$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: KPuEDNvVoeq4IPAMNJqXKTtMpaPuRjXo2eXSB+9ehuk= Subject key identifier: 65:2F:A5:B3:18:2F:DE:15:FE:17:4D:4B:6D:36:5A:74:4C:09:AE:D4 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 0122 Signing time: Sun 05 Apr 2026 05:12:49 +0000 Manifest this update: Sun 05 Apr 2026 05:12:49 +0000 Manifest next update: Sun 12 Apr 2026 05:12:49 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: 0pR2n1jMgNBzKaCC1fr/rmcwRS0OHbSJEosb+tXvjqA=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: /vNUIQMQmo/+bpr7T8qr5NTsbD+Gg65QmwR+l9u79do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Apr 5 05:12:49 2026 GMT Not After : Apr 12 05:12:49 2026 GMT Subject: CN=69d1ef51-94e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:51:a1:7e:60:fe:8d:59:80:3c:c3:4e:49:9c: 39:ed:52:18:27:78:76:5c:f9:02:d2:3e:a5:e8:1e: c2:c3:fb:bf:8b:ed:a6:11:bb:eb:a0:1d:36:b4:d8: e6:2d:8c:4a:b0:b7:36:8b:af:4a:47:8a:a2:b0:2e: b0:1e:a5:3d:46:7d:f3:ad:58:a9:83:f9:8b:c1:52: 84:36:49:eb:dc:a0:ef:9a:ba:97:02:39:a3:d3:78: 0c:90:1d:e9:b9:c6:69:c4:30:3b:8e:67:18:78:ab: f1:98:8d:30:29:73:73:b0:2e:a6:97:95:03:6c:d9: d4:95:ac:34:8a:7a:af:99:93:87:c6:8e:f6:4f:b0: 27:d9:42:77:7f:04:0b:4e:31:8c:53:18:6c:cd:27: ce:a1:56:1b:e9:9f:a9:14:0a:0b:ec:de:97:44:bc: c5:a5:03:00:ef:f1:d3:d5:ac:ca:92:ae:fd:c9:e7: 52:dd:32:0a:28:5b:43:e0:84:f4:00:06:b8:a9:96: 70:43:a7:a0:54:77:dc:2b:87:63:29:d7:39:cc:e6: 50:0e:02:67:1a:07:94:bf:ab:c3:5c:ae:6a:de:1b: e4:80:31:59:0a:2c:42:cd:3a:df:18:8c:51:1a:79: 34:e5:50:b5:99:51:8f:ff:46:74:7f:8a:68:9e:5d: d2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2F:A5:B3:18:2F:DE:15:FE:17:4D:4B:6D:36:5A:74:4C:09:AE:D4 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:8f:99:5b:71:af:26:97:11:5f:71:ea:2b:26:f4:6d:49:ab: a2:94:5a:b9:70:96:6b:6a:21:70:b3:8b:e1:07:03:46:98:56: 4f:85:cc:95:0a:39:b6:60:ea:e9:e8:2d:27:43:a1:c1:06:64: db:4c:15:fc:40:c6:84:12:17:15:48:44:f2:c7:0f:b1:35:1e: 90:6f:4e:f5:a4:ee:4b:a5:a2:fc:a2:8d:a1:4c:3b:30:86:43: 73:36:49:92:b1:29:08:04:b0:d0:d2:5f:f7:30:ae:74:77:c1: 08:35:00:96:98:61:20:3a:11:95:41:1d:23:d5:39:8c:cf:fc: 23:61:30:28:98:7e:a3:41:da:3a:54:f9:32:66:be:7d:b3:cd: 24:93:74:f0:5f:73:83:17:44:2b:ce:38:22:9c:48:6b:33:53: 3d:bf:8a:3c:23:82:18:d0:cd:2d:fa:5f:92:19:41:7d:cc:05: db:31:18:1a:3f:f0:15:bb:05:5f:ea:d9:2b:b1:7d:bb:e5:e0: a8:9c:54:ae:49:1c:e6:40:52:01:ae:c3:b2:0a:f9:a9:70:77: 69:b8:9a:6c:5c:57:23:97:67:27:8d:a3:db:97:44:02:aa:df: 18:c3:32:b7:5b:ac:29:d0:2a:2f:a0:a3:bd:ca:3a:e7:f9:2e: ec:82:5a:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjYwNDA1MDUxMjQ5WhcNMjYwNDEyMDUxMjQ5WjAYMRYwFAYD VQQDEw02OWQxZWY1MS05NGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFGhfmD+jVmAPMNOSZw57VIYJ3h2XPkC0j6l6B7Cw/u/i+2mEbvroB02tNjm LYxKsLc2i69KR4qisC6wHqU9Rn3zrVipg/mLwVKENknr3KDvmrqXAjmj03gMkB3p ucZpxDA7jmcYeKvxmI0wKXNzsC6ml5UDbNnUlaw0inqvmZOHxo72T7An2UJ3fwQL TjGMUxhszSfOoVYb6Z+pFAoL7N6XRLzFpQMA7/HT1azKkq79yedS3TIKKFtD4IT0 AAa4qZZwQ6egVHfcK4djKdc5zOZQDgJnGgeUv6vDXK5q3hvkgDFZCixCzTrfGIxR Gnk05VC1mVGP/0Z0f4ponl3SnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGUvpbMY L94V/hdNS202WnRMCa7UMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATI+ZW3GvJpcRX3HqKyb0bUmropRauXCWa2ohcLOL4QcDRphWT4XMlQo5tmDq 6egtJ0OhwQZk20wV/EDGhBIXFUhE8scPsTUekG9O9aTuS6Wi/KKNoUw7MIZDczZJ krEpCASw0NJf9zCudHfBCDUAlphhIDoRlUEdI9U5jM/8I2EwKJh+o0HaOlT5Mma+ fbPNJJN08F9zgxdEK844IpxIazNTPb+KPCOCGNDNLfpfkhlBfcwF2zEYGj/wFbsF X+rZK7F9u+XgqJxUrkkc5kBSAa7Dsgr5qXB3abiabFxXI5dnJ42j25dEAqrfGMMy t1usKdAqL6Cjvco65/ku7IJaXA== -----END CERTIFICATE-----Generated at Mon Apr 6 15:28:20 2026 by rpki-client