$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: Ob/9K7rFYMz44OwCXdbRnSO/BxZHAFiXFc7YPNWryGg= Subject key identifier: FA:2B:1C:55:E0:12:B2:D2:E7:18:44:39:20:B1:A1:9C:16:42:AA:56 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: 01A9 Signing time: Sun 05 Apr 2026 03:37:14 +0000 Manifest this update: Sun 05 Apr 2026 03:37:14 +0000 Manifest next update: Sun 12 Apr 2026 03:37:14 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: s98Y9uAhi+315U63s+OPoYfWuHYdZWIoMRyvtAJw+mQ=) 2: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (hash: +itwix5tg1TL0xARCgIhfb+QDUeml9Ar+ujsgMhe8AM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:37:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Apr 5 03:37:14 2026 GMT Not After : Apr 12 03:37:14 2026 GMT Subject: CN=69d1d8ea-7ccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8b:6c:65:f5:b2:86:be:48:55:3e:19:95:ba: 91:8e:a9:f1:cf:e2:74:52:07:02:8b:60:fb:4a:43: 91:1c:6e:4a:15:95:b3:ff:a6:a7:13:24:1b:bc:c2: 39:34:3a:58:6d:a5:e8:67:0c:a1:72:61:cf:a5:f6: 92:f2:ec:5e:62:46:a3:83:9c:5b:df:e4:53:96:d6: 39:cb:cc:fd:dc:c4:8f:e6:9c:05:81:2f:29:c7:8f: 96:a2:b7:bf:ce:ac:a5:a1:65:44:ae:ee:2f:13:e3: 07:11:de:dd:8c:c4:e8:64:7b:40:42:cc:2e:fc:fd: 66:66:a1:57:1f:09:fc:ce:28:a7:8b:34:70:de:ff: b7:eb:1f:83:ac:fe:34:2e:99:37:2e:44:9d:68:52: a6:d8:ea:82:c0:31:be:5b:dc:8e:eb:a8:46:01:10: ef:35:c5:63:d4:e9:3f:75:18:58:1e:64:65:2a:51: 32:0c:24:18:58:e0:53:9a:9d:59:37:e8:ad:43:1f: c2:01:11:ab:e0:5d:0a:b6:e8:ae:b6:d0:79:64:38: 2b:33:9f:c7:0f:41:ea:c2:9b:8d:d4:dd:c4:71:d4: 07:35:a4:ea:de:fd:73:69:9c:28:68:6c:69:b6:91: 71:cf:35:73:a3:6f:cd:04:c6:5f:e2:e5:46:d6:36: cf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2B:1C:55:E0:12:B2:D2:E7:18:44:39:20:B1:A1:9C:16:42:AA:56 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:17:50:bb:a4:0f:bf:36:6e:ad:b9:b3:3f:14:6e:7c:a8:57: af:d1:f9:82:3f:d4:c3:49:ab:52:44:95:34:bb:71:78:20:ae: 64:8c:1c:09:57:93:49:3f:de:19:5b:dc:b3:af:f0:df:97:00: 32:22:ba:b1:d2:ef:13:b8:bf:34:e0:a5:9c:f2:ce:c2:f9:77: 09:24:61:8a:12:b1:68:cd:be:4e:91:06:d1:f0:15:f9:70:58: 2e:f5:91:be:8d:cb:04:68:6f:36:92:71:0d:1f:17:b5:9f:c6: 62:7d:59:1c:75:05:06:9e:3a:76:0b:df:ec:19:81:be:8d:6f: 0a:66:9b:bd:22:f7:65:59:e6:cd:ac:c4:29:f1:e5:bd:96:8e: 98:87:88:fa:5b:36:8d:6b:7f:ac:41:05:7d:8a:9d:07:7a:bb: 93:84:1c:1a:61:cc:61:65:2c:c9:b9:0b:d9:e2:88:90:16:ab: 2b:fb:bb:48:b6:72:7b:fd:2b:6b:3a:b7:d4:17:98:c0:e6:ad: a4:ca:ed:40:2a:29:83:39:e5:9e:12:24:2c:c6:2f:ae:0e:d7: 99:aa:e9:62:ff:d3:67:e4:45:6b:de:70:86:5e:ec:e3:c7:5f: 92:40:fc:e0:d3:77:fb:11:21:a6:c7:b8:f7:72:25:11:46:02: 8e:3e:dd:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjYwNDA1MDMzNzE0WhcNMjYwNDEyMDMzNzE0WjAYMRYwFAYD VQQDEw02OWQxZDhlYS03Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnotsZfWyhr5IVT4ZlbqRjqnxz+J0UgcCi2D7SkORHG5KFZWz/6anEyQbvMI5 NDpYbaXoZwyhcmHPpfaS8uxeYkajg5xb3+RTltY5y8z93MSP5pwFgS8px4+Wore/ zqyloWVEru4vE+MHEd7djMToZHtAQswu/P1mZqFXHwn8ziinizRw3v+36x+DrP40 Lpk3LkSdaFKm2OqCwDG+W9yO66hGARDvNcVj1Ok/dRhYHmRlKlEyDCQYWOBTmp1Z N+itQx/CARGr4F0KtuiuttB5ZDgrM5/HD0HqwpuN1N3EcdQHNaTq3v1zaZwoaGxp tpFxzzVzo2/NBMZf4uVG1jbPBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPorHFXg ErLS5xhEOSCxoZwWQqpWMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjxdQu6QPvzZurbmzPxRufKhXr9H5gj/Uw0mrUkSVNLtxeCCuZIwcCVeTST/e GVvcs6/w35cAMiK6sdLvE7i/NOClnPLOwvl3CSRhihKxaM2+TpEG0fAV+XBYLvWR vo3LBGhvNpJxDR8XtZ/GYn1ZHHUFBp46dgvf7BmBvo1vCmabvSL3ZVnmzazEKfHl vZaOmIeI+ls2jWt/rEEFfYqdB3q7k4QcGmHMYWUsybkL2eKIkBarK/u7SLZye/0r azq31BeYwOatpMrtQCopgznlnhIkLMYvrg7XmarpYv/TZ+RFa95whl7s48dfkkD8 4NN3+xEhpse493IlEUYCjj7dCA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:35:21 2026 by rpki-client