$ rpki-client -vvf rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft File: IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft (raw, json) Hash identifier: JQcK+0gbbcARUR8obqp0Dp/3ZEhZpXmMD1Lu2rwsBxI= Subject key identifier: 40:95:84:F3:CE:B5:CB:13:A3:7D:69:AE:9B:12:11:4E:A8:5A:ED:27 Authority key identifier: 20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 Certificate issuer: /CN=A91B40B2/serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft Manifest number: 41 Signing time: Fri 17 Apr 2026 08:08:52 +0000 Manifest this update: Fri 17 Apr 2026 08:08:52 +0000 Manifest next update: Fri 24 Apr 2026 08:08:52 +0000 Files and hashes: 1: IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl (hash: IOlEzJw91mGPvBQr+L7G2VMzoGwNjpABhgyc4Vz26Bo=) 2: 78211876DA3811F080F82F148DD3641D.roa (hash: iQuCstGoIK1MPnU6/cDDIt+974fe7iZAlTkSxssvjXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B40B2, serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Validity Not Before: Apr 17 08:08:52 2026 GMT Not After : Apr 24 08:08:52 2026 GMT Subject: CN=69e1ea94-0aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6a:02:80:1e:a1:9a:0b:2c:f2:31:55:b0:13: ad:94:84:2f:1c:c1:42:02:0b:5c:12:56:33:b6:f3: 22:2b:45:a1:6b:e8:96:69:1c:25:3c:f3:73:65:e0: 17:82:a3:a3:fd:0f:b3:69:16:5e:a9:d5:fb:9e:00: ca:b2:2a:c9:9d:c4:53:5e:54:01:07:21:c6:b1:4f: 83:e8:5f:4d:fe:f3:f2:fd:a8:99:6a:cb:eb:d5:f0: 48:46:f2:e7:1c:31:d0:5f:71:1b:85:fe:88:32:4e: 77:ab:17:8d:18:ad:42:91:af:58:8d:92:41:77:55: ef:87:00:0b:2e:db:e5:6b:6a:47:d6:8a:3d:a9:52: d1:8a:96:c8:a1:9b:23:49:03:4a:c3:71:4e:af:4b: 6b:ff:72:55:23:6e:ec:0b:03:5d:82:d5:b5:36:36: ec:9d:b6:90:9b:8f:31:9a:67:e0:3d:99:26:c7:1d: d8:3a:83:b3:e1:1e:bc:97:a8:9d:81:1e:dd:2d:8c: 44:64:46:a0:8b:74:99:92:dc:4e:7c:b0:08:75:c9: 0d:fe:f4:6c:3c:46:17:f3:df:98:a5:5a:2b:41:76: 55:8c:3f:87:f1:98:37:85:77:a0:38:64:34:79:85: 15:05:c7:1f:a4:ac:f7:cf:7f:72:96:d5:2f:18:1c: 3d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:95:84:F3:CE:B5:CB:13:A3:7D:69:AE:9B:12:11:4E:A8:5A:ED:27 X509v3 Authority Key Identifier: keyid:20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:0c:2d:1c:ff:55:15:50:1e:00:8b:a0:26:df:6d:63:38:5e: 7a:ef:71:af:de:d6:96:f4:6f:f0:1f:10:9a:a1:43:f5:e6:d4: e4:d4:b6:3a:13:43:72:32:ab:1e:c0:0a:a0:ca:a3:53:92:59: 04:07:21:86:2e:dc:71:48:dc:05:8f:ab:18:a0:b0:8f:88:0d: 8b:7a:c3:8e:e4:81:93:e9:dc:24:20:82:a8:8e:ad:9e:32:e8: 3a:04:6b:c9:92:4a:80:e9:02:06:f4:49:f8:8d:33:d1:81:86: d4:fa:1c:60:3f:50:13:ec:90:0c:c9:ff:4e:77:6f:14:a9:33: c1:7f:dc:93:53:9a:cb:96:e0:fc:07:18:b8:5f:41:6a:3c:1a: 6f:d3:09:4e:00:44:c1:00:6e:b6:49:f1:11:a6:28:92:09:02: 72:4e:42:fe:94:55:4e:d5:4e:d9:40:4d:f7:b2:03:a5:bc:73: 84:6b:1b:04:7c:98:1c:41:cc:e0:a1:b7:c5:eb:84:25:e0:59: ab:7f:47:67:b7:3e:b7:24:db:b6:ae:d9:a0:81:ea:5d:46:41: 54:ec:b2:a3:e3:40:cc:b7:38:68:2c:02:7d:ff:64:a2:58:b8: d0:99:23:41:87:20:96:0f:74:45:17:73:f6:b3:32:02:4b:d0: e4:a1:fb:08 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDBCMjExMC8GA1UEBRMoMjBGM0JCRDQ5OEY0M0M5NzkxM0VFMUI5OTQyOURCODkw QjQ3NjJCMDAeFw0yNjA0MTcwODA4NTJaFw0yNjA0MjQwODA4NTJaMBgxFjAUBgNV BAMTDTY5ZTFlYTk0LTBhYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvagKAHqGaCyzyMVWwE62UhC8cwUICC1wSVjO28yIrRaFr6JZpHCU883Nl4BeC o6P9D7NpFl6p1fueAMqyKsmdxFNeVAEHIcaxT4PoX03+8/L9qJlqy+vV8EhG8ucc MdBfcRuF/ogyTnerF40YrUKRr1iNkkF3Ve+HAAsu2+VrakfWij2pUtGKlsihmyNJ A0rDcU6vS2v/clUjbuwLA12C1bU2NuydtpCbjzGaZ+A9mSbHHdg6g7PhHryXqJ2B Ht0tjERkRqCLdJmS3E58sAh1yQ3+9Gw8Rhfz35ilWitBdlWMP4fxmDeFd6A4ZDR5 hRUFxx+krPfPf3KW1S8YHD13AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUQJWE8861 yxOjfWmumxIRTqha7ScwHwYDVR0jBBgwFoAUIPO71Jj0PJeRPuG5lCnbiQtHYrAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MEIyL0QxNDZFNEYwREEz NjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEplUlB1RzVsQ25iaVF0SFly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSVBPNzFKajBQSmVSUHVHNWxDbmJpUXRIWXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MEIyL0QxNDZFNEYwREEzNjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEpl UlB1RzVsQ25iaVF0SFlyQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA8DC0c/1UVUB4Ai6Am321jOF5673Gv3taW9G/wHxCaoUP15tTk1LY6E0NyMqse wAqgyqNTklkEByGGLtxxSNwFj6sYoLCPiA2LesOO5IGT6dwkIIKojq2eMug6BGvJ kkqA6QIG9En4jTPRgYbU+hxgP1AT7JAMyf9Od28UqTPBf9yTU5rLluD8Bxi4X0Fq PBpv0wlOAETBAG62SfERpiiSCQJyTkL+lFVO1U7ZQE33sgOlvHOEaxsEfJgcQczg obfF64Ql4Fmrf0dntz63JNu2rtmggepdRkFU7LKj40DMtzhoLAJ9/2SiWLjQmSNB hyCWD3RFF3P2szICS9DkofsI -----END CERTIFICATE-----Generated at Fri Apr 17 09:46:56 2026 by rpki-client