$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft File: vHENBWM8XhGwdEtxrruIriskRuM.mft (raw, json) Hash identifier: rYBqBvN6ETLBkOIUIgeUEW0oPr/5G9YFY8I+qvdI4mo= Subject key identifier: 51:EB:A5:E9:EC:B0:1A:A0:B2:BD:15:40:6A:44:2B:FC:25:66:67:83 Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 13EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft Manifest number: 13E4 Signing time: Thu 16 Apr 2026 16:52:17 +0000 Manifest this update: Thu 16 Apr 2026 16:52:17 +0000 Manifest next update: Thu 23 Apr 2026 16:52:17 +0000 Files and hashes: 1: vHENBWM8XhGwdEtxrruIriskRuM.crl (hash: hVskx3hf1da0Yvj/DyhG8GN6zVH7TKxMtgduCjVwwsA=) 2: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (hash: +8AddGBFIIMgwGJltYVSUMtKxs5lAyAGDBkgXORqOLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5102 (0x13ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406, serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: Apr 16 16:52:17 2026 GMT Not After : Apr 23 16:52:17 2026 GMT Subject: CN=69e113c1-e226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:30:b9:1e:b0:fb:6d:b3:01:e1:91:ee:b3:88: 9e:26:eb:bb:86:6b:84:ec:a1:c1:48:f2:48:ac:a7: 61:db:fd:8b:d0:2a:c5:21:55:b3:fd:19:08:a7:bb: 8d:77:62:c2:34:2c:8a:84:8d:08:be:a6:e7:72:96: 44:b5:33:a7:ef:3e:fb:0b:39:73:e4:f0:a3:ca:c5: 25:6a:74:da:ad:48:b7:3d:fc:c9:19:18:78:8c:29: d3:46:b9:a1:7b:e5:ab:86:d0:f1:78:df:07:41:be: b1:ab:79:da:41:98:6b:c0:f5:76:ec:bd:6b:29:60: 02:60:0d:96:73:b8:f1:72:f4:34:b6:7d:c1:4c:fc: 96:c7:40:ec:4d:75:5c:b3:a8:d3:f2:3f:db:04:a1: 85:8c:a2:a2:de:70:94:93:76:4e:1a:1d:fe:80:ab: 04:31:a0:c8:dc:e7:ba:67:aa:6e:4f:9a:1f:2f:69: 25:54:bc:e7:8e:ef:a9:3d:a1:10:67:23:33:6e:8c: d2:33:c7:54:df:db:51:0c:46:8c:7a:10:df:1d:68: f0:10:9e:d2:f6:77:21:d4:70:1b:ce:da:f9:b7:1a: 3d:43:84:a9:ce:c3:6a:ae:77:a3:f7:93:e5:ca:88: 7b:57:d0:0f:79:1d:dd:b4:82:6b:eb:63:50:84:33: d8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:EB:A5:E9:EC:B0:1A:A0:B2:BD:15:40:6A:44:2B:FC:25:66:67:83 X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:7b:b6:c3:a4:1c:bc:06:09:b0:90:71:08:f0:3c:9a:90:be: b4:40:1a:1b:9e:5b:be:c4:00:20:9f:3d:42:67:52:a5:0b:b0: a8:9d:62:88:62:87:28:88:93:b0:c1:d8:cd:3f:1a:ae:6a:f7: 57:f4:bf:c7:6b:f0:19:42:62:bc:58:8d:f9:9f:df:8f:7c:c4: 45:a4:8e:4f:0e:98:65:b1:10:c9:8e:e5:c0:98:f9:8b:6b:f8: e5:7d:2c:8d:67:2f:44:65:0b:82:b9:53:93:c5:6e:1f:08:b1: f5:fc:8c:8a:77:25:21:14:de:f3:fa:ef:c8:0e:53:29:03:7f: 5c:b5:95:8b:7d:72:65:d5:8f:d4:7d:dd:35:d2:14:c9:a6:18: 5e:e0:25:f7:bd:d7:cb:e6:5e:47:b7:b7:06:a6:b8:3e:aa:8c: 6d:9e:4e:f4:2c:71:e2:e2:85:21:93:a8:50:45:85:46:b3:41: b1:de:d2:a8:46:b3:9c:50:7f:6c:dc:77:4a:5b:73:71:8c:92: 06:8d:3a:45:36:cf:c9:ca:ce:7e:c3:99:3d:1e:03:13:4a:00: 8d:f5:3c:41:42:32:60:7d:97:19:70:49:7f:3d:94:cb:72:60: 54:91:60:87:5c:fc:73:76:d0:86:78:85:87:5b:b6:4b:d0:b3: ed:8c:4e:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjYwNDE2MTY1MjE3WhcNMjYwNDIzMTY1MjE3WjAYMRYwFAYD VQQDEw02OWUxMTNjMS1lMjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDC5HrD7bbMB4ZHus4ieJuu7hmuE7KHBSPJIrKdh2/2L0CrFIVWz/RkIp7uN d2LCNCyKhI0IvqbncpZEtTOn7z77Czlz5PCjysUlanTarUi3PfzJGRh4jCnTRrmh e+WrhtDxeN8HQb6xq3naQZhrwPV27L1rKWACYA2Wc7jxcvQ0tn3BTPyWx0DsTXVc s6jT8j/bBKGFjKKi3nCUk3ZOGh3+gKsEMaDI3Oe6Z6puT5ofL2klVLznju+pPaEQ ZyMzbozSM8dU39tRDEaMehDfHWjwEJ7S9nch1HAbztr5txo9Q4SpzsNqrnej95Pl yoh7V9APeR3dtIJr62NQhDPYpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFHrpens sBqgsr0VQGpEK/wlZmeDMB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFho R3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUnu2w6QcvAYJsJBxCPA8mpC+tEAaG55bvsQAIJ89QmdSpQuwqJ1iiGKHKIiT sMHYzT8armr3V/S/x2vwGUJivFiN+Z/fj3zERaSOTw6YZbEQyY7lwJj5i2v45X0s jWcvRGULgrlTk8VuHwix9fyMinclIRTe8/rvyA5TKQN/XLWVi31yZdWP1H3dNdIU yaYYXuAl973Xy+ZeR7e3Bqa4PqqMbZ5O9Cxx4uKFIZOoUEWFRrNBsd7SqEaznFB/ bNx3SltzcYySBo06RTbPycrOfsOZPR4DE0oAjfU8QUIyYH2XGXBJfz2Uy3JgVJFg h1z8c3bQhniFh1u2S9Cz7YxOxg== -----END CERTIFICATE-----Generated at Fri Apr 17 11:43:14 2026 by rpki-client