$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json) Hash identifier: GJDydXtkVbdHHIZPUMa5ajXoRpMqawA9N3GRnGjKNjs= Subject key identifier: E3:42:8A:53:FC:64:8C:96:75:9C:E7:BC:BE:DC:F0:F9:DC:20:39:81 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 1381 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft Manifest number: 1357 Signing time: Mon 20 Apr 2026 16:56:56 +0000 Manifest this update: Mon 20 Apr 2026 16:56:56 +0000 Manifest next update: Mon 27 Apr 2026 16:56:56 +0000 Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: NdjDtkBLHwGbTutIczoamGUBnl73dMWArU+LYKwsexA=) 2: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: VSOMGpR0/e2J9EQLKTIhVqJ/wQMqC0LOmUgq8KK0Szk=) 3: 403398AA233111EEAF768F66C4F9AE02.roa (hash: Y52+tRvMTfL460RUNVYk3L8TtXM2/GdPu6P2ErCDVWQ=) 4: C31D6D082BA611EF82D8BF21C4F9AE02.roa (hash: azHcEZz2GBJVjDyR8Vdr2A5zsoqu99TMJIuTeQ/WvfY=) 5: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: XY8B3tTzPyJBZMYoI9Ehi8tJlU71I3ce0cvFxvp+s6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4993 (0x1381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436, serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Apr 20 16:56:56 2026 GMT Not After : Apr 27 16:56:56 2026 GMT Subject: CN=69e65ad8-65e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c7:c6:cf:b5:a3:f3:f5:96:f3:8d:9c:0a:53: c2:76:8a:f4:72:9d:49:be:98:3b:ee:7b:5c:d0:1c: d0:c7:89:51:bb:e6:52:8d:92:0a:04:17:33:13:51: c6:48:8f:cc:6d:46:dc:8b:fa:e9:1e:d7:71:bf:87: c9:0f:b7:80:01:0c:f5:63:5c:6d:61:4c:84:da:d2: 57:7b:e0:a9:48:5b:95:7f:8c:ab:e4:4a:fd:be:25: f4:16:f0:32:18:fb:73:0d:e7:c1:23:ce:41:94:3f: 42:c8:8d:f1:5a:11:77:38:c8:20:cb:75:19:33:88: 71:dc:2b:58:ee:17:ad:bf:37:24:d6:3a:05:43:53: 2b:5e:37:d3:af:63:d6:4f:b6:c7:71:e4:3d:3c:14: 25:67:00:fa:b1:77:5c:99:12:54:e1:48:5a:81:d7: 69:50:4a:dd:49:fb:19:8b:1a:35:da:13:dd:f5:50: af:65:6b:67:38:58:14:ca:48:51:93:22:ba:ba:5c: 16:7f:73:7f:4d:33:a5:15:2c:60:c9:fb:81:8f:00: 71:70:ce:b6:f0:af:af:ba:c8:9f:09:2c:29:33:2d: 80:9d:5a:e5:4b:94:de:9e:e8:be:87:2d:e3:ba:2c: 7b:8a:d5:83:4a:b2:ae:08:c3:3a:b3:9a:61:0e:63: 18:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:42:8A:53:FC:64:8C:96:75:9C:E7:BC:BE:DC:F0:F9:DC:20:39:81 X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:f1:83:e2:22:ba:9f:2c:9f:1e:65:15:76:ff:9d:03:6a:d7: 0f:a0:41:1e:b5:63:96:c6:b8:b0:7c:a4:97:17:fa:67:3b:a5: 01:f7:cf:20:35:17:b2:6d:8c:f9:50:5a:00:62:e8:45:07:f2: 18:ef:87:e7:7e:ea:8b:c3:0c:1a:2b:c8:b7:80:07:86:32:80: c9:e6:61:6a:2e:f1:b5:39:cf:98:c6:a6:0f:46:a4:40:1a:52: 17:8e:d2:a9:31:e2:e3:a4:51:0a:c1:65:9e:08:42:09:c3:a3: c2:58:72:61:6c:3a:2f:be:72:57:59:c2:75:32:53:13:40:8c: 42:21:b7:5f:3d:bb:dd:13:b0:2d:46:b1:7d:1b:78:d3:e9:8c: 33:94:fc:7c:2e:a6:b9:38:b9:fe:39:d6:85:48:94:9f:18:6a: 53:0b:57:19:6a:ea:c2:e2:cc:1f:d6:43:b9:24:e2:a4:93:39: 56:dd:f6:7d:ce:25:93:45:b9:e7:d8:4d:0e:33:25:25:89:6d: 6b:f7:bc:f1:10:45:ea:e6:87:e1:24:20:f4:d1:6b:63:f9:e9: e0:f5:54:de:bf:d8:ea:33:04:10:a9:de:97:b9:1c:99:3b:c8: 70:db:4f:ce:ea:d6:38:d7:89:35:61:68:7c:e4:ff:27:3c:79: e8:f0:91:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjYwNDIwMTY1NjU2WhcNMjYwNDI3MTY1NjU2WjAYMRYwFAYD VQQDEw02OWU2NWFkOC02NWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsfGz7Wj8/WW842cClPCdor0cp1Jvpg77ntc0BzQx4lRu+ZSjZIKBBczE1HG SI/MbUbci/rpHtdxv4fJD7eAAQz1Y1xtYUyE2tJXe+CpSFuVf4yr5Er9viX0FvAy GPtzDefBI85BlD9CyI3xWhF3OMggy3UZM4hx3CtY7hetvzck1joFQ1MrXjfTr2PW T7bHceQ9PBQlZwD6sXdcmRJU4UhagddpUErdSfsZixo12hPd9VCvZWtnOFgUykhR kyK6ulwWf3N/TTOlFSxgyfuBjwBxcM628K+vusifCSwpMy2AnVrlS5Tenui+hy3j uix7itWDSrKuCMM6s5phDmMY0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONCilP8 ZIyWdZznvL7c8PncIDmBMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTQzNi9BMzBCNUE0QUM3OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15 YlhGV2d2c0VFMUhzajUwMmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtPGD4iK6nyyfHmUVdv+dA2rXD6BBHrVjlsa4sHyklxf6ZzulAffPIDUXsm2M +VBaAGLoRQfyGO+H537qi8MMGivIt4AHhjKAyeZhai7xtTnPmMamD0akQBpSF47S qTHi46RRCsFlnghCCcOjwlhyYWw6L75yV1nCdTJTE0CMQiG3Xz273ROwLUaxfRt4 0+mMM5T8fC6muTi5/jnWhUiUnxhqUwtXGWrqwuLMH9ZDuSTipJM5Vt32fc4lk0W5 59hNDjMlJYlta/e88RBF6uaH4SQg9NFrY/np4PVU3r/Y6jMEEKnel7kcmTvIcNtP zurWONeJNWFofOT/Jzx56PCR1g== -----END CERTIFICATE-----Generated at Wed Apr 22 07:25:33 2026 by rpki-client