$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json) Hash identifier: UlTSB3edab+gguKH2iM/+tlI4CJZQMV0NibtFmv128M= Subject key identifier: 14:97:46:6A:B1:0B:BF:BA:74:4C:B4:70:07:E0:F4:1C:CB:7D:D7:AF Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft Manifest number: 91 Signing time: Wed 15 Apr 2026 07:09:09 +0000 Manifest this update: Wed 15 Apr 2026 07:09:09 +0000 Manifest next update: Wed 22 Apr 2026 07:09:09 +0000 Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: z9bV2dLgf+Q3D9vjkKYiC9GbFRfYmV2fLQ8pBIA5+i4=) 2: 224FBC52EFCF11F0A018F59D746F56BC.roa (hash: l6zP7eAxKoViI6F3M9uDYfZY33CWARrIielkD1703l4=) 3: 8C538C5AEFCF11F0889DE39E746F56BC.roa (hash: eiSYQZ4JbJxsufS9RcJajhzup1MJX6NMX/+qc2RSIq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 07:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Validity Not Before: Apr 15 07:09:09 2026 GMT Not After : Apr 22 07:09:09 2026 GMT Subject: CN=69df3995-4f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:dc:1f:97:b8:59:74:34:27:78:16:73:6d:77: 4c:bd:a0:e7:aa:3a:a5:2a:87:91:f7:14:c7:3a:68: 91:21:ed:7d:91:ea:46:33:3b:7d:40:75:7d:df:96: 2c:2c:a2:13:18:fd:66:1e:88:fd:ca:a2:06:50:17: 49:13:fc:8d:c8:d7:19:ce:33:59:07:46:4a:5a:43: 2d:d0:94:e0:6f:e7:d3:f9:e1:f7:23:29:3e:9a:26: d9:78:15:f2:52:69:e3:a9:d8:d0:44:03:85:3c:00: cd:a1:1e:c2:07:d0:ad:07:d0:88:01:26:66:3b:e7: bf:81:af:63:17:f6:59:38:e9:31:71:86:d4:22:e7: 20:4a:a8:a6:33:4d:74:13:4d:35:0f:a1:10:3c:15: 48:5d:2e:1e:45:09:cf:fc:c0:a2:c4:f7:d8:68:95: c6:f0:ea:ef:77:e6:8a:2e:31:f6:57:bd:f6:ae:f9: cd:46:30:1f:94:02:05:f2:8a:b2:2f:99:a2:e0:49: 97:91:98:9f:ef:19:57:a3:bc:f7:44:a6:04:92:6b: 7a:4d:e9:50:df:41:b6:ae:92:34:46:7c:21:44:a5: 6f:9a:ee:72:ca:55:12:33:15:c7:18:cf:7a:60:f5: 8f:47:ac:15:22:c6:f5:99:5e:ac:01:c6:40:bb:71: e5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:97:46:6A:B1:0B:BF:BA:74:4C:B4:70:07:E0:F4:1C:CB:7D:D7:AF X509v3 Authority Key Identifier: keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:29:73:b7:4c:6c:9a:8d:fc:c5:2f:5f:75:05:0b:89:3b:c3: cc:7e:32:63:ec:c0:9f:b5:ea:7d:2e:5e:bd:9e:28:5d:31:6c: e9:2a:71:ef:27:a7:2b:d5:ff:9f:60:41:76:55:7d:72:c1:33: a1:f7:52:72:3c:24:89:a3:d2:a2:fa:ee:6b:40:9b:78:95:e1: 7a:87:c7:a5:cc:cc:e3:8f:ed:b6:21:d8:59:b8:37:7c:1b:5f: 5c:37:41:d1:94:86:87:18:f6:21:55:4a:4c:15:eb:68:7b:89: b0:1b:35:8c:c4:ad:2e:9b:6c:e7:e5:e7:8e:56:86:fa:dc:36: 70:52:29:df:da:1b:ed:7f:fe:1d:67:33:33:39:70:0f:70:8a: 54:97:a2:02:c8:62:a5:5c:41:fb:c4:8a:e4:95:e9:d6:31:d3: b8:c5:e7:ee:bc:b7:18:93:67:61:73:4d:df:3d:97:d6:64:0d: 93:2f:4c:7d:71:79:92:da:d5:e3:c9:2e:8c:db:43:cf:86:cd: 46:ad:43:18:ef:e3:7c:72:f7:ba:6e:42:fa:5e:36:6b:3e:f0: bf:b9:19:0e:0e:0b:46:dd:c4:a5:86:11:61:ad:f3:d4:df:a6: d4:6a:13:fd:3e:5f:ff:7b:4e:59:19:43:fe:b7:09:aa:e7:9b: 4f:4f:d8:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1QzMxMTAvBgNVBAUTKDlFQkRBMTIzRDlFRTgzMDk0MzA1QTExODBDMkEwODA1 N0ZFNTQwNkEwHhcNMjYwNDE1MDcwOTA5WhcNMjYwNDIyMDcwOTA5WjAYMRYwFAYD VQQDEw02OWRmMzk5NS00ZjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh9wfl7hZdDQneBZzbXdMvaDnqjqlKoeR9xTHOmiRIe19kepGMzt9QHV935Ys LKITGP1mHoj9yqIGUBdJE/yNyNcZzjNZB0ZKWkMt0JTgb+fT+eH3Iyk+mibZeBXy UmnjqdjQRAOFPADNoR7CB9CtB9CIASZmO+e/ga9jF/ZZOOkxcYbUIucgSqimM010 E001D6EQPBVIXS4eRQnP/MCixPfYaJXG8Orvd+aKLjH2V732rvnNRjAflAIF8oqy L5mi4EmXkZif7xlXo7z3RKYEkmt6TelQ30G2rpI0RnwhRKVvmu5yylUSMxXHGM96 YPWPR6wVIsb1mV6sAcZAu3HlTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBSXRmqx C7+6dEy0cAfg9BzLfdevMB8GA1UdIwQYMBaAFJ69oSPZ7oMJQwWhGAwqCAV/5UBq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjVDMy8yMzI2QzYzRTY2 MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3bERCYUVZRENvSUJYX2xR R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25yMmhJOW51Z3dsREJhRVlEQ29JQlhfbFFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjVDMy8yMzI2QzYzRTY2MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3 bERCYUVZRENvSUJYX2xRR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATSlzt0xsmo38xS9fdQULiTvDzH4yY+zAn7XqfS5evZ4oXTFs6Spx7yenK9X/ n2BBdlV9csEzofdScjwkiaPSovrua0CbeJXheofHpczM44/ttiHYWbg3fBtfXDdB 0ZSGhxj2IVVKTBXraHuJsBs1jMStLpts5+XnjlaG+tw2cFIp39ob7X/+HWczMzlw D3CKVJeiAshipVxB+8SK5JXp1jHTuMXn7ry3GJNnYXNN3z2X1mQNky9MfXF5ktrV 48kujNtDz4bNRq1DGO/jfHL3um5C+l42az7wv7kZDg4LRt3EpYYRYa3z1N+m1GoT /T5f/3tOWRlD/rcJquebT0/Y1w== -----END CERTIFICATE-----Generated at Fri Apr 17 07:04:57 2026 by rpki-client