$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: JKPK7zEg1OKInDDBQ+sV2YXYrqKTKghPgBYXeeGqDc0= Subject key identifier: 29:DD:DE:04:C2:90:9B:93:3F:CF:FC:FC:DB:B5:08:2B:2C:1C:5D:28 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 0437 Signing time: Fri 17 Apr 2026 00:14:00 +0000 Manifest this update: Fri 17 Apr 2026 00:14:00 +0000 Manifest next update: Fri 24 Apr 2026 00:14:00 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: IGOf595EYE4+GKB9PIFmZ5ld5APee4s1gevXy1zj0ms=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: RLT4OavkIPlkhOt4yNgRmjMZlXgnd7ZiolTVU7K89ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Apr 17 00:14:00 2026 GMT Not After : Apr 24 00:14:00 2026 GMT Subject: CN=69e17b48-c4d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8a:1d:22:a6:3b:66:fb:a4:6e:df:8b:2e:57: eb:ff:0b:74:7e:1a:49:65:37:70:c2:ca:9d:ed:90: d4:a1:c4:41:73:1b:6b:a3:fe:58:ad:13:97:aa:04: 9f:f7:fe:a4:fc:95:d3:9e:26:51:45:67:46:7e:ce: 0c:cb:da:dd:d2:ec:4a:b4:51:e7:8a:06:f1:3a:13: b3:b7:8b:9c:2d:20:7c:ee:c3:b8:2a:84:00:41:aa: f4:de:22:26:df:67:f7:b9:7c:41:c8:52:71:3a:80: 3c:90:2a:37:76:11:9c:8e:83:9d:ee:8e:41:07:e3: ab:a1:af:12:02:75:f8:b3:ed:04:83:f1:41:b3:76: fe:e8:9e:d8:f0:23:0b:df:de:e5:bd:be:78:28:03: 33:f4:85:32:2a:0e:91:a7:59:76:e8:2f:3b:71:f7: cd:8c:40:69:c8:f7:20:3d:9f:4b:00:4f:c9:c0:32: 36:54:a8:6f:38:1a:4f:af:46:f4:66:35:05:60:f4: 8e:f3:34:f2:b9:94:6a:b2:cc:40:e2:91:59:0b:cc: 4b:64:ed:a6:f9:e2:be:fe:91:a8:b4:9c:60:87:2c: 4a:ba:40:f5:40:b3:56:40:0e:52:c9:93:c0:af:e6: af:f8:1d:40:1b:69:b7:df:e3:77:ca:59:27:82:e0: 28:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:DD:DE:04:C2:90:9B:93:3F:CF:FC:FC:DB:B5:08:2B:2C:1C:5D:28 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:a0:d3:71:81:fd:8f:76:9f:a2:05:c5:ee:ed:25:45:9b:eb: 7b:b6:e3:0b:a1:01:ec:d6:57:fd:5b:a3:28:60:9e:a8:5e:c0: d4:6d:83:0a:c9:d1:ec:ca:2c:05:46:4d:df:c5:4d:81:10:7b: bf:df:ee:0a:02:9f:c5:0d:6c:ed:29:27:5a:e9:1c:6a:d8:da: 6d:30:c6:10:2e:95:e8:e0:e4:29:21:8d:e7:b0:8c:cd:ce:17: b2:e8:bb:03:30:37:85:f0:0f:69:dd:9d:8d:27:e9:68:f3:45: ef:4a:0a:e4:4a:16:5b:df:33:44:4a:f8:77:ea:0a:6c:80:91: 66:34:60:b4:fd:09:8f:c1:49:87:78:65:51:e7:0a:fa:a5:f0: 7a:4b:4e:c1:f1:19:83:07:e5:5d:e1:d1:a7:a5:09:ec:ed:e1: 3e:31:f5:98:3f:6a:98:a5:a9:0f:50:4a:54:79:0d:bc:51:c0: 5b:4e:29:21:c9:70:b8:3c:4e:56:10:20:c0:af:e7:13:ab:78: 30:a3:54:91:98:67:20:5d:0e:b4:83:cc:63:f7:f2:3f:e6:45: 33:ad:f0:dc:60:ee:90:43:13:92:c6:81:93:6c:2b:34:a4:42: 8a:3c:09:4c:ef:c1:27:05:94:b3:ef:2c:21:4f:4a:fd:0d:1b: b4:20:ca:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjYwNDE3MDAxNDAwWhcNMjYwNDI0MDAxNDAwWjAYMRYwFAYD VQQDEw02OWUxN2I0OC1jNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIodIqY7Zvukbt+LLlfr/wt0fhpJZTdwwsqd7ZDUocRBcxtro/5YrROXqgSf 9/6k/JXTniZRRWdGfs4My9rd0uxKtFHnigbxOhOzt4ucLSB87sO4KoQAQar03iIm 32f3uXxByFJxOoA8kCo3dhGcjoOd7o5BB+Oroa8SAnX4s+0Eg/FBs3b+6J7Y8CML 397lvb54KAMz9IUyKg6Rp1l26C87cffNjEBpyPcgPZ9LAE/JwDI2VKhvOBpPr0b0 ZjUFYPSO8zTyuZRqssxA4pFZC8xLZO2m+eK+/pGotJxghyxKukD1QLNWQA5SyZPA r+av+B1AG2m33+N3ylknguAoDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCnd3gTC kJuTP8/8/Nu1CCssHF0oMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo6DTcYH9j3afogXF7u0lRZvre7bjC6EB7NZX/VujKGCeqF7A1G2DCsnR7Mos BUZN38VNgRB7v9/uCgKfxQ1s7SknWukcatjabTDGEC6V6ODkKSGN57CMzc4Xsui7 AzA3hfAPad2djSfpaPNF70oK5EoWW98zREr4d+oKbICRZjRgtP0Jj8FJh3hlUecK +qXwektOwfEZgwflXeHRp6UJ7O3hPjH1mD9qmKWpD1BKVHkNvFHAW04pIclwuDxO VhAgwK/nE6t4MKNUkZhnIF0OtIPMY/fyP+ZFM63w3GDukEMTksaBk2wrNKRCijwJ TO/BJwWUs+8sIU9K/Q0btCDKhA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:18:17 2026 by rpki-client