$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft File: X60bOb5FVSYiBtGfWmabx7afcsg.mft (raw, json) Hash identifier: TbEeNiai52TYdrCtO5xmNryLlUTqyhK1BDuulbGdR+s= Subject key identifier: 24:D5:8C:07:1B:B8:7F:D6:AC:D7:A0:EC:80:38:01:6F:B7:59:FD:C2 Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 071A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft Manifest number: 0714 Signing time: Sat 04 Apr 2026 21:40:46 +0000 Manifest this update: Sat 04 Apr 2026 21:40:45 +0000 Manifest next update: Sat 11 Apr 2026 21:40:45 +0000 Files and hashes: 1: X60bOb5FVSYiBtGfWmabx7afcsg.crl (hash: oDxGYKW1182qdoKXSSm31+CCbt0q/cXyoLc+p1CK4VA=) 2: C4245600E55A11ED98D38780C4F9AE02.roa (hash: aSLv1C+EyXbwK3DnNjnFTX370d6LHK+MnR49e8euTIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1818 (0x71a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Apr 4 21:40:45 2026 GMT Not After : Apr 11 21:40:45 2026 GMT Subject: CN=69d1855d-b2a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bf:9b:ae:99:b0:e9:c5:da:27:02:7f:fd:e3: 48:e0:5b:5f:1b:1d:a1:76:4f:8a:65:49:3e:c4:b5: 46:43:93:ae:0d:40:c7:ce:38:e7:c6:aa:1b:9f:f5: d9:fd:95:4d:a8:4c:94:76:0a:1e:a0:89:57:6a:7c: 8d:2e:b7:86:42:64:d1:7d:32:12:12:4f:c9:d2:dd: 95:e0:70:a4:f6:e1:ff:2c:8c:0a:68:cd:9f:5c:4d: 96:24:23:4e:8b:82:76:0d:2e:32:0f:95:f2:42:13: 78:24:1e:83:e4:28:d8:c0:d6:d8:d2:2d:66:d4:57: 25:26:4b:43:ff:1f:f9:15:80:8e:92:56:e0:25:3c: f3:40:8d:27:86:ed:47:bf:13:7b:d2:cf:79:5f:c3: a5:29:d8:35:ba:32:e5:da:29:c2:8f:e4:cc:b8:7a: d2:71:4f:f1:6d:56:6e:39:e8:88:1c:6d:f5:a2:1f: fa:b3:92:db:ac:07:90:04:e3:8b:47:ed:c5:26:9c: 30:f9:e0:4c:41:69:09:a6:d5:0f:0d:35:e2:54:10: a2:e2:29:06:1b:6f:71:95:3b:60:6a:06:cd:7d:d2: c0:6f:9f:a1:e0:fd:77:2a:7d:11:55:61:e7:49:1c: 33:43:5e:8e:3d:ad:00:85:b8:83:cd:17:09:e8:54: 94:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D5:8C:07:1B:B8:7F:D6:AC:D7:A0:EC:80:38:01:6F:B7:59:FD:C2 X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:23:70:65:f7:95:75:0f:fa:e3:3f:1b:4a:fc:ba:05:d6:69: cf:24:5b:17:61:7f:88:3d:dd:99:1e:4e:65:91:e5:2d:f0:e5: a7:41:65:80:1d:8d:db:d5:b0:1a:6b:ee:5c:7e:46:e1:03:dd: 4b:fb:3d:5c:fe:21:05:d3:b3:9c:24:6d:ca:c0:73:42:0f:c6: 5e:3d:9e:cb:fb:29:24:d9:71:f5:8c:9c:ce:29:08:1e:16:a0: c6:09:99:06:eb:bd:28:6a:d4:73:ff:75:fc:31:88:f6:85:d9: 8b:a2:a2:77:82:33:fb:3e:10:92:eb:46:4b:42:07:58:38:64: 65:c9:ec:5f:c1:0b:f2:eb:94:f2:0d:e6:62:5f:ef:6b:e4:a7: 6b:e0:7d:39:16:63:cc:59:d3:eb:82:f6:55:de:73:4e:21:ac: 16:a3:1b:f5:77:1c:5d:33:a6:ac:a5:c5:63:f8:0b:26:53:e5: bd:14:9e:5a:4e:c5:c3:e4:ef:ee:07:41:0b:ec:31:8f:10:b5: 11:42:73:00:a4:1d:2b:f8:83:cf:26:a4:0f:1e:42:bb:d8:15: 57:a4:59:aa:7e:8b:28:0c:8e:ea:72:bb:11:8b:75:6c:aa:78: f3:3f:8e:eb:f3:25:25:f5:46:9b:b6:1b:2b:15:d6:4d:05:32: 41:3f:a5:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjYwNDA0MjE0MDQ1WhcNMjYwNDExMjE0MDQ1WjAYMRYwFAYD VQQDEw02OWQxODU1ZC1iMmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzb+brpmw6cXaJwJ//eNI4FtfGx2hdk+KZUk+xLVGQ5OuDUDHzjjnxqobn/XZ /ZVNqEyUdgoeoIlXanyNLreGQmTRfTISEk/J0t2V4HCk9uH/LIwKaM2fXE2WJCNO i4J2DS4yD5XyQhN4JB6D5CjYwNbY0i1m1FclJktD/x/5FYCOklbgJTzzQI0nhu1H vxN70s95X8OlKdg1ujLl2inCj+TMuHrScU/xbVZuOeiIHG31oh/6s5LbrAeQBOOL R+3FJpww+eBMQWkJptUPDTXiVBCi4ikGG29xlTtgagbNfdLAb5+h4P13Kn0RVWHn SRwzQ16OPa0AhbiDzRcJ6FSUdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCTVjAcb uH/WrNeg7IA4AW+3Wf3CMB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wM0EwMTc4NDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZT WWlCdEdmV21hYng3YWZjc2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACiNwZfeVdQ/64z8bSvy6BdZpzyRbF2F/iD3dmR5OZZHlLfDlp0FlgB2N29Ww GmvuXH5G4QPdS/s9XP4hBdOznCRtysBzQg/GXj2ey/spJNlx9YyczikIHhagxgmZ Buu9KGrUc/91/DGI9oXZi6Kid4Iz+z4QkutGS0IHWDhkZcnsX8EL8uuU8g3mYl/v a+Sna+B9ORZjzFnT64L2Vd5zTiGsFqMb9XccXTOmrKXFY/gLJlPlvRSeWk7Fw+Tv 7gdBC+wxjxC1EUJzAKQdK/iDzyakDx5Cu9gVV6RZqn6LKAyO6nK7EYt1bKp48z+O 6/MlJfVGm7YbKxXWTQUyQT+l+A== -----END CERTIFICATE-----Generated at Mon Apr 6 15:27:53 2026 by rpki-client