$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: P7OnRs6gO+ubsKBUM3HBnIn1mzvAw2Y3Y2wRjl1oJSk= Subject key identifier: DF:1D:35:90:2E:B0:BF:FD:2A:4E:14:2F:1B:2A:80:BC:A3:0E:5D:9D Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: FE Signing time: Sun 05 Apr 2026 05:36:57 +0000 Manifest this update: Sun 05 Apr 2026 05:36:56 +0000 Manifest next update: Sun 12 Apr 2026 05:36:56 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: GbrHCYu4MOIt57gFnJEDXKFxAvgnqowS21nTXbrTpG4=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: v6BylN14fOxA4ftijT2xm8ugkwjC+LIOM8D065x7bmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Apr 5 05:36:56 2026 GMT Not After : Apr 12 05:36:56 2026 GMT Subject: CN=69d1f4f9-aa0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3d:08:c2:3f:60:ca:27:6c:0f:25:52:4c:58: 7c:ee:58:13:a2:b6:4e:49:dd:4b:48:61:66:23:81: aa:bc:f2:a5:75:20:56:5d:47:6d:72:28:6c:cb:e4: 01:ca:b9:37:cd:6c:57:4c:92:9a:f8:40:1f:49:81: a6:f7:76:92:fa:a0:0b:b1:33:4b:0e:b3:54:36:76: 32:3a:b6:4f:91:5d:6f:b2:bd:3d:f7:f2:9e:80:eb: cf:a2:86:97:d5:e4:02:a7:4a:0b:a2:d8:d7:9c:02: 61:fe:e4:65:41:bf:22:87:a4:d2:e2:29:62:52:cf: f9:39:0f:5a:2b:c0:e4:6b:a4:3e:fa:89:d9:40:a5: 1d:ec:67:13:59:b3:f0:19:d3:a6:67:1e:1a:c5:2d: b8:f0:9d:4b:1f:f6:c4:67:12:b9:7b:20:98:17:5e: a0:c8:22:84:f6:41:6b:b7:e3:94:9a:a3:e0:67:69: 8a:3f:09:63:9f:56:aa:ae:5d:9e:13:51:bb:21:c2: 80:e9:e0:83:89:4b:1d:31:c1:70:33:b9:04:dc:ad: ce:23:be:42:08:91:1b:10:77:46:9f:2c:21:35:c2: e7:f8:37:96:79:4e:5a:ed:57:da:ca:d5:8e:21:e3: e5:4f:64:40:df:5b:58:f4:6d:40:59:f4:ba:65:75: ee:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:1D:35:90:2E:B0:BF:FD:2A:4E:14:2F:1B:2A:80:BC:A3:0E:5D:9D X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c4:da:4b:b8:ad:a9:00:09:58:f6:27:d9:a6:a4:0e:6d:d8: 37:e7:3a:7f:d4:60:47:9e:0a:b7:eb:1c:14:dc:b7:6b:20:ca: e5:93:ea:1d:0c:61:2a:97:53:8d:ec:7e:f3:cd:8f:21:f8:52: fa:a2:76:ae:54:32:1c:33:33:81:b1:ed:06:a4:ca:7b:27:ce: 73:cc:22:90:6a:44:05:7f:c0:c0:b4:c0:9f:e9:1d:0c:45:44: 5c:b9:73:37:e3:0a:d4:fb:7f:fc:a9:b1:19:2b:71:9e:48:b5: 40:2a:c1:d1:a0:64:5f:c7:7b:4c:55:17:00:77:81:ee:48:bb: 8b:ef:a3:f5:f5:47:ae:62:65:dd:8e:d7:f6:4e:c4:6d:d4:fe: f5:bf:c3:5e:0a:98:b3:01:c6:9c:29:5b:a8:f3:9e:e7:3a:d1: bd:59:0a:b7:2d:7c:55:b6:a2:a8:ac:ea:70:41:f9:67:93:13: cb:96:e5:e7:c9:64:67:6a:08:a9:71:fd:94:44:e0:83:66:6c: dc:b3:3e:a2:0a:7d:84:df:7b:ad:87:dd:f7:cb:aa:9a:7a:0d: 6f:8d:a7:56:c4:c4:12:3d:97:38:01:c1:4d:e8:56:1c:ee:75: 33:5c:7c:36:63:c3:c8:6f:4a:56:71:de:32:32:c6:0b:68:df: 61:41:2e:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEI0RDIxNzkzOUEyNzUxOTM4RTA3NjU5QTc5NDg4NUE5 Qzg4NDE5MTkwHhcNMjYwNDA1MDUzNjU2WhcNMjYwNDEyMDUzNjU2WjAYMRYwFAYD VQQDEw02OWQxZjRmOS1hYTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqj0Iwj9gyidsDyVSTFh87lgTorZOSd1LSGFmI4GqvPKldSBWXUdtcihsy+QB yrk3zWxXTJKa+EAfSYGm93aS+qALsTNLDrNUNnYyOrZPkV1vsr099/KegOvPooaX 1eQCp0oLotjXnAJh/uRlQb8ih6TS4iliUs/5OQ9aK8Dka6Q++onZQKUd7GcTWbPw GdOmZx4axS248J1LH/bEZxK5eyCYF16gyCKE9kFrt+OUmqPgZ2mKPwljn1aqrl2e E1G7IcKA6eCDiUsdMcFwM7kE3K3OI75CCJEbEHdGnywhNcLn+DeWeU5a7VfaytWO IePlT2RA31tY9G1AWfS6ZXXuBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN8dNZAu sL/9Kk4ULxsqgLyjDl2dMB8GA1UdIwQYMBaAFLTSF5OaJ1GTjgdlmnlIhanIhBkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy81MEJEMjMwRUIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVaT09CMldhZVVpRnFjaUVH UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy81MEJEMjMwRUIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVa T09CMldhZVVpRnFjaUVHUmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANMTaS7itqQAJWPYn2aakDm3YN+c6f9RgR54Kt+scFNy3ayDK5ZPqHQxhKpdT jex+882PIfhS+qJ2rlQyHDMzgbHtBqTKeyfOc8wikGpEBX/AwLTAn+kdDEVEXLlz N+MK1Pt//KmxGStxnki1QCrB0aBkX8d7TFUXAHeB7ki7i++j9fVHrmJl3Y7X9k7E bdT+9b/DXgqYswHGnClbqPOe5zrRvVkKty18VbaiqKzqcEH5Z5MTy5bl58lkZ2oI qXH9lETgg2Zs3LM+ogp9hN97rYfd98uqmnoNb42nVsTEEj2XOAHBTehWHO51M1x8 NmPDyG9KVnHeMjLGC2jfYUEujQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:05 2026 by rpki-client