:5e:5c: 1a:fe:5d:b3:8f:75:a6:22:73:c0:0a:f7:e6:4d:70:bc:5c:ab: a0:d7:10:15:f4:18:c2:ff:54:7f:7d:2e:c6:ba:b0:5c:5a:b7: 9d:80:04:4d:6a:31:46:63:9e:fa:91:9a:65:49:14:b3:dd:c4: f1:b8:67:61:b3:a6:28:91:7c:12:75:61:1b:2b:87:29:6e:6f: 37:60:eb:ca:36:8e:80:21:c5:97:91:86:a5:8b:1e:63:a2:72: 8f:1b:2b:fd:11:89:fd:fb:6e:9b:03:6c:84:d3:58:82:68:09: d1:b0:2d:e5:9c:35:1e:c2:f0:72:70:10:11:f8:03:43:5e:13: 95:29:60:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjYwNDA0MTczNjI2WhcNMjYwNDExMTczNjI2WjAYMRYwFAYD VQQDEw02OWQxNGMxYi0wMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OrbMw8zoP8zstvO7Bof3GRgworZ5ShwST1ImoV7Om6zn6sCoqk45bZzjvvE AAIHRZehb2X2BpBMwrOymnuJq6aut74g3bd/OvOAgkrq8nDrM1bGZGca0xGXsvhW vm/HWwEWP5MzwQA7EUrjdx4GUCdTWASDR+g1s89/r2poXXUyxHXxUlbo/KvK8dEa uHDWutdnsfO0uwwIAMpxYhAgjLS0uFG/auvYznne4VSVzeCk2S+N0zvoGivg73pp zl+DRtZ9xVbY3F01U+ADJTfcsb8S7rIFeSQT+w5gvj77uMDnMiMkXXFQyaafoqv1 ggvsmj8b0H3IbVSNOaqmDBk4iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFOHIExO Q0sXqfE+4YkbSkUbpv97MB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTI5Ny80MzAxRkRCRUFGNkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThO angyelljMUFzU1lHc01hTVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARGj6zRovih8QMvylc8AOEjIEN39Mb7pu+QDS2wrmeG34WdMUNAzfFyRbPn3d rP3wn29AJ++9Bu3h+M+eCwpn6s8GpIs/pS+eLoYucHkOX0PdkuSVC5N2OQwrQoEt 1cUw0fablMkV89b+8OOmkKURNt+JWEv8i6OtIA+z6V5cGv5ds491piJzwAr35k1w vFyroNcQFfQYwv9Uf30uxrqwXFq3nYAETWoxRmOe+pGaZUkUs93E8bhnYbOmKJF8 EnVhGyuHKW5vN2DryjaOgCHFl5GGpYseY6Jyjxsr/RGJ/ftumwNshNNYgmgJ0bAt 5Zw1HsLwcnAQEfgDQ14TlSlg6g== -----END CERTIFICATE-----Generated at Mon Apr 6 06:35:42 2026 by rpki-client