$ rpki-client -vvf rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft File: mpwxvYeWc4abPI8FWW6IFVgvEdA.mft (raw, json) Hash identifier: V2ytNMb0HpPZe85LDtEr1Q2Yp3P8kex042qAzTfqx08= Subject key identifier: BF:D9:AC:69:E9:2F:EA:1C:68:4E:42:B0:3F:C2:39:DC:87:85:AA:9A Authority key identifier: 9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 Certificate issuer: /CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Certificate serial: 0CFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft Manifest number: 0CEB Signing time: Thu 16 Apr 2026 18:09:12 +0000 Manifest this update: Thu 16 Apr 2026 18:09:11 +0000 Manifest next update: Thu 23 Apr 2026 18:09:11 +0000 Files and hashes: 1: mpwxvYeWc4abPI8FWW6IFVgvEdA.crl (hash: lBIMQRbiE3EZXuUA6rBqbOCdfPwF98IcwbEw2eonkfQ=) 2: 58AEC9929C0F11EA9CC4217CC4F9AE02.roa (hash: 1lJZiaXN2+jlJbSyyyT2ZVc0TvKSt6+Hz3K+SpWk1T8=) 3: 98DC875C050111EA9BDD372BC4F9AE02.roa (hash: YHhtbTx3DFi9+kl85V+ijdhzu/uN/CR3C5x9c+CBrX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3325 (0xcfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91856C4, serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Validity Not Before: Apr 16 18:09:11 2026 GMT Not After : Apr 23 18:09:11 2026 GMT Subject: CN=69e125c8-7e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:35:2e:9d:36:64:c4:03:13:21:93:8d:45:3e: 9c:e6:82:7d:e0:68:c8:de:6b:4d:c6:78:05:8f:89: 86:36:b9:b2:78:b5:09:fe:68:6e:3f:84:e4:4f:bd: b6:d9:89:c0:a2:2d:41:b1:e8:be:43:da:fe:01:2a: cb:df:e2:40:85:66:a0:7c:2c:b6:ee:6c:35:41:2f: ac:16:9c:2a:23:c0:4a:72:35:3c:77:76:b1:1c:b6: 4e:bb:5a:f8:c6:58:19:38:6e:be:8e:7a:a9:e9:fc: 34:7d:9c:4b:a3:9c:cd:1d:4c:0b:78:d4:ba:cc:b4: a4:05:57:9b:b7:2c:4e:7a:5b:b4:4b:f7:c5:e6:ef: b6:52:f1:f3:f7:93:f4:a5:55:b8:c3:41:32:00:a9: b0:4a:b2:1f:2a:54:20:78:62:cd:a0:cc:43:25:5f: cc:71:a0:36:3c:57:68:4a:02:60:91:25:ed:e4:a8: 08:5b:37:84:24:cd:17:7a:9f:1b:33:6d:77:54:1a: 20:bd:97:79:5a:df:5f:3f:53:0b:3f:65:2f:7f:a7: 56:a7:7f:31:b8:e5:f4:53:22:fd:09:ad:01:4a:4c: 7b:ae:e7:af:5d:2c:cc:cc:01:69:cf:a3:99:ec:06: 74:f1:05:e2:5e:5e:79:bd:72:36:20:2b:87:0b:28: 01:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D9:AC:69:E9:2F:EA:1C:68:4E:42:B0:3F:C2:39:DC:87:85:AA:9A X509v3 Authority Key Identifier: keyid:9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:42:6d:c7:b7:08:cb:f5:17:c7:ac:6d:20:b5:72:9a:d6:ef: 89:8b:3f:f2:6f:30:4b:bd:2e:46:5d:91:36:82:e1:ea:d3:36: 61:1b:5e:23:ec:64:2b:ba:29:3d:f4:73:df:93:12:b7:c7:70: ac:13:e3:c2:06:2e:36:91:ac:80:ed:1b:68:1d:b0:67:00:ef: 3f:c1:6f:45:3f:f1:1f:3e:9b:f3:94:87:40:0b:e1:55:65:20: 0c:49:fe:e0:6b:47:dd:27:67:3a:33:cd:d2:7f:6d:32:fb:c6: 4d:37:ce:e6:6e:36:10:a7:cc:f2:45:26:bf:d0:eb:f2:b1:66: 0a:b5:ca:20:67:19:c8:b9:90:63:e4:a1:96:55:ae:3a:35:8d: dc:a3:31:97:ba:9a:40:e2:1a:54:14:2e:f2:83:3b:23:19:50: 8a:59:67:8c:32:4b:3a:95:cc:32:d5:de:71:24:5b:93:01:1a: 7f:87:81:f3:09:dd:f3:c5:ca:67:a4:6c:a4:f6:7f:42:4e:c8: 47:79:bc:2e:61:f4:b6:98:34:b3:87:81:09:4d:21:f5:ac:4b: b7:7c:e8:26:62:be:3f:eb:14:6c:b8:13:47:51:b2:ab:63:42: f2:e2:e7:7c:ff:8b:67:ac:05:b7:b2:07:55:16:8c:a1:b1:a1: c5:fe:42:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2QzQxMTAvBgNVBAUTKDlBOUMzMUJEODc5NjczODY5QjNDOEYwNTU5NkU4ODE1 NTgyRjExRDAwHhcNMjYwNDE2MTgwOTExWhcNMjYwNDIzMTgwOTExWjAYMRYwFAYD VQQDEw02OWUxMjVjOC03ZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTUunTZkxAMTIZONRT6c5oJ94GjI3mtNxngFj4mGNrmyeLUJ/mhuP4TkT722 2YnAoi1Bsei+Q9r+ASrL3+JAhWagfCy27mw1QS+sFpwqI8BKcjU8d3axHLZOu1r4 xlgZOG6+jnqp6fw0fZxLo5zNHUwLeNS6zLSkBVebtyxOelu0S/fF5u+2UvHz95P0 pVW4w0EyAKmwSrIfKlQgeGLNoMxDJV/McaA2PFdoSgJgkSXt5KgIWzeEJM0Xep8b M213VBogvZd5Wt9fP1MLP2Uvf6dWp38xuOX0UyL9Ca0BSkx7ruevXSzMzAFpz6OZ 7AZ08QXiXl55vXI2ICuHCygB8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL/ZrGnp L+ocaE5CsD/COdyHhaqaMB8GA1UdIwQYMBaAFJqcMb2HlnOGmzyPBVluiBVYLxHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTZDNC9BM0JBRDhFMjA0 RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0YWJQSThGV1c2SUZWZ3ZF ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21wd3h2WWVXYzRhYlBJOEZXVzZJRlZndkVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTZDNC9BM0JBRDhFMjA0RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0 YWJQSThGV1c2SUZWZ3ZFZEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARkJtx7cIy/UXx6xtILVymtbviYs/8m8wS70uRl2RNoLh6tM2YRteI+xkK7op PfRz35MSt8dwrBPjwgYuNpGsgO0baB2wZwDvP8FvRT/xHz6b85SHQAvhVWUgDEn+ 4GtH3SdnOjPN0n9tMvvGTTfO5m42EKfM8kUmv9Dr8rFmCrXKIGcZyLmQY+ShllWu OjWN3KMxl7qaQOIaVBQu8oM7IxlQillnjDJLOpXMMtXecSRbkwEaf4eB8wnd88XK Z6RspPZ/Qk7IR3m8LmH0tpg0s4eBCU0h9axLt3zoJmK+P+sUbLgTR1Gyq2NC8uLn fP+LZ6wFt7IHVRaMobGhxf5CQA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:31:50 2026 by rpki-client