$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: lFoozRK/fV1dIdzxZJ0P9RLvG/iX3RVybV3FYxClUFk= Subject key identifier: 2D:56:BA:21:97:02:95:A8:0D:5B:4A:8F:ED:43:91:8C:51:30:7E:37 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 04AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 049E Signing time: Sat 04 Apr 2026 23:45:50 +0000 Manifest this update: Sat 04 Apr 2026 23:45:49 +0000 Manifest next update: Sat 11 Apr 2026 23:45:49 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: rwChRtHN4aBIeTD88ub0Wc8XoJ4+xBpnFrGALrRRkbs=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: BfgbyrDUSPaDFbvmIvU+wE2M70H25WXoCbwhEXrv7bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Apr 4 23:45:49 2026 GMT Not After : Apr 11 23:45:49 2026 GMT Subject: CN=69d1a2ae-8994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:e0:07:f7:88:12:17:b2:d8:30:38:fe:fc: a1:c7:7b:18:fe:99:05:3b:4d:fb:66:56:80:b4:ce: 62:ec:68:18:26:8b:a1:6d:ed:58:94:ee:2e:56:74: 95:2a:26:38:c4:90:5e:ea:a8:c4:c4:ff:d4:1c:b1: 1d:dc:ea:51:6b:f3:7e:5d:47:31:57:53:d8:ba:93: cb:23:6d:a2:46:9c:51:b4:cf:8c:68:c7:73:45:00: 9f:e5:50:a4:91:14:dc:60:13:4a:3e:5c:42:bc:76: ee:f3:85:e0:40:7b:e0:0c:a8:4d:d7:5d:98:2c:90: 67:da:75:eb:4e:0e:89:32:60:d1:1e:d2:5e:c6:9a: 50:11:6f:01:09:01:69:bd:00:71:9d:ad:c3:79:0d: 14:4e:dd:cc:1c:53:d8:53:c6:64:f0:27:fa:d2:bb: d9:26:bc:eb:5c:8d:73:28:c0:e9:2d:77:25:c4:17: 28:45:18:8a:eb:4f:e3:cc:fa:ab:ff:b1:e8:95:cc: 04:db:73:a8:a8:e1:27:93:b4:57:d3:54:a1:14:65: 10:1b:91:47:d8:9a:f7:e6:a7:6c:de:b9:fb:21:ff: 7f:0d:6f:a9:b1:77:dc:8a:21:06:99:22:5d:f9:80: 04:3f:5f:fb:19:86:05:d5:ce:92:5f:ff:5f:f4:9e: 59:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:56:BA:21:97:02:95:A8:0D:5B:4A:8F:ED:43:91:8C:51:30:7E:37 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:57:15:93:b7:a0:fe:4e:da:2e:2d:72:ec:55:23:3b:39:e8: dd:42:66:8d:21:ac:99:2c:df:21:0a:d5:ac:2b:bd:15:87:db: aa:73:55:a6:7c:00:e8:d4:ab:f8:7b:1f:a2:5b:5c:f2:86:3b: 88:cb:9a:5e:a7:61:ea:05:20:83:f0:e4:24:cf:45:8f:fb:5c: c3:06:88:7d:1e:7f:6d:b9:de:7a:9e:e1:0e:1a:56:e0:5d:92: e2:6b:09:ac:67:c9:8b:ec:5a:bd:6b:89:e2:12:3f:0a:4d:ca: c9:62:7b:fe:94:bb:9f:59:ef:b4:34:91:a9:34:fd:cb:c0:d3: 37:9a:43:b9:73:0c:58:ae:fc:af:d5:89:d6:8e:fc:53:88:b4: bb:45:1f:c1:e7:7f:8e:9a:b7:9a:18:2a:d0:f4:d6:ae:4c:db: ea:90:55:aa:96:19:c1:37:d0:67:e2:d4:71:56:9c:7e:6a:c0: 31:0e:ad:c2:f0:eb:48:7d:ad:9c:65:3f:23:98:f4:67:93:55: 53:d6:2a:76:5f:b1:27:18:87:92:07:fe:89:07:a6:8b:25:e9: 93:d1:24:f9:56:50:0c:0d:20:c3:e8:a4:a6:8f:04:48:8b:a2: 2b:78:05:ca:40:a4:02:90:7f:1b:be:13:69:b1:41:64:bb:77: 90:03:06:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjYwNDA0MjM0NTQ5WhcNMjYwNDExMjM0NTQ5WjAYMRYwFAYD VQQDEw02OWQxYTJhZS04OTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rPgB/eIEhey2DA4/vyhx3sY/pkFO037ZlaAtM5i7GgYJouhbe1YlO4uVnSV KiY4xJBe6qjExP/UHLEd3OpRa/N+XUcxV1PYupPLI22iRpxRtM+MaMdzRQCf5VCk kRTcYBNKPlxCvHbu84XgQHvgDKhN112YLJBn2nXrTg6JMmDRHtJexppQEW8BCQFp vQBxna3DeQ0UTt3MHFPYU8Zk8Cf60rvZJrzrXI1zKMDpLXclxBcoRRiK60/jzPqr /7HolcwE23OoqOEnk7RX01ShFGUQG5FH2Jr35qds3rn7If9/DW+psXfciiEGmSJd +YAEP1/7GYYF1c6SX/9f9J5Z3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC1WuiGX ApWoDVtKj+1DkYxRMH43MB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATVcVk7eg/k7aLi1y7FUjOzno3UJmjSGsmSzfIQrVrCu9FYfbqnNVpnwA6NSr +Hsfoltc8oY7iMuaXqdh6gUgg/DkJM9Fj/tcwwaIfR5/bbneep7hDhpW4F2S4msJ rGfJi+xavWuJ4hI/Ck3KyWJ7/pS7n1nvtDSRqTT9y8DTN5pDuXMMWK78r9WJ1o78 U4i0u0Ufwed/jpq3mhgq0PTWrkzb6pBVqpYZwTfQZ+LUcVacfmrAMQ6twvDrSH2t nGU/I5j0Z5NVU9Yqdl+xJxiHkgf+iQemiyXpk9Ek+VZQDA0gw+ikpo8ESIuiK3gF ykCkApB/G74TabFBZLt3kAMGjg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:05 2026 by rpki-client