$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: HfzcyZuD7EiE7BsxDaPVzz8e9KmYNpAJcZrezkuLuZQ= Subject key identifier: E2:A5:21:D9:9C:A6:E0:83:BC:0F:72:88:E2:A3:DB:51:F8:01:F6:DB Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: 0221 Signing time: Sun 19 Apr 2026 02:30:18 +0000 Manifest this update: Sun 19 Apr 2026 02:30:18 +0000 Manifest next update: Sun 26 Apr 2026 02:30:18 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: k+SrtNchHnqrB4Pvh6PqDi7YaJM/MGNQhunHtCW3Fhk=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: FFWol5YnwfZP+TKiyDIT69Kx3yIeCa0SCkT1OePuq3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9, serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Validity Not Before: Apr 19 02:30:18 2026 GMT Not After : Apr 26 02:30:18 2026 GMT Subject: CN=69e43e3a-db84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5e:3a:17:94:73:d1:e2:e3:68:01:e2:3b:40: ff:24:41:41:7b:a5:6b:34:32:0c:2b:98:d1:71:b5: 86:23:32:1f:6c:88:19:d4:82:29:b3:7a:50:e6:a3: df:a1:25:e1:b6:ab:38:e6:59:cf:36:29:9e:41:c5: c0:ff:d7:e5:de:1b:9a:27:9f:ca:e3:df:e7:5c:07: 36:15:15:2a:75:50:16:11:5f:5e:e6:55:ea:bf:71: 33:f0:5d:1e:32:1a:c8:a4:41:37:9e:62:08:2e:bc: 47:1d:2b:04:dd:8f:10:3a:13:76:01:76:05:da:bd: 4a:07:7e:41:55:e3:08:a0:47:0c:75:dd:21:33:a6: c9:74:46:f9:25:c0:f5:c0:59:9d:a3:95:a9:92:90: 53:cd:a0:f7:d2:a7:f2:56:54:90:73:70:9c:f4:33: 45:f9:dd:e1:df:38:37:a6:c9:ec:91:fe:33:74:e9: a1:cf:84:24:49:ff:0c:13:18:18:91:73:98:52:48: 4b:b3:18:d1:4b:fa:36:53:ff:e5:d8:53:41:2f:98: 6a:10:15:54:82:ec:b6:e7:a8:b0:46:5c:dd:1c:b2: f8:d6:38:ef:0c:c1:b9:82:8d:c5:d5:f7:e4:c7:7d: 8b:12:d8:7b:cd:cf:f1:97:0b:77:44:11:ba:03:96: f6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A5:21:D9:9C:A6:E0:83:BC:0F:72:88:E2:A3:DB:51:F8:01:F6:DB X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:5b:07:c3:ac:42:59:0a:6a:83:1d:e2:0d:f5:81:87:bd:7d: 6b:5b:bc:cb:51:44:60:40:8e:f4:a7:af:c1:dc:2c:da:ac:4c: f2:b1:a7:49:82:b6:e0:ab:96:0c:2d:c7:69:dd:68:9b:1a:98: c1:94:3e:2a:f9:df:fe:f8:d8:16:f6:2f:03:9e:96:25:16:47: 64:76:50:96:2d:8c:61:dc:30:59:2f:08:f0:76:78:ce:04:a4: e1:41:ad:f8:95:47:51:f4:9c:7a:24:7e:5e:ce:32:98:1c:e6: c5:9f:96:a4:53:5b:2d:f1:f6:0d:4e:c2:9d:b0:37:93:3c:c3: 51:7c:a5:dc:65:f6:2f:a9:1c:2b:b3:7f:38:dc:33:54:1c:d5: 89:d1:a0:46:69:a2:e5:53:09:53:84:53:0e:26:56:4b:30:f8: 69:d7:ff:33:ee:0d:d4:b2:68:ae:66:f7:46:43:cc:56:f0:4e: 33:61:1e:17:46:01:7e:af:40:4c:f2:c2:94:a3:d7:0a:d6:c7: 1c:66:f0:7a:df:03:02:31:db:02:95:a1:15:8a:74:cf:a5:4d: cc:7c:04:45:28:52:ac:9e:dc:b2:69:63:cd:8f:af:85:65:01: ac:d3:9c:68:00:ac:d3:e0:0d:03:e0:c9:4b:24:75:04:0a:77: fc:0a:31:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjYwNDE5MDIzMDE4WhcNMjYwNDI2MDIzMDE4WjAYMRYwFAYD VQQDEw02OWU0M2UzYS1kYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAol46F5Rz0eLjaAHiO0D/JEFBe6VrNDIMK5jRcbWGIzIfbIgZ1IIps3pQ5qPf oSXhtqs45lnPNimeQcXA/9fl3huaJ5/K49/nXAc2FRUqdVAWEV9e5lXqv3Ez8F0e MhrIpEE3nmIILrxHHSsE3Y8QOhN2AXYF2r1KB35BVeMIoEcMdd0hM6bJdEb5JcD1 wFmdo5WpkpBTzaD30qfyVlSQc3Cc9DNF+d3h3zg3psnskf4zdOmhz4QkSf8MExgY kXOYUkhLsxjRS/o2U//l2FNBL5hqEBVUguy256iwRlzdHLL41jjvDMG5go3F1ffk x32LEth7zc/xlwt3RBG6A5b2gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOKlIdmc puCDvA9yiOKj21H4AfbbMB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeVsHw6xCWQpqgx3iDfWBh719a1u8y1FEYECO9Kevwdws2qxM8rGnSYK24KuW DC3Had1omxqYwZQ+Kvnf/vjYFvYvA56WJRZHZHZQli2MYdwwWS8I8HZ4zgSk4UGt +JVHUfSceiR+Xs4ymBzmxZ+WpFNbLfH2DU7CnbA3kzzDUXyl3GX2L6kcK7N/ONwz VBzVidGgRmmi5VMJU4RTDiZWSzD4adf/M+4N1LJormb3RkPMVvBOM2EeF0YBfq9A TPLClKPXCtbHHGbwet8DAjHbApWhFYp0z6VNzHwERShSrJ7csmljzY+vhWUBrNOc aACs0+ANA+DJSyR1BAp3/AoxDg== -----END CERTIFICATE-----Generated at Sun Apr 19 11:00:00 2026 by rpki-client