$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: FUqgHtBzPUp3kjz63EszN774/FlE2fxJqpqYiMNKOI4= Subject key identifier: 89:15:B1:9B:8D:92:B3:B0:D2:9F:E6:B6:6C:89:35:6F:DD:93:87:9D Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 014C Signing time: Fri 17 Apr 2026 04:55:28 +0000 Manifest this update: Fri 17 Apr 2026 04:55:27 +0000 Manifest next update: Fri 24 Apr 2026 04:55:27 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: MhajutPflEXTJOt+xOIURaZbcHIe5SqKTkjeQgR65S8=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: OJIwdILNcKxj0xX6Uj1lld3dWONiR8ZjcGc33mTU5vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Apr 17 04:55:27 2026 GMT Not After : Apr 24 04:55:27 2026 GMT Subject: CN=69e1bd3f-fb4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5f:e5:ae:5d:f8:89:2d:aa:9c:70:73:e6:be: 3e:63:c5:b0:90:7b:f1:50:96:26:e0:dc:e4:67:71: e8:1e:7c:0c:23:7f:30:c2:08:69:59:d8:53:16:3b: bd:16:ee:7b:5c:96:e3:8e:dd:17:bf:f3:2e:3a:10: 92:01:07:f3:0f:71:a9:f5:98:76:62:d0:52:aa:9b: b0:fd:e2:db:4a:b1:7f:f5:6d:72:ea:eb:4b:8f:1c: 9c:25:9d:a0:b9:97:b8:a6:0c:7a:6e:b7:46:06:e9: 03:7c:57:18:24:3e:27:46:1c:74:b6:af:4b:af:16: f3:a7:08:83:3b:02:de:d1:a3:f5:8a:5c:74:b9:b5: c9:72:5d:85:62:09:03:df:95:3f:3b:83:5f:57:e3: 62:78:ab:6b:63:4d:e1:92:1a:13:52:18:7d:5d:5f: 00:b3:e5:5b:91:29:d6:15:47:1c:e8:e0:cd:8c:28: c8:37:b8:6f:51:bc:ef:67:e3:25:98:3c:b8:67:e7: bd:69:69:25:23:6a:b4:33:b3:34:af:5a:a1:d2:2e: 1d:e8:99:c2:74:a1:bf:f6:92:64:6c:85:62:50:78: 89:c5:f3:fd:17:46:99:48:75:2a:65:a2:9e:ab:3e: 01:13:54:33:45:16:e6:59:4c:a8:03:d6:34:86:6a: 90:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:15:B1:9B:8D:92:B3:B0:D2:9F:E6:B6:6C:89:35:6F:DD:93:87:9D X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:89:c4:19:1a:8c:9e:fc:28:20:f4:3a:a1:1d:93:a1:5d:d6: 27:e7:9d:52:27:94:bb:e7:ec:90:cc:9f:1b:9b:03:dc:2f:70: ef:a8:da:8f:1e:ea:a9:f4:85:b1:00:c6:d4:c4:24:dd:1f:c1: 92:7a:75:2c:0c:83:3e:87:fe:10:99:9a:d5:1a:2d:0d:3a:3b: b5:3c:1e:68:63:20:8c:9d:bd:4c:02:99:e7:f7:4a:b9:2d:50: 94:a4:9a:ec:84:b9:88:d1:0a:fe:af:db:c4:a8:41:16:cd:e3: 28:5e:5f:82:dd:f7:bb:97:f2:5f:03:fd:5f:39:e9:f1:a1:d1: 1b:9a:f9:a3:3a:dc:80:41:7b:1d:72:69:d9:b1:1f:b0:fb:e2: c7:5a:f5:9d:f4:0c:fb:23:02:3d:83:e7:0f:41:1d:72:5d:49: 96:f9:8b:2d:1a:62:75:01:36:ab:a7:2d:55:17:fc:b8:6a:63: fe:bc:f2:53:11:d0:15:f3:a0:07:2b:b2:29:45:7a:b7:02:15: 59:24:e0:b8:f0:51:06:c4:dd:b0:67:77:86:42:88:0e:70:0c: 0a:ed:a2:58:e3:5a:f3:21:ed:99:94:11:70:f6:63:a5:e4:04: e5:6e:87:f0:cc:fd:a0:7b:4f:c1:2d:d2:8f:70:1f:4b:56:b7: 62:27:ea:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjYwNDE3MDQ1NTI3WhcNMjYwNDI0MDQ1NTI3WjAYMRYwFAYD VQQDEw02OWUxYmQzZi1mYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmV/lrl34iS2qnHBz5r4+Y8WwkHvxUJYm4NzkZ3HoHnwMI38wwghpWdhTFju9 Fu57XJbjjt0Xv/MuOhCSAQfzD3Gp9Zh2YtBSqpuw/eLbSrF/9W1y6utLjxycJZ2g uZe4pgx6brdGBukDfFcYJD4nRhx0tq9LrxbzpwiDOwLe0aP1ilx0ubXJcl2FYgkD 35U/O4NfV+NieKtrY03hkhoTUhh9XV8As+VbkSnWFUcc6ODNjCjIN7hvUbzvZ+Ml mDy4Z+e9aWklI2q0M7M0r1qh0i4d6JnCdKG/9pJkbIViUHiJxfP9F0aZSHUqZaKe qz4BE1QzRRbmWUyoA9Y0hmqQcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIkVsZuN krOw0p/mtmyJNW/dk4edMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi4nEGRqMnvwoIPQ6oR2ToV3WJ+edUieUu+fskMyfG5sD3C9w76jajx7qqfSF sQDG1MQk3R/Bknp1LAyDPof+EJma1RotDTo7tTweaGMgjJ29TAKZ5/dKuS1QlKSa 7IS5iNEK/q/bxKhBFs3jKF5fgt33u5fyXwP9Xznp8aHRG5r5ozrcgEF7HXJp2bEf sPvix1r1nfQM+yMCPYPnD0Edcl1JlvmLLRpidQE2q6ctVRf8uGpj/rzyUxHQFfOg ByuyKUV6twIVWSTguPBRBsTdsGd3hkKIDnAMCu2iWONa8yHtmZQRcPZjpeQE5W6H 8Mz9oHtPwS3Sj3AfS1a3YifqEg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:47:17 2026 by rpki-client