$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: /0jpzvjR39taFoterfkuIlx3I/hHbUwGyXr8aMziu2o= Subject key identifier: 9A:FD:30:96:97:A9:57:53:81:18:FF:EF:2E:1D:E9:01:4F:6A:DD:2A Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 0243 Signing time: Sun 05 Apr 2026 02:02:30 +0000 Manifest this update: Sun 05 Apr 2026 02:02:30 +0000 Manifest next update: Sun 12 Apr 2026 02:02:30 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: 1dcnDPD7kck2m8LFLAKAgdJ+D/4hYO6QmbGtmDMBAmY=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: y+Wimi0nOKR+CCaPEyUVlyF7NSoOO3qXylD3M4nU6+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Apr 5 02:02:30 2026 GMT Not After : Apr 12 02:02:30 2026 GMT Subject: CN=69d1c2b6-e665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:33:e9:51:c5:ca:25:23:09:d8:9f:a9:0a:c7: 5b:c0:ec:b7:9e:89:da:1f:b3:d0:ae:22:32:2f:d8: df:2e:3c:3e:48:58:0b:36:13:5b:5e:27:6a:82:e4: 9a:56:21:35:76:9a:22:ce:bc:e4:83:98:24:1a:a9: 9f:45:a6:a1:e7:85:1e:a2:b9:4b:a4:5b:2e:1a:ea: ad:0f:01:01:b0:54:71:e3:1e:ea:1e:bf:9b:83:79: 94:c1:17:57:7c:22:07:a1:28:34:c6:db:b3:ae:d1: 01:f1:51:e5:c7:c7:59:25:53:84:58:da:89:ca:87: 9b:b8:e7:99:83:94:c6:4a:9c:35:07:d3:20:f3:e8: 0d:39:69:e2:0e:af:78:fa:80:b7:97:65:15:87:ea: c8:14:9f:29:4d:d6:ad:f6:9c:e9:5a:d3:e7:90:c3: 66:00:a7:7b:78:fc:03:56:50:da:a4:4f:3e:63:e9: a5:08:df:73:6f:67:2b:63:f2:98:e8:80:37:0e:33: d6:ab:1d:48:1e:c4:5d:60:44:60:05:19:b4:89:66: 39:ab:45:5f:28:0a:7e:cd:e5:91:0d:a6:23:c1:6a: 12:54:c8:cd:57:cb:12:e2:48:62:ae:73:37:b2:cc: 9b:5e:9e:fa:0d:4a:83:e4:dc:66:ee:fb:9a:b5:92: 3a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:FD:30:96:97:A9:57:53:81:18:FF:EF:2E:1D:E9:01:4F:6A:DD:2A X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:59:3a:47:ad:91:c7:68:a8:3e:30:c3:c6:66:d9:13:f6:c6: 28:1f:d0:e0:19:10:19:6d:9e:bb:b5:c4:17:48:4c:71:45:6d: 39:20:95:44:ae:31:62:6f:8c:75:f6:f1:d4:17:d0:66:97:e8: 56:c4:39:07:76:d9:8b:c0:ea:a4:a3:e2:9a:28:9d:f0:d8:7f: aa:b1:c3:c4:fb:fb:b8:d6:b1:c0:59:1d:71:b5:5b:63:28:7a: f2:30:03:06:3d:8a:d8:b4:42:ed:bd:6d:e1:a1:67:82:cf:21: d8:91:e1:09:7d:36:2a:d4:2c:36:66:5d:64:8e:dc:4f:c5:bc: 5a:a7:e6:08:10:7b:db:5f:96:a1:0b:e7:53:e3:c9:c2:47:55: 46:b5:bb:98:93:8d:5b:00:fa:84:fc:d8:ed:4b:9c:ee:f4:1e: 3d:62:4a:a8:f3:04:76:03:8c:12:d1:9c:ec:b3:6b:ce:a7:e5: f3:4c:20:f4:19:e9:09:7f:65:f1:46:76:f6:a4:f9:f8:60:85: 57:27:ba:da:78:b6:63:b5:ec:ae:23:b2:ec:64:64:20:de:0d: 2b:d4:59:3b:21:37:9b:f8:9e:86:46:6b:6f:9b:61:70:47:8a: 93:a7:4a:81:c4:63:d9:e2:a2:3a:cf:c3:b2:6a:74:4b:c5:3e: 25:3e:47:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjYwNDA1MDIwMjMwWhcNMjYwNDEyMDIwMjMwWjAYMRYwFAYD VQQDEw02OWQxYzJiNi1lNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTPpUcXKJSMJ2J+pCsdbwOy3nonaH7PQriIyL9jfLjw+SFgLNhNbXidqguSa ViE1dpoizrzkg5gkGqmfRaah54UeorlLpFsuGuqtDwEBsFRx4x7qHr+bg3mUwRdX fCIHoSg0xtuzrtEB8VHlx8dZJVOEWNqJyoebuOeZg5TGSpw1B9Mg8+gNOWniDq94 +oC3l2UVh+rIFJ8pTdat9pzpWtPnkMNmAKd7ePwDVlDapE8+Y+mlCN9zb2crY/KY 6IA3DjPWqx1IHsRdYERgBRm0iWY5q0VfKAp+zeWRDaYjwWoSVMjNV8sS4khirnM3 ssybXp76DUqD5Nxm7vuatZI6RQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJr9MJaX qVdTgRj/7y4d6QFPat0qMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoFk6R62Rx2ioPjDDxmbZE/bGKB/Q4BkQGW2eu7XEF0hMcUVtOSCVRK4xYm+M dfbx1BfQZpfoVsQ5B3bZi8DqpKPimiid8Nh/qrHDxPv7uNaxwFkdcbVbYyh68jAD Bj2K2LRC7b1t4aFngs8h2JHhCX02KtQsNmZdZI7cT8W8WqfmCBB721+WoQvnU+PJ wkdVRrW7mJONWwD6hPzY7Uuc7vQePWJKqPMEdgOMEtGc7LNrzqfl80wg9BnpCX9l 8UZ29qT5+GCFVye62ni2Y7XsriOy7GRkIN4NK9RZOyE3m/iehkZrb5thcEeKk6dK gcRj2eKiOs/Dsmp0S8U+JT5HHQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:06 2026 by rpki-client