$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft File: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft (raw, json) Hash identifier: Wx/SDXRe1bx22ZzDaNaVjA60V7j3woMzz87R8e0+UXk= Subject key identifier: AA:64:2E:2E:89:06:B3:04:D4:43:2F:BE:0A:2E:32:03:E4:98:91:66 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 0833 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft Manifest number: 0828 Signing time: Thu 16 Apr 2026 20:56:43 +0000 Manifest this update: Thu 16 Apr 2026 20:56:42 +0000 Manifest next update: Thu 23 Apr 2026 20:56:42 +0000 Files and hashes: 1: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl (hash: 5sdz+20fob7PC9aOIIOHulj6wJNU9pznO5W10jI2vCk=) 2: 67F4BD64519811F092842D60C4F9AE02.roa (hash: Lp3bNyJgfkc/SQZCgAth54GJ5kkoQOOIRUFq6Ssbpu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2099 (0x833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF, serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Apr 16 20:56:42 2026 GMT Not After : Apr 23 20:56:42 2026 GMT Subject: CN=69e14d0b-a660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:0d:ba:7c:ff:1e:dd:4e:db:c7:61:1b:15: 2d:bf:23:0c:c1:89:cd:cb:f3:70:d9:cc:bd:c8:9d: ff:4d:d0:64:bc:5c:59:17:e2:d1:47:c2:75:f2:86: 0d:6f:42:6f:17:c1:49:38:c0:04:50:8d:fe:c2:61: db:fb:49:3d:84:a3:e5:84:f2:6a:83:09:24:ec:ee: 58:d6:24:16:a5:3a:89:c5:df:ac:4e:ee:3b:a2:19: 5f:ee:86:36:dc:07:dd:23:ca:67:b3:51:69:d0:37: 20:d1:23:9e:67:54:23:01:44:bc:4f:88:6d:49:d4: 46:ba:67:02:c0:ec:30:2e:3b:1c:93:0b:41:0f:55: 71:2e:8d:fb:27:d7:10:82:86:44:95:a4:8e:d7:04: 5a:da:b8:9d:0e:24:79:04:19:54:45:84:fe:5f:e1: 37:f7:93:14:fb:e2:ff:f4:4a:55:f0:5b:4e:77:c0: 11:91:f0:fb:ec:2c:99:49:04:93:64:4e:28:d2:9f: b7:c9:13:c9:9a:09:47:f9:b6:c6:e7:3c:31:cf:55: cc:2e:ec:4b:4c:31:fb:46:c1:52:05:8e:b2:44:63: 70:23:c1:af:e2:44:ef:17:cd:4a:58:89:5a:31:2c: 5f:9e:41:97:80:9a:60:69:9e:d4:f8:dd:9c:e1:ea: 03:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:64:2E:2E:89:06:B3:04:D4:43:2F:BE:0A:2E:32:03:E4:98:91:66 X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:78:ef:66:6a:8c:05:28:d2:d1:f5:00:7f:5f:bf:52:02:24: 86:30:96:05:5c:49:ea:80:14:ce:d4:23:c4:aa:de:5a:42:60: 23:21:43:6f:d3:dd:b6:3e:0b:06:22:bf:ae:55:e0:51:31:44: 47:2b:a5:8a:3b:23:be:1f:56:fb:b3:22:68:73:38:a4:d4:c3: 18:ca:5b:b2:6b:5c:e4:04:e1:52:d8:0d:2f:44:0e:06:76:f8: 6c:fa:6c:c3:84:c3:54:1e:3d:a9:e6:60:c8:fa:14:2c:df:7f: 6d:1e:b9:19:04:09:ef:ee:aa:81:e2:7d:5a:23:61:ee:1a:46: ca:22:e6:7b:6b:c4:ce:49:d9:1e:28:66:1e:7b:34:42:2f:bd: f9:f3:7e:01:76:21:71:91:12:0a:ec:78:4f:06:33:5c:17:44: da:ed:18:fc:7e:5e:24:28:6a:61:9b:32:47:04:eb:f5:68:b8: 67:79:c5:64:f4:f6:06:74:a3:73:63:d9:3f:14:6d:c9:a9:c2: 7e:07:5a:31:cf:4f:bb:d8:40:8e:db:3c:90:70:7c:27:85:ed: 61:83:e1:1b:61:fd:44:63:ef:64:19:a1:fb:75:70:0a:c4:a0: 8c:f3:18:50:13:19:6c:9a:ff:bd:6c:cf:d5:8c:37:59:9d:4f: 67:93:d9:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjYwNDE2MjA1NjQyWhcNMjYwNDIzMjA1NjQyWjAYMRYwFAYD VQQDEw02OWUxNGQwYi1hNjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq0Nunz/Ht1O28dhGxUtvyMMwYnNy/Nw2cy9yJ3/TdBkvFxZF+LRR8J18oYN b0JvF8FJOMAEUI3+wmHb+0k9hKPlhPJqgwkk7O5Y1iQWpTqJxd+sTu47ohlf7oY2 3AfdI8pns1Fp0Dcg0SOeZ1QjAUS8T4htSdRGumcCwOwwLjsckwtBD1VxLo37J9cQ goZElaSO1wRa2ridDiR5BBlURYT+X+E395MU++L/9EpV8FtOd8ARkfD77CyZSQST ZE4o0p+3yRPJmglH+bbG5zwxz1XMLuxLTDH7RsFSBY6yRGNwI8Gv4kTvF81KWIla MSxfnkGXgJpgaZ7U+N2c4eoDKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKpkLi6J BrME1EMvvgouMgPkmJFmMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVCRi9GMTMzQkRBQzEzRjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1v RzNhT2lSQ0ZNVVRmSHVWVFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa3jvZmqMBSjS0fUAf1+/UgIkhjCWBVxJ6oAUztQjxKreWkJgIyFDb9Pdtj4L BiK/rlXgUTFERyulijsjvh9W+7MiaHM4pNTDGMpbsmtc5AThUtgNL0QOBnb4bPps w4TDVB49qeZgyPoULN9/bR65GQQJ7+6qgeJ9WiNh7hpGyiLme2vEzknZHihmHns0 Qi+9+fN+AXYhcZESCux4TwYzXBdE2u0Y/H5eJChqYZsyRwTr9Wi4Z3nFZPT2BnSj c2PZPxRtyanCfgdaMc9Pu9hAjts8kHB8J4XtYYPhG2H9RGPvZBmh+3VwCsSgjPMY UBMZbJr/vWzP1Yw3WZ1PZ5PZsA== -----END CERTIFICATE-----Generated at Fri Apr 17 08:07:26 2026 by rpki-client