$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: +IEJfYor7MOOujv9nBNtcPuHd1yL66qtj8ZjP55tIMM= Subject key identifier: 59:90:33:98:45:B0:D2:80:9F:F8:70:C7:95:BB:9A:2E:73:8F:2E:57 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: CA Signing time: Fri 17 Apr 2026 06:35:40 +0000 Manifest this update: Fri 17 Apr 2026 06:35:40 +0000 Manifest next update: Fri 24 Apr 2026 06:35:40 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: nbPtP4WI4LYbW8mk7CMRjB6wcnaIA/tbowAvYEreXZ4=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: jRuHimWgQS+tjLR9bDCVnhmy0GeAXCUN8m6ZV5rJabM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Apr 17 06:35:40 2026 GMT Not After : Apr 24 06:35:40 2026 GMT Subject: CN=69e1d4bc-ae59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7e:db:6e:c6:06:cb:a3:ac:25:dd:48:23:ae: 36:c3:9b:ef:ec:04:93:e7:e1:6f:8a:cc:c3:85:de: 08:cf:08:0d:11:c7:e0:81:e2:66:70:25:a7:01:30: 45:11:96:a8:64:4f:a9:66:3a:23:40:ff:89:a1:52: e9:30:cb:6e:60:48:f9:22:ef:57:b2:26:a6:92:84: fe:af:26:8a:02:d8:64:9f:94:39:2e:c0:f7:72:72: 39:53:54:aa:c4:85:50:f3:19:38:75:65:d0:3f:4b: 8b:27:73:f9:75:32:1b:9e:1d:5b:02:e6:a6:f7:cf: c2:6a:17:b2:ca:02:f9:19:22:01:78:ad:ac:0a:c2: c2:08:29:29:b1:20:b7:f0:54:99:65:38:62:dc:5f: 25:55:0a:c3:d4:be:dc:76:df:b4:1f:20:50:7b:08: 12:ea:fe:dd:d9:7b:7d:b2:41:7e:90:3a:fc:f5:e3: 39:d8:11:38:35:5d:16:94:ed:ef:10:a6:9a:f0:5c: 4e:ef:ec:0f:41:b2:26:b5:d6:88:a0:ce:36:8b:fb: 5e:c1:c7:52:6b:fd:66:1e:97:11:77:d8:a7:bc:0e: cb:8e:2d:ad:7f:e4:ae:25:0a:79:ec:52:b7:7b:8b: 0f:c3:29:01:e2:6c:4d:0c:f2:0a:9b:61:4f:c8:74: 95:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:90:33:98:45:B0:D2:80:9F:F8:70:C7:95:BB:9A:2E:73:8F:2E:57 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:25:3f:34:f0:a3:cd:e9:21:fd:ea:c1:e5:0f:11:18:2d:b1: 2b:ab:62:e7:cc:2e:7a:39:41:f8:b3:c2:67:6c:27:43:d7:67: 7b:ca:c6:38:91:8b:98:6b:b6:9d:d2:4a:56:d2:47:2c:37:a5: ce:f4:81:e5:9a:33:06:17:8b:7d:3b:96:3c:4e:42:e9:31:8d: dc:65:ae:4e:2a:51:e1:a4:28:37:3d:12:90:89:03:f6:d0:f2: 5f:8f:0e:4a:73:c7:ea:16:f3:70:1c:b8:6a:dc:ff:3c:fd:9b: 26:f7:ab:01:bc:c8:d5:76:59:22:db:95:a7:10:bb:a9:43:79: c7:6a:ef:e9:a8:d7:bc:2b:5c:18:78:75:13:59:e7:cd:99:c7: c1:b7:1f:b5:f8:23:fe:de:68:cc:75:66:44:eb:f9:47:6a:fb: 90:cd:f5:c8:b7:14:9d:9f:c6:b7:7f:0e:da:ae:de:36:97:27: fd:2a:d8:e0:88:cf:a4:b8:49:62:57:aa:b6:46:1d:a6:62:94: b6:6c:81:0a:48:87:08:8e:82:73:99:a6:d0:56:86:8a:03:b0: 22:4b:07:6b:23:01:af:7b:18:6c:6b:28:44:1a:77:49:34:be: 09:de:90:10:73:3c:54:3b:fe:27:ae:fd:14:c7:bd:98:2d:1c: 3c:80:4f:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjYwNDE3MDYzNTQwWhcNMjYwNDI0MDYzNTQwWjAYMRYwFAYD VQQDEw02OWUxZDRiYy1hZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyX7bbsYGy6OsJd1II642w5vv7AST5+FviszDhd4IzwgNEcfggeJmcCWnATBF EZaoZE+pZjojQP+JoVLpMMtuYEj5Iu9XsiamkoT+ryaKAthkn5Q5LsD3cnI5U1Sq xIVQ8xk4dWXQP0uLJ3P5dTIbnh1bAuam98/CaheyygL5GSIBeK2sCsLCCCkpsSC3 8FSZZThi3F8lVQrD1L7cdt+0HyBQewgS6v7d2Xt9skF+kDr89eM52BE4NV0WlO3v EKaa8FxO7+wPQbImtdaIoM42i/tewcdSa/1mHpcRd9invA7Lji2tf+SuJQp57FK3 e4sPwykB4mxNDPIKm2FPyHSVcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFmQM5hF sNKAn/hwx5W7mi5zjy5XMB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZSU/NPCjzekh/erB5Q8RGC2xK6ti58wuejlB+LPCZ2wnQ9dne8rGOJGLmGu2 ndJKVtJHLDelzvSB5ZozBheLfTuWPE5C6TGN3GWuTipR4aQoNz0SkIkD9tDyX48O SnPH6hbzcBy4atz/PP2bJverAbzI1XZZItuVpxC7qUN5x2rv6ajXvCtcGHh1E1nn zZnHwbcftfgj/t5ozHVmROv5R2r7kM31yLcUnZ/Gt38O2q7eNpcn/SrY4IjPpLhJ YleqtkYdpmKUtmyBCkiHCI6Cc5mm0FaGigOwIksHayMBr3sYbGsoRBp3STS+Cd6Q EHM8VDv+J679FMe9mC0cPIBPZg== -----END CERTIFICATE-----Generated at Fri Apr 17 14:24:55 2026 by rpki-client