$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: XS0Rw+qcZXeefUHKjSYRG+DY7Rbq8jRFp3nRT0oWpl8= Subject key identifier: 2E:61:B4:AA:9B:70:77:ED:AE:49:57:A5:C1:3B:5F:3E:1F:B9:A3:C8 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 07A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 07A8 Signing time: Sat 04 Apr 2026 21:15:48 +0000 Manifest this update: Sat 04 Apr 2026 21:15:47 +0000 Manifest next update: Sat 11 Apr 2026 21:15:47 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: 72qB6JDU4lvv7tlAHoIvKTDgMaR3PVi5JgaASEkp+LI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1960 (0x7a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Apr 4 21:15:47 2026 GMT Not After : Apr 11 21:15:47 2026 GMT Subject: CN=69d17f83-9fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:6e:a0:92:0d:02:49:83:62:e2:fe:d2:97:6f: b3:06:f2:02:cd:32:5e:74:60:37:2f:54:93:06:0c: c2:3c:87:41:b9:9f:ef:29:04:1c:94:16:80:67:33: 45:58:a3:7b:75:a5:a5:bc:53:02:dd:c8:4f:a8:c9: b3:aa:7a:b9:18:27:5b:2d:9e:a2:32:73:b1:7f:8c: 01:c9:a9:04:3b:26:ae:e3:c2:43:73:92:3a:e6:ff: 5c:14:e6:c2:73:1a:7b:99:d9:52:1b:49:9e:f2:b6: 1e:e3:3f:5b:42:a5:46:11:7e:e0:0e:44:9f:25:bf: 64:2a:74:f8:b6:7a:09:1b:f4:7f:d3:22:b7:6e:a8: 36:85:26:4d:cc:5f:c3:a0:8f:8d:4c:51:4b:b8:75: 83:a6:cd:99:8e:9a:a1:ea:c6:a5:a9:88:b6:ba:20: 1d:b5:a2:5e:dd:8a:1a:31:8f:5c:28:73:cf:93:a2: 08:87:c8:c8:a6:c2:a7:f9:0b:48:3e:68:dc:de:7e: c1:86:aa:dc:d4:9e:eb:f5:ca:1a:cd:09:1f:29:54: 42:bf:c0:52:2f:92:c3:ab:50:32:d6:f0:54:6c:20: 52:da:4d:fa:16:13:f5:65:d8:f1:46:bc:3c:24:13: f2:b5:cc:81:30:92:d2:55:5f:f5:24:49:d9:60:f5: 32:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:61:B4:AA:9B:70:77:ED:AE:49:57:A5:C1:3B:5F:3E:1F:B9:A3:C8 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:37:cd:16:ea:40:da:75:22:f0:6a:1e:93:11:9f:84:14:ae: 84:b8:c6:d1:a9:0b:27:f6:4d:f7:66:03:e0:81:47:71:6f:65: 2f:51:6a:84:dc:5f:b7:05:d3:82:11:26:87:e8:47:c6:b0:6f: 6c:3e:48:c3:f2:20:31:ed:dd:bf:de:c3:b7:b2:3b:1e:2b:a3: ad:40:3e:b8:4b:bb:81:c2:d6:59:68:21:78:d1:33:9f:15:6a: 6a:70:38:91:cc:18:69:6c:eb:2d:28:58:81:71:4d:4b:33:8f: bd:ee:5e:b0:89:03:64:01:13:53:04:ed:97:ef:1b:c8:a9:41: 93:70:c3:30:80:31:59:47:99:c4:bb:ff:f8:9d:33:9e:4b:68: 00:71:d2:53:7e:55:17:61:52:66:69:5f:09:13:f5:bb:dd:62: ce:b1:90:33:07:9d:a8:93:f0:98:25:a7:f6:eb:9d:17:49:e7: 5f:18:f9:c5:2e:d7:95:61:d7:23:33:de:74:03:93:54:a4:60: 7f:be:8f:7b:90:f1:c1:db:8c:0a:c1:3d:b6:e9:bb:4d:39:2c: 09:00:bd:9b:3e:ac:03:c8:f0:4f:cf:ce:2e:54:1a:b0:6f:d7: ce:a2:38:f1:19:7d:2e:f6:06:ae:3b:ce:0a:cd:30:40:ac:8d: 78:f8:da:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjYwNDA0MjExNTQ3WhcNMjYwNDExMjExNTQ3WjAYMRYwFAYD VQQDEw02OWQxN2Y4My05ZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj26gkg0CSYNi4v7Sl2+zBvICzTJedGA3L1STBgzCPIdBuZ/vKQQclBaAZzNF WKN7daWlvFMC3chPqMmzqnq5GCdbLZ6iMnOxf4wByakEOyau48JDc5I65v9cFObC cxp7mdlSG0me8rYe4z9bQqVGEX7gDkSfJb9kKnT4tnoJG/R/0yK3bqg2hSZNzF/D oI+NTFFLuHWDps2Zjpqh6salqYi2uiAdtaJe3YoaMY9cKHPPk6IIh8jIpsKn+QtI Pmjc3n7Bhqrc1J7r9coazQkfKVRCv8BSL5LDq1Ay1vBUbCBS2k36FhP1ZdjxRrw8 JBPytcyBMJLSVV/1JEnZYPUyHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC5htKqb cHftrklXpcE7Xz4fuaPIMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApjfNFupA2nUi8GoekxGfhBSuhLjG0akLJ/ZN92YD4IFHcW9lL1FqhNxftwXT ghEmh+hHxrBvbD5Iw/IgMe3dv97Dt7I7HiujrUA+uEu7gcLWWWgheNEznxVqanA4 kcwYaWzrLShYgXFNSzOPve5esIkDZAETUwTtl+8byKlBk3DDMIAxWUeZxLv/+J0z nktoAHHSU35VF2FSZmlfCRP1u91izrGQMwedqJPwmCWn9uudF0nnXxj5xS7XlWHX IzPedAOTVKRgf76Pe5DxwduMCsE9tum7TTksCQC9mz6sA8jwT8/OLlQasG/XzqI4 8Rl9LvYGrjvOCs0wQKyNePjaQA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:39:26 2026 by rpki-client