$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: y8qLRQjCEf9aYyrqnZkPPxS6mnX7eCK9FfU7iL+y6Go= Subject key identifier: 18:0B:16:1B:9D:A3:C7:2D:2A:9E:C1:71:80:57:14:06:13:DB:FD:69 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 0283 Signing time: Fri 17 Apr 2026 01:42:16 +0000 Manifest this update: Fri 17 Apr 2026 01:42:15 +0000 Manifest next update: Fri 24 Apr 2026 01:42:15 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: zfRJQP5wTSutLyVq6KTbFKogpW5un0jUi8X2xyOeyLw=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: P6xx3LV0yIZz7Bt3wASwzM1QkFL56uH39jrYrM1xsJw=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: niAe7uFd21HH6WERU7iTs3hEOi8m5PmAvBhzB5K4rB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Apr 17 01:42:15 2026 GMT Not After : Apr 24 01:42:15 2026 GMT Subject: CN=69e18ff8-39a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5f:32:a7:ba:91:de:74:1f:c1:63:f4:c1:98: db:b4:9c:f0:50:72:5c:d9:b5:bf:9e:0c:fc:f9:d7: da:3a:47:30:ce:f4:84:f0:6d:c0:7e:81:15:36:40: 18:7a:7f:bc:c0:78:fe:ee:22:33:c9:a7:56:c3:63: e5:98:e5:77:f2:f6:4d:47:57:1e:1e:c3:dc:cc:6c: fc:19:e4:f3:1b:9b:89:1c:19:c4:0c:da:aa:88:7c: eb:8f:e8:f6:31:ef:b5:14:33:50:9e:f7:fd:07:86: 58:ae:e8:b4:7d:95:66:04:58:16:94:95:31:43:ef: a3:7b:68:58:ab:9f:23:a9:51:9c:46:06:f0:91:5b: fd:b9:15:d4:90:c2:2b:11:01:44:df:4b:f3:f5:37: 49:97:61:9f:6e:37:98:1d:3c:42:e4:81:8c:c4:4a: b1:29:f1:1a:f4:23:09:d9:13:51:6d:ec:04:1e:41: 06:ae:1b:74:6a:e5:1b:eb:24:05:a6:77:94:75:bc: 9f:8a:03:57:3a:dd:78:c6:51:0b:03:bd:d8:df:75: 84:bd:a7:21:e1:c6:2a:3a:37:76:aa:92:c7:72:ec: c1:ea:b0:a9:99:54:95:2f:34:21:7f:50:74:65:b9: ec:2e:35:9a:d7:62:68:f8:4f:32:51:96:87:a1:86: aa:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:0B:16:1B:9D:A3:C7:2D:2A:9E:C1:71:80:57:14:06:13:DB:FD:69 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ce:6a:81:77:11:0f:aa:b5:c4:d9:15:16:2c:b4:0e:3b:01: 26:7c:68:de:87:47:fa:8b:d0:c3:01:6c:6a:02:b2:ee:a4:06: 7d:a0:64:39:fb:74:c6:ae:7c:a3:00:ae:f4:04:10:ae:9b:f9: f5:5f:1e:4c:aa:32:6d:00:eb:09:4c:2d:b2:56:15:72:21:a0: e0:16:6d:de:39:82:f4:a4:51:df:92:1c:83:ab:1b:fc:fe:7f: df:fb:27:56:82:3c:0b:41:83:cf:b5:e7:a9:de:28:02:d6:6e: 6b:f3:6e:4c:0a:71:42:50:21:84:52:2f:5d:d3:18:12:a2:ea: ff:11:93:2e:0c:21:82:ff:22:40:a5:cf:d2:c3:bb:ad:82:46: 05:8e:ff:a8:7e:a6:f5:0f:ba:89:a0:21:1c:de:63:ff:94:cd: 1d:0e:94:2b:16:4a:13:10:3b:34:c7:2d:b8:fd:20:87:af:ea: bc:0c:91:52:8a:30:17:79:4a:f2:62:6d:b2:b9:f3:45:77:10: eb:e0:48:0a:9e:75:05:dc:4f:a8:2e:ee:c4:a0:35:8a:9b:4b: 92:c3:f5:8c:01:57:f6:04:0a:6c:c0:f7:a1:4c:8f:f8:9a:3f: 23:af:03:81:d7:a4:2d:7f:06:41:bb:7f:bd:ee:3e:d4:08:70: ff:5b:f9:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjYwNDE3MDE0MjE1WhcNMjYwNDI0MDE0MjE1WjAYMRYwFAYD VQQDEw02OWUxOGZmOC0zOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA418yp7qR3nQfwWP0wZjbtJzwUHJc2bW/ngz8+dfaOkcwzvSE8G3AfoEVNkAY en+8wHj+7iIzyadWw2PlmOV38vZNR1ceHsPczGz8GeTzG5uJHBnEDNqqiHzrj+j2 Me+1FDNQnvf9B4ZYrui0fZVmBFgWlJUxQ++je2hYq58jqVGcRgbwkVv9uRXUkMIr EQFE30vz9TdJl2GfbjeYHTxC5IGMxEqxKfEa9CMJ2RNRbewEHkEGrht0auUb6yQF pneUdbyfigNXOt14xlELA73Y33WEvach4cYqOjd2qpLHcuzB6rCpmVSVLzQhf1B0 ZbnsLjWa12Jo+E8yUZaHoYaqYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBgLFhud o8ctKp7BcYBXFAYT2/1pMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoM5qgXcRD6q1xNkVFiy0DjsBJnxo3odH+ovQwwFsagKy7qQGfaBkOft0xq58 owCu9AQQrpv59V8eTKoybQDrCUwtslYVciGg4BZt3jmC9KRR35Icg6sb/P5/3/sn VoI8C0GDz7Xnqd4oAtZua/NuTApxQlAhhFIvXdMYEqLq/xGTLgwhgv8iQKXP0sO7 rYJGBY7/qH6m9Q+6iaAhHN5j/5TNHQ6UKxZKExA7NMctuP0gh6/qvAyRUoowF3lK 8mJtsrnzRXcQ6+BICp51BdxPqC7uxKA1iptLksP1jAFX9gQKbMD3oUyP+Jo/I68D gdekLX8GQbt/ve4+1Ahw/1v5AQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:29:08 2026 by rpki-client