$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: jKCCpFn4aK2hdAqXukQZ4Yg3hjyGbGRJ0tHtmp72zo0= Subject key identifier: E4:8A:2B:3B:96:A4:BC:AC:D4:DC:2A:AC:AB:5C:C3:02:65:B4:C4:76 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 0A60 Signing time: Thu 16 Apr 2026 19:34:46 +0000 Manifest this update: Thu 16 Apr 2026 19:34:46 +0000 Manifest next update: Thu 23 Apr 2026 19:34:46 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: z+Mfp5Vj1QofjhcLGIK8G7kEVG51h+h5frhaVYNv8Bk=) 2: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: nPdlPveaGEn/o0RAhqipdNtydGVDIBxlaIUin+YvoPY=) 3: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: tAcZwWZwhXU4QpEPlt2t2XMLszlvvkM98qyIqRR6Ejk=) 4: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: 8uX/hlFjGe/V8LokTmcu8tEggMYCwiDilR7VyuWjQ5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2685 (0xa7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Apr 16 19:34:46 2026 GMT Not After : Apr 23 19:34:46 2026 GMT Subject: CN=69e139d6-55fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c8:c0:ce:e3:9c:f5:96:d1:e4:cf:7f:8d:80: 18:5e:b4:c8:5c:81:79:50:2f:0f:bd:c8:cc:05:69: 35:89:55:67:74:51:82:ac:b3:15:4c:42:88:2f:8a: ee:7b:2d:84:ed:87:9c:9e:1a:b9:84:d2:60:58:3d: 8b:39:f7:e1:dd:45:b4:01:50:21:75:85:b3:16:fe: ec:ee:47:61:71:d6:0a:64:15:f5:03:f6:48:e4:d5: 60:35:a8:5c:40:51:b7:57:f5:b8:42:31:c0:93:ac: 6e:ac:02:a8:d6:8d:64:68:41:a2:5c:f1:1a:fc:c2: ac:c4:5c:f8:54:df:32:9b:4a:aa:23:07:fc:82:a3: 31:05:1c:77:84:8e:98:14:e9:fd:7c:90:ea:de:ca: 8d:48:98:85:c3:f9:a0:ac:a6:62:dd:53:1b:99:73: 85:dd:d1:8c:ba:8b:ac:ad:4f:2d:de:9b:fd:be:a6: 47:eb:15:10:d9:59:ea:b6:03:f1:16:77:cd:b7:9a: 98:d6:8b:2a:83:77:fb:eb:de:10:5c:50:9b:9a:4f: b0:df:11:4f:04:28:f4:02:07:cd:d4:b1:e8:8e:e3: fe:f8:9d:ab:c7:26:6c:e3:b3:b8:e8:79:68:33:5a: e3:aa:81:28:fd:fc:ba:75:a0:1b:d3:c1:fe:fa:93: 99:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:8A:2B:3B:96:A4:BC:AC:D4:DC:2A:AC:AB:5C:C3:02:65:B4:C4:76 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:91:2d:33:e8:79:20:c4:60:23:fa:88:a5:e2:aa:63:a1:a0: 99:fe:78:53:28:eb:6d:5a:81:de:a6:02:18:d6:b3:6d:d5:b4: 01:48:15:e4:b6:f4:d0:9a:d5:f4:13:38:d0:3e:f2:73:0f:6a: c4:62:86:7c:d4:14:e4:a7:a5:70:3e:c8:b6:30:bf:e9:c0:f6: 7b:ab:b5:ee:ea:6f:b4:15:59:4a:da:96:58:ab:1d:5c:a6:97: 68:71:00:87:d8:7f:10:ad:96:47:0b:0e:f7:cd:07:f5:5e:0d: 81:92:3c:f0:c2:ca:8c:63:24:2a:4e:9a:e0:79:bf:e2:ba:cf: 1f:f4:21:af:b9:dd:28:53:2c:e0:9d:b0:fa:a3:a0:d3:b4:ff: 44:b5:41:40:70:b2:f7:96:9d:0b:c3:c0:13:ab:36:49:3b:d1: bf:e7:94:d1:ba:6e:a0:8e:ea:5c:48:31:91:0d:b7:42:4b:d6: c8:80:51:b1:d6:de:41:74:7e:5e:70:04:27:a1:be:ff:17:8f: cd:20:bd:e4:82:27:45:f6:0c:4c:7b:59:ea:2d:11:32:9f:bf: 3b:cd:25:a5:a2:fd:e2:41:7e:93:d9:7d:46:b6:ad:b6:bc:40: e5:3b:9c:dc:0e:1e:13:94:48:c5:f9:f8:df:48:72:5e:b9:35: 3b:77:b7:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjYwNDE2MTkzNDQ2WhcNMjYwNDIzMTkzNDQ2WjAYMRYwFAYD VQQDEw02OWUxMzlkNi01NWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsjAzuOc9ZbR5M9/jYAYXrTIXIF5UC8PvcjMBWk1iVVndFGCrLMVTEKIL4ru ey2E7Yecnhq5hNJgWD2LOffh3UW0AVAhdYWzFv7s7kdhcdYKZBX1A/ZI5NVgNahc QFG3V/W4QjHAk6xurAKo1o1kaEGiXPEa/MKsxFz4VN8ym0qqIwf8gqMxBRx3hI6Y FOn9fJDq3sqNSJiFw/mgrKZi3VMbmXOF3dGMuousrU8t3pv9vqZH6xUQ2VnqtgPx FnfNt5qY1osqg3f7694QXFCbmk+w3xFPBCj0AgfN1LHojuP++J2rxyZs47O46Hlo M1rjqoEo/fy6daAb08H++pOZtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOSKKzuW pLys1NwqrKtcwwJltMR2MB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACpEtM+h5IMRgI/qIpeKqY6Ggmf54UyjrbVqB3qYCGNazbdW0AUgV5Lb00JrV 9BM40D7ycw9qxGKGfNQU5KelcD7ItjC/6cD2e6u17upvtBVZStqWWKsdXKaXaHEA h9h/EK2WRwsO980H9V4NgZI88MLKjGMkKk6a4Hm/4rrPH/Qhr7ndKFMs4J2w+qOg 07T/RLVBQHCy95adC8PAE6s2STvRv+eU0bpuoI7qXEgxkQ23QkvWyIBRsdbeQXR+ XnAEJ6G+/xePzSC95IInRfYMTHtZ6i0RMp+/O80lpaL94kF+k9l9RrattrxA5Tuc 3A4eE5RIxfn430hyXrk1O3e38Q== -----END CERTIFICATE-----Generated at Fri Apr 17 09:46:55 2026 by rpki-client