$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: KU5UKIC0Lid/gHzEZpHUkTqhqfPks0Ue55ZxmCrKvKk= Subject key identifier: 67:8D:3B:24:1E:BA:16:3F:E4:BC:E5:C6:F4:F6:4F:3E:58:2B:49:8F Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 0240 Signing time: Sun 05 Apr 2026 02:03:11 +0000 Manifest this update: Sun 05 Apr 2026 02:03:11 +0000 Manifest next update: Sun 12 Apr 2026 02:03:11 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: J2+FqMfov/sQq1Q9UZ8qSYkbGJSWiEJmV7KihOBHTD4=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: hj+uCG3BczK6y02o1/8ZHFisCvHEGnt+l8aKiIPe2aA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Apr 5 02:03:11 2026 GMT Not After : Apr 12 02:03:11 2026 GMT Subject: CN=69d1c2df-64cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e8:c7:d9:20:33:99:78:1c:e5:05:50:44:ba: 3c:8d:8b:54:b1:08:38:21:78:ce:58:17:97:51:42: 62:38:e6:b3:59:95:8d:4b:e8:5e:25:bd:2e:3d:82: 99:e3:80:93:51:91:5d:8b:31:9c:5b:cf:69:4b:27: fe:63:29:9c:e4:0e:17:68:27:a2:68:c5:d8:19:bc: 22:ea:6a:5e:ce:c4:9f:1b:6a:d7:e4:7d:01:51:ca: 0a:f7:e9:74:80:06:6d:4c:db:95:e8:18:e4:1a:cb: dd:9e:e5:dc:5d:e1:10:55:7e:01:57:35:c5:ac:64: c7:1d:54:c3:71:dd:4a:21:f5:d0:0f:1f:2d:80:04: bb:98:d6:8f:bf:01:52:dd:29:b2:b8:2e:65:f8:d0: ea:2b:fb:3a:99:55:97:94:1a:24:64:ec:2f:82:ff: 29:e4:30:3d:b1:7b:b7:c1:7f:2d:b4:a0:62:b4:24: 87:36:45:a0:0b:44:1c:94:b5:a0:3f:6b:59:4b:02: bf:66:79:53:3d:4b:a0:68:ff:14:a3:34:7f:8f:01: fc:c4:67:96:04:38:1c:1a:ba:6c:35:c3:16:63:ab: 16:7a:f6:42:b8:cc:dc:49:4c:c0:82:a0:7f:51:95: dd:37:89:33:b4:a0:44:5a:2d:d1:3c:04:e0:bd:de: 6e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8D:3B:24:1E:BA:16:3F:E4:BC:E5:C6:F4:F6:4F:3E:58:2B:49:8F X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2d:e2:e3:e5:db:ce:c6:da:b1:1d:d8:86:00:30:ce:9e:37: bb:43:c2:2d:2c:96:42:22:0a:12:7d:37:61:00:7f:a2:4c:27: 07:2e:c2:78:9b:6b:85:56:67:4d:5b:b4:59:a0:b6:e3:8a:35: ef:2d:27:4a:e6:ad:7b:23:43:5a:ef:41:a4:7d:6f:d0:ef:9b: 9e:3e:cd:d7:d0:66:61:7a:b0:42:c7:55:76:a7:07:6b:4f:60: 7d:a2:0b:85:8b:bd:7a:5e:43:fd:b4:6e:e7:72:44:cb:f4:98: 65:f9:00:70:5a:68:b1:41:12:69:e5:6e:17:0a:15:50:7c:d5: 66:97:fa:cf:e9:f0:d3:d3:11:7b:09:2a:39:86:36:a2:53:d5: c9:75:f9:9c:a8:a0:59:bd:bc:22:b6:d2:2b:47:14:5f:37:a5: 6b:2f:6a:92:6d:4b:59:85:43:74:fe:a2:ed:d7:87:ab:4c:d8: 10:10:b0:20:b1:e8:9d:ec:6a:83:74:35:50:db:da:d7:07:17: 09:ef:bc:87:07:46:f0:bd:7e:69:69:14:7e:e3:d7:f1:53:a5: 53:c8:bc:02:c9:48:f9:58:2a:15:0c:58:4f:19:f2:d5:47:66: 48:d1:02:39:a7:d2:36:e5:10:56:02:b9:88:04:11:ae:15:7c: 59:f9:8a:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjYwNDA1MDIwMzExWhcNMjYwNDEyMDIwMzExWjAYMRYwFAYD VQQDEw02OWQxYzJkZi02NGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoujH2SAzmXgc5QVQRLo8jYtUsQg4IXjOWBeXUUJiOOazWZWNS+heJb0uPYKZ 44CTUZFdizGcW89pSyf+Yymc5A4XaCeiaMXYGbwi6mpezsSfG2rX5H0BUcoK9+l0 gAZtTNuV6BjkGsvdnuXcXeEQVX4BVzXFrGTHHVTDcd1KIfXQDx8tgAS7mNaPvwFS 3SmyuC5l+NDqK/s6mVWXlBokZOwvgv8p5DA9sXu3wX8ttKBitCSHNkWgC0QclLWg P2tZSwK/ZnlTPUugaP8UozR/jwH8xGeWBDgcGrpsNcMWY6sWevZCuMzcSUzAgqB/ UZXdN4kztKBEWi3RPATgvd5uQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGeNOyQe uhY/5LzlxvT2Tz5YK0mPMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADC3i4+XbzsbasR3YhgAwzp43u0PCLSyWQiIKEn03YQB/okwnBy7CeJtrhVZn TVu0WaC244o17y0nSuateyNDWu9BpH1v0O+bnj7N19BmYXqwQsdVdqcHa09gfaIL hYu9el5D/bRu53JEy/SYZfkAcFposUESaeVuFwoVUHzVZpf6z+nw09MRewkqOYY2 olPVyXX5nKigWb28IrbSK0cUXzelay9qkm1LWYVDdP6i7deHq0zYEBCwILHonexq g3Q1UNva1wcXCe+8hwdG8L1+aWkUfuPX8VOlU8i8AslI+VgqFQxYTxny1UdmSNEC OafSNuUQVgK5iAQRrhV8WfmKCQ== -----END CERTIFICATE-----Generated at Mon Apr 6 15:48:31 2026 by rpki-client