$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft File: DxfzfbyUhNluGgq8eKT5ys1e2oo.mft (raw, json) Hash identifier: ioXPe8nEhsymOXcQZoZbBtU+zBKxVLkCo8+R/tZJG4U= Subject key identifier: D0:12:6C:CD:5E:4E:DF:DE:1E:60:78:74:CF:B6:33:C8:E2:3C:9B:7B Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft Manifest number: 01C3 Signing time: Fri 17 Apr 2026 04:04:54 +0000 Manifest this update: Fri 17 Apr 2026 04:04:53 +0000 Manifest next update: Fri 24 Apr 2026 04:04:53 +0000 Files and hashes: 1: DxfzfbyUhNluGgq8eKT5ys1e2oo.crl (hash: C5IsmAKaWJ/e7AO5MlFDua46wQxajaCQoyhrLxZioIE=) 2: B060FCD00E4311F1AA27A3801A3D8C67.roa (hash: /jHwnGcod93mkftOIXxHTA503k6CU3aAb5UZbSQZX9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A, serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Validity Not Before: Apr 17 04:04:53 2026 GMT Not After : Apr 24 04:04:53 2026 GMT Subject: CN=69e1b166-3423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:90:f4:43:a9:de:84:05:e6:b8:59:48:02:61: d1:43:58:2f:71:83:ac:4e:42:a0:7f:1a:fe:7d:6e: 61:d2:56:35:32:37:bd:8d:e9:e6:d8:6d:e0:75:cc: 48:7a:96:21:0b:f2:c2:02:21:7b:49:9f:6c:e9:32: 7f:99:51:e0:45:2c:28:5b:b5:0f:96:cc:1b:c4:5f: 55:0e:24:4b:b8:57:e3:7b:53:b4:4b:24:2d:4c:f0: 56:86:f4:23:28:71:31:10:e8:48:2c:67:92:66:34: 1f:97:63:67:44:f9:12:82:95:11:4f:60:21:37:ee: 47:b0:2a:b2:5a:6e:7f:59:b0:45:ea:81:82:29:fc: f0:a9:b9:61:87:26:0d:e8:36:72:1a:b0:fc:1d:89: 0a:a9:27:ab:ca:61:1d:80:7c:85:ba:af:d6:bb:4a: b1:07:39:3f:f1:1d:2d:ea:bb:4e:b6:7c:35:3d:d4: be:e1:98:84:23:f4:66:db:9d:3f:13:24:7c:a4:ee: 6a:be:c3:07:55:57:e2:d0:4d:67:10:4e:06:a7:be: 87:cb:db:70:af:fe:15:3f:a1:5e:93:6e:01:a7:5d: b2:b8:b8:4a:80:ea:4d:77:82:15:53:7c:b0:64:bb: b5:67:d1:97:5b:12:e1:7b:db:1d:57:a6:da:42:01: a1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:12:6C:CD:5E:4E:DF:DE:1E:60:78:74:CF:B6:33:C8:E2:3C:9B:7B X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:3d:bd:85:90:8f:a6:a4:7d:cb:7f:ef:d7:75:7a:50:a7:b6: ef:c9:d5:d1:94:1e:d2:14:c7:07:06:50:cc:56:96:32:c5:4b: 83:ba:cd:bf:b9:be:4c:f5:e1:43:c6:f5:9b:c9:e0:93:47:7d: 4e:97:05:bb:b0:65:12:be:0c:f6:06:2b:18:dd:65:c4:4d:38: 3b:20:9f:51:d4:8b:58:5d:72:5e:45:9b:52:1f:3b:ca:d4:aa: 41:ac:cb:93:cd:02:5a:59:82:88:62:e2:76:21:aa:2f:84:2c: c3:1c:23:73:fa:2c:f4:8e:98:d3:e5:5f:d6:c3:bb:78:bc:06: 7d:0a:9f:2d:ae:c8:3b:4c:50:21:f4:a2:78:37:67:16:d1:9f: 91:c9:8f:a4:4d:d6:6d:5c:26:e1:3a:ac:ce:07:ee:2a:e6:5b: bd:34:8d:2c:ab:25:a3:ed:69:f4:d5:71:a2:73:d7:9a:b5:0e: 37:48:2a:58:74:eb:75:c4:4a:f4:64:91:c4:8d:2e:0b:8d:5a: bc:f7:fe:73:0a:e2:26:58:40:a8:a9:50:e5:69:09:62:52:d7: 93:35:7e:8f:ed:57:a2:cc:28:8e:ef:ba:5f:1b:f9:25:57:b8: 58:23:fc:77:a2:b1:d4:7b:ea:8f:9f:ed:ef:b6:e3:24:cc:98: 67:47:12:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNkExMTAvBgNVBAUTKDBGMTdGMzdEQkM5NDg0RDk2RTFBMEFCQzc4QTRGOUNB Q0Q1RURBOEEwHhcNMjYwNDE3MDQwNDUzWhcNMjYwNDI0MDQwNDUzWjAYMRYwFAYD VQQDEw02OWUxYjE2Ni0zNDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JD0Q6nehAXmuFlIAmHRQ1gvcYOsTkKgfxr+fW5h0lY1Mje9jenm2G3gdcxI epYhC/LCAiF7SZ9s6TJ/mVHgRSwoW7UPlswbxF9VDiRLuFfje1O0SyQtTPBWhvQj KHExEOhILGeSZjQfl2NnRPkSgpURT2AhN+5HsCqyWm5/WbBF6oGCKfzwqblhhyYN 6DZyGrD8HYkKqSerymEdgHyFuq/Wu0qxBzk/8R0t6rtOtnw1PdS+4ZiEI/Rm250/ EyR8pO5qvsMHVVfi0E1nEE4Gp76Hy9twr/4VP6Fek24Bp12yuLhKgOpNd4IVU3yw ZLu1Z9GXWxLhe9sdV6baQgGh1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNASbM1e Tt/eHmB4dM+2M8jiPJt7MB8GA1UdIwQYMBaAFA8X8328lITZbhoKvHik+crNXtqK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2QS9CQkMyRjc3NkQx RjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhObHVHZ3E4ZUtUNXlzMWUy b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDM2QS9CQkMyRjc3NkQxRjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhO bHVHZ3E4ZUtUNXlzMWUyb28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANT29hZCPpqR9y3/v13V6UKe278nV0ZQe0hTHBwZQzFaWMsVLg7rNv7m+TPXh Q8b1m8ngk0d9TpcFu7BlEr4M9gYrGN1lxE04OyCfUdSLWF1yXkWbUh87ytSqQazL k80CWlmCiGLidiGqL4Qswxwjc/os9I6Y0+Vf1sO7eLwGfQqfLa7IO0xQIfSieDdn FtGfkcmPpE3WbVwm4TqszgfuKuZbvTSNLKslo+1p9NVxonPXmrUON0gqWHTrdcRK 9GSRxI0uC41avPf+cwriJlhAqKlQ5WkJYlLXkzV+j+1Xoswoju+6Xxv5JVe4WCP8 d6Kx1Hvqj5/t77bjJMyYZ0cSQg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:38:03 2026 by rpki-client