$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft File: -L4s6ssxJNZg8w-KJzgGZIr0PIc.mft (raw, json) Hash identifier: CF2SlvlEpQjk5a/g3ooVZ0YtvpJdV4GacBnLJDxoH+U= Subject key identifier: 8B:A1:39:77:9B:8D:52:CA:6A:EA:F1:B5:8A:32:F2:2E:27:A2:B4:57 Authority key identifier: F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 Certificate issuer: /CN=A91AFAAC/serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft Manifest number: AC Signing time: Fri 17 Apr 2026 06:53:21 +0000 Manifest this update: Fri 17 Apr 2026 06:53:20 +0000 Manifest next update: Fri 24 Apr 2026 06:53:20 +0000 Files and hashes: 1: -L4s6ssxJNZg8w-KJzgGZIr0PIc.crl (hash: FTO19Gx3gFWZW+bx0XIrwXg5gOL7N6mkjLpCiktb9O8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Validity Not Before: Apr 17 06:53:20 2026 GMT Not After : Apr 24 06:53:20 2026 GMT Subject: CN=69e1d8e0-0c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a1:8f:ba:cb:e4:2d:2c:84:da:6a:4b:51:9e: 38:4e:b5:21:29:b5:44:18:c8:ac:86:7b:6a:12:72: 0d:f9:b5:36:b4:55:02:c2:96:64:03:3c:39:3e:9e: 6a:e8:09:12:fc:e0:78:d0:1a:6b:69:fe:7a:6f:d4: cb:ca:53:d0:3b:7a:18:2a:3a:d8:f5:c5:b8:c9:56: b9:43:a6:b0:3b:84:42:03:87:24:76:22:73:d9:8a: e9:8c:25:17:b8:e1:28:f7:53:f1:1d:77:01:11:68: 38:62:5c:f6:c9:f3:45:02:53:76:09:f6:c5:b1:27: b8:0b:64:de:9d:73:5a:fe:bd:19:13:3a:e7:b3:5d: cb:fc:0b:79:3e:72:9c:ab:1b:97:be:75:9c:24:56: c0:24:86:3e:2b:56:f6:f1:59:99:4b:62:15:e1:6b: 1b:4d:6e:40:8f:62:a5:e1:62:84:0d:24:62:47:43: 35:b1:7b:87:d0:76:df:85:57:25:8d:3b:36:92:28: 06:72:4c:ac:b9:2b:6d:fe:cd:b8:ff:1d:5c:d4:42: a7:69:21:a6:3c:9a:0e:c9:c0:fe:ef:02:8f:ce:7a: 78:a1:05:1a:e1:d5:fa:70:35:6e:29:e3:d1:11:51: ba:16:c8:b2:3f:71:b1:42:2c:c9:7f:16:4a:d9:f7: 64:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A1:39:77:9B:8D:52:CA:6A:EA:F1:B5:8A:32:F2:2E:27:A2:B4:57 X509v3 Authority Key Identifier: keyid:F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:4b:9f:c9:0b:57:13:51:a5:80:0e:06:88:dd:bc:fb:50:db: 26:af:d2:ce:65:0a:5d:07:e9:aa:8e:da:bc:b4:a2:14:89:80: 4a:f9:18:e4:44:1e:87:0c:5a:9f:83:8b:31:7f:57:76:55:9a: 7c:25:7d:b9:a6:86:38:12:93:86:4e:5e:8e:bd:38:73:b8:a5: f1:0c:45:7b:d0:61:8a:5f:dd:b2:00:ea:8d:93:ea:f8:06:dc: 80:88:36:15:e5:71:8b:3e:7f:05:a5:16:8f:a7:20:23:1b:3a: bb:86:69:3e:41:1f:af:23:bd:c1:ef:11:80:6e:ba:38:93:2c: bf:f7:9d:3e:08:02:27:08:d4:63:8e:a4:ec:45:ce:36:cf:aa: a1:5f:52:ce:b4:96:f1:e4:2d:25:43:5f:c9:2a:68:36:4a:22: 4b:1d:e9:c2:67:8f:b8:ed:f5:9c:83:cb:88:c2:bd:c2:55:d3: 08:10:63:a6:74:eb:94:a1:86:cd:83:cf:31:fb:5d:8a:f3:57: 0c:51:f6:27:58:72:9f:ee:30:97:db:77:11:a9:74:b9:27:ce: f0:59:b2:bf:9e:c2:c0:b1:23:75:5c:7a:e2:2e:68:36:06:9d: a8:87:30:63:66:b1:87:1d:de:dd:58:57:ae:13:d7:70:9b:4c: 41:68:e9:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZBQUMxMTAvBgNVBAUTKEY4QkUyQ0VBQ0IzMTI0RDY2MEYzMEY4QTI3MzgwNjY0 OEFGNDNDODcwHhcNMjYwNDE3MDY1MzIwWhcNMjYwNDI0MDY1MzIwWjAYMRYwFAYD VQQDEw02OWUxZDhlMC0wYzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6GPusvkLSyE2mpLUZ44TrUhKbVEGMishntqEnIN+bU2tFUCwpZkAzw5Pp5q 6AkS/OB40Bpraf56b9TLylPQO3oYKjrY9cW4yVa5Q6awO4RCA4ckdiJz2YrpjCUX uOEo91PxHXcBEWg4Ylz2yfNFAlN2CfbFsSe4C2TenXNa/r0ZEzrns13L/At5PnKc qxuXvnWcJFbAJIY+K1b28VmZS2IV4WsbTW5Aj2Kl4WKEDSRiR0M1sXuH0HbfhVcl jTs2kigGckysuStt/s24/x1c1EKnaSGmPJoOycD+7wKPznp4oQUa4dX6cDVuKePR EVG6FsiyP3GxQizJfxZK2fdkDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIuhOXeb jVLKaurxtYoy8i4norRXMB8GA1UdIwQYMBaAFPi+LOrLMSTWYPMPiic4BmSK9DyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkFBQy81M0Q1NUNENjM1 NEExMUYwQkE3NjZFNENDNEY5QUUwMi8tTDRzNnNzeEpOWmc4dy1LSnpnR1pJcjBQ SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1MNHM2c3N4Sk5aZzh3LUtKemdHWklyMFBJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkFBQy81M0Q1NUNENjM1NEExMUYwQkE3NjZFNENDNEY5QUUwMi8tTDRzNnNzeEpO Wmc4dy1LSnpnR1pJcjBQSWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjUufyQtXE1GlgA4GiN28+1DbJq/SzmUKXQfpqo7avLSiFImASvkY5EQehwxa n4OLMX9XdlWafCV9uaaGOBKThk5ejr04c7il8QxFe9Bhil/dsgDqjZPq+AbcgIg2 FeVxiz5/BaUWj6cgIxs6u4ZpPkEfryO9we8RgG66OJMsv/edPggCJwjUY46k7EXO Ns+qoV9SzrSW8eQtJUNfySpoNkoiSx3pwmePuO31nIPLiMK9wlXTCBBjpnTrlKGG zYPPMftdivNXDFH2J1hyn+4wl9t3Eal0uSfO8Fmyv57CwLEjdVx64i5oNgadqIcw Y2axhx3e3VhXrhPXcJtMQWjpTA== -----END CERTIFICATE-----Generated at Fri Apr 17 10:47:01 2026 by rpki-client