$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: 5ai0Bg5GRmP7v5Ja2f1jFHD96nFDiHXFhXN/sHt6mRw= Subject key identifier: E1:83:25:0C:DB:62:72:8B:76:C0:F8:22:49:BF:A0:95:37:45:A8:01 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 0249 Signing time: Fri 17 Apr 2026 02:11:34 +0000 Manifest this update: Fri 17 Apr 2026 02:11:33 +0000 Manifest next update: Fri 24 Apr 2026 02:11:33 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: /MI9K4aAbfImHfTmuHcTnSXkOLmekGESiWG3CBllFCw=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: rlJpxeuz4XfDgn5OftJBgDHyUQdmKKYiwzNQtX6KD/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Apr 17 02:11:33 2026 GMT Not After : Apr 24 02:11:33 2026 GMT Subject: CN=69e196d6-d17c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:20:fa:af:d5:24:79:ea:63:51:a8:d6:38:0a: 0c:11:c5:78:ba:5c:ac:1c:96:17:cf:fe:21:80:cc: 68:af:6a:14:f3:d4:e2:1b:7c:25:8c:49:28:59:ef: 9d:ad:ea:10:96:ab:16:66:69:5c:60:0d:4c:3b:05: 7c:2a:ef:e0:a2:c1:27:dd:90:d6:af:f0:6f:d1:3b: 17:e2:25:62:f4:75:a5:ec:3d:f9:f4:25:d7:88:88: 45:81:7b:2d:40:b7:76:2c:f3:5d:f0:93:76:46:46: 08:aa:d0:8c:ff:e7:f8:18:44:0d:f4:d0:90:9c:e5: c5:35:ae:e7:a6:c1:c1:05:d5:db:d2:db:ea:0a:cf: 14:88:53:2c:79:3a:58:0c:c1:fc:2c:f9:c1:e2:c7: 95:c7:b5:65:d5:35:63:aa:1c:0f:05:40:60:e9:05: 43:48:1c:07:ec:a2:cd:de:9f:8d:5f:2c:90:13:44: 94:7b:1f:04:9f:d7:77:66:61:f4:96:d9:3b:36:9d: 3c:bc:11:1d:37:6d:ee:e0:50:db:e0:da:93:01:62: f5:18:c7:42:1e:11:63:6c:87:49:e1:11:fb:67:7e: 13:f5:92:92:30:8a:b4:04:a9:34:39:28:f0:44:e1: 26:22:2c:76:e3:61:d4:26:80:72:26:d1:46:4b:fd: dd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:83:25:0C:DB:62:72:8B:76:C0:F8:22:49:BF:A0:95:37:45:A8:01 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:7d:ae:f7:6f:03:6b:93:ca:e6:53:fa:cc:94:04:5b:01:ff: 23:35:4a:6e:2a:e6:d6:12:d0:bc:a6:33:3a:44:68:b4:d7:7d: 3f:19:08:8c:ea:5f:f0:8c:74:fe:13:04:e3:65:c1:d9:36:09: d8:51:e8:ad:2d:55:8c:29:de:d0:c5:23:fe:c2:22:72:b0:96: 41:be:2f:0d:c4:f2:96:3a:ed:70:d9:20:a6:04:80:77:09:bd: e2:01:a7:44:0a:bf:86:84:31:c7:e4:aa:e7:69:e2:cf:2c:2e: b9:c1:31:71:44:5e:c2:78:4d:d2:5a:40:ba:19:48:27:0b:02: 14:4f:b0:04:9a:9b:5a:a2:f3:06:40:31:16:2d:0c:ed:46:62: 07:d6:a5:db:38:b5:a4:1c:e6:60:0e:fb:d6:09:36:dd:44:e4: 02:ac:91:6f:1e:56:cd:c0:21:83:3b:62:c1:3c:57:9f:d3:85: d9:91:22:51:a5:46:15:b3:db:2c:f1:1c:d2:91:e3:aa:11:72: d9:dc:cb:82:2e:07:c6:d2:cd:d5:04:af:5c:b6:80:4c:5e:ec: 8e:58:0c:80:fa:49:10:c2:43:6b:89:1e:7a:2e:08:2b:ac:19: e6:57:c4:8e:16:c4:51:e4:48:fa:c9:fd:ea:60:f2:a9:90:fc: 76:ed:21:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjYwNDE3MDIxMTMzWhcNMjYwNDI0MDIxMTMzWjAYMRYwFAYD VQQDEw02OWUxOTZkNi1kMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yD6r9UkeepjUajWOAoMEcV4ulysHJYXz/4hgMxor2oU89TiG3wljEkoWe+d reoQlqsWZmlcYA1MOwV8Ku/gosEn3ZDWr/Bv0TsX4iVi9HWl7D359CXXiIhFgXst QLd2LPNd8JN2RkYIqtCM/+f4GEQN9NCQnOXFNa7npsHBBdXb0tvqCs8UiFMseTpY DMH8LPnB4seVx7Vl1TVjqhwPBUBg6QVDSBwH7KLN3p+NXyyQE0SUex8En9d3ZmH0 ltk7Np08vBEdN23u4FDb4NqTAWL1GMdCHhFjbIdJ4RH7Z34T9ZKSMIq0BKk0OSjw ROEmIix242HUJoByJtFGS/3dZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOGDJQzb YnKLdsD4Ikm/oJU3RagBMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIn2u928Da5PK5lP6zJQEWwH/IzVKbirm1hLQvKYzOkRotNd9PxkIjOpf8Ix0 /hME42XB2TYJ2FHorS1VjCne0MUj/sIicrCWQb4vDcTyljrtcNkgpgSAdwm94gGn RAq/hoQxx+Sq52nizywuucExcURewnhN0lpAuhlIJwsCFE+wBJqbWqLzBkAxFi0M 7UZiB9al2zi1pBzmYA771gk23UTkAqyRbx5WzcAhgztiwTxXn9OF2ZEiUaVGFbPb LPEc0pHjqhFy2dzLgi4HxtLN1QSvXLaATF7sjlgMgPpJEMJDa4keei4IK6wZ5lfE jhbEUeRI+sn96mDyqZD8du0hog== -----END CERTIFICATE-----Generated at Fri Apr 17 10:30:03 2026 by rpki-client