$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: qcLZkGFLvnHWc51Lm0xUYFgoWdYxLc9PDEDDwHdMpe8= Subject key identifier: D7:97:98:48:24:D4:62:46:97:7E:18:2C:2B:0A:79:F7:18:1A:68:40 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 91 Signing time: Sun 05 Apr 2026 06:51:24 +0000 Manifest this update: Sun 05 Apr 2026 06:51:23 +0000 Manifest next update: Sun 12 Apr 2026 06:51:23 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: tF0gj6sU4hvL9G4Q/MA/HvOGo6lJ526JTa2oQ10I1d8=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: weUBuaqXjk5/5+ZvfK6KOqbWfTtXBnBwNWpgK2K7P90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Apr 5 06:51:23 2026 GMT Not After : Apr 12 06:51:23 2026 GMT Subject: CN=69d2066c-361b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:cd:29:5b:3e:50:67:e5:98:64:a4:60:35:61: f8:e3:7f:07:9c:63:84:40:4c:71:ad:03:23:9a:5a: 12:96:96:d8:c2:2b:16:7c:ac:5d:4e:53:b1:a5:09: 97:4a:48:ea:cf:c9:63:0a:c0:16:3b:c9:30:46:44: d1:96:81:4e:fb:a6:d8:64:da:87:fe:f2:d6:3d:47: 09:d1:79:b9:2a:67:7e:09:48:08:02:e8:7a:a8:d4: 72:66:0b:a1:a7:2c:ad:ad:a5:9e:d1:b7:37:56:fc: f0:2d:45:18:f9:67:5e:ab:97:8b:3a:fc:43:d3:47: 5b:40:f8:1b:bd:b7:50:8f:b4:32:44:24:32:b4:81: 89:38:b1:9e:ba:de:36:1e:11:de:1c:b8:78:6f:48: 1c:91:03:56:04:d8:4a:88:d7:b0:2d:9e:65:b0:ec: 48:d7:d5:8a:98:1a:37:41:69:aa:ba:68:6f:b4:cc: 48:9b:55:8d:e0:a3:e9:c9:22:b8:f9:7c:18:bb:c4: 2f:70:13:67:7d:29:58:81:d5:14:27:4a:40:0f:6c: 61:eb:ca:67:f1:20:d7:01:3e:d2:20:e4:76:25:4d: 64:fe:3a:1d:32:12:f0:c0:f1:dd:9b:31:f1:70:f4: 83:db:ed:c1:26:4e:c3:80:c3:96:e9:93:4a:b9:56: cd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:97:98:48:24:D4:62:46:97:7E:18:2C:2B:0A:79:F7:18:1A:68:40 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:58:7a:fe:1c:89:b1:af:55:d0:3b:2f:af:5f:e7:40:76:8e: 8b:28:84:2c:78:65:41:ac:b9:f5:2e:e2:97:db:06:79:f8:44: 48:c0:5d:cf:73:71:bd:98:10:bc:4f:65:8a:73:30:5f:7b:fc: 99:65:e2:a4:66:78:1e:62:35:a7:16:de:68:49:5f:c9:c6:82: b7:6a:85:52:5c:26:14:63:82:79:46:31:65:37:85:89:2b:2d: 4c:02:b7:3f:fc:72:44:69:59:bb:ef:9b:91:65:92:eb:97:4e: e3:f8:90:91:f6:8d:ea:3f:fb:5b:22:66:36:98:23:9d:ea:0f: 7a:2b:0d:c0:a2:b9:f1:6c:70:dd:4f:57:cc:6b:a0:8d:92:67: 3e:e2:3d:45:3f:ad:b2:f4:7d:53:28:fa:06:87:c4:92:8f:c1: f8:38:af:e3:e0:e6:e5:44:8c:78:03:2a:c2:34:82:31:7d:c3: de:7d:96:92:15:b7:b9:d7:e9:9d:d0:fb:23:6c:42:84:9b:37: 8a:3a:93:de:e9:70:07:d6:f5:86:fa:97:e0:89:2b:4d:d5:89: 5d:d9:a1:b5:1e:6f:44:8b:92:e1:72:11:a9:c9:68:3c:0d:06: 63:ba:2a:ea:ee:2d:4e:7c:13:07:f4:32:1b:50:22:14:72:05: a1:b3:92:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEQTUxMTAvBgNVBAUTKEQ0MjU2RURDMkJDMTFDODQ1REI1MDdCN0MwQTg5MzU0 NDYyRUI2M0QwHhcNMjYwNDA1MDY1MTIzWhcNMjYwNDEyMDY1MTIzWjAYMRYwFAYD VQQDEw02OWQyMDY2Yy0zNjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj80pWz5QZ+WYZKRgNWH4438HnGOEQExxrQMjmloSlpbYwisWfKxdTlOxpQmX Skjqz8ljCsAWO8kwRkTRloFO+6bYZNqH/vLWPUcJ0Xm5Kmd+CUgIAuh6qNRyZguh pyytraWe0bc3VvzwLUUY+Wdeq5eLOvxD00dbQPgbvbdQj7QyRCQytIGJOLGeut42 HhHeHLh4b0gckQNWBNhKiNewLZ5lsOxI19WKmBo3QWmqumhvtMxIm1WN4KPpySK4 +XwYu8QvcBNnfSlYgdUUJ0pAD2xh68pn8SDXAT7SIOR2JU1k/jodMhLwwPHdmzHx cPSD2+3BJk7DgMOW6ZNKuVbN2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNeXmEgk 1GJGl34YLCsKefcYGmhAMB8GA1UdIwQYMBaAFNQlbtwrwRyEXbUHt8Cok1RGLrY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERBNS9DNTU5NDI0QTU3 MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJUmR0UWUzd0tpVFZFWXV0 ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DNTU5NDI0QTU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJ UmR0UWUzd0tpVFZFWXV0ajAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANlh6/hyJsa9V0Dsvr1/nQHaOiyiELHhlQay59S7il9sGefhESMBdz3NxvZgQ vE9linMwX3v8mWXipGZ4HmI1pxbeaElfycaCt2qFUlwmFGOCeUYxZTeFiSstTAK3 P/xyRGlZu++bkWWS65dO4/iQkfaN6j/7WyJmNpgjneoPeisNwKK58Wxw3U9XzGug jZJnPuI9RT+tsvR9Uyj6BofEko/B+Div4+Dm5USMeAMqwjSCMX3D3n2WkhW3udfp ndD7I2xChJs3ijqT3ulwB9b1hvqX4IkrTdWJXdmhtR5vRIuS4XIRqcloPA0GY7oq 6u4tTnwTB/QyG1AiFHIFobOSdQ== -----END CERTIFICATE-----Generated at Mon Apr 6 15:14:34 2026 by rpki-client