$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: 83Qhb0OsBTNjqDW+PlU1Hrm4isWILzs+CwiooTIVe6I= Subject key identifier: F2:FC:87:4A:CC:3B:3D:CE:33:4C:4D:95:6D:9D:F0:76:8F:0C:06:D4 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 074F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 073D Signing time: Thu 16 Apr 2026 21:42:14 +0000 Manifest this update: Thu 16 Apr 2026 21:42:13 +0000 Manifest next update: Thu 23 Apr 2026 21:42:13 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: FhICbLj5SlRhbdTbWRRPSmmpEZvQV0yWk4osBoDroWo=) 2: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: POpr8wQqUbcrtsin7090l3LSjMlxCYgCxYONDuDwzEA=) 3: 535436609D0511F0BAF1837CC4F9AE02.roa (hash: 0A1AOVsjVRyjkOa0stdyBH8yBCmf007m2jZE8cgy4HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Apr 16 21:42:13 2026 GMT Not After : Apr 23 21:42:13 2026 GMT Subject: CN=69e157b6-7f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:38:25:d9:c6:ca:b6:a4:8a:ec:6c:9f:ab: 1f:9e:14:17:a0:dd:57:e7:c7:ee:f8:0b:46:a9:5b: 15:df:7c:96:5c:64:73:3e:76:63:48:9e:25:bb:e7: 45:5c:03:01:f4:a5:fa:ce:c1:71:e7:42:e1:a8:34: b4:ea:1e:9d:3e:1d:f3:b2:bf:46:36:f5:9a:5a:ee: 6b:7f:b2:98:26:79:04:d1:49:26:74:9a:ea:3b:c0: b9:16:d6:f3:0c:5c:95:74:08:90:6b:33:f5:47:ea: 9b:a3:ca:c3:70:89:32:f7:90:fb:d1:f4:d5:87:9f: 10:4f:a0:82:dc:f8:b1:63:ae:12:dc:f0:d7:b3:9f: c9:b9:e3:c8:69:18:0e:63:b1:c0:e3:ac:b5:c6:5b: 4e:e9:45:96:a8:0d:a6:79:e4:6a:50:0d:e9:5f:3f: 7b:77:ee:94:c8:08:09:b5:89:9f:7b:7d:c4:de:54: 6a:2e:b2:d3:e3:8f:27:4a:a5:eb:a3:86:60:60:c0: 53:e2:ff:3a:dc:11:09:0b:2c:0d:b9:d1:83:64:c4: e5:64:3d:0b:30:d1:d8:53:04:b4:18:41:43:88:e0: 45:4d:36:f0:38:de:c0:15:f3:ff:97:5a:4e:13:1f: 70:a1:d3:21:54:4b:ae:79:06:30:b2:99:8c:cf:86: bb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FC:87:4A:CC:3B:3D:CE:33:4C:4D:95:6D:9D:F0:76:8F:0C:06:D4 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c7:4b:e4:8b:47:7c:71:ec:1b:f2:df:f3:98:c4:88:f9:c4: 6e:f6:df:e0:a3:67:8b:59:a5:8f:a5:b2:6d:d8:04:50:6b:0c: 75:cf:71:f3:86:7f:72:ca:68:d1:4d:12:f5:97:15:d4:f0:af: 52:94:19:67:9f:7b:59:48:99:5e:25:31:8a:ee:f9:68:da:ef: 91:f4:6c:eb:3a:29:02:88:cf:70:fb:20:5c:eb:4f:54:78:c7: 2c:21:68:f8:5d:23:1f:5a:01:07:67:4c:55:58:77:e2:06:36: 1f:d4:54:d8:0b:66:d7:af:38:5a:96:f8:94:21:f8:a6:b5:1b: 91:30:c7:eb:00:6b:f0:9a:8c:ef:2c:46:f6:79:a9:87:75:ba: 18:9d:2c:00:74:2a:8c:88:37:ce:9a:1e:0b:a6:52:e0:62:b3: d3:ac:30:5d:6c:12:bf:ab:38:80:7d:84:4e:18:20:25:d9:92: 3d:ed:5b:e6:47:a7:b6:38:7a:c1:40:1a:02:cb:d4:4d:f2:02: 34:0a:3d:bd:97:48:8c:fc:59:4d:b8:67:0c:02:09:9a:dd:d4: 29:da:48:19:74:28:a9:07:ec:26:d9:83:e0:b8:02:96:4d:93: c1:37:cd:d4:0a:ad:4f:9e:45:88:7b:8b:e5:6f:da:21:c2:ad: 2b:60:00:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjYwNDE2MjE0MjEzWhcNMjYwNDIzMjE0MjEzWjAYMRYwFAYD VQQDEw02OWUxNTdiNi03ZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwds4JdnGyrakiuxsn6sfnhQXoN1X58fu+AtGqVsV33yWXGRzPnZjSJ4lu+dF XAMB9KX6zsFx50LhqDS06h6dPh3zsr9GNvWaWu5rf7KYJnkE0UkmdJrqO8C5Ftbz DFyVdAiQazP1R+qbo8rDcIky95D70fTVh58QT6CC3PixY64S3PDXs5/JuePIaRgO Y7HA46y1xltO6UWWqA2meeRqUA3pXz97d+6UyAgJtYmfe33E3lRqLrLT448nSqXr o4ZgYMBT4v863BEJCywNudGDZMTlZD0LMNHYUwS0GEFDiOBFTTbwON7AFfP/l1pO Ex9wodMhVEuueQYwspmMz4a7YQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPL8h0rM Oz3OM0xNlW2d8HaPDAbUMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGMdL5ItHfHHsG/Lf85jEiPnEbvbf4KNni1mlj6WybdgEUGsMdc9x84Z/cspo 0U0S9ZcV1PCvUpQZZ597WUiZXiUxiu75aNrvkfRs6zopAojPcPsgXOtPVHjHLCFo +F0jH1oBB2dMVVh34gY2H9RU2Atm1684Wpb4lCH4prUbkTDH6wBr8JqM7yxG9nmp h3W6GJ0sAHQqjIg3zpoeC6ZS4GKz06wwXWwSv6s4gH2EThggJdmSPe1b5kentjh6 wUAaAsvUTfICNAo9vZdIjPxZTbhnDAIJmt3UKdpIGXQoqQfsJtmD4LgClk2TwTfN 1AqtT55FiHuL5W/aIcKtK2AAfA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:27:33 2026 by rpki-client