$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: DyHJAnaJM+xKqxInbeRt7C0zd0uUrdgdM0zLEVXHtDk= Subject key identifier: B7:13:57:99:34:09:26:EA:DF:79:FB:F6:E7:19:FE:4B:0B:8D:06:BB Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 3561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 3547 Signing time: Thu 16 Apr 2026 14:29:54 +0000 Manifest this update: Thu 16 Apr 2026 14:29:54 +0000 Manifest next update: Thu 23 Apr 2026 14:29:54 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: Q1OlDAQehL/I2AjyVcKm1DuSaEPMpdrg0i1H+K5zEzY=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: y6Cb0qWIx1yRlu9RsKzzdkQCpXsOgAgmZ5vTiuWgcQo=) 3: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: tHMeyTgXVjqu1F3xAY8dG3i7T9LkiFUkLAwr5V1RAGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13665 (0x3561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Apr 16 14:29:54 2026 GMT Not After : Apr 23 14:29:54 2026 GMT Subject: CN=69e0f262-8e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:0d:3b:ec:22:b7:85:60:f1:b6:81:12:be: 12:60:74:74:84:a0:9c:d1:e4:88:bd:d0:e9:bd:37: 6e:f8:80:94:68:43:76:4c:fd:a2:0f:09:bc:fd:35: 85:c9:29:46:0b:f3:b1:36:06:1a:40:4d:eb:c1:27: 72:a9:53:a1:65:4a:f1:61:3a:9f:a5:51:20:f8:bd: d6:af:4d:e3:0a:b5:0d:78:69:fd:e3:73:12:b4:e7: c1:38:91:7c:79:b7:0b:8d:7f:67:af:31:fe:f6:f9: be:ca:21:57:9a:f2:9c:75:8a:b5:a2:28:c9:ed:f6: 29:4b:5e:57:29:dc:18:4f:aa:04:b5:1b:32:88:25: ad:1b:3a:cb:34:0c:6c:30:43:78:75:7f:4e:06:5f: 52:e9:a5:67:bd:e9:6c:df:95:17:b3:f6:ee:87:0c: a3:dd:a0:4c:0c:a6:cb:bb:6c:de:85:47:29:3e:95: 2b:88:c8:4e:18:84:a5:61:7f:cb:b3:26:93:8a:5d: 1b:fe:30:7a:99:15:e9:fc:96:3e:1b:ce:3a:1c:85: 79:11:69:41:94:e0:ad:8d:68:6f:9a:e8:79:e9:78: 1c:28:1d:bb:9c:b7:e1:a6:9f:25:94:f9:b1:de:e7: 4c:aa:4d:50:fb:35:e7:ec:b1:a7:c2:1f:26:d9:f3: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:13:57:99:34:09:26:EA:DF:79:FB:F6:E7:19:FE:4B:0B:8D:06:BB X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:dd:73:7b:52:d6:e6:40:95:51:17:fa:2c:12:fa:99:da:f4: 2a:10:b7:e4:5c:81:63:ab:27:f9:cd:5a:34:3e:96:97:40:9d: a9:49:23:68:d6:a2:69:90:1e:ca:0b:87:97:5c:ec:d1:20:5c: 29:38:c6:7b:6f:76:f0:5d:e7:44:d2:fa:05:fc:d5:d8:1e:1d: d2:24:26:dc:6d:49:08:b0:90:8a:f1:6d:71:1f:d8:27:32:d5: ed:c0:80:dd:b2:15:3f:21:97:3a:e9:df:57:a3:86:8c:f8:a9: b9:3a:58:60:f9:91:37:cf:6f:fd:28:c7:5b:ba:cc:13:29:ae: e7:fb:00:2f:5a:5d:48:4b:d5:7d:67:69:6e:20:32:1b:8c:5e: b8:18:4b:d6:71:d1:33:e8:08:01:61:c7:9f:80:d6:d6:d3:27: a4:5d:ee:f5:01:63:e2:be:4b:80:b4:03:20:6b:4b:29:49:4b: df:9d:3c:5b:04:87:74:37:71:1d:19:1b:48:c0:1d:94:8e:2c: f0:a4:88:4e:f4:f8:79:c8:ac:dd:72:d3:9c:65:ba:73:0a:3e: f0:61:4f:54:2c:8a:cb:2d:97:4e:f3:e9:7f:5c:93:aa:47:4f: 37:a4:14:96:98:0a:ab:16:0a:28:2b:f5:5b:ab:26:4d:ba:97: a9:dc:6d:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjYwNDE2MTQyOTU0WhcNMjYwNDIzMTQyOTU0WjAYMRYwFAYD VQQDEw02OWUwZjI2Mi04ZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRwNO+wit4Vg8baBEr4SYHR0hKCc0eSIvdDpvTdu+ICUaEN2TP2iDwm8/TWF ySlGC/OxNgYaQE3rwSdyqVOhZUrxYTqfpVEg+L3Wr03jCrUNeGn943MStOfBOJF8 ebcLjX9nrzH+9vm+yiFXmvKcdYq1oijJ7fYpS15XKdwYT6oEtRsyiCWtGzrLNAxs MEN4dX9OBl9S6aVnvels35UXs/buhwyj3aBMDKbLu2zehUcpPpUriMhOGISlYX/L syaTil0b/jB6mRXp/JY+G846HIV5EWlBlOCtjWhvmuh56XgcKB27nLfhpp8llPmx 3udMqk1Q+zXn7LGnwh8m2fOi1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLcTV5k0 CSbq33n79ucZ/ksLjQa7MB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHN1ze1LW5kCVURf6LBL6mdr0KhC35FyBY6sn+c1aND6Wl0CdqUkjaNaiaZAe yguHl1zs0SBcKTjGe2928F3nRNL6BfzV2B4d0iQm3G1JCLCQivFtcR/YJzLV7cCA 3bIVPyGXOunfV6OGjPipuTpYYPmRN89v/SjHW7rMEymu5/sAL1pdSEvVfWdpbiAy G4xeuBhL1nHRM+gIAWHHn4DW1tMnpF3u9QFj4r5LgLQDIGtLKUlL3508WwSHdDdx HRkbSMAdlI4s8KSITvT4ecis3XLTnGW6cwo+8GFPVCyKyy2XTvPpf1yTqkdPN6QU lpgKqxYKKCv1W6smTbqXqdxtrQ== -----END CERTIFICATE-----Generated at Fri Apr 17 15:56:03 2026 by rpki-client