$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: bstuBiA9UWBzS9Xn9+splAB5XIgSHCFCz5Hg62oDK5s= Subject key identifier: 38:89:06:9B:F8:12:46:8A:13:52:78:FE:46:2F:96:07:B9:2D:7E:52 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 10DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 10C1 Signing time: Thu 16 Apr 2026 14:24:50 +0000 Manifest this update: Thu 16 Apr 2026 14:24:50 +0000 Manifest next update: Thu 23 Apr 2026 14:24:50 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: PqDtIs3FWk6RRqHSA4PFLqKA/KSda7vQEXxK3oB/5jM=) 2: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: QAfeG31AUJ9ysS7/jFhyhx6FaI+gxOiP1E4c7gwnNZ4=) 3: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: FcrkIqa4XDgVdyeOamaFQqlLus8d1JT70DNswdpetnU=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: dZjVpX0OHFb95lVF9Cf+7jCMCOq6ryMRIoLMcRSlevM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4315 (0x10db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Apr 16 14:24:50 2026 GMT Not After : Apr 23 14:24:50 2026 GMT Subject: CN=69e0f132-4db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:14:30:8a:0f:27:22:57:41:fd:8e:d4:f2:ff: 7e:ed:01:8a:a3:cc:57:0f:49:83:0e:e2:34:2e:bc: 64:b5:f3:7e:46:da:0a:e0:ba:34:8d:66:56:10:21: 78:d3:e1:49:ae:6f:e6:bd:a4:73:ee:9b:fe:e3:dc: 35:b1:1d:e3:b1:34:fe:fa:9b:f7:00:04:85:41:fb: 53:dc:a0:37:04:0a:82:68:b8:2c:ef:4b:03:ea:f6: 72:c9:24:09:88:94:eb:28:b3:ca:84:74:ab:5f:b8: 94:de:46:ce:22:02:b2:3e:12:62:f3:05:26:ef:8e: c8:28:55:24:66:f9:28:4f:dc:1a:a8:c0:99:af:47: ea:f5:b2:18:48:45:b6:db:14:64:af:d9:39:3a:12: c3:f9:2f:57:ab:7b:1c:f3:57:07:9a:3e:21:c1:b6: 72:fc:f1:e1:6f:a6:10:56:5a:8d:b9:8c:bc:60:ab: 8d:69:29:9d:58:91:f9:4a:85:fc:ed:16:ba:c0:c0: 02:88:11:32:9e:d7:63:96:e5:cb:a9:ce:70:2f:5b: bf:95:e4:91:38:ac:36:ec:32:93:7d:94:24:d8:03: d7:f3:95:93:c9:fe:6f:9b:87:5a:0b:80:c9:ee:37: 9f:bb:b2:13:40:dc:bc:a3:97:a3:4f:7c:5e:e2:44: 18:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:89:06:9B:F8:12:46:8A:13:52:78:FE:46:2F:96:07:B9:2D:7E:52 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:57:9f:15:dc:b6:76:e6:d6:ed:0a:03:d6:ae:45:49:66:f2: 85:5f:cb:7a:4d:4e:c0:f3:92:70:20:b8:2e:08:bc:3f:09:d0: 0d:85:51:5b:ad:64:24:8b:e9:3b:46:a3:d7:65:2e:16:4d:3b: cf:27:bc:3a:77:44:f6:80:22:bc:f5:5b:06:bd:fc:45:2d:9b: 5d:ff:87:3a:1d:9f:c1:eb:08:4e:7f:2a:cc:85:de:b9:79:ae: 13:02:25:ed:3e:14:5a:2c:12:8e:9d:1b:04:0d:de:27:ee:97: 55:39:cd:c9:fc:2f:54:cb:dc:6c:77:76:e3:6c:71:dc:19:06: 0d:81:2f:48:0e:ec:33:d7:5a:5d:55:94:39:90:8f:72:8d:f0: 2b:9a:3d:b0:fa:a9:73:52:7f:b2:27:ad:c4:e2:d2:09:80:68: d4:f9:05:34:1a:ab:7e:b0:b8:68:93:98:e6:9b:f1:63:b6:ca: 9b:6b:09:81:c7:40:fe:4b:84:16:25:b8:28:5a:f7:5e:b2:ce: c6:b1:24:6c:fd:e8:7d:f0:b8:c3:27:11:7e:f0:bb:71:2a:62: 7f:86:73:9f:cf:9d:a9:b0:8f:84:54:08:3e:01:b3:80:f3:cd: 93:69:e3:56:70:f9:72:9b:bb:27:77:5a:e2:0a:21:35:cc:0e: bf:0e:08:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICENswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjYwNDE2MTQyNDUwWhcNMjYwNDIzMTQyNDUwWjAYMRYwFAYD VQQDEw02OWUwZjEzMi00ZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRQwig8nIldB/Y7U8v9+7QGKo8xXD0mDDuI0LrxktfN+RtoK4Lo0jWZWECF4 0+FJrm/mvaRz7pv+49w1sR3jsTT++pv3AASFQftT3KA3BAqCaLgs70sD6vZyySQJ iJTrKLPKhHSrX7iU3kbOIgKyPhJi8wUm747IKFUkZvkoT9waqMCZr0fq9bIYSEW2 2xRkr9k5OhLD+S9Xq3sc81cHmj4hwbZy/PHhb6YQVlqNuYy8YKuNaSmdWJH5SoX8 7Ra6wMACiBEyntdjluXLqc5wL1u/leSROKw27DKTfZQk2APX85WTyf5vm4daC4DJ 7jefu7ITQNy8o5ejT3xe4kQYiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDiJBpv4 EkaKE1J4/kYvlge5LX5SMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYlefFdy2dubW7QoD1q5FSWbyhV/Lek1OwPOScCC4Lgi8PwnQDYVRW61kJIvp O0aj12UuFk07zye8OndE9oAivPVbBr38RS2bXf+HOh2fwesITn8qzIXeuXmuEwIl 7T4UWiwSjp0bBA3eJ+6XVTnNyfwvVMvcbHd242xx3BkGDYEvSA7sM9daXVWUOZCP co3wK5o9sPqpc1J/sietxOLSCYBo1PkFNBqrfrC4aJOY5pvxY7bKm2sJgcdA/kuE FiW4KFr3XrLOxrEkbP3offC4wycRfvC7cSpif4Zzn8+dqbCPhFQIPgGzgPPNk2nj VnD5cpu7J3da4gohNcwOvw4IqQ== -----END CERTIFICATE-----Generated at Fri Apr 17 14:47:15 2026 by rpki-client