$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: 4o62jWbdN34F3V0Dfp0e6zUiTHP9Y9V0dEBphG+SSQ8= Subject key identifier: 73:2C:54:9E:01:30:5E:29:5E:CE:60:96:87:46:F2:4D:A2:F7:6A:FA Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 359A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 355F Signing time: Thu 16 Apr 2026 14:43:49 +0000 Manifest this update: Thu 16 Apr 2026 14:43:49 +0000 Manifest next update: Thu 23 Apr 2026 14:43:49 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: sXPH0RwAR3xXHkfMzHbgpzVDRg5d8hL7WHqm9BXNUaY=) 2: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: 1fzcpx/xvt8MI/rxgZvshROVbIS3fA549ggTMJ5QBwA=) 3: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: tHNQzy8hGbC74qvfPySY/DdlrWAoieO3qDg8gWPCkbw=) 4: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13722 (0x359a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Apr 16 14:43:49 2026 GMT Not After : Apr 23 14:43:49 2026 GMT Subject: CN=69e0f5a5-89ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b8:0f:82:33:4a:f1:cc:69:66:1c:4d:8b:4e: 1a:2e:2e:17:76:d2:e1:0a:48:91:08:e4:92:5b:1f: 1a:ee:3d:92:1e:61:49:4d:5d:88:6e:73:7a:91:c7: 59:1f:39:48:e8:10:5d:83:12:ec:3d:95:00:30:0d: 5f:1e:45:14:b4:4e:22:36:b5:17:57:c1:b2:7c:5d: 4e:7d:08:10:dc:c8:f3:be:c0:01:83:95:2b:b4:af: 22:c9:cf:54:5a:25:07:bb:6d:47:05:c9:5b:99:cc: ed:c2:e8:d7:88:55:40:71:d0:b8:54:5a:93:68:3a: 8c:02:73:48:5f:06:6c:b9:81:2d:ce:ba:fd:71:13: 89:30:a1:95:3b:cc:2e:fe:d6:fb:63:bc:a8:92:10: c7:39:84:72:8a:c9:24:96:51:77:de:1c:47:74:74: d0:4f:54:cf:bb:5f:4b:67:9e:c4:be:b8:55:48:bb: 2e:77:a1:38:38:3b:b5:97:16:89:c4:49:75:87:f4: 2d:46:96:0e:72:a8:b0:f4:c2:89:cc:a4:31:da:a2: e1:72:5e:7c:1f:8c:51:1e:2b:1d:69:6f:a3:a1:ef: 68:fd:e1:aa:10:3d:3c:8d:dc:7a:97:3f:ca:15:65: 07:e5:a1:99:c6:dc:9c:aa:30:36:7a:06:2d:58:6d: 05:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2C:54:9E:01:30:5E:29:5E:CE:60:96:87:46:F2:4D:A2:F7:6A:FA X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:9f:37:a7:94:85:93:93:ab:e5:59:f4:a1:05:eb:b8:4a:77: d5:b6:c1:12:28:6b:88:ff:df:3e:7b:10:f5:3d:ad:f4:29:4c: 5b:3e:f7:3f:cf:4c:4c:d2:bc:fc:49:56:30:a9:7f:0d:88:96: 13:51:99:74:62:a1:07:82:8b:b8:2e:c1:af:81:95:a1:61:93: b6:8f:6f:20:41:e7:47:d6:fb:34:47:45:b0:81:c2:b9:55:b0: 89:2e:14:ea:83:1e:b9:be:a6:73:f9:49:0d:eb:69:dc:58:56: 72:24:58:eb:0d:a1:00:08:12:90:25:2d:2d:84:72:b9:98:06: c7:b7:75:d9:0b:7c:6c:61:42:bf:39:07:b9:93:3e:cc:b3:eb: c0:86:7a:cb:63:01:11:76:47:82:53:9a:ba:8d:8b:0b:8d:f6: 9e:b9:58:86:89:4c:e0:f6:21:c3:f1:78:d5:c5:0d:c5:26:e1: fe:d5:66:79:a4:ef:2a:3b:b5:4d:ff:7a:ae:b6:69:bd:8a:79: 0f:b0:d3:51:40:cc:bc:b5:82:9f:fd:eb:99:9b:20:de:79:93: eb:7e:4f:bf:c1:c1:8f:a8:ac:32:f0:8c:33:5d:8f:86:91:dd: fe:7d:b9:6f:03:f1:a9:bc:92:04:b7:67:e7:ec:17:c3:9a:09: bc:31:9d:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjYwNDE2MTQ0MzQ5WhcNMjYwNDIzMTQ0MzQ5WjAYMRYwFAYD VQQDEw02OWUwZjVhNS04OWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLgPgjNK8cxpZhxNi04aLi4XdtLhCkiRCOSSWx8a7j2SHmFJTV2IbnN6kcdZ HzlI6BBdgxLsPZUAMA1fHkUUtE4iNrUXV8GyfF1OfQgQ3MjzvsABg5UrtK8iyc9U WiUHu21HBclbmcztwujXiFVAcdC4VFqTaDqMAnNIXwZsuYEtzrr9cROJMKGVO8wu /tb7Y7yokhDHOYRyiskkllF33hxHdHTQT1TPu19LZ57EvrhVSLsud6E4ODu1lxaJ xEl1h/QtRpYOcqiw9MKJzKQx2qLhcl58H4xRHisdaW+joe9o/eGqED08jdx6lz/K FWUH5aGZxtycqjA2egYtWG0FFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHMsVJ4B MF4pXs5glodG8k2i92r6MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABZ83p5SFk5Or5Vn0oQXruEp31bbBEihriP/fPnsQ9T2t9ClMWz73P89MTNK8 /ElWMKl/DYiWE1GZdGKhB4KLuC7Br4GVoWGTto9vIEHnR9b7NEdFsIHCuVWwiS4U 6oMeub6mc/lJDetp3FhWciRY6w2hAAgSkCUtLYRyuZgGx7d12Qt8bGFCvzkHuZM+ zLPrwIZ6y2MBEXZHglOauo2LC432nrlYholM4PYhw/F41cUNxSbh/tVmeaTvKju1 Tf96rrZpvYp5D7DTUUDMvLWCn/3rmZsg3nmT635Pv8HBj6isMvCMM12PhpHd/n25 bwPxqbySBLdn5+wXw5oJvDGdjg== -----END CERTIFICATE-----Generated at Fri Apr 17 09:59:24 2026 by rpki-client