$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft File: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft (raw, json) Hash identifier: YYSrZR5yBEf4ainFpIkXoWrwoj/eIN6+6Gng4qmNQdo= Subject key identifier: B2:41:7C:7E:DB:60:4B:2A:B9:37:66:EF:F3:E0:5C:BE:CF:73:91:E8 Authority key identifier: 08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 Certificate issuer: /CN=A91A2C5D/serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft Manifest number: 0261 Signing time: Fri 17 Apr 2026 03:36:05 +0000 Manifest this update: Fri 17 Apr 2026 03:36:05 +0000 Manifest next update: Fri 24 Apr 2026 03:36:05 +0000 Files and hashes: 1: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl (hash: cMo0TjNApYm7nNaa8I9eKOeIlWNgLBmMaI+lXtLuK8k=) 2: 218937DC5E5011F0B9404662C4F9AE02.roa (hash: TfhxYXEuzGwCmeMd3nNc0DOls3QWgWihrLMEBQlhbYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Validity Not Before: Apr 17 03:36:05 2026 GMT Not After : Apr 24 03:36:05 2026 GMT Subject: CN=69e1aaa5-84b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:75:44:3d:ad:c8:a0:d7:76:be:d3:f0:94:b2: 50:dc:e0:ce:d5:b8:82:1e:e6:54:f8:ce:ff:8b:94: 0c:55:68:7c:c8:17:a7:03:4f:17:1a:e7:9b:5e:5c: be:f6:fb:87:6d:34:b3:d0:f9:6d:66:9d:89:c4:32: 76:45:d8:bc:72:0f:fd:c2:9b:65:0d:77:5d:7c:79: 14:7a:0c:6a:c6:1c:00:05:82:7b:95:c5:56:50:a0: 50:0b:71:72:bf:85:2c:a2:f5:97:2a:bd:64:b9:19: b7:b6:5c:3b:5b:b6:a6:5c:9c:f3:48:f7:30:5b:91: 5e:de:2d:93:52:de:ad:bb:7c:ab:71:0e:b3:b6:0e: 47:f0:5f:0d:ff:e9:9b:ba:b0:b8:15:b3:aa:fd:60: 8b:1d:24:7a:f6:0f:33:ca:7d:21:03:55:42:c3:33: 4f:3e:1c:d0:19:7b:eb:f6:8b:c4:2f:47:65:be:4f: 2e:4d:ad:c1:5c:45:da:f4:fa:ab:f1:1f:51:0b:3c: 8a:12:89:45:fb:cd:4e:68:65:33:6c:68:d8:d7:bf: 01:c8:b8:9a:57:ff:a3:8c:67:69:2d:dd:22:ae:9b: 48:7a:7c:1c:3f:58:af:0c:b9:c4:67:58:c0:9f:73: ef:ef:9c:c0:6f:da:f2:c1:39:ff:ac:90:4c:62:af: 02:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:41:7C:7E:DB:60:4B:2A:B9:37:66:EF:F3:E0:5C:BE:CF:73:91:E8 X509v3 Authority Key Identifier: keyid:08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a7:02:10:86:a9:b6:a0:75:79:1d:88:35:9e:04:5d:c3:4e: d9:f1:6a:7f:89:32:5c:ea:39:ce:cc:da:5a:e0:84:ab:d8:c4: 6d:3e:ed:93:d1:cf:0d:11:f1:ae:9c:fe:f2:a3:54:1b:98:c2: a8:50:90:3d:a9:7b:1a:b1:2f:10:e3:ac:c1:ad:9b:45:86:2f: 1f:9e:81:a7:43:4b:22:6c:85:f7:5f:3d:7d:a8:f7:ed:9f:35: 95:2b:f2:12:7e:0a:d0:75:7e:76:2d:63:ca:63:c9:c3:f0:7d: cd:3f:bc:97:fc:9e:3c:04:e6:e2:4e:4c:f1:bb:47:46:85:64: df:96:3a:8e:10:6d:e3:0f:78:2d:96:4c:39:50:d6:a3:1e:fd: 61:f5:33:e9:6c:fc:5d:ad:f7:4c:f4:28:e2:f4:f8:4f:9d:eb: 8b:84:70:be:80:6e:24:63:d1:86:98:00:15:93:27:3c:7c:b0: 9d:a7:f0:ea:2e:39:af:ac:79:a9:6e:e3:ad:38:fe:6e:e3:03: d8:ee:76:d0:a3:45:ba:06:5d:0d:16:d4:d1:71:2d:ee:02:af: ec:0d:72:ba:45:af:27:05:a7:58:f3:61:5d:4e:99:1a:06:88: 2b:a9:06:41:62:20:86:ee:0d:24:55:82:a0:3a:ac:09:29:f1: a3:b8:76:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJDNUQxMTAvBgNVBAUTKDA4Nzc3RkEzODFCRjI1OEUwQ0FDMzdENTA5RUYwQkFD NzA2NjQ4NDQwHhcNMjYwNDE3MDMzNjA1WhcNMjYwNDI0MDMzNjA1WjAYMRYwFAYD VQQDEw02OWUxYWFhNS04NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAknVEPa3IoNd2vtPwlLJQ3ODO1biCHuZU+M7/i5QMVWh8yBenA08XGuebXly+ 9vuHbTSz0PltZp2JxDJ2Rdi8cg/9wptlDXddfHkUegxqxhwABYJ7lcVWUKBQC3Fy v4UsovWXKr1kuRm3tlw7W7amXJzzSPcwW5Fe3i2TUt6tu3yrcQ6ztg5H8F8N/+mb urC4FbOq/WCLHSR69g8zyn0hA1VCwzNPPhzQGXvr9ovEL0dlvk8uTa3BXEXa9Pqr 8R9RCzyKEolF+81OaGUzbGjY178ByLiaV/+jjGdpLd0irptIenwcP1ivDLnEZ1jA n3Pv75zAb9rywTn/rJBMYq8CBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLJBfH7b YEsquTdm7/PgXL7Pc5HoMB8GA1UdIwQYMBaAFAh3f6OBvyWODKw31QnvC6xwZkhE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkM1RC8zQjlERDQxMDky QzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9DSGRfbzRHX0pZNE1yRGZWQ2U4THJIQm1T RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIZF9vNEdfSlk0TXJEZlZDZThMckhCbVNFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9DSGRfbzRHX0pZ NE1yRGZWQ2U4THJIQm1TRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi6cCEIaptqB1eR2INZ4EXcNO2fFqf4kyXOo5zszaWuCEq9jEbT7tk9HPDRHx rpz+8qNUG5jCqFCQPal7GrEvEOOswa2bRYYvH56Bp0NLImyF9189faj37Z81lSvy En4K0HV+di1jymPJw/B9zT+8l/yePATm4k5M8btHRoVk35Y6jhBt4w94LZZMOVDW ox79YfUz6Wz8Xa33TPQo4vT4T53ri4RwvoBuJGPRhpgAFZMnPHywnafw6i45r6x5 qW7jrTj+buMD2O520KNFugZdDRbU0XEt7gKv7A1yukWvJwWnWPNhXU6ZGgaIK6kG QWIghu4NJFWCoDqsCSnxo7h2Zw== -----END CERTIFICATE-----Generated at Fri Apr 17 11:05:20 2026 by rpki-client