$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: RgVu+m/OQlZ0TQ+FpqtLXJRlsArWOHs/sLNZWjwMvMs= Subject key identifier: 7E:9B:38:43:5C:2A:62:9A:07:9E:68:0B:68:DF:B2:DC:E0:D7:DB:31 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 0249 Signing time: Fri 17 Apr 2026 02:09:30 +0000 Manifest this update: Fri 17 Apr 2026 02:09:30 +0000 Manifest next update: Fri 24 Apr 2026 02:09:30 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: IdkMqlAUk6ehAdhw0e5oLKWk2BZZOLRfkCFWywvWhlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Apr 17 02:09:30 2026 GMT Not After : Apr 24 02:09:30 2026 GMT Subject: CN=69e1965a-bd7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:44:6c:c0:23:40:34:69:4c:2c:95:d0:1d:f6: 34:68:0b:01:b1:fc:24:13:ed:d5:a8:04:20:8f:a1: 75:5a:f3:f8:ab:4c:87:af:33:ec:09:0e:2d:c6:d5: ef:18:b8:84:d0:c6:93:14:ce:ae:ea:19:74:98:9e: 09:49:55:24:b4:38:63:08:67:1e:37:de:16:78:f7: a7:55:2c:26:6b:2c:2d:95:07:7a:dc:60:7b:eb:35: f6:da:21:fc:47:32:f3:cc:61:ac:6f:45:62:89:60: 00:1a:62:e0:a4:98:6e:92:03:23:97:b8:1f:0b:20: d6:72:ce:19:e3:01:44:9b:c2:dc:a5:cc:c4:48:b5: 68:e3:14:df:80:89:70:aa:d7:81:d7:f8:ca:e1:50: 3d:dc:a6:5c:d3:28:f8:bd:17:ab:31:f3:ed:cc:dc: 34:72:fb:19:fb:4f:90:6f:b1:7d:4e:fc:93:c9:7b: fa:15:fe:8e:9a:31:a1:5f:2e:ec:2e:dc:1f:9b:2c: 3e:95:b1:45:95:01:fe:61:8d:b9:91:c2:30:99:3f: 05:a5:7a:b6:ef:6e:4b:07:79:c9:f0:30:3a:5c:42: 7b:fb:52:16:f7:b8:bb:48:35:6d:12:4d:73:d1:05: 8a:f3:1f:14:14:9e:96:cf:4d:39:60:29:63:11:21: 5e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9B:38:43:5C:2A:62:9A:07:9E:68:0B:68:DF:B2:DC:E0:D7:DB:31 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:aa:29:1d:43:c5:4f:a7:35:61:5a:35:46:23:12:71:9a:d2: f3:c4:d6:4f:5b:25:f9:ac:2d:f4:a0:5c:95:19:f3:2b:d9:e7: 5d:0d:29:2c:65:c4:0c:7c:20:20:98:b8:4c:f6:4a:c6:41:6c: 44:e3:3e:e7:9f:ee:5f:40:24:da:ae:5a:f4:c9:a4:03:b1:0e: 05:83:9c:92:4b:6a:3b:f2:1b:15:e7:b0:aa:9f:97:74:39:5e: 1c:4d:34:bb:81:90:f0:4d:ef:53:09:6c:f9:9b:35:cc:b3:85: 37:be:23:8e:15:77:63:00:de:c3:09:fa:6e:b1:0b:e3:87:15: b3:48:a6:a6:04:86:78:c5:d7:a5:dd:51:20:5c:67:f9:fe:1c: bd:d3:78:56:49:e4:75:14:f5:46:6a:24:0c:64:e2:51:a2:57: fe:0c:36:f5:de:76:9f:3a:46:90:0b:2c:a2:40:da:1d:2d:85: d8:23:d6:44:b9:75:51:38:63:ca:fa:2c:01:56:90:f6:73:a8: 8f:84:5c:98:37:77:3d:72:84:b6:df:8b:b1:d8:b7:b5:5e:f6: 13:2b:d3:17:2b:ae:84:9a:56:80:e3:6b:b8:20:50:9a:05:54: 3c:87:6a:4c:fa:45:53:16:74:93:a9:a5:39:55:67:33:02:bf: 15:97:03:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjYwNDE3MDIwOTMwWhcNMjYwNDI0MDIwOTMwWjAYMRYwFAYD VQQDEw02OWUxOTY1YS1iZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApERswCNANGlMLJXQHfY0aAsBsfwkE+3VqAQgj6F1WvP4q0yHrzPsCQ4txtXv GLiE0MaTFM6u6hl0mJ4JSVUktDhjCGceN94WePenVSwmaywtlQd63GB76zX22iH8 RzLzzGGsb0ViiWAAGmLgpJhukgMjl7gfCyDWcs4Z4wFEm8LcpczESLVo4xTfgIlw qteB1/jK4VA93KZc0yj4vRerMfPtzNw0cvsZ+0+Qb7F9TvyTyXv6Ff6OmjGhXy7s Ltwfmyw+lbFFlQH+YY25kcIwmT8FpXq2725LB3nJ8DA6XEJ7+1IW97i7SDVtEk1z 0QWK8x8UFJ6Wz005YCljESFeIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH6bOENc KmKaB55oC2jfstzg19sxMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmKopHUPFT6c1YVo1RiMScZrS88TWT1sl+awt9KBclRnzK9nnXQ0pLGXEDHwg IJi4TPZKxkFsROM+55/uX0Ak2q5a9MmkA7EOBYOckktqO/IbFeewqp+XdDleHE00 u4GQ8E3vUwls+Zs1zLOFN74jjhV3YwDewwn6brEL44cVs0impgSGeMXXpd1RIFxn +f4cvdN4VknkdRT1RmokDGTiUaJX/gw29d52nzpGkAssokDaHS2F2CPWRLl1UThj yvosAVaQ9nOoj4RcmDd3PXKEtt+Lsdi3tV72EyvTFyuuhJpWgONruCBQmgVUPIdq TPpFUxZ0k6mlOVVnMwK/FZcDIA== -----END CERTIFICATE-----Generated at Fri Apr 17 06:36:33 2026 by rpki-client