$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: cyIMlUgyEw2Yd9UCE1EvdtXksDSP/Uz4r72HLECTOdM= Subject key identifier: DD:52:16:88:6B:C4:F2:CF:EB:F3:64:59:BC:D4:1D:AD:54:70:69:7C Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 1345 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 133B Signing time: Thu 16 Apr 2026 16:56:07 +0000 Manifest this update: Thu 16 Apr 2026 16:56:06 +0000 Manifest next update: Thu 23 Apr 2026 16:56:06 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: RUwQIuc2pgQujQIxCnngVcdmsplbfqSNzN4f85or1LY=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: p96Pk01HnxFF2EIL/xWnzPT9gE4H/ULfnQINm3EmY2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:56:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4933 (0x1345) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Apr 16 16:56:06 2026 GMT Not After : Apr 23 16:56:06 2026 GMT Subject: CN=69e114a7-33f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:29:da:46:4c:6b:11:aa:e6:29:46:76:a8:7d: 6d:9d:cf:21:79:69:0e:ec:3d:bd:98:b9:af:1d:ac: 1f:8c:12:ed:91:3a:0c:7a:24:71:ed:07:dc:ad:9e: 00:2c:6c:a7:8b:da:c3:e6:5e:d3:fb:5e:71:fb:31: e5:67:9b:b6:d6:4c:7b:29:1a:8d:16:93:0d:53:96: c8:1a:f0:3c:85:95:3b:bd:71:5f:60:cc:82:d7:ad: 5c:b6:b1:09:b3:68:18:c2:38:99:fe:b8:49:4b:70: d3:cc:d6:81:f1:0e:c6:33:85:df:90:28:fe:e4:a6: b1:6f:64:c4:3f:15:4b:e8:37:0a:6a:f8:ff:97:1a: 68:19:a8:3b:53:23:27:b1:1c:c4:11:f7:0f:22:b5: 16:5c:97:70:a9:2f:a5:7c:b9:ed:87:2d:4c:de:4b: ef:dd:6a:90:d8:56:e2:bf:87:70:62:cb:ac:05:16: ab:8f:a8:78:e4:ef:ac:43:e3:35:33:e4:5f:db:4b: 16:35:5a:71:57:01:cf:17:22:22:93:ea:9d:8f:9a: eb:68:73:fb:19:45:e9:34:f0:0a:11:74:06:6b:f1: b8:5b:d7:9f:a0:11:69:03:4a:3b:86:90:53:d6:d5: 3e:95:e2:7a:35:2d:77:4d:a2:13:66:da:a0:fb:62: 42:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:52:16:88:6B:C4:F2:CF:EB:F3:64:59:BC:D4:1D:AD:54:70:69:7C X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ee:67:0e:85:f7:86:53:70:9f:61:34:7c:7b:76:66:93:6e: db:77:41:dd:82:be:a6:13:31:13:da:da:8f:e4:f3:c3:bc:49: 41:31:e2:7a:13:9b:cd:c0:45:17:f5:82:76:cd:69:f7:a6:95: 3b:f7:26:a4:cb:46:24:50:80:bb:6b:34:42:50:bb:05:34:f5: 0c:a9:e7:9b:0f:21:37:8e:82:4e:72:25:e5:68:92:ea:a8:19: 13:bc:9d:6c:bf:05:b9:7e:4f:9a:fe:62:5b:b5:c9:80:4d:6b: b3:95:e8:11:3e:4f:f2:00:a0:be:7f:80:b6:58:b5:79:83:a8: 1c:99:4c:43:ff:67:c4:f8:46:5b:f9:9b:a7:f5:fa:8a:30:57: 1d:0e:ee:77:43:f0:7a:c3:e4:b7:62:6d:84:6f:36:5e:5d:d0: 57:3d:f0:9c:4b:66:bd:5a:55:78:b2:d9:77:6a:8f:e0:4e:aa: a3:b0:c2:bd:ce:d2:83:d7:ea:92:c9:de:4a:bf:34:81:7a:3b: f6:c3:8e:bc:8f:00:fb:07:2d:1e:84:1a:d3:1c:66:25:10:ac: 98:73:4e:f6:88:6e:94:85:f1:b5:e8:81:4e:8d:2e:9e:39:b2: 0d:9d:e5:0a:fd:09:64:bf:32:28:59:0b:97:81:86:5a:b8:4c: be:64:1b:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjYwNDE2MTY1NjA2WhcNMjYwNDIzMTY1NjA2WjAYMRYwFAYD VQQDEw02OWUxMTRhNy0zM2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCnaRkxrEarmKUZ2qH1tnc8heWkO7D29mLmvHawfjBLtkToMeiRx7QfcrZ4A LGyni9rD5l7T+15x+zHlZ5u21kx7KRqNFpMNU5bIGvA8hZU7vXFfYMyC161ctrEJ s2gYwjiZ/rhJS3DTzNaB8Q7GM4XfkCj+5Kaxb2TEPxVL6DcKavj/lxpoGag7UyMn sRzEEfcPIrUWXJdwqS+lfLnthy1M3kvv3WqQ2Fbiv4dwYsusBRarj6h45O+sQ+M1 M+Rf20sWNVpxVwHPFyIik+qdj5rraHP7GUXpNPAKEXQGa/G4W9efoBFpA0o7hpBT 1tU+leJ6NS13TaITZtqg+2JCUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN1SFohr xPLP6/NkWbzUHa1UcGl8MB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVu5nDoX3hlNwn2E0fHt2ZpNu23dB3YK+phMxE9raj+Tzw7xJQTHiehObzcBF F/WCds1p96aVO/cmpMtGJFCAu2s0QlC7BTT1DKnnmw8hN46CTnIl5WiS6qgZE7yd bL8FuX5Pmv5iW7XJgE1rs5XoET5P8gCgvn+Atli1eYOoHJlMQ/9nxPhGW/mbp/X6 ijBXHQ7ud0PwesPkt2JthG82Xl3QVz3wnEtmvVpVeLLZd2qP4E6qo7DCvc7Sg9fq ksneSr80gXo79sOOvI8A+wctHoQa0xxmJRCsmHNO9ohulIXxteiBTo0unjmyDZ3l Cv0JZL8yKFkLl4GGWrhMvmQbcw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:12:49 2026 by rpki-client