$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft File: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft (raw, json) Hash identifier: SQDM1PHqwh64n3X4AjNBYCjhu26BJHFm/+clFw70crI= Subject key identifier: 87:B7:B1:45:25:F5:22:7E:22:D5:1B:71:B0:2F:7E:2E:DC:2E:4E:29 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft Manifest number: 0829 Signing time: Sat 18 Apr 2026 20:54:58 +0000 Manifest this update: Sat 18 Apr 2026 20:54:57 +0000 Manifest next update: Sat 25 Apr 2026 20:54:57 +0000 Files and hashes: 1: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl (hash: rq/qEbn+3cfENvQoKCqVynYyKcMeoL6RKucRf3MLzj0=) 2: 67F4BD64519811F092842D60C4F9AE02.roa (hash: Lp3bNyJgfkc/SQZCgAth54GJ5kkoQOOIRUFq6Ssbpu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 20:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF, serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Apr 18 20:54:57 2026 GMT Not After : Apr 25 20:54:57 2026 GMT Subject: CN=69e3efa2-9c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:26:ff:79:48:52:7e:3f:bb:6a:21:70:94: b6:8d:d6:79:b9:3d:61:da:f4:57:ca:b4:f2:90:02: 48:e3:4a:3f:32:71:96:34:ec:e0:5f:3a:3c:dc:89: 12:80:24:90:60:b0:13:e2:9a:27:6c:a5:4d:ba:56: 9d:6f:2b:b1:15:d1:e3:7f:da:80:a6:b5:06:e0:ee: 11:13:ed:53:d3:b7:01:80:a3:93:73:85:c5:b2:3a: db:13:35:c2:6d:01:d4:56:a7:5d:06:dc:00:43:87: 16:20:6c:42:04:13:90:78:77:cb:11:17:fd:56:a4: 95:42:12:b6:05:05:f1:cf:56:0c:47:19:42:82:0d: d9:3c:4b:a9:fc:79:3e:ff:22:17:85:0b:c9:8a:bd: f4:3d:d5:79:a1:ee:dd:2b:fb:b6:94:33:ef:5e:e8: 20:e3:7b:1d:54:43:e8:05:59:c2:30:c7:f2:fa:ea: be:2d:07:43:66:09:21:40:ae:25:a5:2d:ab:7d:4f: 3f:01:80:60:a4:1c:8b:04:e6:1d:19:96:76:ca:ff: bd:91:19:54:fe:46:4d:0c:d4:90:f8:85:a3:38:a2: 9d:94:7a:0c:82:87:e0:51:d3:c6:d4:dc:57:6d:4e: d0:a4:b4:4f:10:b9:e5:4c:8b:15:fe:89:0e:6d:33: 5b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B7:B1:45:25:F5:22:7E:22:D5:1B:71:B0:2F:7E:2E:DC:2E:4E:29 X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:96:d2:61:39:22:f3:aa:2b:18:7d:50:f8:bb:15:ef:ad:03: bd:01:7b:68:83:b0:c8:6a:39:77:a5:9f:16:3b:ab:9b:9a:4b: 9d:f3:61:1d:fe:c8:eb:9d:8f:5a:34:22:e2:0d:0b:85:2d:2f: f8:01:2e:94:48:f2:83:56:68:0a:f7:19:d5:6b:44:2e:6f:90: bd:44:7c:eb:38:08:10:22:65:2f:6d:55:64:ed:b4:a9:59:59: 93:6c:0f:06:41:e4:e1:84:b5:e2:1c:bb:71:b2:68:be:5a:d8: 25:5f:72:7b:42:92:b0:32:ce:b7:ae:2d:f8:22:82:87:30:2c: 79:d5:06:5f:22:0a:47:ae:b7:0d:70:18:cb:2e:cb:fd:d5:5f: 3d:c3:2d:33:76:bc:9a:30:d4:67:4a:de:c8:6b:68:39:aa:0d: 36:05:2c:f2:eb:a7:ac:bc:06:eb:2e:82:9c:e5:be:e5:94:c7: 31:4f:af:7f:b7:ca:69:82:b3:90:07:b8:65:be:75:9c:f3:13: 80:d3:dd:30:91:b7:6d:5a:4a:aa:ce:2d:31:d5:23:8f:fa:21: f1:26:80:bf:c8:a1:b8:4e:66:05:73:5c:12:49:ce:a0:86:76: 66:f4:2c:76:ef:3e:f6:7b:93:75:d9:75:00:48:fe:c0:18:d6: 09:a9:14:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjYwNDE4MjA1NDU3WhcNMjYwNDI1MjA1NDU3WjAYMRYwFAYD VQQDEw02OWUzZWZhMi05YzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPAm/3lIUn4/u2ohcJS2jdZ5uT1h2vRXyrTykAJI40o/MnGWNOzgXzo83IkS gCSQYLAT4ponbKVNuladbyuxFdHjf9qAprUG4O4RE+1T07cBgKOTc4XFsjrbEzXC bQHUVqddBtwAQ4cWIGxCBBOQeHfLERf9VqSVQhK2BQXxz1YMRxlCgg3ZPEup/Hk+ /yIXhQvJir30PdV5oe7dK/u2lDPvXugg43sdVEPoBVnCMMfy+uq+LQdDZgkhQK4l pS2rfU8/AYBgpByLBOYdGZZ2yv+9kRlU/kZNDNSQ+IWjOKKdlHoMgofgUdPG1NxX bU7QpLRPELnlTIsV/okObTNbVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIe3sUUl 9SJ+ItUbcbAvfi7cLk4pMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVCRi9GMTMzQkRBQzEzRjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1v RzNhT2lSQ0ZNVVRmSHVWVFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIpbSYTki86orGH1Q+LsV760DvQF7aIOwyGo5d6WfFjurm5pLnfNhHf7I652P WjQi4g0LhS0v+AEulEjyg1ZoCvcZ1WtELm+QvUR86zgIECJlL21VZO20qVlZk2wP BkHk4YS14hy7cbJovlrYJV9ye0KSsDLOt64t+CKChzAsedUGXyIKR663DXAYyy7L /dVfPcMtM3a8mjDUZ0reyGtoOaoNNgUs8uunrLwG6y6CnOW+5ZTHMU+vf7fKaYKz kAe4Zb51nPMTgNPdMJG3bVpKqs4tMdUjj/oh8SaAv8ihuE5mBXNcEknOoIZ2ZvQs du8+9nuTddl1AEj+wBjWCakUQg== -----END CERTIFICATE-----Generated at Sun Apr 19 12:40:58 2026 by rpki-client