$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft File: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft (raw, json) Hash identifier: fgM/4D6Fl6Oxzx3OhKfPhTrSuvLQuKI4bqECWOiP++o= Subject key identifier: BD:A0:F1:5B:2A:90:86:52:28:DD:F5:54:41:CC:3C:1B:26:7A:6E:BF Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 06F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft Manifest number: 06E3 Signing time: Thu 16 Apr 2026 22:07:36 +0000 Manifest this update: Thu 16 Apr 2026 22:07:36 +0000 Manifest next update: Thu 23 Apr 2026 22:07:36 +0000 Files and hashes: 1: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl (hash: GBudTWxj3o1ElMHLp03a0YHWh3y0iaWQd1fBFUK9T9w=) 2: C7C9E3B6125111F1B8BE3F1A2A3D8C67.roa (hash: XjNUxvWdrN/f8UvJCjdCzDeTUbQlad9gZAT9Co3kYbc=) 3: C6D6364E125111F1B8BE3F1A2A3D8C67.roa (hash: 2s0kYzcxntnOC74EHeYBKILmLaGPsj8ZMironzxM9RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897, serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Apr 16 22:07:36 2026 GMT Not After : Apr 23 22:07:36 2026 GMT Subject: CN=69e15da8-9103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:52:9f:57:13:7a:9f:46:67:d7:9d:29:ae:21: 3d:54:76:6a:35:38:2f:aa:65:a0:00:b8:17:be:13: f9:5b:b6:c1:c3:ea:37:d4:8b:3e:63:d5:46:8e:00: 0f:1c:45:9e:bf:33:e2:92:26:c1:29:41:54:9c:f8: ca:f4:ed:98:6f:e9:6c:87:ce:ab:cf:36:b0:8e:78: 92:79:e0:02:20:29:0c:b3:17:41:75:90:13:7a:89: 83:f9:3a:ac:51:0f:5e:8a:d5:29:14:dd:2a:5f:da: b9:7f:41:cc:c3:8e:62:dd:ff:a1:48:5b:ed:96:b7: bf:f9:bd:32:6a:0f:77:e5:8d:4b:ea:10:3f:d9:52: 3a:b0:e3:37:1f:51:a0:c2:93:bf:01:32:8b:d3:13: d2:8e:27:d8:0c:ca:80:79:8d:73:b1:9b:a2:6c:00: 4e:26:69:2f:83:6c:20:a8:4d:cc:8c:df:5b:1a:fa: 41:54:6a:c4:46:5f:d9:35:19:8c:bf:b2:aa:0e:05: d6:9d:a7:66:29:fc:26:a3:ae:a0:e4:5e:7c:08:5c: 94:4a:b7:27:a8:99:d1:4f:fa:50:e2:b8:b2:06:f0: 1e:a5:96:4d:f6:f4:43:3b:76:d9:68:7b:a5:30:9e: 0d:84:a7:6b:1f:8b:b9:e6:7d:53:98:2b:eb:94:b4: f1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A0:F1:5B:2A:90:86:52:28:DD:F5:54:41:CC:3C:1B:26:7A:6E:BF X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:f2:1f:a7:d0:81:d9:b8:93:14:bd:1d:8f:68:f7:69:cc:a5: 4d:5d:3e:4a:70:87:22:c9:97:00:89:05:25:55:66:57:c2:25: d2:cb:19:a4:73:0b:7f:90:cf:d8:4a:88:ed:f6:25:f9:9a:56: b4:36:4c:6e:84:27:77:2e:75:5e:e0:e6:f3:a6:04:b2:c9:5a: 6a:d2:48:33:86:a4:c6:fb:b3:d5:4f:9a:1c:47:70:76:4a:b5: a8:80:54:0e:18:fc:de:12:3e:00:5d:0f:d1:b7:df:56:1b:f0: 9a:a9:c4:9c:03:c0:c9:2d:d8:9e:e7:ab:58:4e:6d:46:5a:c8: fc:10:12:c1:f1:97:d3:a0:b4:c3:ac:ab:c5:2d:10:fe:90:6d: e2:de:8b:0d:57:4d:8e:d5:9d:9c:2a:12:69:2c:49:26:65:f3: 31:60:73:55:28:34:39:b9:8b:62:fa:b9:c4:cd:87:79:0d:51: 8f:73:1c:25:11:01:87:da:94:06:e0:4e:33:d9:dd:61:64:ae: 63:bc:86:11:5f:65:c2:7b:64:a9:61:b0:34:ce:9d:28:8a:53: a5:8e:1a:0d:83:cc:04:f7:c6:29:3a:fa:60:5e:dd:53:82:b9: 22:20:f7:4f:1d:8d:a3:ed:2e:59:9b:a4:99:dd:99:2b:61:ca: f4:98:cc:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjYwNDE2MjIwNzM2WhcNMjYwNDIzMjIwNzM2WjAYMRYwFAYD VQQDEw02OWUxNWRhOC05MTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lKfVxN6n0Zn150priE9VHZqNTgvqmWgALgXvhP5W7bBw+o31Is+Y9VGjgAP HEWevzPikibBKUFUnPjK9O2Yb+lsh86rzzawjniSeeACICkMsxdBdZATeomD+Tqs UQ9eitUpFN0qX9q5f0HMw45i3f+hSFvtlre/+b0yag935Y1L6hA/2VI6sOM3H1Gg wpO/ATKL0xPSjifYDMqAeY1zsZuibABOJmkvg2wgqE3MjN9bGvpBVGrERl/ZNRmM v7KqDgXWnadmKfwmo66g5F58CFyUSrcnqJnRT/pQ4riyBvAepZZN9vRDO3bZaHul MJ4NhKdrH4u55n1TmCvrlLTxgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL2g8Vsq kIZSKN31VEHMPBsmem6/MB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTg5Ny9FMUQxMTc3MDk1QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4 VHhTUzBHTGJEWkdVNmZVSlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd/Ifp9CB2biTFL0dj2j3acylTV0+SnCHIsmXAIkFJVVmV8Il0ssZpHMLf5DP 2EqI7fYl+ZpWtDZMboQndy51XuDm86YEsslaatJIM4akxvuz1U+aHEdwdkq1qIBU Dhj83hI+AF0P0bffVhvwmqnEnAPAyS3YnuerWE5tRlrI/BASwfGX06C0w6yrxS0Q /pBt4t6LDVdNjtWdnCoSaSxJJmXzMWBzVSg0ObmLYvq5xM2HeQ1Rj3McJREBh9qU BuBOM9ndYWSuY7yGEV9lwntkqWGwNM6dKIpTpY4aDYPMBPfGKTr6YF7dU4K5IiD3 Tx2No+0uWZukmd2ZK2HK9JjMFg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:08:12 2026 by rpki-client