$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: dXyUCHjVeh4wmHkvNLZ5DmN1u3ssswkbvag4aE5p57k= Subject key identifier: 62:8F:3F:2E:D0:72:05:A4:3D:43:F4:41:9A:79:80:A2:E0:00:51:CF Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 0327 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 031B Signing time: Fri 17 Apr 2026 01:03:04 +0000 Manifest this update: Fri 17 Apr 2026 01:03:04 +0000 Manifest next update: Fri 24 Apr 2026 01:03:04 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: k3htdIH/2luxLTkhDn+nLFl9edswBoKqM/GnQIzlQdc=) 2: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: h4h9VFlilMq7CKoOcwRr0fslyRPoCa6/sTUwfmGzOxg=) 3: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: VgeFEtMT/M7sth0/aY0YUIbWeg643mp39smFMavgcMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Apr 17 01:03:04 2026 GMT Not After : Apr 24 01:03:04 2026 GMT Subject: CN=69e186c8-b062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:86:49:d9:30:ff:3e:9c:6e:d5:51:73:bd:f9: 49:20:eb:c9:eb:d3:ca:92:aa:ae:31:ae:6b:18:dd: de:34:de:70:d0:a7:a3:1e:f4:10:63:d7:2c:9c:c8: c8:be:56:bc:f6:cb:06:e6:22:18:1b:ce:be:96:a0: 0d:3b:8f:c7:62:16:0a:ce:1a:10:36:e8:63:49:14: 9b:57:8c:12:c7:f7:d0:e6:ec:ac:e2:8a:f4:8b:f8: e2:a2:cc:c9:cb:19:20:61:7c:2f:89:91:0a:93:82: 6f:5e:f8:f9:ae:4b:ea:95:d1:2c:e3:04:64:95:71: bb:0d:6d:12:ea:0e:e0:c3:18:9a:c8:3b:0d:7b:16: 6b:05:70:99:07:ed:3c:8a:44:ba:83:e8:6e:04:92: 20:46:3e:f8:c4:ac:43:b2:7f:84:a7:f6:88:b4:c6: d7:21:33:e3:23:50:40:e9:8c:63:82:3b:ed:c6:b7: c1:5f:63:79:82:6f:e9:f6:de:ef:d3:66:03:d0:c1: bb:65:0b:fe:96:36:07:75:e0:f8:7f:da:94:d8:9e: fa:08:2d:d7:2c:ca:4b:6a:4b:dc:54:a3:a0:72:8d: be:69:8e:e2:ee:78:af:15:1c:36:78:9c:b4:2c:a7: d4:b1:ec:f8:61:6f:2f:8e:89:4c:56:2f:67:2e:e1: 3c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8F:3F:2E:D0:72:05:A4:3D:43:F4:41:9A:79:80:A2:E0:00:51:CF X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:0c:90:11:58:68:09:8b:5c:98:76:b8:52:ca:ff:d0:92:7d: 1c:aa:23:7d:c5:2c:25:05:a1:56:9a:ae:ef:7c:e9:7f:b1:d6: 19:0a:2b:b8:c8:2d:7c:7a:5b:30:59:83:11:e3:e2:38:79:ff: 96:b9:14:b3:f8:a9:60:0d:e4:60:d6:ba:f4:0d:ff:46:e5:6f: cb:3d:b4:bd:60:a0:86:0a:ef:fb:ef:04:ee:71:7a:dc:97:b7: e8:c2:5b:56:b4:e6:83:ed:10:13:30:bc:ec:19:8d:42:e3:ed: 38:c7:79:df:d5:7c:4f:f7:24:b1:c1:12:0e:e4:2b:f7:bf:1f: af:7b:3d:00:99:28:fe:b8:fc:f9:b6:86:74:37:0d:12:22:b9: 93:8a:63:28:bd:f5:4e:fa:52:d0:b1:22:e9:c3:22:ee:14:f6: 47:16:77:88:c9:f8:b8:16:43:d7:eb:b5:be:fe:ee:dc:aa:b0: 8d:48:e0:30:9b:1a:7b:19:55:d1:21:11:9d:aa:8a:01:af:fe: 40:0b:61:c5:ce:3f:d9:d8:f5:2d:ff:09:6d:3a:f1:46:ac:be: a8:3f:7f:af:03:a6:de:f1:b2:82:78:b1:68:28:f9:81:01:39: 74:d6:b6:ec:d0:ac:99:e1:54:6f:ce:76:f8:b0:68:64:56:58: 07:0f:e3:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjYwNDE3MDEwMzA0WhcNMjYwNDI0MDEwMzA0WjAYMRYwFAYD VQQDEw02OWUxODZjOC1iMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oZJ2TD/Ppxu1VFzvflJIOvJ69PKkqquMa5rGN3eNN5w0KejHvQQY9csnMjI vla89ssG5iIYG86+lqANO4/HYhYKzhoQNuhjSRSbV4wSx/fQ5uys4or0i/jioszJ yxkgYXwviZEKk4JvXvj5rkvqldEs4wRklXG7DW0S6g7gwxiayDsNexZrBXCZB+08 ikS6g+huBJIgRj74xKxDsn+Ep/aItMbXITPjI1BA6YxjgjvtxrfBX2N5gm/p9t7v 02YD0MG7ZQv+ljYHdeD4f9qU2J76CC3XLMpLakvcVKOgco2+aY7i7nivFRw2eJy0 LKfUsez4YW8vjolMVi9nLuE8XwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGKPPy7Q cgWkPUP0QZp5gKLgAFHPMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhQyQEVhoCYtcmHa4Usr/0JJ9HKojfcUsJQWhVpqu73zpf7HWGQoruMgtfHpb MFmDEePiOHn/lrkUs/ipYA3kYNa69A3/RuVvyz20vWCghgrv++8E7nF63Je36MJb VrTmg+0QEzC87BmNQuPtOMd539V8T/ckscESDuQr978fr3s9AJko/rj8+baGdDcN EiK5k4pjKL31TvpS0LEi6cMi7hT2RxZ3iMn4uBZD1+u1vv7u3KqwjUjgMJsaexlV 0SERnaqKAa/+QAthxc4/2dj1Lf8JbTrxRqy+qD9/rwOm3vGygnixaCj5gQE5dNa2 7NCsmeFUb852+LBoZFZYBw/jHg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:33:14 2026 by rpki-client