$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: gTZsX9K3rHxl9KCSREQwb2YoJ7M+PH4/v08zHJvlmII= Subject key identifier: 74:8D:06:FD:28:2E:EA:45:16:DE:D3:F0:E0:32:E2:43:8B:8C:A1:D6 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 023B Signing time: Sun 05 Apr 2026 02:11:47 +0000 Manifest this update: Sun 05 Apr 2026 02:11:46 +0000 Manifest next update: Sun 12 Apr 2026 02:11:46 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: o0eVN8JRx3R6UFfwaeUVeW1EUzeivE0Vf5xupE7lu94=) 2: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: TpOlOMkvGiREuIISjlFyTVVAuVCoOvxydJx/Up02XYA=) 3: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: +Q8so6nPeyC4+0wToagHFxd2QuGw1JN2hZ9q0eoOoGI=) 4: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: QT/TXvlvue3wQ8fY3ahassV2Ju9ScJLofOE2xUpi/GI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Apr 5 02:11:46 2026 GMT Not After : Apr 12 02:11:46 2026 GMT Subject: CN=69d1c4e3-3eca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:25:27:aa:17:32:ee:35:79:de:2b:1a:36:66: 13:3a:26:8b:63:60:e7:a9:c0:2c:f3:89:f1:37:5a: f6:b9:ea:c2:38:87:e2:73:27:8e:9c:01:06:e4:a5: 92:f9:b3:68:51:d3:9a:67:81:b2:0c:c9:78:6d:9c: d1:f2:bd:b7:5a:23:06:a9:16:8e:59:ec:3b:65:08: f2:ff:c1:60:34:b4:89:a5:40:e0:0e:e1:02:20:18: 10:c1:37:e6:3d:28:f0:85:c3:3f:fe:d1:75:06:c7: cd:6b:d6:53:5b:78:8c:a7:67:b4:3a:e0:20:30:d9: d5:ac:ac:10:6f:d1:55:d5:cc:8a:df:a0:8c:ff:9f: 4d:6b:d2:ef:45:39:a2:f7:0d:80:44:5a:dc:40:d1: d5:93:d5:8b:68:a4:c3:09:cd:5f:79:2b:8c:9a:c7: d0:c5:e2:4d:95:88:f2:52:1b:bb:82:90:10:a5:f3: f6:ab:9c:3f:98:77:b7:e8:04:ef:3b:b5:e5:e8:99: 71:e9:35:9f:a6:2d:5f:ee:b5:d5:94:11:94:39:02: 2b:e1:5c:10:5c:65:d0:ed:d2:87:26:a1:6e:e8:aa: 67:2f:7e:45:5b:64:97:cb:a3:3e:0f:25:42:c3:bf: fd:42:70:a4:0c:ad:42:b9:24:71:7f:cc:e8:e5:6c: dd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8D:06:FD:28:2E:EA:45:16:DE:D3:F0:E0:32:E2:43:8B:8C:A1:D6 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c4:d6:3f:d0:17:ee:25:d3:a3:1e:b4:42:b2:23:53:49:a2: ad:8c:95:d3:01:47:8a:9f:cb:05:88:f1:fd:7e:c0:37:18:5e: ed:05:30:7d:84:e8:c9:46:20:52:9e:1e:05:e8:94:ca:f1:0d: bf:6b:62:83:96:37:db:27:d3:16:f6:67:96:e4:9e:7f:74:6e: a2:7c:d4:ed:f3:57:3b:89:9c:92:58:ed:3b:83:83:e3:68:f8: 82:84:5c:b2:90:5a:fc:e0:a3:e7:d9:0f:da:f3:c9:9e:4c:e4: d9:f1:06:47:68:02:25:e1:ca:5a:12:27:38:e5:3b:ab:d6:ee: 24:b8:68:e1:04:ae:dc:8a:43:be:e5:63:69:7e:dd:fc:bc:4c: a2:fe:3c:2d:8e:e1:01:8d:28:2c:4e:71:22:f2:eb:51:be:92: 0d:01:c9:05:40:8d:f7:36:ba:9c:97:ff:3f:d4:15:b8:93:12: da:a8:b9:4d:d1:67:29:5a:50:de:b3:24:60:df:48:8d:9b:53: 93:68:7a:39:fc:00:14:e8:9e:6b:a8:9a:fc:bd:57:3c:e8:bf: c2:19:c0:69:52:50:3a:5d:fc:5a:2a:47:b7:62:ba:f8:d1:1f: fe:66:5c:be:69:0f:97:96:42:af:17:47:bd:e5:2a:cf:a3:80: 16:81:d0:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjYwNDA1MDIxMTQ2WhcNMjYwNDEyMDIxMTQ2WjAYMRYwFAYD VQQDEw02OWQxYzRlMy0zZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlyUnqhcy7jV53isaNmYTOiaLY2DnqcAs84nxN1r2uerCOIficyeOnAEG5KWS +bNoUdOaZ4GyDMl4bZzR8r23WiMGqRaOWew7ZQjy/8FgNLSJpUDgDuECIBgQwTfm PSjwhcM//tF1BsfNa9ZTW3iMp2e0OuAgMNnVrKwQb9FV1cyK36CM/59Na9LvRTmi 9w2ARFrcQNHVk9WLaKTDCc1feSuMmsfQxeJNlYjyUhu7gpAQpfP2q5w/mHe36ATv O7Xl6Jlx6TWfpi1f7rXVlBGUOQIr4VwQXGXQ7dKHJqFu6KpnL35FW2SXy6M+DyVC w7/9QnCkDK1CuSRxf8zo5WzdvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHSNBv0o LupFFt7T8OAy4kOLjKHWMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd8TWP9AX7iXTox60QrIjU0mirYyV0wFHip/LBYjx/X7ANxhe7QUwfYToyUYg Up4eBeiUyvENv2tig5Y32yfTFvZnluSef3RuonzU7fNXO4mckljtO4OD42j4goRc spBa/OCj59kP2vPJnkzk2fEGR2gCJeHKWhInOOU7q9buJLho4QSu3IpDvuVjaX7d /LxMov48LY7hAY0oLE5xIvLrUb6SDQHJBUCN9za6nJf/P9QVuJMS2qi5TdFnKVpQ 3rMkYN9IjZtTk2h6OfwAFOiea6ia/L1XPOi/whnAaVJQOl38WipHt2K6+NEf/mZc vmkPl5ZCrxdHveUqz6OAFoHQjQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:57:59 2026 by rpki-client