$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: Zb7O7hl3VRjkihaABmHt32rD3DOIXaS9kOMV2ulKXD8= Subject key identifier: 0E:DB:AE:6D:D4:98:7C:5D:29:37:27:E5:92:51:90:FB:1D:01:54:E7 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0E0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0DDB Signing time: Thu 16 Apr 2026 17:49:39 +0000 Manifest this update: Thu 16 Apr 2026 17:49:39 +0000 Manifest next update: Thu 23 Apr 2026 17:49:39 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: MhUmLEUDSu660qbMoRmak1tm/X7AwYQA+51QEcl2CVY=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: h/EzL6m4kKSsLLi32KOt8BdjgRY3aECQIU78ROu0rg0=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: gxwmxGG8uXjmf7OQYav7fi+LEJxCykIRMPfMDhbn+Lk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3594 (0xe0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Apr 16 17:49:39 2026 GMT Not After : Apr 23 17:49:39 2026 GMT Subject: CN=69e12133-7efd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:62:1a:fa:d2:0f:0b:92:15:6a:19:13:b7:6d: 22:92:1b:a0:2a:d1:e0:6f:f4:2f:3d:b7:ec:54:39: 84:35:07:c0:eb:e6:0a:ba:bb:fe:57:be:41:2c:08: fb:f3:56:9a:f6:89:4a:bc:f1:d5:a7:9a:27:74:72: 0c:be:be:28:04:12:77:bb:20:2f:dc:8b:ca:d6:e5: b7:e2:1b:f7:26:48:a6:14:2f:34:17:4e:1c:0f:ff: e2:79:a5:8b:cc:9c:ea:a1:e6:7f:72:8b:14:ea:f8: c5:1c:ae:8f:38:c8:0e:a8:02:c7:f5:8c:10:eb:af: c6:13:ac:f7:74:b0:38:fb:8d:8d:a3:ab:9b:89:27: 54:c3:07:e5:df:33:a5:6c:83:a1:0b:6d:25:ea:c9: c8:3f:84:cf:e2:8a:e0:71:e0:2d:29:58:0f:65:f2: 2d:bd:27:2d:60:f5:13:3f:d1:f9:bc:b3:4c:3d:85: 04:c4:76:7a:f5:f6:90:e9:c7:53:ea:a3:d4:6a:2a: c3:32:b6:30:53:be:e7:45:bc:fd:bf:4c:0e:2f:6a: bb:e9:5b:b5:79:8e:ac:67:cc:35:30:0a:07:d2:84: 79:c5:62:36:5e:eb:54:bd:39:16:fb:b4:6c:ef:e3: 59:57:f4:be:f6:14:21:a9:75:bf:a7:20:05:0d:1c: d4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:DB:AE:6D:D4:98:7C:5D:29:37:27:E5:92:51:90:FB:1D:01:54:E7 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:79:bc:50:4a:eb:7f:87:f9:f8:e9:98:a3:98:8f:11:72:bb: ad:29:fc:b8:2e:3a:d9:ba:9a:c1:4c:03:4e:87:9b:92:b9:86: 1a:3b:4b:75:29:c2:8f:b2:ac:1c:9d:09:6d:a5:d0:ad:76:4d: b8:a4:89:d7:f2:aa:15:44:11:31:32:71:fe:28:58:00:75:2b: 56:b5:2d:44:6f:01:ff:d2:4c:40:68:34:b0:ec:52:6e:85:0c: e1:8a:5f:56:af:bb:87:00:13:35:03:7b:09:05:20:80:c9:73: 8e:e6:26:cf:c0:9e:6b:5d:80:b3:ac:e1:3e:66:49:e0:fb:7a: 96:12:de:b0:0e:e0:f2:8e:35:ec:40:f5:d2:5a:9b:f0:ef:77: cb:34:dd:86:83:c1:8d:a9:15:76:93:58:96:a1:f3:23:cf:ba: d7:08:55:fc:e2:fe:f1:d2:af:27:b2:e6:77:d1:df:41:ff:28: 87:51:c6:f9:ac:2d:19:a0:e2:bb:d0:d5:da:07:20:48:0b:cc: 30:20:97:47:4c:fb:f7:4c:a0:ed:ef:42:b2:05:fc:2b:e3:98: d6:ca:c9:cb:0e:d3:f8:57:3d:53:e4:b0:a7:38:9b:95:63:a5: f4:62:55:6c:65:92:f2:bd:58:b0:7c:93:e6:53:dd:5b:c9:ad: 06:eb:db:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwNDE2MTc0OTM5WhcNMjYwNDIzMTc0OTM5WjAYMRYwFAYD VQQDEw02OWUxMjEzMy03ZWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2Ia+tIPC5IVahkTt20ikhugKtHgb/QvPbfsVDmENQfA6+YKurv+V75BLAj7 81aa9olKvPHVp5ondHIMvr4oBBJ3uyAv3IvK1uW34hv3JkimFC80F04cD//ieaWL zJzqoeZ/cosU6vjFHK6POMgOqALH9YwQ66/GE6z3dLA4+42No6ubiSdUwwfl3zOl bIOhC20l6snIP4TP4orgceAtKVgPZfItvSctYPUTP9H5vLNMPYUExHZ69faQ6cdT 6qPUairDMrYwU77nRbz9v0wOL2q76Vu1eY6sZ8w1MAoH0oR5xWI2XutUvTkW+7Rs 7+NZV/S+9hQhqXW/pyAFDRzUKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA7brm3U mHxdKTcn5ZJRkPsdAVTnMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP3m8UErrf4f5+OmYo5iPEXK7rSn8uC462bqawUwDToebkrmGGjtLdSnCj7Ks HJ0JbaXQrXZNuKSJ1/KqFUQRMTJx/ihYAHUrVrUtRG8B/9JMQGg0sOxSboUM4Ypf Vq+7hwATNQN7CQUggMlzjuYmz8Cea12As6zhPmZJ4Pt6lhLesA7g8o417ED10lqb 8O93yzTdhoPBjakVdpNYlqHzI8+61whV/OL+8dKvJ7Lmd9HfQf8oh1HG+awtGaDi u9DV2gcgSAvMMCCXR0z790yg7e9CsgX8K+OY1srJyw7T+Fc9U+SwpziblWOl9GJV bGWS8r1YsHyT5lPdW8mtBuvbrA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:52:06 2026 by rpki-client