$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: 3h92Wpbmgy04bt6DTUVqypX7ZriXkHjLUBoc2TIxyfQ= Subject key identifier: 3E:09:84:6B:6F:55:D0:F7:46:FF:8C:4D:60:6E:2A:45:76:C0:B6:A4 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 36CB Signing time: Thu 16 Apr 2026 14:24:53 +0000 Manifest this update: Thu 16 Apr 2026 14:24:52 +0000 Manifest next update: Thu 23 Apr 2026 14:24:52 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: HkxQZefHgcbGxxVxxNPstki4okp3uGPZTQQoLvPaRxY=) 2: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: aZB+rnqYjRl4Uc+17dt2ByemLhQ+5bYKCdCl9y70GQM=) 3: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: qOuOZrrZglkih59X/Pjz7efqStftFhfdFn50wlzJXt4=) 4: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: KFI2tWHfw3kppvCKmuDyoJI/TXZwNEgYE/dBKADg924=) 5: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: 2nquH/Th3aV+FpaTguBv+jy8p2aXbOfhDSjXTwmNigg=) 6: B6704306C9F111F08975B813C4F9AE02.roa (hash: QnDSYmh9AS+vc7/gM3qgxQlZaNKWdqAp8+Ehbtb0lnc=) 7: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: 548W6O4jy2t4m978fP7/vkFNV7StaszXL5cUkqOrlsQ=) 8: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 6MJI5nd76wUg6mIJiXKwgcaYmVbyO2X4VHI5tQqt2gM=) 9: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: z4MfCyr+jDttoP5VW5Vb0l643tPHIibVvGJ7ZyGfs8M=) 10: 305A13D6C9F211F0ABA27932C4F9AE02.roa (hash: NrPp83eADET8bdfQFh9hNsWD9EoYo/UsIxIfM+Xp3F8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14405 (0x3845) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Apr 16 14:24:52 2026 GMT Not After : Apr 23 14:24:52 2026 GMT Subject: CN=69e0f135-0eb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:08:93:c0:c8:0c:25:59:03:f2:74:0b:d6:a9: 3d:09:f0:5b:84:83:b4:29:b1:b8:d2:5d:1e:c3:7f: d8:5f:80:a2:29:93:40:b0:de:75:6f:d9:35:e9:88: 83:37:4f:3e:40:f9:eb:2d:b3:63:67:cc:81:c0:d4: e0:2d:ed:89:93:29:79:99:0e:22:30:8d:5a:2a:b7: 63:d1:de:29:35:ca:2c:2f:11:2e:29:c9:c7:c9:04: 0f:51:19:e2:a3:f5:e3:9d:6e:37:a6:d7:e9:4c:16: 9f:21:22:f9:13:90:bf:b8:bf:d7:8b:d2:85:87:d4: 62:1e:85:7e:b6:2c:fd:06:76:25:e0:3b:df:f9:24: 53:25:85:80:da:f2:50:40:7e:60:62:20:53:d0:1f: 5f:36:a6:3d:38:e7:06:a2:c4:38:5b:da:6f:93:b0: 2f:5b:de:05:f8:2b:42:b1:cb:c9:a0:ea:cc:92:08: 26:55:63:7d:db:6a:be:09:55:5e:a0:99:11:34:ac: b0:40:46:69:0e:84:f5:e2:ab:df:8d:0b:da:f4:f4: b4:a2:ec:2c:b6:d5:ec:71:3c:7f:0b:0e:22:dd:a3: c0:6d:61:0f:f7:b4:73:20:dc:c7:37:30:91:16:83: e8:57:81:dd:e7:d3:3a:9a:06:31:35:0a:5f:81:26: f7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:09:84:6B:6F:55:D0:F7:46:FF:8C:4D:60:6E:2A:45:76:C0:B6:A4 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:be:35:d0:a1:74:57:3b:eb:ad:e7:8b:06:96:56:dd:19:5e: a1:b9:08:8d:ed:50:06:9c:f2:fd:34:54:dd:c6:56:b1:6a:0b: 3b:ff:3b:a0:ba:63:9d:a6:dc:ef:d7:aa:c8:13:23:28:dc:69: 0b:9c:91:89:ae:09:b7:ef:d9:e1:72:0d:e8:57:58:98:5d:88: 1b:9b:ed:16:4e:08:cd:7c:e4:e2:0b:f0:00:2b:ba:e4:bb:4b: 37:fd:d5:31:58:6f:72:5b:2b:d4:86:ea:ad:90:a9:1b:b3:de: 3d:4f:08:42:66:90:4e:9b:93:b2:9e:1e:c4:a1:b2:01:80:c0: 85:27:99:3a:61:58:d4:bc:e5:17:f4:15:b8:9c:5b:d7:c5:34: 57:59:b4:f8:4f:de:16:65:fa:61:c7:2e:23:4e:eb:7a:a3:10: 09:86:81:58:de:c5:24:93:6a:ac:46:8c:02:4a:9c:18:49:f5: 62:11:62:4b:20:81:8c:b7:94:48:5d:b6:5f:2e:af:43:0d:ae: 77:7f:49:92:73:36:9b:95:ea:b2:76:52:8e:09:58:5d:91:33: 58:75:e7:7c:3a:10:3a:43:54:54:e3:22:64:ec:91:a4:44:6e: ab:4b:6c:01:46:2c:02:2c:39:e3:27:37:6f:c3:f5:4a:bf:b8: c1:a0:8c:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICOEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjYwNDE2MTQyNDUyWhcNMjYwNDIzMTQyNDUyWjAYMRYwFAYD VQQDEw02OWUwZjEzNS0wZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgiTwMgMJVkD8nQL1qk9CfBbhIO0KbG40l0ew3/YX4CiKZNAsN51b9k16YiD N08+QPnrLbNjZ8yBwNTgLe2Jkyl5mQ4iMI1aKrdj0d4pNcosLxEuKcnHyQQPURni o/XjnW43ptfpTBafISL5E5C/uL/Xi9KFh9RiHoV+tiz9BnYl4Dvf+SRTJYWA2vJQ QH5gYiBT0B9fNqY9OOcGosQ4W9pvk7AvW94F+CtCscvJoOrMkggmVWN922q+CVVe oJkRNKywQEZpDoT14qvfjQva9PS0ouwsttXscTx/Cw4i3aPAbWEP97RzINzHNzCR FoPoV4Hd59M6mgYxNQpfgSb3GQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD4JhGtv VdD3Rv+MTWBuKkV2wLakMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0L410KF0VzvrreeLBpZW3RleobkIje1QBpzy/TRU3cZWsWoLO/87oLpjnabc 79eqyBMjKNxpC5yRia4Jt+/Z4XIN6FdYmF2IG5vtFk4IzXzk4gvwACu65LtLN/3V MVhvclsr1IbqrZCpG7PePU8IQmaQTpuTsp4exKGyAYDAhSeZOmFY1LzlF/QVuJxb 18U0V1m0+E/eFmX6YccuI07reqMQCYaBWN7FJJNqrEaMAkqcGEn1YhFiSyCBjLeU SF22Xy6vQw2ud39JknM2m5XqsnZSjglYXZEzWHXnfDoQOkNUVOMiZOyRpERuq0ts AUYsAiw54yc3b8P1Sr+4waCM1A== -----END CERTIFICATE-----Generated at Fri Apr 17 16:59:34 2026 by rpki-client