$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: 4QNn7r+K3vmZF4f5VVdWzmXitCS8rcHa/qF60S/QC1k= Subject key identifier: 71:AB:DD:05:44:B4:E3:79:CD:4B:86:6B:21:DA:F2:2D:52:D5:D7:3D Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: 010E Signing time: Fri 17 Apr 2026 05:46:19 +0000 Manifest this update: Fri 17 Apr 2026 05:46:19 +0000 Manifest next update: Fri 24 Apr 2026 05:46:19 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: vavr8UZFgvtZOMm+aj+0JfgzF+hy2jlT/QKDkXHajhs=) 2: 4418B6FEFF2E11F09DBB6B6D89EE528E.roa (hash: 3hmprgko0q9FMFEoLpiQRh3laFSikHZ8WhKG0GnJ96U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Apr 17 05:46:19 2026 GMT Not After : Apr 24 05:46:19 2026 GMT Subject: CN=69e1c92b-e461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:03:77:43:d4:55:10:60:4b:fc:45:f2:d6:76: dc:11:16:68:c4:f1:65:82:0f:fb:9e:6f:ae:b5:47: b7:1a:9f:57:4a:f4:cb:16:cb:91:a0:db:f1:77:5f: d2:2d:3e:38:e5:2b:7c:da:b9:ee:fc:4a:6e:32:71: 3a:83:8d:f2:74:9f:30:97:1e:94:b3:a4:6d:08:6c: 6b:b9:f1:d7:2c:61:60:0b:df:88:2c:fc:29:38:4e: 3c:f8:34:30:2a:ef:4a:ef:a2:79:c2:f7:ec:06:b3: 29:07:14:3c:35:b6:b7:5a:ed:6c:29:2f:29:4f:cd: 55:9c:1e:15:e2:06:f4:1e:49:53:c9:c9:73:8e:5d: bf:26:3a:90:b0:e5:7b:84:fa:24:ca:41:29:ed:03: 6e:ac:72:9d:ac:65:c4:9e:84:81:05:08:28:77:88: 16:67:3d:48:74:d8:d0:e4:c5:45:a1:45:1f:0d:05: ae:11:64:0d:b1:f6:13:ea:9a:4a:3b:26:71:dd:5f: 56:f5:63:aa:42:f6:ea:5f:d4:8a:65:ee:24:f9:e3: 10:fc:ea:d6:2b:dd:94:9d:28:23:5d:6b:02:50:1b: 32:5e:32:4d:18:a0:b3:5f:f3:b7:96:25:4f:d8:2b: 20:2b:b8:86:16:8d:81:59:e6:52:9c:52:fc:24:7f: d9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AB:DD:05:44:B4:E3:79:CD:4B:86:6B:21:DA:F2:2D:52:D5:D7:3D X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:d5:0a:95:61:27:3c:e9:9c:36:55:2c:82:18:1c:63:e5:14: 7e:48:61:42:13:67:b9:11:0f:c0:e1:18:fb:87:ee:73:2f:1f: 10:b6:f4:05:11:02:fa:41:f1:85:5b:45:83:36:71:3e:e5:14: 5d:64:c0:c1:b3:3b:61:c3:7f:bf:79:f4:54:3b:93:dd:22:86: 1f:c6:83:e5:5d:61:21:4e:06:b4:b6:e7:bf:e1:5e:44:4d:ee: 2a:b4:23:94:95:40:7f:55:dc:89:0f:fd:cb:ef:18:8c:1b:af: 0f:98:02:d6:52:23:11:2c:29:e3:75:24:b5:7f:a0:c2:03:a2: 3b:cb:f9:bb:6b:19:c6:06:df:bf:97:29:00:4d:b7:07:37:3d: 94:45:08:c0:6d:77:08:bf:c2:3a:28:78:ab:69:54:3d:36:f1: 64:37:74:2b:04:f3:8b:34:e5:44:41:42:3f:0e:06:17:cc:20: d0:79:e0:fe:97:77:67:2c:64:a6:64:b0:3f:06:b3:01:76:ea: 58:85:82:1c:4c:ec:1f:a1:11:57:18:ce:63:1c:31:bb:70:2d: 0d:54:c7:90:83:2f:5a:bc:60:64:4b:7e:e8:0c:12:6c:11:38: ab:64:17:66:f8:37:26:53:82:13:3d:8d:9f:f6:16:7d:e1:77: 40:f9:99:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYxNzkxMTAvBgNVBAUTKEE2MjNEQzA1RUU3QzIzNzBDQTQ0NDMxMDg0REU1MTMy MUYzN0E3MDQwHhcNMjYwNDE3MDU0NjE5WhcNMjYwNDI0MDU0NjE5WjAYMRYwFAYD VQQDEw02OWUxYzkyYi1lNDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgN3Q9RVEGBL/EXy1nbcERZoxPFlgg/7nm+utUe3Gp9XSvTLFsuRoNvxd1/S LT445St82rnu/EpuMnE6g43ydJ8wlx6Us6RtCGxrufHXLGFgC9+ILPwpOE48+DQw Ku9K76J5wvfsBrMpBxQ8Nba3Wu1sKS8pT81VnB4V4gb0HklTyclzjl2/JjqQsOV7 hPokykEp7QNurHKdrGXEnoSBBQgod4gWZz1IdNjQ5MVFoUUfDQWuEWQNsfYT6ppK OyZx3V9W9WOqQvbqX9SKZe4k+eMQ/OrWK92UnSgjXWsCUBsyXjJNGKCzX/O3liVP 2CsgK7iGFo2BWeZSnFL8JH/ZWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHGr3QVE tON5zUuGayHa8i1S1dc9MB8GA1UdIwQYMBaAFKYj3AXufCNwykRDEITeUTIfN6cE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjE3OS80QkZEOUJCQ0FB N0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkzREtSRU1RaE41Uk1oODNw d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkz REtSRU1RaE41Uk1oODNwd1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHNUKlWEnPOmcNlUsghgcY+UUfkhhQhNnuREPwOEY+4fucy8fELb0BREC+kHx hVtFgzZxPuUUXWTAwbM7YcN/v3n0VDuT3SKGH8aD5V1hIU4GtLbnv+FeRE3uKrQj lJVAf1XciQ/9y+8YjBuvD5gC1lIjESwp43UktX+gwgOiO8v5u2sZxgbfv5cpAE23 Bzc9lEUIwG13CL/COih4q2lUPTbxZDd0KwTzizTlREFCPw4GF8wg0Hng/pd3Zyxk pmSwPwazAXbqWIWCHEzsH6ERVxjOYxwxu3AtDVTHkIMvWrxgZEt+6AwSbBE4q2QX Zvg3JlOCEz2Nn/YWfeF3QPmZGA== -----END CERTIFICATE-----Generated at Sat Apr 18 21:06:06 2026 by rpki-client