$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 4SWGjcDyo/yzFksuIwAB28NEeXL3oecOmnGj1QMkNIc= Subject key identifier: 0C:D1:68:E9:ED:89:D6:E2:C5:1A:22:4C:98:6A:CB:23:A5:65:C8:75 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3837 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 3732 Signing time: Thu 16 Apr 2026 14:33:21 +0000 Manifest this update: Thu 16 Apr 2026 14:33:21 +0000 Manifest next update: Thu 23 Apr 2026 14:33:21 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: Cj8/w0SbJRBf7akrZ0nS/Dfb1+Qwzg2Dp3mvszuc+U8=) 2: 0F0E88A6192F11F183D9B1FC303D8C67.roa (hash: 5aKDuZwd3Wn+m9JFqN35rRMwxZf4PwI1YL49pBMgje4=) 3: 15B06ACE01B211F1A8498BCA6C6F56BC.roa (hash: 5xNdDoLkpm/cKB7fxSHaoDjqTsi17ChXNYz70KIoKrA=) 4: F24EEED208C011F19DFF611F213D8C67.roa (hash: j8mZP70/+lxFmxKK+gaXtA4vlgcSiykk11UZrhv9x1I=) 5: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: Zntrf+XRFU/LUFPqt460t/df6T24vxpmkd5azGcAX5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14391 (0x3837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Apr 16 14:33:21 2026 GMT Not After : Apr 23 14:33:21 2026 GMT Subject: CN=69e0f331-cc35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:09:70:79:f1:6f:8a:87:f4:da:87:d8:ac:f1: a3:b7:92:91:f4:91:c0:e5:92:31:86:82:86:97:82: ff:5a:d5:4f:d0:82:21:71:96:80:46:02:1c:93:a9: 18:be:82:94:d7:d7:9b:9e:3d:9b:a5:2a:56:18:01: 2a:c8:b3:92:67:cb:2d:57:b0:12:59:4a:eb:63:17: b5:fc:c4:29:79:40:3e:2d:99:83:bf:6f:e9:8c:c0: 3c:e6:fe:ca:8a:e4:3a:fe:38:ea:53:5d:1b:20:92: b4:7c:15:63:91:0f:09:fb:b5:df:aa:d7:2b:64:c0: 2e:ac:e2:de:55:d9:c0:63:40:13:65:6b:1f:43:7b: a0:21:93:90:7d:2a:e4:49:b3:db:10:eb:b0:a9:7c: 6c:80:78:be:67:01:91:a8:9d:87:f0:8f:f3:43:60: 1d:ad:18:a1:d5:d3:66:bb:de:24:b9:58:98:69:c2: 88:58:88:7b:42:b8:4d:46:da:c6:b8:e9:ac:52:47: 8a:9b:e1:82:93:80:c2:77:18:b2:9f:44:66:ca:02: 27:4c:d7:74:93:c7:5b:7f:31:26:cf:39:3e:72:5d: 45:75:4d:b2:5f:40:f4:cf:e9:ce:54:dc:27:af:75: 69:c9:f6:92:e6:59:1c:f7:61:2c:bd:b2:a6:ad:13: 9d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D1:68:E9:ED:89:D6:E2:C5:1A:22:4C:98:6A:CB:23:A5:65:C8:75 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:94:8a:8b:53:95:70:f6:2e:c0:07:5d:ee:55:7d:e0:29:98: f8:b6:ee:66:27:9e:9f:78:64:83:2e:47:4e:9d:33:15:fa:5f: 4f:fd:86:0f:ea:d9:09:9f:a9:66:02:b5:38:65:54:c9:50:32: 96:36:23:8e:75:d7:3c:c5:1f:6f:a1:18:32:b6:46:18:de:2e: a7:7e:8c:15:d9:9e:9e:06:d9:3a:3f:ae:bd:2e:ec:97:14:67: 44:f0:9e:0c:b4:ed:fe:67:77:dc:da:95:25:1c:ce:4b:75:b0: 67:57:a2:d5:e3:b0:27:2e:41:60:94:c2:2b:ab:83:fb:cc:76: 22:83:f4:56:c3:09:ab:9c:b4:8e:63:a9:e7:1f:2e:7e:ab:8b: c6:1b:70:f2:3e:37:18:4c:68:23:b7:0d:b9:98:fb:e4:a2:6c: c5:27:5e:b1:01:72:41:c4:0b:c3:1f:e9:65:27:40:2b:f5:3c: f3:ca:17:d1:ad:a4:89:0d:ff:0c:a1:7d:90:c2:23:38:bd:46: 21:26:ff:b9:af:13:49:47:fc:13:15:04:51:b5:b3:37:cd:ce: 82:e0:60:90:94:e8:d6:0e:3a:bf:74:14:39:27:c7:3a:db:78: 2a:f3:1b:cf:b7:3e:ef:a5:56:0b:b2:0e:25:0c:88:5b:94:da: b3:11:af:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICODcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwNDE2MTQzMzIxWhcNMjYwNDIzMTQzMzIxWjAYMRYwFAYD VQQDEw02OWUwZjMzMS1jYzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwlwefFviof02ofYrPGjt5KR9JHA5ZIxhoKGl4L/WtVP0IIhcZaARgIck6kY voKU19ebnj2bpSpWGAEqyLOSZ8stV7ASWUrrYxe1/MQpeUA+LZmDv2/pjMA85v7K iuQ6/jjqU10bIJK0fBVjkQ8J+7XfqtcrZMAurOLeVdnAY0ATZWsfQ3ugIZOQfSrk SbPbEOuwqXxsgHi+ZwGRqJ2H8I/zQ2AdrRih1dNmu94kuViYacKIWIh7QrhNRtrG uOmsUkeKm+GCk4DCdxiyn0RmygInTNd0k8dbfzEmzzk+cl1FdU2yX0D0z+nOVNwn r3VpyfaS5lkc92EsvbKmrROdhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAzRaOnt idbixRoiTJhqyyOlZch1MB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATZSKi1OVcPYuwAdd7lV94CmY+LbuZieen3hkgy5HTp0zFfpfT/2GD+rZCZ+p ZgK1OGVUyVAyljYjjnXXPMUfb6EYMrZGGN4up36MFdmengbZOj+uvS7slxRnRPCe DLTt/md33NqVJRzOS3WwZ1ei1eOwJy5BYJTCK6uD+8x2IoP0VsMJq5y0jmOp5x8u fquLxhtw8j43GExoI7cNuZj75KJsxSdesQFyQcQLwx/pZSdAK/U888oX0a2kiQ3/ DKF9kMIjOL1GISb/ua8TSUf8ExUEUbWzN83OguBgkJTo1g46v3QUOSfHOtt4KvMb z7c+76VWC7IOJQyIW5TasxGvFA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:35:52 2026 by rpki-client