$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: kHfUqiiw0HwIttvE1rxuhaP0SB6/PNwXu+G5OXYN3HA= Subject key identifier: 97:E3:E8:D0:AF:8B:1F:54:FB:22:FE:E5:66:71:A9:F5:A0:52:F6:4A Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: 0172 Signing time: Sun 05 Apr 2026 04:09:48 +0000 Manifest this update: Sun 05 Apr 2026 04:09:47 +0000 Manifest next update: Sun 12 Apr 2026 04:09:47 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: HdAUc/H4cnaTg77QE6fB4KaLJWM4MlLffo/cmCJa/PM=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: gniodZiW26i0pPtPVEmHu0kU75H17+92t6W2UhSp/bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: Apr 5 04:09:47 2026 GMT Not After : Apr 12 04:09:47 2026 GMT Subject: CN=69d1e08c-91e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:73:f5:0a:ac:dc:ca:83:f5:1e:16:1e:04:53: e6:bc:b3:6d:61:78:d3:18:a7:7d:38:d0:4d:01:a3: 0d:6f:44:3a:18:59:0d:29:11:08:3c:94:db:52:45: ba:ab:6a:6c:1d:95:d1:b4:ac:7f:41:2d:98:a8:61: b0:d6:d6:ea:4e:09:b2:4f:5a:66:14:ae:af:52:e0: 7a:e8:d1:c2:64:b9:f8:00:7a:d1:05:56:ee:00:c9: a8:a3:87:3d:1a:c5:38:5e:f6:38:69:4d:6a:3d:c0: 37:78:76:a2:30:29:3f:96:cf:92:28:b4:4e:4d:74: c7:8d:d5:aa:9d:3e:bb:76:7e:f5:f8:c6:6d:34:cf: 63:64:c6:f8:b9:3a:e0:fc:2e:75:90:99:9f:4f:6f: f6:3f:00:b9:58:a1:b1:c5:59:47:2d:2a:64:ef:a5: dc:8e:c7:8f:61:f7:47:c5:01:46:91:02:00:d2:88: 3a:77:16:35:2b:67:3c:e7:17:73:34:00:b6:a9:10: 67:64:2b:14:61:b8:1e:ca:1e:35:7a:03:5f:03:e3: 16:5d:27:1e:5b:c0:8e:bf:e9:95:46:99:d2:ad:8d: d1:d8:2a:1a:f5:50:2d:32:84:00:3e:9d:9f:0c:85: 94:ed:04:64:ed:c7:9c:b8:8d:82:35:7b:46:df:fc: e5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E3:E8:D0:AF:8B:1F:54:FB:22:FE:E5:66:71:A9:F5:A0:52:F6:4A X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ba:93:11:21:4a:30:ef:d5:cf:cb:d2:f5:42:4f:64:94:28: 20:1e:c5:13:7b:90:c3:42:16:f8:08:c4:32:ff:c1:5f:13:e4: 56:3a:c1:17:aa:1d:36:06:0d:d8:b3:b5:71:c5:94:da:c2:4f: 68:ba:1d:8a:a2:08:af:d4:c8:e1:c3:e1:b9:f8:b0:b0:ea:dc: 52:1f:ea:ee:e1:18:ac:bf:ae:2b:69:52:f4:9d:38:96:f4:21: ad:09:d7:1b:a1:60:cb:50:db:ca:50:d3:6b:5a:8c:7d:ba:47: e0:50:4d:70:6b:89:44:0c:e0:20:64:86:af:92:50:00:3b:90: 9f:f7:a5:c5:b8:90:a9:89:92:10:c1:43:47:03:43:d3:13:7b: 3b:72:80:82:61:3d:b9:6c:a3:50:a3:af:e7:b6:d6:ee:51:89: 8f:81:e2:ed:f3:ad:55:12:b2:5f:0e:3a:cd:38:76:e2:5a:77: 79:61:85:f3:10:32:ec:39:d5:2c:ca:35:6b:2f:17:77:2a:f7: 3a:6f:ef:49:de:e6:50:10:2b:67:39:85:9e:f9:8f:cc:fd:c6: 3c:45:5b:26:44:0a:fa:3e:88:fe:29:45:58:bc:a1:fd:e6:85: 1a:2e:c4:ad:88:6d:2b:e0:7e:21:38:98:f1:6f:0e:9d:9c:e2: 81:a3:20:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjYwNDA1MDQwOTQ3WhcNMjYwNDEyMDQwOTQ3WjAYMRYwFAYD VQQDEw02OWQxZTA4Yy05MWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXP1CqzcyoP1HhYeBFPmvLNtYXjTGKd9ONBNAaMNb0Q6GFkNKREIPJTbUkW6 q2psHZXRtKx/QS2YqGGw1tbqTgmyT1pmFK6vUuB66NHCZLn4AHrRBVbuAMmoo4c9 GsU4XvY4aU1qPcA3eHaiMCk/ls+SKLROTXTHjdWqnT67dn71+MZtNM9jZMb4uTrg /C51kJmfT2/2PwC5WKGxxVlHLSpk76XcjsePYfdHxQFGkQIA0og6dxY1K2c85xdz NAC2qRBnZCsUYbgeyh41egNfA+MWXSceW8COv+mVRpnSrY3R2Coa9VAtMoQAPp2f DIWU7QRk7cecuI2CNXtG3/zl2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJfj6NCv ix9U+yL+5WZxqfWgUvZKMB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjBEOC8wN0FBQkNEQUZCMTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFt MDRzUkJRWjVjMDlFLWwyWDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX7qTESFKMO/Vz8vS9UJPZJQoIB7FE3uQw0IW+AjEMv/BXxPkVjrBF6odNgYN 2LO1ccWU2sJPaLodiqIIr9TI4cPhufiwsOrcUh/q7uEYrL+uK2lS9J04lvQhrQnX G6Fgy1DbylDTa1qMfbpH4FBNcGuJRAzgIGSGr5JQADuQn/elxbiQqYmSEMFDRwND 0xN7O3KAgmE9uWyjUKOv57bW7lGJj4Hi7fOtVRKyXw46zTh24lp3eWGF8xAy7DnV LMo1ay8Xdyr3Om/vSd7mUBArZzmFnvmPzP3GPEVbJkQK+j6I/ilFWLyh/eaFGi7E rYhtK+B+ITiY8W8OnZzigaMgPA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:08 2026 by rpki-client