$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: XSysseejVzkqK8ML7E2BW07MvetbsmP2vS+99B9eqZ4= Subject key identifier: 45:92:57:71:FE:7E:5B:BC:36:6E:17:E1:91:EB:03:25:10:8D:7A:98 Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 047B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 0471 Signing time: Fri 17 Apr 2026 00:02:53 +0000 Manifest this update: Fri 17 Apr 2026 00:02:53 +0000 Manifest next update: Fri 24 Apr 2026 00:02:53 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: huC0tYKkY+mPUBqKmMzdTPnSdpMIIWIwughULtnhW18=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: fjG3+8ZC22UxCMS8177A/y6FTGhegxZaMx8Kk6yByAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Apr 17 00:02:53 2026 GMT Not After : Apr 24 00:02:53 2026 GMT Subject: CN=69e178ad-31c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a3:3e:eb:94:3a:5d:73:78:49:12:47:d4:68: 75:4a:80:e1:91:82:ad:af:25:60:ab:35:b1:47:55: 45:9c:6c:95:d7:21:8e:58:f9:1a:1a:9c:ea:5d:cc: 20:08:94:7c:15:af:17:35:c6:ce:7f:23:bb:0c:8b: 64:61:f6:14:c7:39:db:6d:cd:67:a2:f7:ed:aa:2d: ac:8a:8e:51:03:e5:ea:d4:f4:ee:fe:0d:c7:35:e8: 00:ce:61:24:0a:06:b7:31:a9:0a:4c:7d:49:db:6a: 55:07:0e:8f:d0:98:d4:61:eb:28:4f:db:98:d4:33: 76:42:15:29:06:bb:a8:9c:f8:47:63:ff:bd:0d:4c: d3:b8:27:97:86:e5:49:b3:e6:08:9a:2b:90:40:4b: 4b:b4:d3:76:e3:00:4c:c7:96:08:c6:cb:50:8a:d8: a5:a0:4c:56:bc:5c:ce:4e:59:69:6e:c8:a3:56:7b: 0e:44:24:f1:a9:22:f6:99:bb:ce:e4:dc:f3:b8:4a: a8:15:a4:23:c2:f4:4d:14:31:f3:60:d7:64:58:e9: 78:a1:59:06:1b:9e:cb:fa:5c:88:67:bd:8a:75:8d: f8:8b:e8:90:0b:9a:28:7b:6c:8f:37:f7:af:23:be: 29:82:5e:79:77:e1:86:a7:b6:0d:c3:a8:7f:b2:40: 2b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:92:57:71:FE:7E:5B:BC:36:6E:17:E1:91:EB:03:25:10:8D:7A:98 X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ea:68:77:73:be:cd:f5:99:b4:3f:37:54:a8:39:d4:df:74: 4b:be:74:75:cb:dc:aa:27:05:18:47:25:51:89:d5:a8:fc:fc: b7:ec:51:c2:63:2c:fb:55:9f:b1:2e:31:b4:ad:4f:50:b7:73: 70:a2:2c:1d:a0:15:78:d3:e1:0f:9d:5d:de:60:9a:4b:18:0c: 66:c8:dd:89:ea:c7:8d:7a:9f:b8:59:5f:56:f1:aa:66:af:d4: ac:ef:6a:ec:df:59:33:ab:d8:7b:bf:f1:ac:c9:6f:8f:0b:67: 27:78:0f:46:81:30:b8:87:0a:c7:30:b8:cb:d5:f1:69:a3:3a: 16:bc:94:22:6d:ee:19:4a:db:bf:bc:6a:a9:cd:1f:19:a5:af: 9c:a7:ef:c9:00:e6:0a:5d:0d:ce:7f:e0:4a:62:99:cd:e5:ce: 16:24:b6:66:19:27:6a:1a:93:b7:94:4e:32:bb:75:71:20:28: 85:0f:1f:7b:18:8c:8e:9a:89:33:3b:c7:a5:18:a8:0c:4a:ca: 99:df:c5:44:cc:4d:0f:8c:26:a2:15:02:fd:79:bb:78:05:36: a4:23:83:49:71:25:45:63:25:9f:31:b0:bd:85:ad:5f:4a:f6: 3c:0b:29:46:33:ad:5b:64:39:0e:3c:a3:83:65:e3:1b:f6:e8: 08:55:6d:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjYwNDE3MDAwMjUzWhcNMjYwNDI0MDAwMjUzWjAYMRYwFAYD VQQDEw02OWUxNzhhZC0zMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aM+65Q6XXN4SRJH1Gh1SoDhkYKtryVgqzWxR1VFnGyV1yGOWPkaGpzqXcwg CJR8Fa8XNcbOfyO7DItkYfYUxznbbc1novftqi2sio5RA+Xq1PTu/g3HNegAzmEk Cga3MakKTH1J22pVBw6P0JjUYesoT9uY1DN2QhUpBruonPhHY/+9DUzTuCeXhuVJ s+YImiuQQEtLtNN24wBMx5YIxstQitiloExWvFzOTllpbsijVnsORCTxqSL2mbvO 5NzzuEqoFaQjwvRNFDHzYNdkWOl4oVkGG57L+lyIZ72KdY34i+iQC5ooe2yPN/ev I74pgl55d+GGp7YNw6h/skArpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEWSV3H+ flu8Nm4X4ZHrAyUQjXqYMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZupod3O+zfWZtD83VKg51N90S750dcvcqicFGEclUYnVqPz8t+xRwmMs+1Wf sS4xtK1PULdzcKIsHaAVeNPhD51d3mCaSxgMZsjdierHjXqfuFlfVvGqZq/UrO9q 7N9ZM6vYe7/xrMlvjwtnJ3gPRoEwuIcKxzC4y9XxaaM6FryUIm3uGUrbv7xqqc0f GaWvnKfvyQDmCl0Nzn/gSmKZzeXOFiS2ZhknahqTt5ROMrt1cSAohQ8fexiMjpqJ MzvHpRioDErKmd/FRMxND4wmohUC/Xm7eAU2pCODSXElRWMlnzGwvYWtX0r2PAsp RjOtW2Q5Djyjg2XjG/boCFVt1g== -----END CERTIFICATE-----Generated at Fri Apr 17 10:15:51 2026 by rpki-client