$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: zg53N9eNzija8qDGu+lRauLkg2UKEM0qI2pYDVRwRb4= Subject key identifier: 20:67:73:55:6A:ED:D8:10:31:0F:FD:15:21:6D:E1:46:AB:9A:41:87 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0BB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0BB0 Signing time: Sat 04 Apr 2026 18:48:19 +0000 Manifest this update: Sat 04 Apr 2026 18:48:18 +0000 Manifest next update: Sat 11 Apr 2026 18:48:18 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: 8JC4GRt4QCYTe22VyPDr8b1gq4hZ+BvMAjM+Sb8Zq/I=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: zLtKv7KdakETMk2s3XQHHR2CRFWRdDk6mJ+jm4StCoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3000 (0xbb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Apr 4 18:48:18 2026 GMT Not After : Apr 11 18:48:18 2026 GMT Subject: CN=69d15cf3-a05a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ac:21:fa:11:82:1e:e6:df:1d:e7:1d:10:7a: ee:f3:2f:db:65:6d:4b:f2:f5:56:b5:70:a5:10:2d: 3a:d0:27:ed:f8:95:a5:c0:e9:15:70:d6:c9:14:c4: 2f:d8:20:b7:66:6d:2a:c4:32:38:7e:33:96:79:77: c5:d2:a1:50:1f:21:7f:91:2c:72:59:1e:1c:13:ef: da:b4:b5:7a:e5:d4:ec:e5:93:06:f6:16:bc:06:ef: 6b:61:01:c9:e6:31:19:95:0a:76:24:9e:85:1e:ac: fd:4c:a6:e7:46:8e:2b:51:59:9f:44:b3:4e:d9:c6: d8:4a:7d:65:a4:43:75:0e:06:31:9d:f8:24:63:49: 55:ec:bc:cd:7d:fc:9d:86:ed:9a:55:01:84:77:fa: 5b:67:96:8e:8a:fa:87:47:6f:96:6e:0a:11:a7:42: 2e:06:1d:32:ea:dc:b6:6e:df:5e:b7:71:39:71:00: 94:17:c6:92:20:c3:3c:ec:b3:97:03:54:6b:bc:2c: db:9a:c7:bb:47:29:5c:16:f2:9c:b1:c4:47:9e:80: 5d:de:25:8a:07:9b:93:52:b9:65:1f:3d:9e:ec:6a: 83:9a:ae:67:93:fa:58:98:05:52:43:d6:7b:b0:17: 9e:44:2e:b5:b8:dc:b4:72:08:28:35:15:f2:06:74: 25:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:67:73:55:6A:ED:D8:10:31:0F:FD:15:21:6D:E1:46:AB:9A:41:87 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:89:b0:81:95:8c:5e:53:a4:81:19:1a:1d:34:c5:b8:83:af: 12:ee:da:4d:7e:55:c5:be:0c:75:ed:26:36:34:25:4b:48:85: 22:13:ef:0e:11:e7:c3:2e:97:d7:9c:da:43:f9:5b:c3:7b:70: a1:c8:c2:72:84:64:74:fd:94:50:65:3d:1a:bb:57:1b:6b:f0: be:fc:21:ba:37:d0:2f:4f:17:e9:0f:a4:6a:bf:5e:59:ff:14: c5:b5:a4:ef:74:a9:cd:09:f2:44:d9:fa:4a:ea:81:c7:b5:2b: f7:56:5c:79:93:66:2e:68:50:98:bf:01:5e:ae:2e:ad:06:0a: de:51:42:e8:ef:07:70:15:05:62:59:51:59:f6:4d:f9:e7:7d: da:39:a7:0c:fb:20:8a:a7:0d:7f:c9:76:d7:11:f7:19:13:67: 9a:46:f7:77:08:1a:50:31:9b:0c:f1:de:44:b3:43:0e:48:92: 82:1e:11:ea:8c:64:a0:dc:f4:a9:ec:90:51:91:78:5f:f9:9b: 2e:a6:1d:fd:3a:d9:37:3f:5c:d1:c0:4e:c3:9f:f9:d3:7e:a3: 6d:3c:d7:c6:db:97:95:79:09:05:83:6b:21:42:f2:d8:d1:cd: a4:0b:39:b4:c9:38:3f:c9:ab:26:3c:96:ba:4c:7e:7b:88:6c: fb:5f:97:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjYwNDA0MTg0ODE4WhcNMjYwNDExMTg0ODE4WjAYMRYwFAYD VQQDEw02OWQxNWNmMy1hMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwawh+hGCHubfHecdEHru8y/bZW1L8vVWtXClEC060Cft+JWlwOkVcNbJFMQv 2CC3Zm0qxDI4fjOWeXfF0qFQHyF/kSxyWR4cE+/atLV65dTs5ZMG9ha8Bu9rYQHJ 5jEZlQp2JJ6FHqz9TKbnRo4rUVmfRLNO2cbYSn1lpEN1DgYxnfgkY0lV7LzNffyd hu2aVQGEd/pbZ5aOivqHR2+WbgoRp0IuBh0y6ty2bt9et3E5cQCUF8aSIMM87LOX A1RrvCzbmse7RylcFvKcscRHnoBd3iWKB5uTUrllHz2e7GqDmq5nk/pYmAVSQ9Z7 sBeeRC61uNy0cggoNRXyBnQlfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCBnc1Vq 7dgQMQ/9FSFt4UarmkGHMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZomwgZWMXlOkgRkaHTTFuIOvEu7aTX5Vxb4Mde0mNjQlS0iFIhPvDhHnwy6X 15zaQ/lbw3twocjCcoRkdP2UUGU9GrtXG2vwvvwhujfQL08X6Q+kar9eWf8UxbWk 73SpzQnyRNn6SuqBx7Ur91ZceZNmLmhQmL8BXq4urQYK3lFC6O8HcBUFYllRWfZN +ed92jmnDPsgiqcNf8l21xH3GRNnmkb3dwgaUDGbDPHeRLNDDkiSgh4R6oxkoNz0 qeyQUZF4X/mbLqYd/TrZNz9c0cBOw5/5036jbTzXxtuXlXkJBYNrIULy2NHNpAs5 tMk4P8mrJjyWukx+e4hs+1+XKA== -----END CERTIFICATE-----Generated at Mon Apr 6 10:09:35 2026 by rpki-client