$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft File: toNIsZBwY8BERWnOsijqUkbQLxk.mft (raw, json) Hash identifier: 2HG7KK5D+FvacUiQtUkoJYfCRDF2SB+H0e2VPPMj5zU= Subject key identifier: 49:A4:1D:15:70:7B:58:23:DE:32:3B:42:E4:56:10:07:FB:14:05:ED Authority key identifier: B6:83:48:B1:90:70:63:C0:44:45:69:CE:B2:28:EA:52:46:D0:2F:19 Certificate issuer: /CN=A91B3CB5/serialNumber=B68348B1907063C0444569CEB228EA5246D02F19 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft Manifest number: 55 Signing time: Thu 16 Apr 2026 18:09:39 +0000 Manifest this update: Thu 16 Apr 2026 18:09:39 +0000 Manifest next update: Thu 23 Apr 2026 18:09:39 +0000 Files and hashes: 1: toNIsZBwY8BERWnOsijqUkbQLxk.crl (hash: Va9QWo9OKxcpyuZ6KkmYWo3fnFiIZmLYp2un84LbweU=) 2: 3AF6CDE4CE7E11F0BDD3E452C4F9AE02.roa (hash: 0wi2dknpR06NzdVHMhDQvzTD3ZFfo6Ir3jbrCyXBQX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=B68348B1907063C0444569CEB228EA5246D02F19 Validity Not Before: Apr 16 18:09:39 2026 GMT Not After : Apr 23 18:09:39 2026 GMT Subject: CN=69e125e3-7b9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:95:a9:4a:94:15:44:35:ed:b9:36:58:2a: 41:6d:ea:e0:03:b0:2c:1d:5c:1e:6f:f1:61:bb:9d: 33:f6:ab:d7:e3:d4:51:4c:4e:6f:4d:aa:2c:a3:41: 68:d7:bd:7b:ac:da:68:3a:be:43:ca:c0:e4:84:ba: c3:b6:65:65:d6:14:8f:2f:86:fd:7a:51:1a:fa:77: 14:ab:c5:d6:65:0c:f2:7a:99:3c:47:06:91:6f:4c: 1e:88:c0:80:7c:ab:5e:83:d5:c9:ec:ae:a2:c2:e1: 4c:7c:16:3a:78:61:e0:2c:8b:11:91:88:dc:4c:bf: 3e:15:6d:b7:84:49:e7:22:95:33:a4:e8:cc:cc:80: ef:70:a7:93:e4:74:77:31:b1:ff:33:29:0b:6b:f1: d4:a2:c4:d7:56:37:d7:f4:e1:87:98:27:09:f9:1a: c9:da:28:8b:44:5b:4c:cc:c7:df:3c:c7:f8:ed:bb: 25:47:e2:00:1f:50:c5:0b:ec:3e:5c:66:33:bc:b4: 71:a3:26:b1:66:03:3a:0f:97:52:78:5f:ba:09:59: f2:d3:7b:80:b1:75:7b:ad:1b:7f:77:35:a3:21:12: de:ac:2b:05:10:28:ff:97:44:62:58:81:ae:3b:4f: 04:04:f7:57:60:ca:e9:43:a0:16:7f:ff:7e:b6:f9: 8a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A4:1D:15:70:7B:58:23:DE:32:3B:42:E4:56:10:07:FB:14:05:ED X509v3 Authority Key Identifier: keyid:B6:83:48:B1:90:70:63:C0:44:45:69:CE:B2:28:EA:52:46:D0:2F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:44:51:3a:2a:a0:67:af:4d:dc:de:5a:29:52:f5:26:2a:f0: f7:f0:57:65:f4:fa:3e:32:84:46:21:9c:73:a7:06:4f:43:6d: de:62:d1:86:c6:e5:36:38:3f:a5:88:10:00:4b:7b:94:5c:bc: d8:b7:53:18:ed:e4:2d:ab:63:3a:a2:04:a6:f4:ba:f8:93:d2: 27:27:01:42:cf:32:c1:ef:34:fd:ec:86:f9:3c:c7:43:c4:32: e2:52:58:dc:22:43:72:6f:0e:78:ed:fc:2e:d3:9c:2e:8a:6c: 2f:b6:f0:d8:83:7a:62:88:e4:2e:16:a0:cc:e5:1a:c2:82:dc: 47:27:d6:1f:13:34:9b:bd:48:05:0b:25:5c:04:1f:46:cf:4b: cc:65:79:c8:91:b6:60:a8:9c:1d:f1:97:df:5b:00:6c:72:9f: 65:eb:44:8d:a9:28:62:79:b0:a0:18:81:74:be:ee:29:4a:0a: a5:7d:1f:63:49:04:24:43:6e:5b:41:4b:34:fb:ed:11:e9:23: 3c:9e:47:50:82:30:e0:a8:58:34:81:8d:cd:01:d9:96:2a:42: 60:06:3f:17:e5:0e:eb:29:d3:aa:e6:23:35:fa:88:96:d6:27: d7:c3:01:61:67:7f:08:81:36:a5:f2:62:2a:f8:e8:fa:64:7c: 50:ee:6d:63 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC M0NCNTExMC8GA1UEBRMoQjY4MzQ4QjE5MDcwNjNDMDQ0NDU2OUNFQjIyOEVBNTI0 NkQwMkYxOTAeFw0yNjA0MTYxODA5MzlaFw0yNjA0MjMxODA5MzlaMBgxFjAUBgNV BAMTDTY5ZTEyNWUzLTdiOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC73pWpSpQVRDXtuTZYKkFt6uADsCwdXB5v8WG7nTP2q9fj1FFMTm9NqiyjQWjX vXus2mg6vkPKwOSEusO2ZWXWFI8vhv16URr6dxSrxdZlDPJ6mTxHBpFvTB6IwIB8 q16D1cnsrqLC4Ux8Fjp4YeAsixGRiNxMvz4VbbeESecilTOk6MzMgO9wp5PkdHcx sf8zKQtr8dSixNdWN9f04YeYJwn5GsnaKItEW0zMx988x/jtuyVH4gAfUMUL7D5c ZjO8tHGjJrFmAzoPl1J4X7oJWfLTe4CxdXutG393NaMhEt6sKwUQKP+XRGJYga47 TwQE91dgyulDoBZ//362+YrxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUSaQdFXB7 WCPeMjtC5FYQB/sUBe0wHwYDVR0jBBgwFoAUtoNIsZBwY8BERWnOsijqUkbQLxkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzQ0I1L0VEMjI1NTMyQzQz NDExRjBBODI3QTU3REM0RjlBRTAyL3RvTklzWkJ3WThCRVJXbk9zaWpxVWtiUUx4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdG9OSXNaQndZOEJFUlduT3NpanFVa2JRTHhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz Q0I1L0VEMjI1NTMyQzQzNDExRjBBODI3QTU3REM0RjlBRTAyL3RvTklzWkJ3WThC RVJXbk9zaWpxVWtiUUx4ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB+RFE6KqBnr03c3lopUvUmKvD38Fdl9Po+MoRGIZxzpwZPQ23eYtGGxuU2OD+l iBAAS3uUXLzYt1MY7eQtq2M6ogSm9Lr4k9InJwFCzzLB7zT97Ib5PMdDxDLiUljc IkNybw547fwu05wuimwvtvDYg3piiOQuFqDM5RrCgtxHJ9YfEzSbvUgFCyVcBB9G z0vMZXnIkbZgqJwd8ZffWwBscp9l60SNqShiebCgGIF0vu4pSgqlfR9jSQQkQ25b QUs0++0R6SM8nkdQgjDgqFg0gY3NAdmWKkJgBj8X5Q7rKdOq5iM1+oiW1ifXwwFh Z38IgTal8mIq+Oj6ZHxQ7m1j -----END CERTIFICATE-----Generated at Fri Apr 17 14:07:51 2026 by rpki-client