$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: xeMte5KZt4EFyFo1U4rhurmdN851/qZidddfNZwyZ3c= Subject key identifier: 31:9C:B1:D8:26:7E:F2:75:F4:B8:69:AD:6D:83:BB:AC:D9:6E:9F:D5 Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 91 Signing time: Wed 15 Apr 2026 07:04:39 +0000 Manifest this update: Wed 15 Apr 2026 07:04:39 +0000 Manifest next update: Wed 22 Apr 2026 07:04:39 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: 1drHg8HCq7pCUES58BgZyrlO5sKC4SGrFJkhW5ekkXs=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: Hc8ozT9yDfNYsIpquS99Gm4q+mTiTQ1cphIlHACdz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 07:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Apr 15 07:04:39 2026 GMT Not After : Apr 22 07:04:39 2026 GMT Subject: CN=69df3887-ce25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:38:8f:64:71:33:4a:23:91:b4:fb:8f:5e:b3: ab:92:c8:e7:6f:17:ee:94:b1:85:e5:4b:9a:9a:01: c0:f4:87:51:c0:04:a4:ec:f1:6a:3a:19:5e:ee:81: e3:01:db:14:fe:95:bb:60:7f:e9:8c:ec:92:0a:f7: 58:21:3c:d3:9e:26:d5:97:18:50:e5:f2:19:2d:ea: be:02:9c:72:38:85:80:80:ba:9f:01:e7:1e:54:76: 46:36:5e:b3:60:32:5e:87:06:a2:e4:0a:6b:a4:8b: c0:6e:7c:38:3a:49:6e:f3:16:1d:c5:8c:52:85:83: 2b:0d:cd:3a:3b:be:43:75:c9:e9:2f:24:62:b4:fb: 6c:f7:4e:a0:c2:42:6e:69:41:d9:ae:46:02:9c:4a: 7a:88:fa:c6:df:3f:28:f3:88:5f:82:d5:31:ff:44: cc:47:bd:b2:57:5e:8f:2b:0a:4a:fc:b2:0b:69:e9: 4f:c1:d8:3e:df:b3:69:61:d5:d7:1a:ad:35:89:b4: 41:20:28:83:eb:bd:3f:80:35:63:dd:36:38:fc:11: ea:e3:58:ff:75:a9:8b:2f:42:4c:66:9b:5b:5e:42: 3c:bb:b6:c5:4d:f4:a2:cf:3d:aa:ea:33:c9:80:c9: 61:23:3d:a1:f1:84:d0:56:6f:4e:26:fa:98:ed:b8: b5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9C:B1:D8:26:7E:F2:75:F4:B8:69:AD:6D:83:BB:AC:D9:6E:9F:D5 X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:db:c1:b8:3c:6c:81:7e:fc:53:1f:83:dd:00:8e:94:21:94: 25:77:ed:b2:2c:d4:22:e6:95:40:b9:b8:92:e1:5d:53:d3:58: e9:f2:39:92:78:f8:db:29:75:63:33:14:ff:78:59:ca:bd:99: 62:8d:33:af:96:d9:ad:21:8e:fc:ed:79:21:95:c7:af:d7:bc: 5c:9b:93:3c:8b:b7:8b:b0:37:7a:cf:ea:5e:82:86:60:0f:65: 93:0b:82:1b:40:e0:21:9a:96:f8:62:b9:8a:09:a1:dd:ee:8c: 1b:ac:18:6d:c4:eb:0a:7e:1d:8e:4a:43:9c:cd:1e:aa:01:80: 59:9c:f4:14:7c:5f:e7:b6:83:94:46:31:5f:8d:cc:34:8e:c8: d5:28:ef:30:f8:e0:b9:db:40:a3:a2:00:b2:e5:e1:07:45:50: 96:d8:f7:46:fc:48:49:96:57:5a:c1:46:46:fe:b3:0d:01:cd: 00:31:7e:34:b1:36:2e:f5:02:25:df:92:a9:00:1a:34:bb:3d: ef:3c:f0:11:ad:af:12:6d:69:0c:4a:73:4c:5e:a8:3b:a5:3c: 4e:63:19:f7:06:db:40:c6:1b:97:21:4d:88:77:4d:19:86:65: 8b:08:ee:4d:e7:45:b8:5b:58:14:46:a6:c3:21:d0:5f:3a:a1: 18:26:2c:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI1REYxMTAvBgNVBAUTKEQzQ0Y2NEQ1REIxNzYxRkNCNkE1NTJGMDY4MDkxMzMw QzVCNUY1M0IwHhcNMjYwNDE1MDcwNDM5WhcNMjYwNDIyMDcwNDM5WjAYMRYwFAYD VQQDEw02OWRmMzg4Ny1jZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDiPZHEzSiORtPuPXrOrksjnbxfulLGF5UuamgHA9IdRwASk7PFqOhle7oHj AdsU/pW7YH/pjOySCvdYITzTnibVlxhQ5fIZLeq+ApxyOIWAgLqfAeceVHZGNl6z YDJehwai5AprpIvAbnw4Oklu8xYdxYxShYMrDc06O75DdcnpLyRitPts906gwkJu aUHZrkYCnEp6iPrG3z8o84hfgtUx/0TMR72yV16PKwpK/LILaelPwdg+37NpYdXX Gq01ibRBICiD670/gDVj3TY4/BHq41j/damLL0JMZptbXkI8u7bFTfSizz2q6jPJ gMlhIz2h8YTQVm9OJvqY7bi1owIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDGcsdgm fvJ19LhprW2Du6zZbp/VMB8GA1UdIwQYMBaAFNPPZNXbF2H8tqVS8GgJEzDFtfU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjVERi9FNjEyNDA4MjVF RDUxMUYwOUNGMUQ1MENDNEY5QUUwMi8wODlrMWRzWFlmeTJwVkx3YUFrVE1NVzE5 VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjVERi9FNjEyNDA4MjVFRDUxMUYwOUNGMUQ1MENDNEY5QUUwMi8wODlrMWRzWFlm eTJwVkx3YUFrVE1NVzE5VHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEdvBuDxsgX78Ux+D3QCOlCGUJXftsizUIuaVQLm4kuFdU9NY6fI5knj42yl1 YzMU/3hZyr2ZYo0zr5bZrSGO/O15IZXHr9e8XJuTPIu3i7A3es/qXoKGYA9lkwuC G0DgIZqW+GK5igmh3e6MG6wYbcTrCn4djkpDnM0eqgGAWZz0FHxf57aDlEYxX43M NI7I1SjvMPjgudtAo6IAsuXhB0VQltj3RvxISZZXWsFGRv6zDQHNADF+NLE2LvUC Jd+SqQAaNLs97zzwEa2vEm1pDEpzTF6oO6U8TmMZ9wbbQMYblyFNiHdNGYZliwju TedFuFtYFEamwyHQXzqhGCYsYA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:26:41 2026 by rpki-client