$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: dgGeLeBDKD5CjU60bi+6jjYcts/toUvkeEUfi3uRTLk= Subject key identifier: 81:BE:55:C9:CB:FA:65:BE:ED:6D:50:9B:6A:AE:99:D8:23:57:16:4E Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 01D1 Signing time: Sun 19 Apr 2026 03:21:49 +0000 Manifest this update: Sun 19 Apr 2026 03:21:49 +0000 Manifest next update: Sun 26 Apr 2026 03:21:49 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: 3T87L3tlrkPfDe1IOr2qAcpwKijE7M66vV91dxwEXho=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: zNUB+vibuX3nQWmpbN4PBwL7Sq5HwZSp7xD/bsaKx34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 03:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Apr 19 03:21:49 2026 GMT Not After : Apr 26 03:21:49 2026 GMT Subject: CN=69e44a4d-0bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ca:ce:a1:32:d2:0e:67:cd:de:76:14:33:a9: 47:f7:27:40:c4:81:af:e7:22:5e:0e:a0:2f:40:5f: fa:bf:cb:fa:df:57:e4:e8:d7:af:47:ee:88:c5:d4: 41:59:11:f7:f2:dc:1d:8c:4a:fc:e3:89:23:af:eb: a6:26:11:43:46:ca:61:2f:48:05:0d:5e:81:a3:21: d8:46:fa:46:7b:4b:0e:f9:31:25:96:6b:de:e8:43: ea:21:7e:50:a2:69:7d:89:e1:b5:1c:b1:f5:60:42: cc:f5:e1:9d:a4:27:56:0a:80:91:40:f4:fc:ee:21: 1b:02:fe:b5:81:5d:5b:50:71:de:62:e6:08:1d:1e: 8c:1c:45:f1:e1:e2:06:b4:64:65:c9:47:e5:08:0d: bd:aa:c8:b2:a0:53:23:4c:56:09:1e:20:c7:33:9e: 6a:1c:81:06:33:70:74:af:cf:84:9e:22:36:e9:bc: 61:50:40:be:08:f2:22:cd:d4:db:4c:3b:1a:73:01: e0:1f:81:28:ef:5d:e3:7f:fe:76:86:f9:99:9d:84: 77:88:82:63:5f:50:dd:32:3c:c6:b3:bc:6d:a9:dc: d8:13:ab:9b:83:ce:87:41:fd:d6:a0:f0:e2:7c:42: 1f:63:d9:f6:dd:cf:45:da:a2:2f:95:a0:55:ba:8f: ce:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:BE:55:C9:CB:FA:65:BE:ED:6D:50:9B:6A:AE:99:D8:23:57:16:4E X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:7f:f4:44:93:b7:6c:3e:b7:ef:0a:ee:07:ae:45:a2:5d:25: 96:ab:63:1d:14:d1:84:83:6b:c9:bf:2f:fa:c3:9b:f9:83:49: 87:df:f4:f7:96:a5:16:a6:3e:6d:a4:d3:31:06:90:94:5d:c5: f7:22:99:52:81:07:30:96:36:51:9b:eb:90:6c:42:77:98:91: 8b:43:b7:af:0a:bc:9d:68:cd:4e:d2:b8:24:32:90:7c:72:5e: ac:c0:63:9d:0e:1d:fc:cf:78:7f:9d:35:e6:8c:9c:81:75:6b: 13:5d:36:1f:29:29:79:87:a9:22:7e:1c:ba:86:73:8d:7a:6d: 22:1b:5b:b9:c4:10:38:04:28:20:2d:20:55:3f:e0:e2:a4:b5: c7:27:17:64:2b:0d:6c:e4:b8:5f:d3:e4:68:8f:cb:76:4e:cc: 06:4d:6d:88:91:59:36:70:e9:15:f0:e8:47:05:8a:3d:ce:5e: 8d:e3:07:e8:24:14:cf:7a:fc:56:d3:dc:ae:02:1f:6b:a3:0e: c7:6f:e4:d7:9f:66:1e:2f:4c:78:07:4e:e4:77:4d:0c:0b:ed: 3b:c6:94:48:2c:46:2a:dc:1a:ce:b2:c4:94:08:76:76:06:12: 4a:d3:83:dc:e3:a3:7c:3c:b2:b2:c6:9f:18:2f:60:65:81:e8: 08:c1:6b:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjYwNDE5MDMyMTQ5WhcNMjYwNDI2MDMyMTQ5WjAYMRYwFAYD VQQDEw02OWU0NGE0ZC0wYmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsrOoTLSDmfN3nYUM6lH9ydAxIGv5yJeDqAvQF/6v8v631fk6NevR+6IxdRB WRH38twdjEr844kjr+umJhFDRsphL0gFDV6BoyHYRvpGe0sO+TEllmve6EPqIX5Q oml9ieG1HLH1YELM9eGdpCdWCoCRQPT87iEbAv61gV1bUHHeYuYIHR6MHEXx4eIG tGRlyUflCA29qsiyoFMjTFYJHiDHM55qHIEGM3B0r8+EniI26bxhUEC+CPIizdTb TDsacwHgH4Eo713jf/52hvmZnYR3iIJjX1DdMjzGs7xtqdzYE6ubg86HQf3WoPDi fEIfY9n23c9F2qIvlaBVuo/OIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIG+VcnL +mW+7W1Qm2qumdgjVxZOMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiH/0RJO3bD637wruB65Fol0llqtjHRTRhINryb8v+sOb+YNJh9/095alFqY+ baTTMQaQlF3F9yKZUoEHMJY2UZvrkGxCd5iRi0O3rwq8nWjNTtK4JDKQfHJerMBj nQ4d/M94f5015oycgXVrE102HykpeYepIn4cuoZzjXptIhtbucQQOAQoIC0gVT/g 4qS1xycXZCsNbOS4X9PkaI/Ldk7MBk1tiJFZNnDpFfDoRwWKPc5ejeMH6CQUz3r8 VtPcrgIfa6MOx2/k159mHi9MeAdO5HdNDAvtO8aUSCxGKtwazrLElAh2dgYSStOD 3OOjfDyyssafGC9gZYHoCMFrsg== -----END CERTIFICATE-----Generated at Sun Apr 19 09:42:17 2026 by rpki-client