$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: +hFqMLDPV2zK/SEqx8WZES3dALlPc7X/nmf1nGZAdEM= Subject key identifier: D0:3C:1F:E8:EC:10:4F:BE:E5:AD:14:AA:25:3B:3F:41:FA:66:C4:03 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 0853 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 0853 Signing time: Thu 16 Apr 2026 20:40:54 +0000 Manifest this update: Thu 16 Apr 2026 20:40:53 +0000 Manifest next update: Thu 23 Apr 2026 20:40:53 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: HTnKrfBYIhakvS7OQxpUQiLPBMKUnPLnYxxZOcctxio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Apr 16 20:40:53 2026 GMT Not After : Apr 23 20:40:53 2026 GMT Subject: CN=69e14956-e0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c8:a3:d6:f7:db:77:44:6d:a4:57:bb:cf:c1: 72:7b:ba:55:07:9e:12:ce:eb:71:cb:37:54:b2:e7: f8:ef:cb:ad:86:26:94:4d:ef:ba:d7:a4:33:fd:53: f5:d0:e9:90:53:c8:50:40:95:8a:60:03:40:0c:15: ef:b7:ae:d7:0d:4f:48:fe:f2:ba:6a:52:1e:93:16: 8f:3a:b3:86:f4:79:06:29:dd:db:80:78:0a:7a:b0: f7:df:ac:20:03:ae:64:49:fb:17:75:ef:21:c0:50: 1a:d5:42:c4:da:f3:34:0b:66:6f:c0:d9:cc:a8:14: ac:77:01:c7:c8:4c:20:52:25:1d:68:3b:45:2c:a0: 3e:8b:b4:6c:05:c1:0a:ec:d2:70:d5:76:33:d5:25: 1b:51:3e:8c:12:55:8d:8a:0c:ca:18:7d:70:0a:dd: 16:49:9d:e6:6a:72:4a:e5:f5:1d:48:81:be:d0:ee: 31:5e:f6:37:b1:8d:a0:e8:14:a7:74:d3:88:9c:8c: 81:3f:b3:49:ec:9c:01:41:86:31:42:bb:f1:7b:64: db:c8:59:28:a0:1d:44:a9:03:ce:5d:d0:9c:3f:76: 06:e6:4a:40:9d:f9:67:d8:8c:23:b9:d7:65:72:c0: 4e:51:ab:bd:66:c1:86:f9:1f:79:c1:67:6a:7b:46: dc:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:3C:1F:E8:EC:10:4F:BE:E5:AD:14:AA:25:3B:3F:41:FA:66:C4:03 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:d6:54:84:28:33:b5:29:90:3f:31:40:fb:24:7e:97:aa:b5: a5:96:22:ef:cc:2c:91:9d:80:27:c9:4f:5b:af:49:7b:21:39: fd:bf:f5:bd:1b:9d:51:67:33:24:83:81:0a:e1:2c:67:19:45: 14:9d:e2:cf:68:07:a0:a3:03:04:98:3a:e4:4d:8d:7b:e1:fd: b4:19:e5:7a:90:8e:b6:f8:9b:fc:8d:a8:8d:f4:bd:23:75:62: 54:8a:c0:ce:e7:a5:12:58:04:21:6f:da:39:a4:5d:ef:09:fc: e4:80:59:0c:c1:0d:21:db:3a:5a:9c:eb:6d:32:24:31:eb:41: 76:8d:c2:4d:9e:4e:b7:7b:73:ac:f2:ed:1f:55:15:b4:a8:c5: f1:04:4f:a1:13:4c:2f:50:d9:35:14:09:27:6a:1c:af:93:61: 5a:7b:e8:16:d6:af:bd:09:3a:a0:cb:08:dd:8f:32:8b:e9:df: ec:59:b3:cd:65:37:ec:67:0f:54:07:b0:28:e7:e7:3b:3f:df: f2:64:a2:2a:41:94:bb:f2:d2:c2:b5:40:ac:4d:3c:c4:7f:d7: 05:4c:1e:16:b5:ea:45:be:8a:5f:95:e1:a9:73:32:7b:fd:eb: 30:f9:79:56:c7:86:ec:0f:b5:fe:ad:c7:11:a7:45:a1:d8:8f: 81:e1:7d:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjYwNDE2MjA0MDUzWhcNMjYwNDIzMjA0MDUzWjAYMRYwFAYD VQQDEw02OWUxNDk1Ni1lMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysij1vfbd0RtpFe7z8Fye7pVB54SzutxyzdUsuf478uthiaUTe+616Qz/VP1 0OmQU8hQQJWKYANADBXvt67XDU9I/vK6alIekxaPOrOG9HkGKd3bgHgKerD336wg A65kSfsXde8hwFAa1ULE2vM0C2ZvwNnMqBSsdwHHyEwgUiUdaDtFLKA+i7RsBcEK 7NJw1XYz1SUbUT6MElWNigzKGH1wCt0WSZ3manJK5fUdSIG+0O4xXvY3sY2g6BSn dNOInIyBP7NJ7JwBQYYxQrvxe2TbyFkooB1EqQPOXdCcP3YG5kpAnfln2Iwjuddl csBOUau9ZsGG+R95wWdqe0bcHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNA8H+js EE++5a0UqiU7P0H6ZsQDMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo9ZUhCgztSmQPzFA+yR+l6q1pZYi78wskZ2AJ8lPW69JeyE5/b/1vRudUWcz JIOBCuEsZxlFFJ3iz2gHoKMDBJg65E2Ne+H9tBnlepCOtvib/I2ojfS9I3ViVIrA zuelElgEIW/aOaRd7wn85IBZDMENIds6WpzrbTIkMetBdo3CTZ5Ot3tzrPLtH1UV tKjF8QRPoRNML1DZNRQJJ2ocr5NhWnvoFtavvQk6oMsI3Y8yi+nf7FmzzWU37GcP VAewKOfnOz/f8mSiKkGUu/LSwrVArE08xH/XBUweFrXqRb6KX5XhqXMye/3rMPl5 VseG7A+1/q3HEadFodiPgeF9lA== -----END CERTIFICATE-----Generated at Fri Apr 17 10:03:35 2026 by rpki-client