$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: YiD3En/RtIN3erNYE6D8Ym6Wea/M+HQK7+TWlGdF5mk= Subject key identifier: B2:41:87:70:0E:7A:2D:D4:FC:09:86:32:CA:FB:40:FA:CD:DD:83:93 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0908 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08EB Signing time: Thu 16 Apr 2026 20:16:45 +0000 Manifest this update: Thu 16 Apr 2026 20:16:44 +0000 Manifest next update: Thu 23 Apr 2026 20:16:44 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: Ihz699+oRu5tzveuQwiV2slacwnI0SZ3g3WUfvx8aOs=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: WROApDsBqYFj1tmEilpH4EMP+4m9uNYaD0No6ZndRwQ=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: NOtSPMoyjGNe3WLN4TReN45PMOlOKgXov/A6z0RFISo=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: dSogrThDaTv5OfuEsTdAc58TXHTFJalbVz+Qm6Tm1wU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Apr 16 20:16:44 2026 GMT Not After : Apr 23 20:16:44 2026 GMT Subject: CN=69e143ac-22f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d0:28:78:04:c9:9b:8b:8b:37:59:8c:10:76: a4:cc:f9:5f:65:1b:ca:11:a3:69:b0:ef:a9:00:2c: ec:bb:00:5b:5c:f8:c1:f9:ea:e2:1f:07:b4:ef:16: aa:b3:50:8d:13:b8:f8:42:45:42:3c:c4:70:55:25: 7d:a3:e5:74:7c:06:a7:85:9f:6e:35:83:08:9a:70: 40:21:aa:33:42:cb:78:3b:48:68:d2:7d:df:88:8c: 54:f9:88:2c:d8:75:44:82:11:68:c9:68:0a:a8:37: 7b:3d:d4:6d:7a:82:21:79:a1:3e:4d:da:9b:9b:2f: 4c:ad:6a:99:75:d6:fa:4e:7e:e3:ff:bd:44:8e:2e: e7:07:1b:ed:25:b3:92:37:2d:7b:78:f3:2e:1c:a9: c2:03:d8:51:bf:79:3d:31:df:b5:db:11:9c:2e:6c: 57:59:dc:60:b2:ef:81:29:3a:52:3e:d6:40:54:29: 99:5c:56:01:26:3f:74:8c:33:d4:61:e9:f4:3e:01: cc:26:82:a9:dc:91:86:40:98:00:0f:69:0a:c7:4e: 94:a2:fc:60:ef:df:8b:09:23:fa:09:23:55:6a:d5: 91:a2:a2:5f:b7:9f:0a:d8:42:d1:8b:f5:0b:43:86: 2c:e5:c6:d2:57:95:b4:89:4e:83:97:00:3c:1e:2f: e6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:41:87:70:0E:7A:2D:D4:FC:09:86:32:CA:FB:40:FA:CD:DD:83:93 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:32:a2:94:6e:1f:62:e6:19:34:dd:48:fd:ad:3e:d4:83:5b: 2e:75:d7:c9:50:d5:05:05:84:3e:bb:1a:76:8c:e2:c9:21:78: 8f:08:80:83:7f:a2:53:2e:74:cc:ab:7a:b5:61:a3:95:89:4e: a9:7f:8c:ba:56:45:d0:61:c9:7a:83:9f:0b:cf:90:76:15:e6: 42:38:0f:3a:7f:61:98:59:7c:06:51:29:69:45:70:46:a6:56: 6f:f2:8c:89:71:86:e4:94:b9:f4:91:0e:2d:90:28:97:82:94: 88:7c:08:c3:e0:c9:00:74:49:e0:3c:a8:d7:6b:b9:ff:ce:62: d3:dc:65:0b:60:71:15:be:a8:b9:37:0e:a7:5c:e5:bb:21:0d: bf:58:9b:3c:0c:66:20:a4:3d:b1:bd:e8:73:b3:fc:e7:92:a4: ed:01:47:5e:77:46:45:64:ee:01:ad:5d:58:66:e6:73:21:9e: fe:3e:77:a8:78:2e:b9:5d:a9:2e:71:52:81:5f:0a:39:2e:c5: 6a:46:db:d2:aa:83:72:12:e0:88:75:0a:80:ca:81:d0:12:f6: da:74:eb:3c:8c:c7:58:19:cd:68:7d:62:13:7a:7e:39:a9:bb: c4:47:d9:49:b8:c7:22:86:b2:46:33:8e:6a:fc:46:88:91:4d: 0c:96:8b:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwNDE2MjAxNjQ0WhcNMjYwNDIzMjAxNjQ0WjAYMRYwFAYD VQQDEw02OWUxNDNhYy0yMmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NAoeATJm4uLN1mMEHakzPlfZRvKEaNpsO+pACzsuwBbXPjB+eriHwe07xaq s1CNE7j4QkVCPMRwVSV9o+V0fAanhZ9uNYMImnBAIaozQst4O0ho0n3fiIxU+Ygs 2HVEghFoyWgKqDd7PdRteoIheaE+Tdqbmy9MrWqZddb6Tn7j/71Eji7nBxvtJbOS Ny17ePMuHKnCA9hRv3k9Md+12xGcLmxXWdxgsu+BKTpSPtZAVCmZXFYBJj90jDPU Yen0PgHMJoKp3JGGQJgAD2kKx06Uovxg79+LCSP6CSNVatWRoqJft58K2ELRi/UL Q4Ys5cbSV5W0iU6DlwA8Hi/mNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLJBh3AO ei3U/AmGMsr7QPrN3YOTMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJjKilG4fYuYZNN1I/a0+1INbLnXXyVDVBQWEPrsadoziySF4jwiAg3+iUy50 zKt6tWGjlYlOqX+MulZF0GHJeoOfC8+QdhXmQjgPOn9hmFl8BlEpaUVwRqZWb/KM iXGG5JS59JEOLZAol4KUiHwIw+DJAHRJ4Dyo12u5/85i09xlC2BxFb6ouTcOp1zl uyENv1ibPAxmIKQ9sb3oc7P855Kk7QFHXndGRWTuAa1dWGbmcyGe/j53qHguuV2p LnFSgV8KOS7Fakbb0qqDchLgiHUKgMqB0BL22nTrPIzHWBnNaH1iE3p+Oam7xEfZ SbjHIoayRjOOavxGiJFNDJaLOw== -----END CERTIFICATE-----Generated at Fri Apr 17 13:54:42 2026 by rpki-client