$ rpki-client -vvf rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.mft File: iQyucO4FJzcpUQC_DPAR6zIEYrc.mft (raw, json) Hash identifier: J1g/6UsRO4dp0Cg0tr4Of8FXZjw3dVqseF44hPEkf/0= Subject key identifier: C0:40:4D:7D:D8:CD:BE:28:F2:31:18:0E:6C:34:42:6F:68:CA:E2:F7 Authority key identifier: 89:0C:AE:70:EE:05:27:37:29:51:00:BF:0C:F0:11:EB:32:04:62:B7 Certificate issuer: /CN=A91801AC/serialNumber=890CAE70EE052737295100BF0CF011EB320462B7 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQyucO4FJzcpUQC_DPAR6zIEYrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.mft Manifest number: 22 Signing time: Fri 17 Apr 2026 08:37:22 +0000 Manifest this update: Fri 17 Apr 2026 08:37:21 +0000 Manifest next update: Fri 24 Apr 2026 08:37:21 +0000 Files and hashes: 1: iQyucO4FJzcpUQC_DPAR6zIEYrc.crl (hash: D+f6AFpWJKnCVK/FIj1mIw25kUX2Sfd0wlMPqwxBKuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.crl rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQyucO4FJzcpUQC_DPAR6zIEYrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91801AC, serialNumber=890CAE70EE052737295100BF0CF011EB320462B7 Validity Not Before: Apr 17 08:37:21 2026 GMT Not After : Apr 24 08:37:21 2026 GMT Subject: CN=69e1f141-22e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:f1:4a:8a:90:a1:19:56:51:1f:e7:a9:7c: 45:e7:8b:5d:86:75:05:10:b8:42:46:a8:6b:48:b7: 1a:c3:53:63:bb:f9:30:71:51:08:c6:3e:f2:ac:9d: 33:00:43:fd:9c:f2:8b:0f:64:0a:83:e1:e6:12:54: 65:b9:a7:36:2a:de:dd:0d:2e:2a:88:5c:eb:65:c6: ed:d1:78:b6:08:c6:6d:9b:1a:f8:4f:77:53:ad:0e: 81:9f:73:3d:49:11:ce:35:b0:8c:68:e1:70:c6:d1: d6:36:f5:5f:f5:2a:33:95:25:bd:74:91:90:a0:d7: e6:5a:3c:49:df:38:24:91:86:fa:fe:08:12:0a:d4: 3d:f7:b7:a6:e4:53:f6:d8:ad:05:6f:5a:ed:46:b5: cc:8a:d4:09:ca:b6:9c:c1:36:5c:7a:8a:e2:ea:7a: e2:2c:be:1a:59:69:14:01:01:a0:af:05:41:00:0e: 6b:3d:24:50:2b:d2:a9:ac:16:90:04:6a:5e:73:7b: 4c:5a:70:02:84:67:7a:a0:72:60:da:0d:b1:a3:57: 31:64:7e:4d:4d:91:60:5e:b4:1b:ad:56:f3:02:34: 2b:a5:5e:9b:e0:a0:c4:e9:60:68:b2:bc:8f:d6:48: f1:67:c4:e3:5f:de:f3:b0:9c:83:24:0a:e4:30:50: 2a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:40:4D:7D:D8:CD:BE:28:F2:31:18:0E:6C:34:42:6F:68:CA:E2:F7 X509v3 Authority Key Identifier: keyid:89:0C:AE:70:EE:05:27:37:29:51:00:BF:0C:F0:11:EB:32:04:62:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQyucO4FJzcpUQC_DPAR6zIEYrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:0b:f3:09:ea:c6:06:02:c2:96:58:92:38:56:b5:39:4b:7f: df:b1:86:dd:1c:af:71:84:14:f4:c7:e7:bb:04:5d:02:52:29: 96:95:c9:d2:07:d2:f4:71:2c:70:5b:88:45:52:38:8b:89:64: 15:c1:6e:69:e5:d8:f5:a8:0b:94:4a:5a:c8:74:df:49:9e:95: e3:1e:6b:9b:7c:f8:c0:4a:92:e9:0b:9f:53:d9:8a:7a:f9:9b: a5:89:41:bf:06:dd:ec:b0:bc:0c:43:d1:9d:69:f2:54:e9:a8: b1:b3:a8:cc:ce:ad:5a:ed:0d:09:76:4f:19:09:95:b7:f9:31: 2b:c6:fa:b3:75:75:39:bd:65:d8:04:3c:02:02:4a:3d:9f:b1: 79:07:42:2d:b5:74:ba:20:8d:de:f4:d7:21:98:77:a5:bf:c8: a7:ba:b1:2d:cc:ad:17:49:60:0a:80:f0:b8:db:4e:d3:e1:75: 42:d1:e5:2d:8a:ab:6f:25:56:2b:a7:d6:b8:22:e7:e4:f3:cb: cc:36:d0:44:16:12:d4:e4:9b:2e:d4:d2:9e:40:25:27:e1:ab: e7:8e:b5:e6:10:b3:c1:54:9c:4a:08:96:93:10:c5:0a:be:52: bf:24:b0:7e:57:89:87:00:fe:87:be:9f:04:69:1d:5e:ad:51: b2:0a:0f:42 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDFBQzExMC8GA1UEBRMoODkwQ0FFNzBFRTA1MjczNzI5NTEwMEJGMENGMDExRUIz MjA0NjJCNzAeFw0yNjA0MTcwODM3MjFaFw0yNjA0MjQwODM3MjFaMBgxFjAUBgNV BAMTDTY5ZTFmMTQxLTIyZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4cvFKipChGVZRH+epfEXni12GdQUQuEJGqGtItxrDU2O7+TBxUQjGPvKsnTMA Q/2c8osPZAqD4eYSVGW5pzYq3t0NLiqIXOtlxu3ReLYIxm2bGvhPd1OtDoGfcz1J Ec41sIxo4XDG0dY29V/1KjOVJb10kZCg1+ZaPEnfOCSRhvr+CBIK1D33t6bkU/bY rQVvWu1GtcyK1AnKtpzBNlx6iuLqeuIsvhpZaRQBAaCvBUEADms9JFAr0qmsFpAE al5ze0xacAKEZ3qgcmDaDbGjVzFkfk1NkWBetButVvMCNCulXpvgoMTpYGiyvI/W SPFnxONf3vOwnIMkCuQwUCr3AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUwEBNfdjN vijyMRgObDRCb2jK4vcwHwYDVR0jBBgwFoAUiQyucO4FJzcpUQC/DPAR6zIEYrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwMUFDL0IwNzUwMjhBMTJD QTExRjFCQ0JBMDA1RTA2M0Q4QzY3L2lReXVjTzRGSnpjcFVRQ19EUEFSNnpJRVly Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVF5dWNPNEZKemNwVVFDX0RQQVI2eklFWXJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw MUFDL0IwNzUwMjhBMTJDQTExRjFCQ0JBMDA1RTA2M0Q4QzY3L2lReXVjTzRGSnpj cFVRQ19EUEFSNnpJRVlyYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC1C/MJ6sYGAsKWWJI4VrU5S3/fsYbdHK9xhBT0x+e7BF0CUimWlcnSB9L0cSxw W4hFUjiLiWQVwW5p5dj1qAuUSlrIdN9JnpXjHmubfPjASpLpC59T2Yp6+ZuliUG/ Bt3ssLwMQ9GdafJU6aixs6jMzq1a7Q0Jdk8ZCZW3+TErxvqzdXU5vWXYBDwCAko9 n7F5B0IttXS6II3e9NchmHelv8inurEtzK0XSWAKgPC4207T4XVC0eUtiqtvJVYr p9a4Iufk88vMNtBEFhLU5Jsu1NKeQCUn4avnjrXmELPBVJxKCJaTEMUKvlK/JLB+ V4mHAP6Hvp8EaR1erVGyCg9C -----END CERTIFICATE-----Generated at Fri Apr 17 18:03:04 2026 by rpki-client