$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: 4KQr2A9amqn9V7D8kcZQ6KxEm/axuhpl9UktHHTsxZw= Subject key identifier: EC:6D:22:EE:26:71:BB:92:7C:A4:86:37:2E:9B:F5:BD:F2:6E:61:69 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 0711 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 070A Signing time: Sat 04 Apr 2026 21:44:16 +0000 Manifest this update: Sat 04 Apr 2026 21:44:16 +0000 Manifest next update: Sat 11 Apr 2026 21:44:16 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: nzw0CNg0xSJI9TVLu7Ol4YJO5FXozLcntN1zbTylzdo=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: Y8iJThI3UQs6h5LHq/2D1bpcHDn8+qLI7yAh/AJOyS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Apr 4 21:44:16 2026 GMT Not After : Apr 11 21:44:16 2026 GMT Subject: CN=69d18630-53df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7a:f4:f3:e3:72:62:8a:5b:66:fc:4a:5f:f2: 4a:be:2e:a7:a4:8e:70:c9:4e:02:d5:7a:45:25:e6: 4c:27:91:30:d6:94:2a:bf:f4:f1:3b:25:ad:7d:15: 12:1e:fb:7d:eb:a8:07:db:0b:97:47:c0:db:f1:b5: 55:ef:e0:a1:0a:be:09:2a:26:3a:72:46:3c:18:21: 9a:49:ab:f4:a8:90:ff:a6:d2:cc:ab:5a:d8:80:b6: 64:9d:9b:0d:9f:d8:e8:76:5c:54:ae:09:1f:bd:a2: 28:cb:f2:ab:0b:ca:f3:0d:16:ff:72:f1:ff:52:b2: 61:92:41:58:e3:3b:f0:40:a3:e8:67:1b:91:d5:03: ef:3a:cf:33:d2:c1:97:c5:29:13:8b:2b:8d:13:74: 3c:55:a0:09:00:30:31:ab:33:e2:b7:5f:c7:9c:88: 20:fa:2e:b5:db:1f:d5:60:66:1e:aa:b6:76:29:44: 55:ee:1a:2d:0a:a9:f9:3c:0e:2e:e4:1e:1b:b6:0a: f3:f6:5e:aa:7f:25:51:7f:c0:ff:e3:96:47:88:cd: 94:b1:47:7b:60:9c:a1:62:5d:f9:55:c5:6e:45:42: 2b:f2:20:85:8f:e3:38:d0:31:55:e2:18:25:ce:24: 26:15:b6:6a:50:44:bc:92:3b:e0:f6:5b:96:ca:fd: d6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:6D:22:EE:26:71:BB:92:7C:A4:86:37:2E:9B:F5:BD:F2:6E:61:69 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:22:e2:cc:c1:dc:bf:be:57:2a:e5:29:78:ae:23:96:aa:68: 67:b5:a0:35:5f:d3:10:d0:42:61:6d:8a:9f:18:9b:09:fa:34: ea:67:33:6e:5b:e9:e8:5c:65:1d:1d:b1:27:65:1a:01:cd:89: f0:92:55:e0:ab:5b:56:f2:00:cd:a8:34:31:c8:20:e6:45:fa: 69:e3:29:44:c9:5b:c3:8b:f5:c7:0b:8f:98:b5:46:3a:9c:39: fe:65:02:cd:f7:4c:5c:ea:68:53:45:0b:ea:45:b6:be:f9:cf: 19:a6:a8:65:24:23:44:4c:7d:4c:6f:de:c4:f0:eb:36:21:f3: 01:7e:23:56:8d:25:0b:2d:db:4f:28:d0:4a:68:d4:52:62:99: 0e:95:b6:9c:31:0f:07:8e:36:44:67:e0:13:d9:30:f8:29:06: dd:4b:76:a0:fe:b9:d2:26:8f:9b:2f:2f:5f:e0:41:06:33:07: 18:74:45:33:29:fa:28:7e:e9:b5:44:2d:3e:fb:8e:f3:4e:4c: 63:b5:d9:27:f0:cd:7d:1c:5d:58:33:f8:37:e8:b6:e6:bd:1d: fd:d7:22:09:03:8d:73:0f:fb:68:5f:26:01:58:f2:05:6d:9a: f9:86:99:13:0c:99:69:b9:f6:60:4a:d8:e4:8e:c3:ee:b5:3a: 37:17:cf:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjYwNDA0MjE0NDE2WhcNMjYwNDExMjE0NDE2WjAYMRYwFAYD VQQDEw02OWQxODYzMC01M2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHr08+NyYopbZvxKX/JKvi6npI5wyU4C1XpFJeZMJ5Ew1pQqv/TxOyWtfRUS Hvt966gH2wuXR8Db8bVV7+ChCr4JKiY6ckY8GCGaSav0qJD/ptLMq1rYgLZknZsN n9jodlxUrgkfvaIoy/KrC8rzDRb/cvH/UrJhkkFY4zvwQKPoZxuR1QPvOs8z0sGX xSkTiyuNE3Q8VaAJADAxqzPit1/HnIgg+i612x/VYGYeqrZ2KURV7hotCqn5PA4u 5B4btgrz9l6qfyVRf8D/45ZHiM2UsUd7YJyhYl35VcVuRUIr8iCFj+M40DFV4hgl ziQmFbZqUES8kjvg9luWyv3W3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOxtIu4m cbuSfKSGNy6b9b3ybmFpMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKSLizMHcv75XKuUpeK4jlqpoZ7WgNV/TENBCYW2KnxibCfo06mczblvp6Fxl HR2xJ2UaAc2J8JJV4KtbVvIAzag0Mcgg5kX6aeMpRMlbw4v1xwuPmLVGOpw5/mUC zfdMXOpoU0UL6kW2vvnPGaaoZSQjREx9TG/exPDrNiHzAX4jVo0lCy3bTyjQSmjU UmKZDpW2nDEPB442RGfgE9kw+CkG3Ut2oP650iaPmy8vX+BBBjMHGHRFMyn6KH7p tUQtPvuO805MY7XZJ/DNfRxdWDP4N+i25r0d/dciCQONcw/7aF8mAVjyBW2a+YaZ EwyZabn2YErY5I7D7rU6NxfPvQ== -----END CERTIFICATE-----Generated at Mon Apr 6 15:11:27 2026 by rpki-client