$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: D42jDJ52DpPFd0m0h+IH63V4Lw5lvxWkJo+WKw9GcCM= Subject key identifier: 0E:BD:1F:94:92:D4:39:B1:1E:E1:85:C5:75:5B:D2:7C:9A:95:E1:47 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0CC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C80 Signing time: Sat 18 Apr 2026 18:38:35 +0000 Manifest this update: Sat 18 Apr 2026 18:38:35 +0000 Manifest next update: Sat 25 Apr 2026 18:38:35 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: NqI47PAmKYUMj+5evI42nbZOXh/adJOsqJungIM3EGM=) 2: 78E949B8BA2B11F091659A18C4F9AE02.roa (hash: VOBPRXqiWHsxxicImatBXQPFpdPNhWUthBewKk/mSYs=) 3: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: 2LqeRUOZAwgxybnlCEWpL5xaNP5BZabdtxW3D8ogqXA=) 4: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: TdD366YPbDVh8M4hWGlCIcUx+fM9FgqZUJ2TV/gnPRw=) 5: FD9DD964D0FE11F09871A984C4F9AE02.roa (hash: fCNwY+bFmbNIKvRtyJc3Fedqpi08Sju/q2nGO6Ir4oQ=) 6: 45DE9550BADF11F09B91D509C4F9AE02.roa (hash: VFxaFuE3kLPbmnaiebPltW71W8wxxR4QeAfyqtq3Fsc=) 7: 336E2134D0FF11F0904A3785C4F9AE02.roa (hash: /2RNIkBIhtZT+yQtCchMfxU/aFUT25YRMpbrC+A9cdA=) 8: 16C56390B6FF11F096DEAA71C4F9AE02.roa (hash: /XLi+JoFopcNaQS+dz0I9QQbByJLgyqvV+UDc3RM9XQ=) 9: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: zZKkU5m5jrELsXLPpU2iKiEvYddsb6m7m0BK+ZsPDg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 18:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3268 (0xcc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Apr 18 18:38:35 2026 GMT Not After : Apr 25 18:38:35 2026 GMT Subject: CN=69e3cfab-bda5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e4:a6:2f:4b:90:91:fa:5b:e0:c2:9c:df:37: b2:bf:6c:b5:87:51:6c:84:76:bc:3f:66:21:f8:82: d7:98:2f:e4:d6:59:26:b2:f1:85:df:5f:b1:68:b2: 88:58:01:19:33:22:1e:99:58:41:fb:cc:bc:28:fa: 40:a8:c6:6d:9c:19:e5:33:f6:ef:72:d9:bb:15:4e: 4b:8b:67:53:3d:52:01:ba:33:ff:5b:32:d2:d3:13: eb:79:eb:e8:dd:23:e6:f8:00:b3:bf:8e:73:a9:1e: 46:33:0b:b4:5d:2f:3e:f2:d2:87:67:e7:b8:6a:ed: 7b:3a:17:7d:7e:a6:e0:96:c2:52:f1:f9:ac:a3:30: 09:72:99:bf:c1:d9:b6:6e:de:cd:f2:ad:c6:32:14: ec:0f:4f:42:c5:82:4b:bd:cd:25:08:84:a5:96:ea: ba:00:ca:27:f7:02:e7:21:52:bd:e2:f2:f2:1e:b3: fe:ee:3a:1a:32:f5:7e:14:98:36:a5:96:88:fa:17: 6d:28:d0:9c:e2:8c:d6:aa:5f:80:30:92:b0:1d:a1: 32:32:3b:54:61:2b:b4:fb:eb:9f:23:fe:1f:f0:cc: 95:bc:bf:71:03:1c:f8:57:8f:24:af:b9:2d:ba:d2: 75:00:80:e3:b7:ba:f9:1b:81:e6:4a:56:88:05:00: 60:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BD:1F:94:92:D4:39:B1:1E:E1:85:C5:75:5B:D2:7C:9A:95:E1:47 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:57:cc:3e:7f:a0:44:54:8d:93:83:52:4e:2a:3b:4d:23:13: 71:40:50:ea:ba:29:39:a9:46:04:b9:dc:92:19:37:e4:62:7b: b7:68:0d:1d:9e:30:63:c8:39:a0:2e:f8:5f:b2:73:29:8b:d4: 7f:1b:93:ba:49:0c:fb:ae:29:e9:3b:36:ad:6b:e3:c4:d6:5f: dd:57:b8:9d:4c:08:8b:e0:37:84:a7:5f:74:62:30:b4:2f:d2: 85:92:10:2b:94:46:90:db:06:83:a3:30:8d:6c:e1:20:a4:50: fd:99:0a:ff:e4:f1:3a:a0:ad:fc:dc:5c:81:e5:c1:3a:dd:c5: c9:dd:39:9a:fa:76:45:37:0e:90:6f:47:ad:1d:6c:db:32:a3: 8b:fa:1d:1d:02:f9:91:3e:b9:19:03:1b:b1:ad:22:a5:5f:b7: df:b0:25:7b:c9:f0:6a:98:55:d5:24:82:16:d3:a7:37:59:62: a2:47:40:56:0c:f4:f1:84:75:68:ac:c3:6c:af:ec:46:65:8d: 99:a2:1d:f1:f7:37:a3:7b:ca:17:92:de:8f:9b:04:f6:7b:6e: 34:39:74:c3:3e:e4:fe:64:ee:12:46:32:ce:d0:57:ca:18:b8: 22:2b:a9:f2:6a:31:89:e6:85:b0:74:e0:46:66:90:c5:c9:b7: d6:91:38:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjYwNDE4MTgzODM1WhcNMjYwNDI1MTgzODM1WjAYMRYwFAYD VQQDEw02OWUzY2ZhYi1iZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OSmL0uQkfpb4MKc3zeyv2y1h1FshHa8P2Yh+ILXmC/k1lkmsvGF31+xaLKI WAEZMyIemVhB+8y8KPpAqMZtnBnlM/bvctm7FU5Li2dTPVIBujP/WzLS0xPreevo 3SPm+ACzv45zqR5GMwu0XS8+8tKHZ+e4au17Ohd9fqbglsJS8fmsozAJcpm/wdm2 bt7N8q3GMhTsD09CxYJLvc0lCISlluq6AMon9wLnIVK94vLyHrP+7joaMvV+FJg2 pZaI+hdtKNCc4ozWql+AMJKwHaEyMjtUYSu0++ufI/4f8MyVvL9xAxz4V48kr7kt utJ1AIDjt7r5G4HmSlaIBQBgJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA69H5SS 1DmxHuGFxXVb0nyaleFHMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGlfMPn+gRFSNk4NSTio7TSMTcUBQ6ropOalGBLnckhk35GJ7t2gNHZ4wY8g5 oC74X7JzKYvUfxuTukkM+64p6Ts2rWvjxNZf3Ve4nUwIi+A3hKdfdGIwtC/ShZIQ K5RGkNsGg6MwjWzhIKRQ/ZkK/+TxOqCt/NxcgeXBOt3Fyd05mvp2RTcOkG9HrR1s 2zKji/odHQL5kT65GQMbsa0ipV+337Ale8nwaphV1SSCFtOnN1liokdAVgz08YR1 aKzDbK/sRmWNmaId8fc3o3vKF5Lej5sE9ntuNDl0wz7k/mTuEkYyztBXyhi4Iiup 8moxieaFsHTgRmaQxcm31pE4Zw== -----END CERTIFICATE-----Generated at Sun Apr 19 08:56:39 2026 by rpki-client