$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: dmK2kGlJ4ktM74i2LJkxUzR4dO7+D0CCOOMxUD8obUY= Subject key identifier: E4:2B:2A:38:BE:65:D0:56:B3:65:A3:27:28:EE:3C:0E:F8:FC:65:3A Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 100D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0FD0 Signing time: Thu 16 Apr 2026 17:27:37 +0000 Manifest this update: Thu 16 Apr 2026 17:27:36 +0000 Manifest next update: Thu 23 Apr 2026 17:27:36 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: JMouFjzNQRZ/wlDG3t5FEQVX8+JCfuP3tAsIX2wppeI=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: thWs/wjgTce2OH8uRbqin2U/9yRfT0t37bg0yz1umNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4109 (0x100d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Apr 16 17:27:36 2026 GMT Not After : Apr 23 17:27:36 2026 GMT Subject: CN=69e11c09-c68e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:c2:ed:bf:87:bf:9b:c5:38:e7:27:e2:fa:59: 8f:6a:b3:eb:91:f5:9e:34:90:84:7e:f3:24:69:5f: 5b:82:7e:03:bf:c7:65:c5:af:2f:e1:f5:6e:c8:33: a1:64:45:12:78:3d:5f:bc:73:12:6f:62:cc:f2:b2: 66:39:67:a1:27:03:5d:53:db:1b:57:bc:52:f9:ed: f4:c0:7c:19:8c:fa:10:9d:1b:d6:c2:71:53:ba:bb: 70:a3:67:2b:bb:13:02:c8:86:1b:96:b2:4e:19:64: 4c:6d:76:05:61:86:e5:72:d0:32:c9:df:c3:cb:51: c4:5c:33:70:46:94:1e:22:07:1a:c5:41:b8:d9:d1: 88:12:66:4d:5c:8c:8c:5f:73:5a:33:57:19:ca:e3: 90:06:02:41:0e:4f:cf:cc:73:46:64:38:8b:a2:4e: 74:4a:4b:36:e2:1a:97:45:0f:c0:1b:2c:85:41:c3: 41:c8:1b:4d:e5:97:2e:61:19:15:4f:41:88:7d:73: 5b:fe:06:59:38:a0:7c:3b:be:1f:e6:63:b2:5c:5c: 4a:e6:14:4a:76:1a:5a:aa:ab:24:f7:27:d0:95:77: 37:cf:5c:48:04:92:ee:1d:8e:ed:34:fe:72:ad:06: 74:2e:d8:ba:4f:50:d2:1f:e5:a5:c8:ed:da:31:79: f9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2B:2A:38:BE:65:D0:56:B3:65:A3:27:28:EE:3C:0E:F8:FC:65:3A X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:39:9f:a2:2a:ea:f6:30:3f:0a:3f:42:2f:e1:00:5a:74:fe: de:a0:89:81:f6:8f:84:c8:78:23:34:61:42:1f:20:50:0a:17: 83:19:15:e2:3d:da:48:74:13:f5:0b:db:50:51:36:73:9c:9e: a3:e0:75:82:53:ad:90:c4:78:98:6b:d2:c9:4b:11:41:dd:d0: 12:7e:22:35:5a:40:99:fc:d6:98:90:53:56:95:c0:51:44:02: 3a:32:23:cf:85:47:fe:bb:2e:9e:e5:b6:82:b0:20:f6:06:73: b8:87:dc:c5:d9:fa:08:31:aa:25:b9:ce:d2:54:21:3e:42:75: 1e:13:c9:41:5d:5a:d3:92:8c:70:a0:87:8a:55:81:3c:7a:65: 45:68:2c:30:b5:f5:3c:e3:3b:55:1c:3c:ad:c0:4d:d2:70:69: d6:1d:a2:85:d2:c1:45:2b:27:4b:68:54:c6:82:cf:c0:9f:1c: 06:b8:28:23:3d:f4:ee:40:58:9c:31:74:3c:05:e0:29:b5:ee: 15:48:c9:f2:e0:8d:28:6c:cf:f1:88:86:e0:4f:a5:86:50:45: f6:9f:83:6c:c0:bd:2e:63:10:cd:b3:d9:97:74:dd:a3:59:41: fb:4a:32:d5:47:04:be:37:17:f3:c7:b2:a9:68:86:40:f7:28: 1a:29:cb:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjYwNDE2MTcyNzM2WhcNMjYwNDIzMTcyNzM2WjAYMRYwFAYD VQQDEw02OWUxMWMwOS1jNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhsLtv4e/m8U45yfi+lmParPrkfWeNJCEfvMkaV9bgn4Dv8dlxa8v4fVuyDOh ZEUSeD1fvHMSb2LM8rJmOWehJwNdU9sbV7xS+e30wHwZjPoQnRvWwnFTurtwo2cr uxMCyIYblrJOGWRMbXYFYYblctAyyd/Dy1HEXDNwRpQeIgcaxUG42dGIEmZNXIyM X3NaM1cZyuOQBgJBDk/PzHNGZDiLok50Sks24hqXRQ/AGyyFQcNByBtN5ZcuYRkV T0GIfXNb/gZZOKB8O74f5mOyXFxK5hRKdhpaqqsk9yfQlXc3z1xIBJLuHY7tNP5y rQZ0Lti6T1DSH+WlyO3aMXn5QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOQrKji+ ZdBWs2WjJyjuPA74/GU6MB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYTmfoirq9jA/Cj9CL+EAWnT+3qCJgfaPhMh4IzRhQh8gUAoXgxkV4j3aSHQT 9QvbUFE2c5yeo+B1glOtkMR4mGvSyUsRQd3QEn4iNVpAmfzWmJBTVpXAUUQCOjIj z4VH/rsunuW2grAg9gZzuIfcxdn6CDGqJbnO0lQhPkJ1HhPJQV1a05KMcKCHilWB PHplRWgsMLX1POM7VRw8rcBN0nBp1h2ihdLBRSsnS2hUxoLPwJ8cBrgoIz307kBY nDF0PAXgKbXuFUjJ8uCNKGzP8YiG4E+lhlBF9p+DbMC9LmMQzbPZl3Tdo1lB+0oy 1UcEvjcX88eyqWiGQPcoGinLog== -----END CERTIFICATE-----Generated at Fri Apr 17 18:40:46 2026 by rpki-client