$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: azd07Mwuyxc657gPK8aFkXFTpk0abq6ZYicle8nLxs4= Subject key identifier: B1:21:64:F9:59:A7:47:32:A8:9A:24:70:91:3C:D5:2F:D8:52:57:7C Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0CC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C7F Signing time: Thu 16 Apr 2026 18:40:10 +0000 Manifest this update: Thu 16 Apr 2026 18:40:09 +0000 Manifest next update: Thu 23 Apr 2026 18:40:09 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: JX3DAf6LZVbFCioxabYwWi/6pllqrtYSVOqw2AtzgII=) 2: 78E949B8BA2B11F091659A18C4F9AE02.roa (hash: VOBPRXqiWHsxxicImatBXQPFpdPNhWUthBewKk/mSYs=) 3: 16C56390B6FF11F096DEAA71C4F9AE02.roa (hash: /XLi+JoFopcNaQS+dz0I9QQbByJLgyqvV+UDc3RM9XQ=) 4: 45DE9550BADF11F09B91D509C4F9AE02.roa (hash: VFxaFuE3kLPbmnaiebPltW71W8wxxR4QeAfyqtq3Fsc=) 5: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: 2LqeRUOZAwgxybnlCEWpL5xaNP5BZabdtxW3D8ogqXA=) 6: FD9DD964D0FE11F09871A984C4F9AE02.roa (hash: fCNwY+bFmbNIKvRtyJc3Fedqpi08Sju/q2nGO6Ir4oQ=) 7: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: zZKkU5m5jrELsXLPpU2iKiEvYddsb6m7m0BK+ZsPDg0=) 8: 336E2134D0FF11F0904A3785C4F9AE02.roa (hash: /2RNIkBIhtZT+yQtCchMfxU/aFUT25YRMpbrC+A9cdA=) 9: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: TdD366YPbDVh8M4hWGlCIcUx+fM9FgqZUJ2TV/gnPRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3267 (0xcc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Apr 16 18:40:09 2026 GMT Not After : Apr 23 18:40:09 2026 GMT Subject: CN=69e12d0a-dd3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c2:25:ab:33:95:67:87:c9:ad:25:dc:bc:6a: 99:72:06:51:5e:37:39:5f:1c:7b:9e:23:02:1c:4b: 78:40:24:45:77:03:bc:2c:bb:99:8a:1c:17:44:bf: 6d:c9:ce:8b:5e:2d:00:7f:39:93:fa:74:0f:c1:59: e1:d5:d7:be:ab:9a:ff:b3:ae:b9:85:ff:8d:94:a0: 71:a5:a4:4a:e4:7f:91:a9:34:37:54:8c:88:82:6f: 6c:02:b7:8c:c6:51:8a:cf:56:ba:7e:6c:c7:04:bc: 79:e7:3c:b9:16:1d:1c:a1:51:0a:5a:ff:80:9d:aa: 2f:2f:00:3c:ce:69:70:57:c2:ef:6a:45:bf:65:32: 67:b9:8f:33:0c:4e:6f:14:ee:f6:20:20:29:12:12: 85:cc:3b:36:c7:26:85:e2:ad:e5:4a:50:8d:c1:88: e1:09:62:97:f0:52:e5:bc:dd:3a:ae:66:cd:6a:6b: fb:65:27:da:c3:1d:76:af:11:97:09:d4:19:ce:9f: 51:db:af:34:1e:d3:84:7a:ac:ed:8c:16:ba:06:68: 5b:5c:3f:d6:34:18:04:a9:a9:80:6d:d4:40:5f:b2: 15:45:44:0e:c7:bb:53:32:f0:c7:b2:ab:75:f0:3a: 59:92:23:b5:d3:13:4a:7d:4b:b2:de:e2:89:9d:1b: 27:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:21:64:F9:59:A7:47:32:A8:9A:24:70:91:3C:D5:2F:D8:52:57:7C X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ea:e3:df:40:61:e1:1f:86:7f:b1:38:dc:bf:55:1f:18:5c: 03:67:a3:98:bc:8b:e4:5c:eb:5b:a1:bc:5c:01:22:b3:d0:fb: a9:1f:19:4e:84:59:fa:89:02:69:09:5c:1d:80:75:4a:8e:6e: 36:fa:cb:27:5e:8f:ef:ca:ea:2b:e5:a5:c7:4d:59:63:8d:ef: 2c:a7:aa:2c:6c:84:e1:e0:89:2a:98:e2:ff:3c:07:6d:46:fb: 50:5a:f8:62:86:b2:ce:2e:3a:89:0b:c9:f4:a9:c1:66:a7:18: bf:58:e6:0f:14:18:be:a4:fd:aa:7d:3b:79:53:30:cf:ea:88: b3:a6:ef:ec:fa:09:51:76:e3:61:00:fc:15:3f:92:99:bb:af: 4b:dd:cc:55:06:08:f5:66:ff:5b:37:26:fb:55:b8:43:f7:4b: 0c:41:6e:a2:94:15:0a:87:5c:e7:3b:3c:7a:ea:63:8e:d2:76: 3c:b0:1a:a8:23:b1:c0:9a:ad:23:a6:9c:0c:ff:97:a6:57:f6: 15:ce:99:46:8b:35:7e:89:2a:4d:de:7c:06:fe:54:50:b5:46: 39:36:48:c5:1c:f2:29:98:0d:55:22:dd:c3:b0:43:35:dc:28: b7:a2:16:00:7d:87:46:41:fc:11:24:e3:95:2e:de:3f:35:0b: f4:00:26:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjYwNDE2MTg0MDA5WhcNMjYwNDIzMTg0MDA5WjAYMRYwFAYD VQQDEw02OWUxMmQwYS1kZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmcIlqzOVZ4fJrSXcvGqZcgZRXjc5Xxx7niMCHEt4QCRFdwO8LLuZihwXRL9t yc6LXi0AfzmT+nQPwVnh1de+q5r/s665hf+NlKBxpaRK5H+RqTQ3VIyIgm9sAreM xlGKz1a6fmzHBLx55zy5Fh0coVEKWv+AnaovLwA8zmlwV8LvakW/ZTJnuY8zDE5v FO72ICApEhKFzDs2xyaF4q3lSlCNwYjhCWKX8FLlvN06rmbNamv7ZSfawx12rxGX CdQZzp9R2680HtOEeqztjBa6BmhbXD/WNBgEqamAbdRAX7IVRUQOx7tTMvDHsqt1 8DpZkiO10xNKfUuy3uKJnRsnwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLEhZPlZ p0cyqJokcJE81S/YUld8MB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALOrj30Bh4R+Gf7E43L9VHxhcA2ejmLyL5FzrW6G8XAEis9D7qR8ZToRZ+okC aQlcHYB1So5uNvrLJ16P78rqK+Wlx01ZY43vLKeqLGyE4eCJKpji/zwHbUb7UFr4 Yoayzi46iQvJ9KnBZqcYv1jmDxQYvqT9qn07eVMwz+qIs6bv7PoJUXbjYQD8FT+S mbuvS93MVQYI9Wb/Wzcm+1W4Q/dLDEFuopQVCodc5zs8eupjjtJ2PLAaqCOxwJqt I6acDP+Xplf2Fc6ZRos1fokqTd58Bv5UULVGOTZIxRzyKZgNVSLdw7BDNdwot6IW AH2HRkH8ESTjlS7ePzUL9AAmqQ== -----END CERTIFICATE-----Generated at Fri Apr 17 08:12:07 2026 by rpki-client