$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: 9Vj/OJYxFJNEgz1KEQL0HXn2Wx7G27bbXejelqKAS70= Subject key identifier: 20:99:D6:CF:17:50:B1:15:6D:60:9A:85:7C:F3:78:C5:F3:02:CE:EC Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 02BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 02A9 Signing time: Sun 05 Apr 2026 01:15:13 +0000 Manifest this update: Sun 05 Apr 2026 01:15:12 +0000 Manifest next update: Sun 12 Apr 2026 01:15:12 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: mN0NZtXuH4O1xfeKa7P3dhgZD83XK67IZRHgPraiXNU=) 2: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (hash: zqFlnoiRJ96ipkTg+cLy44fvbC4N/hd7GgD9UC/f7t4=) 3: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (hash: ldho/4dcBhvMSFZNQSotx0OQwqa0gAe9if7fkQE4P7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Apr 5 01:15:12 2026 GMT Not After : Apr 12 01:15:12 2026 GMT Subject: CN=69d1b7a1-dff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:52:96:80:02:59:05:d3:02:71:74:d0:34:27: 99:e3:4e:16:59:77:11:30:09:fa:91:2e:aa:01:40: 90:11:d8:f7:ad:c3:94:f8:28:db:90:71:f8:28:ee: 8c:c8:4f:9e:aa:2c:76:5e:d6:7e:ec:41:37:17:98: 3f:93:84:bc:de:16:41:1f:73:42:d0:1f:1a:3b:97: 62:58:4d:62:03:89:6a:76:33:ed:03:dd:6e:8b:63: fe:22:bf:7e:be:3f:5f:e4:13:45:c3:39:94:e9:9a: ac:a8:bf:09:b3:3b:6f:20:f1:88:1d:16:f3:9c:8f: 19:04:c1:ae:3b:a8:88:ee:65:dc:6f:27:eb:da:33: 70:26:b4:99:d0:25:3c:d2:1b:fc:9f:21:99:57:97: 37:c1:98:75:57:cf:0d:ca:d2:95:d8:93:3e:9e:ae: 05:b3:5f:c9:f8:de:1c:19:e4:bd:a9:b7:63:51:8a: e7:ca:cb:91:f5:83:71:c7:63:3f:d2:b7:63:97:37: 5c:7c:48:1f:7e:77:9d:3b:a4:7e:48:bc:fa:8f:31: 1e:bb:65:e9:17:54:27:20:9f:d1:6e:41:9b:ca:96: e4:bf:f4:b1:88:1a:df:33:52:7d:2f:f7:9c:be:7c: 72:f3:77:2e:8e:56:d7:cc:1b:9f:0c:d5:24:f1:a6: 4e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:99:D6:CF:17:50:B1:15:6D:60:9A:85:7C:F3:78:C5:F3:02:CE:EC X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:4a:18:e6:bc:cd:14:22:0b:f7:b5:85:6d:71:71:a6:ad:3b: db:16:34:6f:eb:49:66:5b:21:2a:4b:b1:b2:18:72:6b:d6:a6: a4:e4:1a:df:6e:68:de:df:81:f0:ea:29:4f:28:d0:45:47:b9: e8:c0:00:da:26:46:7e:fa:29:fa:79:ef:18:3e:c6:c7:b3:71: ed:48:55:71:41:81:aa:ff:eb:ea:3a:0f:87:8f:0c:6a:3c:ff: 05:d2:06:c3:99:b1:44:b4:cf:60:07:29:41:d2:8b:4d:d7:85: 61:bf:33:d1:ac:5b:c4:5d:59:53:ec:b0:32:fa:16:40:c5:ba: 8e:35:b8:08:9b:2d:96:53:fc:9e:d7:9c:62:31:12:d4:f3:2a: c0:98:af:90:32:e3:59:7d:1e:58:90:48:36:57:bb:dd:9c:c6: 49:d0:c8:b6:37:49:ee:42:38:eb:9b:c6:ab:52:f0:36:b8:fc: 7f:3e:0e:16:4a:27:12:61:1f:0d:97:06:e8:4f:3c:e7:18:bc: a0:fc:71:c4:f4:c4:b5:86:18:6a:a8:9a:d6:49:cc:09:f6:45: d2:3f:a8:98:c8:b1:50:56:9d:a8:3a:ea:38:7d:62:43:a7:b8: 61:8c:d1:dc:27:2e:47:a9:ca:10:15:c2:1b:f1:f9:1b:12:6e: 86:50:84:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjYwNDA1MDExNTEyWhcNMjYwNDEyMDExNTEyWjAYMRYwFAYD VQQDEw02OWQxYjdhMS1kZmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFKWgAJZBdMCcXTQNCeZ404WWXcRMAn6kS6qAUCQEdj3rcOU+CjbkHH4KO6M yE+eqix2XtZ+7EE3F5g/k4S83hZBH3NC0B8aO5diWE1iA4lqdjPtA91ui2P+Ir9+ vj9f5BNFwzmU6ZqsqL8JsztvIPGIHRbznI8ZBMGuO6iI7mXcbyfr2jNwJrSZ0CU8 0hv8nyGZV5c3wZh1V88NytKV2JM+nq4Fs1/J+N4cGeS9qbdjUYrnysuR9YNxx2M/ 0rdjlzdcfEgffnedO6R+SLz6jzEeu2XpF1QnIJ/RbkGbypbkv/SxiBrfM1J9L/ec vnxy83cujlbXzBufDNUk8aZOewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCCZ1s8X ULEVbWCahXzzeMXzAs7sMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdUoY5rzNFCIL97WFbXFxpq072xY0b+tJZlshKkuxshhya9ampOQa325o3t+B 8OopTyjQRUe56MAA2iZGfvop+nnvGD7Gx7Nx7UhVcUGBqv/r6joPh48Majz/BdIG w5mxRLTPYAcpQdKLTdeFYb8z0axbxF1ZU+ywMvoWQMW6jjW4CJstllP8ntecYjES 1PMqwJivkDLjWX0eWJBINle73ZzGSdDItjdJ7kI465vGq1LwNrj8fz4OFkonEmEf DZcG6E885xi8oPxxxPTEtYYYaqia1knMCfZF0j+omMixUFadqDrqOH1iQ6e4YYzR 3CcuR6nKEBXCG/H5GxJuhlCEhQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:04 2026 by rpki-client