$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: jh90uWTvST+ITqTJdm24j+3iOCJGQ8/mI49PZ9Q2s7E= Subject key identifier: 1F:DE:FD:3D:2F:4A:C0:42:E6:E3:61:18:B1:E5:03:0D:4B:F1:66:E2 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0AA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0A94 Signing time: Thu 16 Apr 2026 19:27:05 +0000 Manifest this update: Thu 16 Apr 2026 19:27:04 +0000 Manifest next update: Thu 23 Apr 2026 19:27:04 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: KBDSwR5vPeeppV5WbZScsmB17fkESvVUlYDdYcq0F7Q=) 2: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: 4hs5ZsgD34lurWWtqzwS5KhH9/xLR1O9eIzz8X0YnUU=) 3: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: tU35KeQjtZgc7V5YAzYuL51TG9tcBGSRzKoyTO6zrr8=) 4: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: wS6WujKS1RlUSlM65oSTLz34uOnLb4N0Cqn3TGYDt4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2726 (0xaa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Apr 16 19:27:04 2026 GMT Not After : Apr 23 19:27:04 2026 GMT Subject: CN=69e13809-7361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:80:ff:ec:0f:1a:4d:a4:f7:45:18:7b:ec:6a: 10:d0:dc:7a:fc:37:69:9d:83:ff:81:2c:51:34:82: f2:d3:65:68:a2:32:40:1d:51:72:d3:8b:4e:b3:ce: fa:9f:16:79:c6:87:d0:d5:ad:0e:76:57:ad:9f:03: 52:33:e5:e2:bd:85:fd:1b:e2:f5:5f:87:cf:11:47: 61:50:f2:30:58:e2:b1:98:95:7c:c3:c0:ca:09:a5: 10:29:85:98:02:84:b2:6a:3a:41:83:05:46:bf:8e: 05:ee:e7:e6:cb:1d:9b:a9:8c:7b:76:e1:b0:d9:50: 1e:0c:d8:20:21:ba:80:68:49:88:25:39:c7:1b:6e: b3:9a:7e:48:77:bc:fe:e3:ab:b4:a5:24:ca:0e:df: b7:24:cf:3c:d8:c5:83:7e:72:dd:0f:d4:7f:a6:e8: 93:20:60:2e:90:5d:25:46:57:03:49:a9:44:38:c4: 89:f4:05:56:6a:f1:a6:c1:80:aa:29:63:c9:31:6c: 61:b9:5a:fa:06:3f:2c:1e:eb:73:43:b6:c5:a3:54: a7:c1:68:e9:57:bf:33:61:05:79:0a:cb:c4:87:8c: f5:10:e6:ab:a3:5c:5c:0a:26:93:1c:5c:8a:7e:5b: 3b:e3:cd:32:69:c7:ed:1d:0c:9d:5a:8a:79:36:5d: d3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DE:FD:3D:2F:4A:C0:42:E6:E3:61:18:B1:E5:03:0D:4B:F1:66:E2 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:a5:ae:16:91:71:ab:09:20:fd:1f:0b:4c:74:e7:ed:27:37: 44:06:d7:9e:62:cb:f2:57:07:ab:a5:33:08:9b:9b:f3:ec:67: d2:5e:55:73:6c:eb:64:f5:fa:5d:38:38:85:a0:3d:90:44:01: 23:90:4b:28:55:e0:b9:c4:69:8e:2b:de:8f:84:f0:45:fe:15: 7c:2b:d6:49:b8:c6:c5:f2:59:49:59:23:81:a8:38:5a:76:fe: cd:98:8d:70:88:67:15:8e:f1:65:bf:0a:ce:79:7d:d9:7a:4e: a7:37:dc:7b:6c:d7:28:25:ef:6c:f0:75:4e:5e:63:02:c8:aa: b4:89:c3:0e:54:90:b9:14:9a:3f:70:7a:67:23:0a:0a:41:80: 1e:a1:66:d7:4a:4f:f4:af:91:1b:20:de:d4:bc:c9:3a:87:e9: 22:77:b3:71:df:2d:3a:c6:9d:9f:2d:03:4d:41:c3:0f:f9:56: c7:45:16:c8:37:dd:99:e6:e2:8c:3e:50:b0:39:dd:58:35:f5: 42:ae:66:cd:e9:30:51:d6:1f:1e:6c:b3:88:ab:cf:a1:1e:73: f8:16:2a:79:7f:81:5a:69:25:1e:7b:02:90:c9:ee:17:2f:cd: 8e:35:87:37:ae:76:ce:ba:ab:89:89:d6:d1:f1:dc:97:29:d9: b0:ed:4c:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjYwNDE2MTkyNzA0WhcNMjYwNDIzMTkyNzA0WjAYMRYwFAYD VQQDEw02OWUxMzgwOS03MzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4D/7A8aTaT3RRh77GoQ0Nx6/DdpnYP/gSxRNILy02VoojJAHVFy04tOs876 nxZ5xofQ1a0OdletnwNSM+XivYX9G+L1X4fPEUdhUPIwWOKxmJV8w8DKCaUQKYWY AoSyajpBgwVGv44F7ufmyx2bqYx7duGw2VAeDNggIbqAaEmIJTnHG26zmn5Id7z+ 46u0pSTKDt+3JM882MWDfnLdD9R/puiTIGAukF0lRlcDSalEOMSJ9AVWavGmwYCq KWPJMWxhuVr6Bj8sHutzQ7bFo1SnwWjpV78zYQV5CsvEh4z1EOaro1xcCiaTHFyK fls7480yacftHQydWop5Nl3TVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB/e/T0v SsBC5uNhGLHlAw1L8WbiMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqaWuFpFxqwkg/R8LTHTn7Sc3RAbXnmLL8lcHq6UzCJub8+xn0l5Vc2zrZPX6 XTg4haA9kEQBI5BLKFXgucRpjivej4TwRf4VfCvWSbjGxfJZSVkjgag4Wnb+zZiN cIhnFY7xZb8Kznl92XpOpzfce2zXKCXvbPB1Tl5jAsiqtInDDlSQuRSaP3B6ZyMK CkGAHqFm10pP9K+RGyDe1LzJOofpInezcd8tOsadny0DTUHDD/lWx0UWyDfdmebi jD5QsDndWDX1Qq5mzekwUdYfHmyziKvPoR5z+BYqeX+BWmklHnsCkMnuFy/NjjWH N652zrqriYnW0fHclynZsO1Msw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:09:27 2026 by rpki-client