$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: qzq85oxSfL+87r9cRZiV2VSii+fx5E3Yl4se9hdql44= Subject key identifier: FD:A1:F5:A1:0C:F1:27:F9:31:B4:8E:83:58:49:4D:C6:87:4D:59:20 Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 05E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 05E0 Signing time: Sat 04 Apr 2026 22:44:50 +0000 Manifest this update: Sat 04 Apr 2026 22:44:49 +0000 Manifest next update: Sat 11 Apr 2026 22:44:49 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: duXBYSfaSIGwCNnUs2I6E8U6JvDCS+Ylk5GKEYSZSSw=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: aqvU+UiVz5EiQm3aVLx9pIrD5pXO9qkeQ5aR6UKmmFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1510 (0x5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40, serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: Apr 4 22:44:49 2026 GMT Not After : Apr 11 22:44:49 2026 GMT Subject: CN=69d19461-c4f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:45:4f:c0:1d:37:c9:32:81:6d:4b:e0:fd:d5: ec:f4:71:c0:78:c4:22:dd:7d:3c:62:fd:22:58:64: a8:0f:85:4a:60:74:d0:99:47:e2:62:a5:dd:c9:3e: b6:8b:1a:c8:18:2c:8a:f5:88:49:56:63:a2:09:f0: d0:75:b3:79:3d:7d:07:f7:d4:bb:66:ba:95:08:6f: 80:4c:e2:28:c8:3f:65:5f:dd:3e:1f:ea:31:6d:60: 25:0e:65:59:46:ba:33:c6:f1:cb:00:7b:ae:83:c0: 49:9c:9a:27:d7:5f:d9:d5:d8:cb:73:05:e3:04:2c: c2:84:f7:b9:30:5f:54:2e:3b:4c:5a:bb:18:9e:82: d5:36:36:4d:52:2f:73:74:91:63:3e:a6:a9:66:68: c8:5d:9a:d5:69:f4:24:7a:b8:18:d4:90:a7:52:9f: 68:7b:28:5d:da:fb:2b:15:ca:38:3f:1d:26:7d:de: 3e:15:70:4d:fc:9f:0a:7a:83:39:5a:62:af:af:58: 46:45:2c:d7:81:a9:dc:d0:54:ac:18:80:67:75:64: b1:a3:34:81:a9:25:6e:33:b4:d1:e2:71:0b:5d:ed: 17:1e:0c:29:13:7f:cd:e3:ac:78:4c:f3:11:d1:ba: fd:f8:7f:c3:36:19:19:19:fb:31:30:bd:aa:4f:90: 03:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A1:F5:A1:0C:F1:27:F9:31:B4:8E:83:58:49:4D:C6:87:4D:59:20 X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:45:07:a7:71:d8:ea:0f:50:9c:49:35:db:49:56:17:02:79: 57:06:0f:38:b0:f4:83:a4:34:50:ed:67:c0:85:5a:8e:2c:b7: 53:a4:a4:76:65:82:6e:aa:57:eb:91:f1:06:db:ad:dc:df:5c: b4:a1:c5:4c:ec:6b:3f:1d:f8:05:61:90:0a:28:55:4c:f8:6d: 3d:d0:3e:25:e2:61:59:ff:c3:3f:51:26:47:fe:98:68:ac:f2: 90:8a:34:61:39:d1:f5:08:aa:55:60:54:a1:3d:42:56:cd:07: b3:23:d1:2a:5f:cc:76:cf:89:c5:25:fa:fd:d6:fb:77:16:a5: 28:65:68:44:50:03:93:7e:2b:1d:ad:07:a3:36:08:a7:19:e6: f2:4d:72:eb:8a:31:28:af:2b:95:17:c8:42:45:51:e0:df:b4: f1:74:b4:09:45:92:72:70:5d:e8:dd:1b:7d:50:1c:2c:5a:c4: e5:8b:86:a2:d4:af:19:bf:9c:66:cf:21:43:b4:1a:47:02:e9: 2b:3d:b9:82:2e:01:b0:06:95:30:fc:cb:61:ac:af:0d:2c:fc: 06:d8:86:1a:28:84:7e:3d:ce:94:12:8a:fb:ca:1f:f8:76:84: a8:9f:5c:36:b6:1e:ab:12:95:2b:a2:a2:3c:73:3d:3a:c2:c9: 1d:cf:5b:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjYwNDA0MjI0NDQ5WhcNMjYwNDExMjI0NDQ5WjAYMRYwFAYD VQQDEw02OWQxOTQ2MS1jNGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0VPwB03yTKBbUvg/dXs9HHAeMQi3X08Yv0iWGSoD4VKYHTQmUfiYqXdyT62 ixrIGCyK9YhJVmOiCfDQdbN5PX0H99S7ZrqVCG+ATOIoyD9lX90+H+oxbWAlDmVZ RrozxvHLAHuug8BJnJon11/Z1djLcwXjBCzChPe5MF9ULjtMWrsYnoLVNjZNUi9z dJFjPqapZmjIXZrVafQkergY1JCnUp9oeyhd2vsrFco4Px0mfd4+FXBN/J8KeoM5 WmKvr1hGRSzXganc0FSsGIBndWSxozSBqSVuM7TR4nELXe0XHgwpE3/N46x4TPMR 0br9+H/DNhkZGfsxML2qT5ADjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP2h9aEM 8Sf5MbSOg1hJTcaHTVkgMB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU0UHp3HY6g9QnEk120lWFwJ5VwYPOLD0g6Q0UO1nwIVajiy3U6SkdmWCbqpX 65HxBtut3N9ctKHFTOxrPx34BWGQCihVTPhtPdA+JeJhWf/DP1EmR/6YaKzykIo0 YTnR9QiqVWBUoT1CVs0HsyPRKl/Mds+JxSX6/db7dxalKGVoRFADk34rHa0HozYI pxnm8k1y64oxKK8rlRfIQkVR4N+08XS0CUWScnBd6N0bfVAcLFrE5YuGotSvGb+c Zs8hQ7QaRwLpKz25gi4BsAaVMPzLYayvDSz8BtiGGiiEfj3OlBKK+8of+HaEqJ9c NrYeqxKVK6KiPHM9OsLJHc9bvw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:50:25 2026 by rpki-client