$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: lSXN3XPQfmhug+ccXRirQK6/dDFimkaAck4SL/A0Oec= Subject key identifier: 59:6C:FD:A9:23:28:08:33:3D:7A:B4:0D:D3:D2:6F:A3:17:9E:B2:CD Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2E39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2E14 Signing time: Sat 04 Apr 2026 15:27:02 +0000 Manifest this update: Sat 04 Apr 2026 15:27:01 +0000 Manifest next update: Sat 11 Apr 2026 15:27:01 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: 2MDIpIHn6eigZ8vkal+9U0WjTUajSML9L7ZFlbkvddw=) 2: F2AE85D6128E11F1BA652BAD3A3D8C67.roa (hash: N17i/Vo6qq4GynkhbHnkWbsIC9qgwD2VSBbjxJt5D3I=) 3: 0F6B8D969A6B11F08E49AE43C4F9AE02.roa (hash: VFEJ2pC2bmVwEIh9Ul33fbeRMTH5fCAYFl8iU/+lajY=) 4: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: /EIrPIM51/gSZuhZi7PXLaV6H0Mn6QzhbGDSyj34JEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11833 (0x2e39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Apr 4 15:27:01 2026 GMT Not After : Apr 11 15:27:01 2026 GMT Subject: CN=69d12dc6-fad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cf:7a:c2:09:3d:4c:e0:95:66:da:10:60:26: 23:43:ce:19:7c:06:0f:41:65:98:45:37:86:a8:8c: 5e:03:d3:17:8e:17:69:cb:1f:c1:8a:67:51:a1:50: 9a:7b:99:29:a1:0b:18:2c:86:0b:8d:d3:01:38:23: 00:97:70:f7:f3:dd:6b:de:39:cb:a1:84:ac:6f:17: 55:d8:47:f9:4d:c9:55:82:e4:66:33:eb:45:b8:74: 14:aa:10:22:1a:49:23:4b:90:ee:98:35:a9:68:fa: d4:8a:f1:94:23:ed:9e:0d:b2:12:59:30:81:01:b4: 08:ff:12:62:cd:f0:85:99:c4:af:bf:f0:95:f2:84: e6:76:1a:48:1c:5e:2d:99:0a:59:25:4b:d0:97:36: 3c:48:44:d3:31:b6:73:bf:76:ff:24:7f:6a:8e:a7: 9c:09:d2:b8:09:2f:17:1a:57:e4:f1:df:00:71:aa: dd:07:a7:46:05:cc:f3:2d:23:9c:23:a1:f4:e6:cc: 04:0a:cb:80:2e:0e:21:d7:42:93:4d:12:c6:43:0a: fc:8a:77:e2:41:b9:7e:25:5f:af:8e:c6:6d:f2:72: b5:d8:b4:cb:e4:09:c9:f2:13:07:cd:32:f2:58:ab: 65:cc:a5:bf:24:da:39:76:e7:30:ac:2d:68:79:84: 12:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6C:FD:A9:23:28:08:33:3D:7A:B4:0D:D3:D2:6F:A3:17:9E:B2:CD X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:4c:2a:ea:13:d0:dd:f9:5b:66:60:8d:49:20:7c:ed:84:13: 5f:2d:32:fc:fa:9d:cb:4f:c3:82:19:e7:d8:57:86:62:15:13: fa:1c:61:93:43:34:bf:81:17:48:fa:a9:e1:69:5b:39:2d:f7: 50:3a:ee:6a:35:14:4a:15:75:ad:c6:5d:ae:6a:2d:d9:d5:c0: 70:eb:d4:21:32:f9:df:50:4a:01:75:db:a6:44:68:c0:8d:64: 2f:ff:40:47:e7:03:b1:31:c8:05:1e:66:e0:c5:20:26:44:9d: 9f:47:4c:f9:6d:b2:f9:93:64:53:d7:f3:71:d5:53:0f:39:91: 96:77:91:03:ce:28:7e:7a:4b:7c:b1:64:32:49:c1:29:4a:07: b9:ef:a9:ae:59:86:34:6f:cc:c2:59:f8:a4:98:1f:2c:bf:09: 70:5b:17:5b:19:b5:09:1a:a1:38:9d:0b:47:b6:e7:6b:ab:25: f6:1b:4d:55:3e:f1:6f:8a:98:80:aa:39:fc:40:e0:08:89:a8: 8d:91:1b:5e:37:b1:93:0d:e9:2f:1a:e3:05:b9:cf:ca:f5:7b: f7:80:6e:9c:92:b5:35:a9:a5:78:24:64:7e:d1:c5:f5:ff:ad: 6f:75:7f:a0:a4:e3:ef:a0:4d:14:7f:bf:76:86:09:11:79:e1: ad:2f:ce:a1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjYwNDA0MTUyNzAxWhcNMjYwNDExMTUyNzAxWjAYMRYwFAYD VQQDEw02OWQxMmRjNi1mYWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk896wgk9TOCVZtoQYCYjQ84ZfAYPQWWYRTeGqIxeA9MXjhdpyx/BimdRoVCa e5kpoQsYLIYLjdMBOCMAl3D3891r3jnLoYSsbxdV2Ef5TclVguRmM+tFuHQUqhAi GkkjS5DumDWpaPrUivGUI+2eDbISWTCBAbQI/xJizfCFmcSvv/CV8oTmdhpIHF4t mQpZJUvQlzY8SETTMbZzv3b/JH9qjqecCdK4CS8XGlfk8d8AcardB6dGBczzLSOc I6H05swECsuALg4h10KTTRLGQwr8infiQbl+JV+vjsZt8nK12LTL5AnJ8hMHzTLy WKtlzKW/JNo5ducwrC1oeYQSjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFls/akj KAgzPXq0DdPSb6MXnrLNMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgkwq6hPQ3flbZmCNSSB87YQTXy0y/Pqdy0/Dghnn2FeGYhUT+hxhk0M0v4EX SPqp4WlbOS33UDruajUUShV1rcZdrmot2dXAcOvUITL531BKAXXbpkRowI1kL/9A R+cDsTHIBR5m4MUgJkSdn0dM+W2y+ZNkU9fzcdVTDzmRlneRA84ofnpLfLFkMknB KUoHue+prlmGNG/Mwln4pJgfLL8JcFsXWxm1CRqhOJ0LR7bna6sl9htNVT7xb4qY gKo5/EDgCImojZEbXjexkw3pLxrjBbnPyvV794BunJK1NamleCRkftHF9f+tb3V/ oKTj76BNFH+/doYJEXnhrS/OoQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:48 2026 by rpki-client