$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft File: ApdxaY8oNwXUpN4S5XOVhcvrjww.mft (raw, json) Hash identifier: O70hY8itFMKrnIN0dDVDMpFOp3/GB7Torvr99mcjhvs= Subject key identifier: 0A:95:89:C1:C0:55:84:17:9D:51:D8:65:04:E6:6A:BE:4F:E2:49:4C Authority key identifier: 02:97:71:69:8F:28:37:05:D4:A4:DE:12:E5:73:95:85:CB:EB:8F:0C Certificate issuer: /CN=A91772FA/serialNumber=029771698F283705D4A4DE12E5739585CBEB8F0C Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ApdxaY8oNwXUpN4S5XOVhcvrjww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft Manifest number: 26 Signing time: Fri 17 Apr 2026 00:32:27 +0000 Manifest this update: Fri 17 Apr 2026 00:32:27 +0000 Manifest next update: Fri 24 Apr 2026 00:32:27 +0000 Files and hashes: 1: ApdxaY8oNwXUpN4S5XOVhcvrjww.crl (hash: oPQ+6BG542JHyDiyeGjA7fgY27fGqs9slLuxfNo44vs=) 2: 579B4ED2266411F1AE95FD6DA8833773.roa (hash: Wh6GMEPQbJm2Jl2DMg8rLhNDPE89Mo+plpzmnnXpFTs=) 3: 56C55F20266411F1AE95FD6DA8833773.roa (hash: hUJYmbEayh5+7CMHRvgMiSYWtpPReQpF/dZMyCcKu4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.crl rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ApdxaY8oNwXUpN4S5XOVhcvrjww.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:32:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=029771698F283705D4A4DE12E5739585CBEB8F0C Validity Not Before: Apr 17 00:32:27 2026 GMT Not After : Apr 24 00:32:27 2026 GMT Subject: CN=69e17f9b-8f28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:69:b8:f1:d6:04:41:fd:64:b2:54:1e:63: 09:81:76:93:ca:07:c8:01:e2:cb:0a:32:23:13:3a: 9c:ac:84:a6:9f:86:25:67:cd:97:a8:d9:54:4b:56: 76:da:88:f3:21:d8:93:71:9a:07:f2:50:3e:7f:35: 07:ac:fe:e2:2a:3a:d7:8e:a3:9e:03:ab:0d:e3:7a: a5:60:cc:9d:53:75:f7:1e:3a:dd:15:da:6a:af:d3: 43:2c:19:db:33:0e:96:4d:41:41:90:7a:b3:03:d9: d1:0f:8e:8a:c3:e7:91:87:d3:c8:b2:a6:60:f2:0c: 64:4b:02:e4:a0:aa:88:2b:c4:49:ff:0d:c4:36:d5: 15:18:a2:44:b8:e5:a3:84:ee:be:77:86:bb:4d:34: 71:e4:73:e4:a6:d1:c9:14:84:31:05:5e:9d:49:d7: ea:a1:ab:c2:67:6e:ee:f8:2e:a5:6f:e6:87:6d:93: f6:4c:52:c1:bf:25:18:c1:15:d2:ec:6b:45:5e:0e: 50:bc:c4:e4:0f:a0:db:b3:68:40:74:21:fe:eb:11: fa:af:f6:67:7d:ca:da:96:86:d9:12:9a:f7:70:2e: 99:98:34:11:75:d5:5a:96:c7:87:20:e4:95:2b:9d: c9:8e:98:6b:ca:dc:11:c8:a0:d8:db:06:31:be:a2: 89:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:95:89:C1:C0:55:84:17:9D:51:D8:65:04:E6:6A:BE:4F:E2:49:4C X509v3 Authority Key Identifier: keyid:02:97:71:69:8F:28:37:05:D4:A4:DE:12:E5:73:95:85:CB:EB:8F:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ApdxaY8oNwXUpN4S5XOVhcvrjww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a6:e4:08:89:7a:45:43:28:14:63:92:8f:d0:dd:6d:1a:43: 0c:21:26:73:7e:04:4d:b5:2e:3f:a0:15:0e:07:1a:b0:2c:98: 7b:4b:01:05:10:37:98:f9:2e:c8:d1:ba:62:37:b8:e5:b3:01: c8:85:cf:73:c6:a6:68:af:34:3b:97:fe:79:5d:9c:d4:72:e3: 3d:38:6a:39:f7:af:03:aa:5b:aa:b8:af:d3:6e:3a:24:fe:ed: 61:53:95:a6:48:4d:58:24:11:af:e1:c7:64:84:da:e5:bb:d8: 1c:2f:09:79:84:b0:f0:8b:13:e0:c7:25:f2:f3:7b:b9:56:a3: 26:c0:96:64:99:02:8c:19:b7:e5:2f:c8:82:68:22:a0:e3:75: 9a:f0:cf:e1:e8:59:38:ec:6d:5f:a9:f5:90:9f:1f:0e:e2:6f: 72:33:83:24:df:ae:33:06:01:f8:34:87:54:5b:a2:62:f1:a4: 7a:eb:1a:d3:63:20:1f:b0:64:b8:af:07:40:eb:9e:11:1f:a1: 65:81:4f:46:d9:64:c2:54:cc:05:ae:5d:2b:79:be:d1:dc:62: 09:2e:54:3f:4f:b4:88:7f:2e:55:b9:69:4d:18:72:ea:6e:5d: bf:a5:cb:5c:b9:36:7d:e6:d1:67:29:8b:8d:b8:8e:69:01:d4: 3c:c8:48:de -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzJGQTExMC8GA1UEBRMoMDI5NzcxNjk4RjI4MzcwNUQ0QTRERTEyRTU3Mzk1ODVD QkVCOEYwQzAeFw0yNjA0MTcwMDMyMjdaFw0yNjA0MjQwMDMyMjdaMBgxFjAUBgNV BAMTDTY5ZTE3ZjliLThmMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Hmm48dYEQf1kslQeYwmBdpPKB8gB4ssKMiMTOpyshKafhiVnzZeo2VRLVnba iPMh2JNxmgfyUD5/NQes/uIqOteOo54Dqw3jeqVgzJ1TdfceOt0V2mqv00MsGdsz DpZNQUGQerMD2dEPjorD55GH08iypmDyDGRLAuSgqogrxEn/DcQ21RUYokS45aOE 7r53hrtNNHHkc+Sm0ckUhDEFXp1J1+qhq8Jnbu74LqVv5odtk/ZMUsG/JRjBFdLs a0VeDlC8xOQPoNuzaEB0If7rEfqv9md9ytqWhtkSmvdwLpmYNBF11VqWx4cg5JUr ncmOmGvK3BHIoNjbBjG+oon3AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUCpWJwcBV hBedUdhlBOZqvk/iSUwwHwYDVR0jBBgwFoAUApdxaY8oNwXUpN4S5XOVhcvrjwww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3MkZBL0I4RkYyRjE4MTEx QTExRjE4RjY5OTVBQjE3M0Q4QzY3L0FwZHhhWThvTndYVXBONFM1WE9WaGN2cmp3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvQXBkeGFZOG9Od1hVcE40UzVYT1ZoY3Zyand3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 MkZBL0I4RkYyRjE4MTExQTExRjE4RjY5OTVBQjE3M0Q4QzY3L0FwZHhhWThvTndY VXBONFM1WE9WaGN2cmp3dy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB9puQIiXpFQygUY5KP0N1tGkMMISZzfgRNtS4/oBUOBxqwLJh7SwEFEDeY+S7I 0bpiN7jlswHIhc9zxqZorzQ7l/55XZzUcuM9OGo5968DqluquK/Tbjok/u1hU5Wm SE1YJBGv4cdkhNrlu9gcLwl5hLDwixPgxyXy83u5VqMmwJZkmQKMGbflL8iCaCKg 43Wa8M/h6Fk47G1fqfWQnx8O4m9yM4Mk364zBgH4NIdUW6Ji8aR66xrTYyAfsGS4 rwdA654RH6FlgU9G2WTCVMwFrl0reb7R3GIJLlQ/T7SIfy5VuWlNGHLqbl2/pctc uTZ95tFnKYuNuI5pAdQ8yEje -----END CERTIFICATE-----Generated at Fri Apr 17 13:53:55 2026 by rpki-client