$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: hE19y3P72GHcmf+hOMVMg9Co4pq39Ty7lnIXHp/7yJU= Subject key identifier: EE:F4:52:42:41:13:62:D8:4A:3D:6D:15:68:EC:A7:D2:1D:B9:27:17 Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 0A67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 0A5E Signing time: Thu 16 Apr 2026 19:34:21 +0000 Manifest this update: Thu 16 Apr 2026 19:34:21 +0000 Manifest next update: Thu 23 Apr 2026 19:34:21 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: ARzzdiJWfEhrHFZh94gukL+DBfeozxVlJLbiQ9g3Gew=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: ERhX+neEQpWaGHgDx788YR3fYNG7D/j2H84jmEv5law=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2663 (0xa67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Apr 16 19:34:21 2026 GMT Not After : Apr 23 19:34:21 2026 GMT Subject: CN=69e139bd-b846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:12:f2:c6:34:6f:06:89:b6:f1:e8:98:28:1f: 9b:bb:46:5d:3e:8d:2b:99:fb:d7:a9:d3:b8:f7:3a: e9:51:08:25:cb:df:a1:a5:58:f5:d5:50:26:56:25: 3d:ad:04:c8:cf:14:66:2f:2b:02:36:dd:40:d7:56: 48:1c:ec:c5:fc:7d:0c:86:e3:c0:c4:e8:66:81:ba: 26:4d:27:fd:20:f4:70:01:25:87:67:fa:b1:0e:5a: 81:c7:c5:00:91:db:3f:95:f6:17:68:80:c9:9b:a0: ae:40:d2:c6:a0:3a:46:d0:2c:55:7e:35:c4:20:66: c2:7d:d6:03:1a:7d:c2:d4:1f:12:48:92:f7:e9:d2: 02:c9:91:93:21:7a:ef:7a:76:c5:5f:5c:66:7a:ad: d5:2c:c2:c5:61:31:19:a1:e8:3f:2c:19:cd:68:ab: a4:27:0a:c9:0d:3b:3a:21:34:c5:60:02:33:cd:cf: 93:b4:6f:2f:f8:44:1d:c3:83:45:aa:42:90:e3:7e: 29:59:18:bf:a4:fd:f2:76:3b:a7:eb:e5:83:a4:db: ba:58:ae:a2:58:c4:14:91:fb:e3:6b:f7:f3:f7:9b: 14:03:2b:6a:57:93:76:11:14:ac:05:f6:eb:ac:73: cc:29:e2:42:21:40:8e:8a:f6:18:92:5c:e1:24:eb: 41:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F4:52:42:41:13:62:D8:4A:3D:6D:15:68:EC:A7:D2:1D:B9:27:17 X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:8c:88:1c:1f:3a:50:77:a0:fb:16:4c:d9:ab:74:26:97:55: 98:c5:49:8b:5f:82:84:59:35:c5:e7:99:de:7b:9a:7d:30:e7: 5a:e8:8d:12:b2:57:85:c5:84:35:11:b2:77:19:dc:bb:b0:61: fe:8d:a8:9a:ad:31:8a:48:f1:cd:03:32:22:ba:b1:18:41:6f: f9:64:e9:d1:1b:24:ca:2a:27:78:22:01:d3:dd:41:27:f6:e6: 8a:6d:e4:ad:f2:34:e7:94:33:be:48:2d:1f:b4:84:d6:ed:93: f0:03:49:11:de:b5:4e:72:ba:6a:a3:f5:25:77:2b:5c:c5:a7: 6d:71:36:b1:71:3f:0b:b0:97:52:15:60:39:f4:4c:55:c3:e5: 67:a5:93:f9:e0:d6:b9:12:27:da:3d:1f:67:b3:27:0e:61:47: c3:73:c2:3c:55:52:4a:4d:84:42:3e:4d:89:86:97:79:d2:55: 22:17:84:88:ff:b1:cf:92:b2:59:d4:7b:ac:3c:6f:44:96:39: 8c:75:15:9f:30:34:9a:f3:35:ab:99:af:0b:e5:bc:5c:22:3a: d1:7e:db:09:6b:9a:d0:d4:4e:ce:b6:ef:31:8f:28:5c:61:b1: b4:9c:a6:8f:23:44:a0:2d:53:49:46:81:bf:68:27:fa:22:a9: 2a:95:5a:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjYwNDE2MTkzNDIxWhcNMjYwNDIzMTkzNDIxWjAYMRYwFAYD VQQDEw02OWUxMzliZC1iODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxLyxjRvBom28eiYKB+bu0ZdPo0rmfvXqdO49zrpUQgly9+hpVj11VAmViU9 rQTIzxRmLysCNt1A11ZIHOzF/H0MhuPAxOhmgbomTSf9IPRwASWHZ/qxDlqBx8UA kds/lfYXaIDJm6CuQNLGoDpG0CxVfjXEIGbCfdYDGn3C1B8SSJL36dICyZGTIXrv enbFX1xmeq3VLMLFYTEZoeg/LBnNaKukJwrJDTs6ITTFYAIzzc+TtG8v+EQdw4NF qkKQ434pWRi/pP3ydjun6+WDpNu6WK6iWMQUkfvja/fz95sUAytqV5N2ERSsBfbr rHPMKeJCIUCOivYYklzhJOtB/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO70UkJB E2LYSj1tFWjsp9IduScXMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb4yIHB86UHeg+xZM2at0JpdVmMVJi1+ChFk1xeeZ3nuafTDnWuiNErJXhcWE NRGydxncu7Bh/o2omq0xikjxzQMyIrqxGEFv+WTp0RskyioneCIB091BJ/bmim3k rfI055QzvkgtH7SE1u2T8ANJEd61TnK6aqP1JXcrXMWnbXE2sXE/C7CXUhVgOfRM VcPlZ6WT+eDWuRIn2j0fZ7MnDmFHw3PCPFVSSk2EQj5NiYaXedJVIheEiP+xz5Ky WdR7rDxvRJY5jHUVnzA0mvM1q5mvC+W8XCI60X7bCWua0NROzrbvMY8oXGGxtJym jyNEoC1TSUaBv2gn+iKpKpValw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:46:55 2026 by rpki-client