$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: YNKaJTfn0BokqQODaGmubDilLAE/xEkff1b+chMc+FU= Subject key identifier: CE:B6:87:5D:31:88:E3:06:DB:AA:18:3E:1E:1A:50:CB:D8:51:9B:90 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 1870 Signing time: Thu 16 Apr 2026 16:27:21 +0000 Manifest this update: Thu 16 Apr 2026 16:27:21 +0000 Manifest next update: Thu 23 Apr 2026 16:27:21 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: /rtQoUv5+SHiEiixS1ak++tLQSR9ERRV9htjZUIknGc=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: N4cKaS0mhdfetjDQpuoB6/wb9rZig3P5I710RWYjulM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6281 (0x1889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Apr 16 16:27:21 2026 GMT Not After : Apr 23 16:27:21 2026 GMT Subject: CN=69e10de9-c89c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:03:70:c9:5c:65:d1:ff:ad:51:29:3a:58:5b: dd:38:de:57:a4:5f:f1:34:05:28:b4:45:38:d3:fe: 7e:8b:1c:3a:cf:fc:82:2c:82:27:f3:24:be:97:d6: b9:34:7b:aa:f8:00:5c:ac:3a:83:de:59:da:86:9d: e2:83:fe:b9:9c:20:10:bf:fb:5a:af:fa:77:25:80: 86:14:3c:0c:d9:b8:42:c2:f9:b5:ac:27:ab:e9:a3: b9:cd:a1:28:83:fa:28:67:ff:63:2d:ac:18:26:8d: 7b:ca:02:37:02:ba:1d:38:3b:2f:3e:09:fc:41:6c: 88:91:cc:45:50:08:3f:ed:47:3e:76:15:1d:3a:64: 99:c3:fd:d1:f3:c8:14:3f:2e:50:35:5d:43:62:36: 43:4e:73:7e:3f:c7:ed:6d:c7:b3:ee:b9:56:85:90: 62:b0:73:05:ea:22:fa:07:b0:2e:4f:1b:de:a5:76: 00:5a:f8:7f:94:09:52:2e:fa:39:59:26:30:1b:52: 1a:fe:d7:65:c4:8a:15:2c:10:72:09:29:b3:99:b6: 31:36:66:72:72:e2:fb:1d:b3:0a:dc:e5:9d:9e:bb: 29:f3:43:41:02:f2:a6:50:a4:77:02:bb:1e:e2:67: e7:71:7c:73:d5:72:32:25:a7:de:1b:44:4f:ba:7b: 07:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B6:87:5D:31:88:E3:06:DB:AA:18:3E:1E:1A:50:CB:D8:51:9B:90 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5e:b0:f4:f6:4b:97:bb:35:c1:89:67:79:ef:fa:0e:e9:c9: 85:d3:cf:9f:c8:e8:bc:05:2f:58:c2:52:9a:2b:75:fc:ab:c0: d0:72:40:24:fb:08:a0:ca:c3:53:71:ed:c0:06:a3:72:73:63: 4a:5d:f0:73:30:9c:0f:5a:f4:46:36:46:fc:1c:eb:90:60:cc: 6f:1c:e9:d9:32:6f:77:3e:0e:3f:4b:e0:32:93:2f:9a:3a:40: 13:24:cc:bb:46:0a:76:ce:4b:f4:ca:31:d2:a6:d4:92:c2:2f: dd:ec:c3:ad:cb:2f:22:b6:ad:b5:f1:38:c0:d4:97:ca:dc:89: f5:b4:9e:1a:bd:fe:6b:86:e1:d9:18:fb:5d:67:42:40:bf:76: 62:b8:d5:37:64:84:32:6e:a8:2b:68:59:fc:e4:ad:54:7a:34: 29:f2:09:e4:5f:bc:99:65:8b:8f:4a:fe:ee:89:20:2c:fd:5b: da:07:42:b6:98:3a:49:12:81:c3:64:75:ee:c6:90:e6:bb:78: 58:c3:89:57:03:fd:88:89:06:b3:13:38:fc:ff:ff:85:fa:57: d5:a0:a0:fe:b8:91:85:7a:41:66:3d:1d:1e:77:89:ad:da:d6: 4b:22:81:10:2b:18:e3:b9:28:c6:45:0c:6b:fe:35:3d:53:41: de:0f:24:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjYwNDE2MTYyNzIxWhcNMjYwNDIzMTYyNzIxWjAYMRYwFAYD VQQDEw02OWUxMGRlOS1jODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ANwyVxl0f+tUSk6WFvdON5XpF/xNAUotEU40/5+ixw6z/yCLIIn8yS+l9a5 NHuq+ABcrDqD3lnahp3ig/65nCAQv/tar/p3JYCGFDwM2bhCwvm1rCer6aO5zaEo g/ooZ/9jLawYJo17ygI3ArodODsvPgn8QWyIkcxFUAg/7Uc+dhUdOmSZw/3R88gU Py5QNV1DYjZDTnN+P8ftbcez7rlWhZBisHMF6iL6B7AuTxvepXYAWvh/lAlSLvo5 WSYwG1Ia/tdlxIoVLBByCSmzmbYxNmZycuL7HbMK3OWdnrsp80NBAvKmUKR3Arse 4mfncXxz1XIyJafeG0RPunsHUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM62h10x iOMG26oYPh4aUMvYUZuQMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT16w9PZLl7s1wYlnee/6DunJhdPPn8jovAUvWMJSmit1/KvA0HJAJPsIoMrD U3HtwAajcnNjSl3wczCcD1r0RjZG/BzrkGDMbxzp2TJvdz4OP0vgMpMvmjpAEyTM u0YKds5L9Mox0qbUksIv3ezDrcsvIrattfE4wNSXytyJ9bSeGr3+a4bh2Rj7XWdC QL92YrjVN2SEMm6oK2hZ/OStVHo0KfIJ5F+8mWWLj0r+7okgLP1b2gdCtpg6SRKB w2R17saQ5rt4WMOJVwP9iIkGsxM4/P//hfpX1aCg/riRhXpBZj0dHneJrdrWSyKB ECsY47koxkUMa/41PVNB3g8kwg== -----END CERTIFICATE-----Generated at Fri Apr 17 13:07:18 2026 by rpki-client