$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft File: 1WeS1ZfpzdAr_BbQtJLaParggPw.mft (raw, json) Hash identifier: t2UD+QZpwW9AtCOKUiAO0ANYp66iNj3+RVAuTzXU4dM= Subject key identifier: 33:B4:1D:5C:D7:8C:0F:D4:2A:2A:0B:8C:1C:2D:70:8C:30:21:C7:27 Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1FCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft Manifest number: 1FA2 Signing time: Thu 16 Apr 2026 15:57:30 +0000 Manifest this update: Thu 16 Apr 2026 15:57:29 +0000 Manifest next update: Thu 23 Apr 2026 15:57:29 +0000 Files and hashes: 1: 1WeS1ZfpzdAr_BbQtJLaParggPw.crl (hash: PFWb3hXxBdupg9gybg1Wo9i3pc9WGlQPbcvz5mKj95Y=) 2: 317CF2A634E811EFA8BEA738C4F9AE02.roa (hash: +mfxCLFmT0kAngWE0QR8njelgu56dCQ+gYLAva7jY7M=) 3: 500DFDA8578611EA8CC3B124C4F9AE02.roa (hash: 5LNSq5pdKybofu1UpxkFVG9Ohf/hU7Yt5u2ontP0MD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8142 (0x1fce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Apr 16 15:57:29 2026 GMT Not After : Apr 23 15:57:29 2026 GMT Subject: CN=69e106ea-0c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:75:f6:a7:81:93:8f:75:c5:97:75:f3:36:4a: 53:6a:e5:81:8e:74:bb:f8:7b:90:b9:75:85:25:6b: 97:98:d2:96:05:ad:65:15:7f:23:8a:28:99:fa:ab: 07:8d:d4:68:d6:79:c8:7e:4f:66:36:c2:8b:df:f9: f6:e7:77:0c:38:ce:44:f8:07:01:15:5e:e0:0b:ca: 55:7b:ba:c9:a7:41:e2:d0:b9:c4:d4:cc:93:24:69: e4:ef:5b:e1:d5:cc:9b:65:b1:1b:93:3b:3e:fa:8a: 98:46:05:f7:26:00:2a:0f:ff:fc:a4:07:72:62:80: 00:6d:74:d2:05:6a:18:c7:69:3b:43:97:20:14:c5: 77:df:43:c3:d9:d2:96:13:91:9b:c5:00:e1:18:19: 9d:28:28:cf:67:65:36:11:ac:54:bc:66:7d:43:a0: 9e:e2:26:e0:f9:7d:06:29:7c:7c:d0:63:37:b8:60: 0b:22:fd:37:78:d3:9e:ea:1c:4c:cf:29:38:b6:bd: c4:e5:98:5d:37:60:8d:a3:2c:54:07:ed:c9:a4:70: 42:22:99:06:eb:12:20:75:bb:a9:ed:79:82:58:ba: 7b:f3:57:8d:f7:20:09:fc:5f:f2:1a:70:5c:fa:2e: 35:82:b7:7c:cd:37:b7:c7:53:c5:8e:c5:d7:98:13: ee:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B4:1D:5C:D7:8C:0F:D4:2A:2A:0B:8C:1C:2D:70:8C:30:21:C7:27 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:bb:ea:eb:c5:a1:b7:ea:71:60:77:19:8d:ef:fc:11:fe:34: f2:c2:31:7b:bc:85:75:07:84:da:71:d7:08:53:2a:c8:5e:2a: 0a:49:43:ee:87:60:24:03:62:ed:a6:60:46:5c:95:ea:64:07: 27:3c:5d:5d:b6:64:e8:57:de:5b:4c:84:c3:ce:fd:ec:35:e3: 30:c0:c6:8f:50:1b:f4:d6:1a:49:e8:ac:6a:56:90:8a:de:0f: 38:52:24:04:ea:64:d4:2d:3c:5a:63:58:95:11:f6:48:a1:b3: 55:8a:e0:e5:5f:fd:c7:f6:d1:4d:3d:7f:fe:50:51:e0:83:5d: da:e1:e9:f0:0b:3d:36:bc:31:f9:7f:bd:70:ec:7f:63:40:70: b3:e5:47:34:ab:d9:03:94:7f:4b:3f:30:67:c4:74:84:f4:f9: eb:24:fc:b0:4c:86:e5:46:f9:f9:6b:fc:d4:80:2f:51:e6:f4: bd:54:66:0e:ab:4a:85:92:b6:16:69:24:8b:55:96:ee:a4:be: 23:57:55:0e:a1:33:0e:1b:e8:c0:af:08:8d:ba:15:22:56:8f: 8c:24:ca:cb:da:c4:ca:c2:98:82:ae:78:76:28:af:00:3a:f2: c9:ba:57:e7:df:0c:3e:47:90:ee:0c:68:0d:f0:09:35:cf:e8: 05:41:af:db -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICH84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjYwNDE2MTU1NzI5WhcNMjYwNDIzMTU1NzI5WjAYMRYwFAYD VQQDEw02OWUxMDZlYS0wYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nX2p4GTj3XFl3XzNkpTauWBjnS7+HuQuXWFJWuXmNKWBa1lFX8jiiiZ+qsH jdRo1nnIfk9mNsKL3/n253cMOM5E+AcBFV7gC8pVe7rJp0Hi0LnE1MyTJGnk71vh 1cybZbEbkzs++oqYRgX3JgAqD//8pAdyYoAAbXTSBWoYx2k7Q5cgFMV330PD2dKW E5GbxQDhGBmdKCjPZ2U2EaxUvGZ9Q6Ce4ibg+X0GKXx80GM3uGALIv03eNOe6hxM zyk4tr3E5ZhdN2CNoyxUB+3JpHBCIpkG6xIgdbup7XmCWLp781eN9yAJ/F/yGnBc +i41grd8zTe3x1PFjsXXmBPukQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDO0HVzX jA/UKioLjBwtcIwwIccnMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFFQS85QUYzRUQyODVFRUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpk QXJfQmJRdEpMYVBhcmdnUHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADbvq68Wht+pxYHcZje/8Ef408sIxe7yFdQeE2nHXCFMqyF4qCklD7odgJANi 7aZgRlyV6mQHJzxdXbZk6FfeW0yEw8797DXjMMDGj1Ab9NYaSeisalaQit4POFIk BOpk1C08WmNYlRH2SKGzVYrg5V/9x/bRTT1//lBR4INd2uHp8As9Nrwx+X+9cOx/ Y0Bws+VHNKvZA5R/Sz8wZ8R0hPT56yT8sEyG5Ub5+Wv81IAvUeb0vVRmDqtKhZK2 Fmkki1WW7qS+I1dVDqEzDhvowK8IjboVIlaPjCTKy9rEysKYgq54diivADryybpX 598MPkeQ7gxoDfAJNc/oBUGv2w== -----END CERTIFICATE-----Generated at Fri Apr 17 07:09:12 2026 by rpki-client