$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: rQSM4YxUmv5OreXo5Je2j/LWyxrGRk0LTJ+369/35sE= Subject key identifier: 0E:69:74:48:45:37:45:C8:1E:66:9C:38:59:EE:B0:77:70:37:BD:25 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 0139 Signing time: Fri 17 Apr 2026 05:09:56 +0000 Manifest this update: Fri 17 Apr 2026 05:09:56 +0000 Manifest next update: Fri 24 Apr 2026 05:09:56 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: wqwBsvN4mCbsURKAXR5R+xC/4ItNIHdc5Xgtd7+fAYU=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: Oees07yYoqgn5PrN7dD6R0kAM+w8GIQPtiPs4eqC920=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Apr 17 05:09:56 2026 GMT Not After : Apr 24 05:09:56 2026 GMT Subject: CN=69e1c0a4-3e83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:09:78:0c:b3:d3:77:c0:f5:4b:c1:40:7f:a8: 19:4c:2a:8f:46:de:13:8a:12:bf:07:91:30:81:00: 07:97:d3:8f:5e:27:75:b9:4a:c5:31:38:a4:41:81: a6:d0:3a:3b:82:82:2b:e3:f7:cc:41:90:94:89:8a: 0c:68:34:4b:8b:0d:6b:5e:2a:be:fc:3e:00:7f:fc: 50:9b:94:3c:d5:5d:b0:de:19:b2:bc:11:6b:d2:d6: 6c:45:2b:dc:61:d6:db:58:d9:98:1f:76:f9:ad:91: 51:2b:ea:0d:e6:2d:ff:ca:40:08:8f:49:43:c0:67: 5b:6e:df:f3:31:46:7e:b3:e3:6f:63:e3:85:1c:2d: f2:b1:4a:d9:8f:66:7b:57:ed:c9:0a:82:be:1b:da: 34:58:07:5f:51:b2:08:11:9e:4e:c8:b9:73:89:55: ed:1b:74:23:63:76:91:47:6b:63:8a:f9:4c:b1:e6: 97:71:14:df:4d:64:08:92:da:36:8f:c7:a7:3b:a9: 20:61:b0:fe:6d:b2:f1:2f:49:dd:29:d7:ae:b6:af: f0:31:1b:b9:4b:1b:97:02:ed:43:f8:2e:5a:1e:ca: 87:95:1a:84:88:2d:88:54:dc:5f:b5:ba:fe:8f:be: 32:50:2f:a8:e0:66:f2:24:fd:fb:48:2e:21:7c:8b: 05:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:69:74:48:45:37:45:C8:1E:66:9C:38:59:EE:B0:77:70:37:BD:25 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:ad:dd:94:76:b9:24:6f:07:db:e6:8f:c0:09:e4:69:10:8c: 36:d2:fa:00:03:0e:9d:73:e6:81:0a:aa:f5:99:06:7e:9a:19: f2:77:6c:fb:66:f6:68:81:5b:2a:36:28:31:61:70:4d:f5:0c: 87:60:b4:e4:8c:3f:50:76:95:73:c3:0f:38:f8:34:9e:62:e7: 9d:f0:86:70:ab:77:06:89:83:7b:95:fc:55:e5:25:a2:bc:f3: c6:58:db:0a:ac:20:03:8d:88:b8:ee:ec:e9:84:64:f4:b5:9c: 97:c5:f7:43:44:4c:a2:9d:4a:d7:13:00:ea:49:4c:22:8b:ba: 29:77:f1:ea:a6:8a:db:28:f0:a7:2c:96:81:de:b9:42:c2:8f: 2f:59:6b:fa:c0:e4:47:a2:e6:f0:ed:f4:50:4a:96:07:a9:e6: 74:26:ec:bb:86:65:b0:28:3c:9d:22:f0:70:ab:65:8e:34:e9: 1a:c9:9d:4c:0b:6c:0f:c6:f3:8b:1e:67:23:7e:58:fd:42:69: 83:20:03:fb:0d:19:44:a4:d1:75:9e:79:39:bb:df:8b:aa:bd: 2e:59:8d:34:7e:21:5a:5b:32:8a:a3:c4:60:6b:d6:a9:09:94: 84:3b:39:f6:db:b9:92:ed:d4:b3:86:ec:55:f8:71:ec:d0:12: af:b6:dc:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjYwNDE3MDUwOTU2WhcNMjYwNDI0MDUwOTU2WjAYMRYwFAYD VQQDEw02OWUxYzBhNC0zZTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgl4DLPTd8D1S8FAf6gZTCqPRt4TihK/B5EwgQAHl9OPXid1uUrFMTikQYGm 0Do7goIr4/fMQZCUiYoMaDRLiw1rXiq+/D4Af/xQm5Q81V2w3hmyvBFr0tZsRSvc YdbbWNmYH3b5rZFRK+oN5i3/ykAIj0lDwGdbbt/zMUZ+s+NvY+OFHC3ysUrZj2Z7 V+3JCoK+G9o0WAdfUbIIEZ5OyLlziVXtG3QjY3aRR2tjivlMseaXcRTfTWQIkto2 j8enO6kgYbD+bbLxL0ndKdeutq/wMRu5SxuXAu1D+C5aHsqHlRqEiC2IVNxftbr+ j74yUC+o4GbyJP37SC4hfIsF3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA5pdEhF N0XIHmacOFnusHdwN70lMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkK3dlHa5JG8H2+aPwAnkaRCMNtL6AAMOnXPmgQqq9ZkGfpoZ8nds+2b2aIFb KjYoMWFwTfUMh2C05Iw/UHaVc8MPOPg0nmLnnfCGcKt3BomDe5X8VeUlorzzxljb CqwgA42IuO7s6YRk9LWcl8X3Q0RMop1K1xMA6klMIou6KXfx6qaK2yjwpyyWgd65 QsKPL1lr+sDkR6Lm8O30UEqWB6nmdCbsu4ZlsCg8nSLwcKtljjTpGsmdTAtsD8bz ix5nI35Y/UJpgyAD+w0ZRKTRdZ55Obvfi6q9LlmNNH4hWlsyiqPEYGvWqQmUhDs5 9tu5ku3Us4bsVfhx7NASr7bcUg== -----END CERTIFICATE-----Generated at Fri Apr 17 09:42:59 2026 by rpki-client