$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: Cpmyo9YeFhUfDLcPLYRouPrpHV6bFZQBDfrorJye6Vo= Subject key identifier: 5B:A3:5D:A7:37:97:E2:41:1B:84:9B:20:D7:04:76:BA:E7:96:24:8F Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 0260 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 024D Signing time: Fri 17 Apr 2026 02:13:17 +0000 Manifest this update: Fri 17 Apr 2026 02:13:17 +0000 Manifest next update: Fri 24 Apr 2026 02:13:17 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: 4u5/eiavH/Kr/5UVNzNl3D3xHNXzCcdokuD9SZdZPj4=) 2: D62511F6C41D11F08D2E621EC4F9AE02.roa (hash: HAQPkYTVEHvUCCvstD3cbGBNAUP4hbxEWfa91gL9q2w=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: VvVjYiDQeO0/Kuu5dNnxQmNtzBeDEDxanFTxX0efrwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Apr 17 02:13:17 2026 GMT Not After : Apr 24 02:13:17 2026 GMT Subject: CN=69e1973d-6014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c9:55:2f:c1:3a:e0:f7:92:6d:ad:1f:63:c3: 74:a0:30:41:68:18:65:00:40:58:c2:50:06:02:b5: 90:bf:cf:a2:10:66:ca:ef:f0:7a:29:ce:65:dd:d3: ce:d6:f8:50:a7:7f:50:47:37:00:e4:4b:4a:7a:1e: 2b:7d:1f:94:00:24:c2:a0:06:b1:43:db:fa:d0:08: f5:6b:54:59:c6:10:45:f3:37:25:f1:1d:1d:86:6d: 95:fd:83:4a:22:9d:a3:c6:73:59:9b:9a:42:fa:8b: dd:31:b9:41:c9:48:6e:6c:fb:bc:03:b7:44:23:f5: a9:13:67:e4:c8:83:ab:19:f8:3b:a0:19:35:d5:46: 7f:ad:1c:6b:14:e5:98:81:bf:5f:0c:86:f9:45:ae: 0a:13:8d:e7:94:f2:89:d3:fa:ec:e4:a7:07:8e:86: c3:d4:b7:55:b2:a3:ea:9f:59:e1:25:c2:7a:fd:d7: 36:7d:c4:38:d3:99:01:51:43:97:89:98:22:6c:51: 7b:33:4a:47:f8:f7:8a:8e:81:e3:db:b0:a0:5f:cb: c7:e5:2c:2e:64:7d:42:82:b5:0b:07:37:db:22:94: 8d:47:d4:9e:66:4d:c5:ea:3f:50:f5:37:c3:31:0a: cc:9b:bc:39:80:31:1f:33:49:c8:f8:91:9a:b1:aa: af:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A3:5D:A7:37:97:E2:41:1B:84:9B:20:D7:04:76:BA:E7:96:24:8F X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:49:27:4c:5a:cd:84:99:12:f5:c3:c1:48:ee:01:77:44:0e: d1:ff:4d:d9:ca:34:27:9d:58:9a:c3:fc:fb:07:8c:26:6e:18: de:df:37:aa:95:f8:95:e1:a9:70:5b:01:a7:37:56:96:01:da: 73:b3:ba:49:8f:7c:cd:61:e8:ec:69:c1:6d:5b:45:15:57:b1: 42:d4:94:d1:70:03:54:5c:fb:31:ad:ec:35:5a:44:81:ea:74: b6:47:4c:3c:63:2c:4a:17:c6:65:79:f0:f0:11:d9:42:d2:fa: 28:18:cd:57:2e:26:82:17:2a:cf:c5:c9:c5:9a:94:e8:16:27: f3:c5:95:5a:a8:f6:7f:df:8b:4b:b5:c9:08:a2:a9:06:a3:fb: 86:51:43:cd:b6:c8:63:39:7e:69:be:ed:27:cf:d7:d7:7e:fb: c3:07:1d:2e:f7:99:f1:70:e2:05:eb:06:b7:f2:cd:f2:5e:1a: f7:77:88:13:0a:b3:64:6e:08:d2:b9:f3:c0:36:d0:a3:db:56: 3b:66:53:33:01:82:0f:27:5f:1c:83:2d:b2:f5:05:55:0c:6d: b0:57:0b:ee:ca:42:62:d7:c7:57:d5:02:b4:2e:f0:1c:d0:96: cf:4c:b5:ac:78:11:1e:b1:ec:92:ab:2e:a6:97:0b:62:e0:7e: 3a:2f:47:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjYwNDE3MDIxMzE3WhcNMjYwNDI0MDIxMzE3WjAYMRYwFAYD VQQDEw02OWUxOTczZC02MDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7clVL8E64PeSba0fY8N0oDBBaBhlAEBYwlAGArWQv8+iEGbK7/B6Kc5l3dPO 1vhQp39QRzcA5EtKeh4rfR+UACTCoAaxQ9v60Aj1a1RZxhBF8zcl8R0dhm2V/YNK Ip2jxnNZm5pC+ovdMblByUhubPu8A7dEI/WpE2fkyIOrGfg7oBk11UZ/rRxrFOWY gb9fDIb5Ra4KE43nlPKJ0/rs5KcHjobD1LdVsqPqn1nhJcJ6/dc2fcQ405kBUUOX iZgibFF7M0pH+PeKjoHj27CgX8vH5SwuZH1CgrULBzfbIpSNR9SeZk3F6j9Q9TfD MQrMm7w5gDEfM0nI+JGasaqveQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFujXac3 l+JBG4SbINcEdrrnliSPMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEkknTFrNhJkS9cPBSO4Bd0QO0f9N2co0J51YmsP8+weMJm4Y3t83qpX4leGp cFsBpzdWlgHac7O6SY98zWHo7GnBbVtFFVexQtSU0XADVFz7Ma3sNVpEgep0tkdM PGMsShfGZXnw8BHZQtL6KBjNVy4mghcqz8XJxZqU6BYn88WVWqj2f9+LS7XJCKKp BqP7hlFDzbbIYzl+ab7tJ8/X1377wwcdLveZ8XDiBesGt/LN8l4a93eIEwqzZG4I 0rnzwDbQo9tWO2ZTMwGCDydfHIMtsvUFVQxtsFcL7spCYtfHV9UCtC7wHNCWz0y1 rHgRHrHskqsuppcLYuB+Oi9Hew== -----END CERTIFICATE-----Generated at Fri Apr 17 07:20:16 2026 by rpki-client