$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft File: dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft (raw, json) Hash identifier: jVF3JejJIEnv2i7W95r+ix/BkKESL3YwqXSzc+fjlqM= Subject key identifier: 5E:5A:8F:2B:31:37:A0:ED:9E:94:B6:5D:18:CC:B6:50:16:7B:19:6E Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft Manifest number: 0248 Signing time: Fri 17 Apr 2026 02:08:07 +0000 Manifest this update: Fri 17 Apr 2026 02:08:06 +0000 Manifest next update: Fri 24 Apr 2026 02:08:06 +0000 Files and hashes: 1: dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl (hash: 9iDJTeRgT9i8ULYcDa2eD5uZuK2l0Jox0NSFybU73aM=) 2: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (hash: xa2rzU8DhuvzABu0PhpiCxb/OU68RG+lrUJHazRYpJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Apr 17 02:08:06 2026 GMT Not After : Apr 24 02:08:06 2026 GMT Subject: CN=69e19606-37ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a5:7f:4f:ea:36:01:b6:79:f7:2a:0b:44:da: db:97:ff:03:c6:22:20:a9:7d:15:f4:9a:68:c0:ba: b5:0e:e2:1a:ac:f3:e9:6b:4a:d3:8c:f1:d9:44:d9: ac:4b:f7:82:70:df:ea:75:2f:80:bc:a5:a0:fa:8a: 5d:be:e8:11:90:86:5a:98:6c:bb:7b:f6:90:78:db: b7:28:0d:2a:79:69:f3:6f:77:1d:10:3c:d7:c5:02: e2:a0:d7:3b:48:be:75:ba:22:77:c4:dd:28:67:05: 4e:0f:48:08:b6:1e:b0:48:10:ed:85:fd:ee:3e:20: 64:fe:fb:e2:9d:90:b7:a7:a0:1e:12:4d:cf:bf:6d: f2:9c:89:e1:b1:e9:c9:d5:55:02:0d:2c:a2:37:d9: bb:ca:87:9b:75:2e:e3:47:41:63:72:b8:7f:a4:26: 5a:ce:1a:7e:29:d2:e6:0c:e6:f6:4a:63:1b:bd:b6: 01:e9:88:42:47:1c:74:22:8d:30:05:9a:bc:d3:35: f9:d7:52:a1:79:36:87:d9:a9:69:ea:f0:4d:7a:3a: c6:08:e7:15:d3:87:a4:89:66:44:a5:e1:2a:aa:25: 6b:bb:e6:34:09:27:d9:66:e2:1e:ed:18:70:78:f3: c4:a1:68:a6:64:fe:da:dd:98:c3:42:26:1e:8e:35: e0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5A:8F:2B:31:37:A0:ED:9E:94:B6:5D:18:CC:B6:50:16:7B:19:6E X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:28:62:24:fc:2b:c9:61:03:17:48:e2:0a:80:bd:14:45:05: fd:90:44:16:c9:46:1a:a5:68:a3:2c:af:7f:29:53:ca:96:8b: 5b:56:cc:cf:54:22:ce:8e:59:18:78:72:d8:39:c4:56:e8:07: 9c:fb:76:00:a3:90:8e:5a:b3:95:d2:99:2c:9f:75:43:a0:61: 0a:7c:00:71:7c:2a:c3:6a:59:c5:9c:21:e3:d5:cd:10:10:10: 21:86:0a:56:6e:32:b2:89:93:cc:2f:69:95:b1:72:94:10:d1: 56:2b:32:1b:5e:73:74:76:0b:1e:b3:85:44:76:cb:bf:74:3b: 63:72:74:c0:d9:7d:4c:d8:84:ee:4b:25:06:4c:30:c9:db:66: f0:a3:24:00:8c:64:92:c0:90:3b:44:3f:38:4b:16:9c:7a:d9: 8e:13:82:5f:5f:5b:c5:66:fe:b0:30:20:56:e0:35:76:fd:b8: e5:85:d6:c7:a7:48:f9:3a:4a:5f:d9:9e:d5:ee:31:df:f5:dc: 3d:8d:47:fe:7d:5e:17:61:7f:5e:3e:e5:51:b3:87:44:d7:b4: c3:ee:4c:95:ac:54:92:f7:da:27:d3:bd:3a:f7:6a:3b:49:c5: da:af:1b:f0:e3:02:8f:9a:7c:fd:d1:72:84:22:6a:37:37:84: e0:c3:e7:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjYwNDE3MDIwODA2WhcNMjYwNDI0MDIwODA2WjAYMRYwFAYD VQQDEw02OWUxOTYwNi0zN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6V/T+o2AbZ59yoLRNrbl/8DxiIgqX0V9JpowLq1DuIarPPpa0rTjPHZRNms S/eCcN/qdS+AvKWg+opdvugRkIZamGy7e/aQeNu3KA0qeWnzb3cdEDzXxQLioNc7 SL51uiJ3xN0oZwVOD0gIth6wSBDthf3uPiBk/vvinZC3p6AeEk3Pv23ynInhsenJ 1VUCDSyiN9m7yoebdS7jR0Fjcrh/pCZazhp+KdLmDOb2SmMbvbYB6YhCRxx0Io0w BZq80zX511KheTaH2alp6vBNejrGCOcV04ekiWZEpeEqqiVru+Y0CSfZZuIe7Rhw ePPEoWimZP7a3ZjDQiYejjXg2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF5ajysx N6DtnpS2XRjMtlAWexluMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTlGOC9DQUU2QjRDRUJDQTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pN aV84VTZQdHFyY0tPMWVTR1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAyhiJPwryWEDF0jiCoC9FEUF/ZBEFslGGqVooyyvfylTypaLW1bMz1Qizo5Z GHhy2DnEVugHnPt2AKOQjlqzldKZLJ91Q6BhCnwAcXwqw2pZxZwh49XNEBAQIYYK Vm4ysomTzC9plbFylBDRVisyG15zdHYLHrOFRHbLv3Q7Y3J0wNl9TNiE7kslBkww ydtm8KMkAIxkksCQO0Q/OEsWnHrZjhOCX19bxWb+sDAgVuA1dv245YXWx6dI+TpK X9me1e4x3/XcPY1H/n1eF2F/Xj7lUbOHRNe0w+5MlaxUkvfaJ9O9OvdqO0nF2q8b 8OMCj5p8/dFyhCJqNzeE4MPnIQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:24:03 2026 by rpki-client