$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft (raw, json) Hash identifier: vWocAMEl76BS0hGPVw3tZecqkOulz9RTAgOCVB4NSgE= Subject key identifier: E6:13:04:A3:BE:F1:05:B4:42:B8:2E:DA:54:50:E0:D1:B9:93:DE:05 Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft Manifest number: D2 Signing time: Fri 17 Apr 2026 06:38:57 +0000 Manifest this update: Fri 17 Apr 2026 06:38:56 +0000 Manifest next update: Fri 24 Apr 2026 06:38:56 +0000 Files and hashes: 1: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl (hash: JX698DFoxCzKgF9TYt+fjkRSBkmU8+C9Dasfn/F/okM=) 2: 692243D640AA11F096F2746AC4F9AE02.roa (hash: hrId0XK3QT59rfCxOyEsibtNRieUfn4KutYpjg3t3lE=) 3: 572A655C6E8E11F0BC00AD68C4F9AE02.roa (hash: FmJuf298hS3Cq5FkDNYaTuFTUFK1cdgTe8R72xFRVHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Apr 17 06:38:56 2026 GMT Not After : Apr 24 06:38:56 2026 GMT Subject: CN=69e1d581-f032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ea:06:d6:fc:f3:46:06:f9:c4:05:28:5e:9e: c3:46:32:42:58:69:1d:9b:76:4b:35:d5:f3:8f:eb: ea:ed:df:af:81:02:6c:b0:f6:d0:ed:47:31:cf:95: 2c:59:33:47:f2:0c:62:3a:28:fb:8b:42:4e:1e:eb: e4:d5:ff:13:c3:a6:9f:e0:6f:61:6e:96:b2:5f:98: c4:3d:6f:35:7b:7d:13:ac:2e:41:a7:cb:b2:77:09: 65:7b:da:12:6b:28:0e:ed:df:19:fb:56:03:c3:2d: d6:2a:91:dc:67:00:83:77:78:93:4b:3c:ae:d4:e2: 35:65:68:59:ac:3f:1d:7a:62:ed:09:fb:10:f3:f8: e2:5c:ff:0d:fa:75:1e:72:1f:21:93:0d:8e:fd:68: 31:e5:ae:0f:c9:bc:96:88:50:1f:65:cc:6b:d0:5d: 36:86:41:4a:7d:c9:2c:f7:77:f0:27:a1:ff:62:48: d3:7f:01:f0:90:bf:ea:3a:cb:40:f3:fa:1f:c9:b9: de:3d:eb:1b:75:eb:f8:1d:2a:ff:3b:1e:25:16:c3: 7b:3a:c6:21:e3:92:15:8a:77:63:94:f7:cf:25:fa: 9e:86:0d:35:af:69:2c:96:87:98:6b:9f:a4:32:f9: d8:a8:75:ea:b8:7f:28:ff:19:59:b6:42:a0:b3:03: 77:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:13:04:A3:BE:F1:05:B4:42:B8:2E:DA:54:50:E0:D1:B9:93:DE:05 X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:7a:11:a3:7d:13:74:63:30:92:85:0e:39:79:ad:70:9f:9f: 94:f0:d3:c3:23:e0:2c:b2:3f:4d:cb:96:41:4e:33:8b:bc:22: eb:7e:19:a4:57:7d:d4:53:dd:e3:ec:96:f8:98:83:13:22:84: 69:29:92:87:eb:3d:b3:19:e8:58:c8:a2:b1:10:d0:52:0d:64: 09:ce:e1:fc:30:44:75:5b:b8:f9:a8:70:61:23:e7:af:80:49: 35:5f:1f:98:b1:64:d3:88:e0:bc:02:4a:52:06:a0:c5:d2:5c: 27:dd:8c:4c:8a:d3:f6:f7:2c:e5:1b:34:97:10:29:d1:8f:6e: c9:54:05:ae:62:92:07:9f:1c:6c:93:c3:90:db:bc:b3:91:f8: 2d:aa:f9:a1:c7:20:45:a8:fb:7d:8b:5b:b4:1d:d8:d6:0a:48: 21:1f:c4:82:0c:01:92:e9:f2:3d:60:e1:0e:a4:9e:9f:90:f3: 5d:da:42:f4:9c:6d:57:68:e5:7f:24:a5:50:a3:94:5d:5e:b1: 3d:40:a6:4d:41:b1:5c:41:19:3e:54:2f:6f:0f:7e:32:39:23: 88:14:56:c4:aa:e2:41:4b:12:ff:f3:85:f8:51:c6:e4:ea:54: aa:91:c5:f8:e5:be:c3:c4:6b:bf:0b:28:0d:a7:c6:2b:5a:77: 89:7b:36:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2RkYxMTAvBgNVBAUTKERGQ0E4RkRBQTVGRUY5NDhFMEVDRjZGOUM3MDM2MzlC NTY1MzlEOTkwHhcNMjYwNDE3MDYzODU2WhcNMjYwNDI0MDYzODU2WjAYMRYwFAYD VQQDEw02OWUxZDU4MS1mMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOoG1vzzRgb5xAUoXp7DRjJCWGkdm3ZLNdXzj+vq7d+vgQJssPbQ7Ucxz5Us WTNH8gxiOij7i0JOHuvk1f8Tw6af4G9hbpayX5jEPW81e30TrC5Bp8uydwlle9oS aygO7d8Z+1YDwy3WKpHcZwCDd3iTSzyu1OI1ZWhZrD8demLtCfsQ8/jiXP8N+nUe ch8hkw2O/Wgx5a4PybyWiFAfZcxr0F02hkFKfcks93fwJ6H/YkjTfwHwkL/qOstA 8/ofybnePesbdev4HSr/Ox4lFsN7OsYh45IVindjlPfPJfqehg01r2ksloeYa5+k MvnYqHXquH8o/xlZtkKgswN3owIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOYTBKO+ 8QW0Qrgu2lRQ4NG5k94FMB8GA1UdIwQYMBaAFN/Kj9ql/vlI4Oz2+ccDY5tWU52Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTZGRi8yREE1NTkxMjE0 MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1Vamc3UGI1eHdOam0xWlRu WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTZGRi8yREE1NTkxMjE0MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1V amc3UGI1eHdOam0xWlRuWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ3oRo30TdGMwkoUOOXmtcJ+flPDTwyPgLLI/TcuWQU4zi7wi634ZpFd91FPd 4+yW+JiDEyKEaSmSh+s9sxnoWMiisRDQUg1kCc7h/DBEdVu4+ahwYSPnr4BJNV8f mLFk04jgvAJKUgagxdJcJ92MTIrT9vcs5Rs0lxAp0Y9uyVQFrmKSB58cbJPDkNu8 s5H4Lar5occgRaj7fYtbtB3Y1gpIIR/EggwBkunyPWDhDqSen5DzXdpC9JxtV2jl fySlUKOUXV6xPUCmTUGxXEEZPlQvbw9+MjkjiBRWxKriQUsS//OF+FHG5OpUqpHF +OW+w8RrvwsoDafGK1p3iXs2Gw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:08:13 2026 by rpki-client