$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: 0QdwdKLVrKTcdu/Gnm1uNpZoSmiXpyeDmtOM2bgYtE8= Subject key identifier: B1:8C:2B:F1:41:E9:1C:DF:7D:0D:50:93:4B:20:27:CB:6F:25:E3:5F Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 040A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 0403 Signing time: Fri 17 Apr 2026 00:20:45 +0000 Manifest this update: Fri 17 Apr 2026 00:20:44 +0000 Manifest next update: Fri 24 Apr 2026 00:20:44 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: 8eXYWtJyxfNR3bApIKTPhh9zsdi0Q0xTuIfx9sffenQ=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: E0te7z7859at34MRFLNavnFyL+a8lv5dig7hn7bo8Ag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:20:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1034 (0x40a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: Apr 17 00:20:44 2026 GMT Not After : Apr 24 00:20:44 2026 GMT Subject: CN=69e17cdc-9dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:90:87:90:b2:e0:a9:f5:58:27:83:2d:dc:97: 3f:49:75:84:56:d6:d1:85:59:bb:af:0f:91:62:47: a3:37:cb:84:25:bb:d1:96:dd:3a:0a:08:cf:10:e9: c4:6b:b4:36:6d:73:29:da:d0:73:1a:0f:39:a4:ff: b0:ce:1f:3e:8f:d3:d1:c7:d5:3f:61:8d:00:c1:4a: 78:ae:4e:20:0b:13:9d:59:d1:56:1a:72:b2:ba:df: fa:9f:9c:a0:dc:20:ad:f0:cc:04:6e:8e:2a:26:b9: 91:2a:b7:35:90:b4:3c:04:b2:40:38:f7:84:d4:01: 44:11:85:88:30:cb:4a:d4:96:e8:a8:5d:f5:22:8d: 8f:6b:37:50:14:01:2b:9e:d1:12:b7:de:67:d5:c6: fd:4d:7e:07:10:70:9d:d4:d4:c9:b6:1e:81:d6:66: 0c:33:03:9b:0a:2e:9d:ea:d6:08:8c:f3:28:22:b1: ad:b5:f1:0e:3f:4f:e6:bb:d6:b4:84:a3:60:2c:20: b6:b5:cd:5b:41:fd:06:ec:c6:f1:51:0c:cf:84:dc: 1e:74:0e:20:9b:fc:e8:fa:ed:27:fb:18:2d:c6:5c: 00:f0:10:50:70:79:7a:2c:86:81:44:7d:e6:ee:60: 8b:17:88:f5:09:07:90:e8:ad:99:ca:bb:36:10:48: 31:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8C:2B:F1:41:E9:1C:DF:7D:0D:50:93:4B:20:27:CB:6F:25:E3:5F X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ab:4c:71:03:85:5d:1a:60:fe:6e:aa:4d:8e:5c:37:77:bf: 4e:4a:9a:12:bc:ab:83:2a:f0:ef:b9:52:8c:2f:4e:d3:56:25: 7b:43:1d:1d:7b:a6:fe:21:a6:ab:cd:f5:07:5d:15:11:c8:46: 3c:70:33:2f:c5:16:bb:5b:cc:a3:9b:4c:8e:cb:1b:b1:72:04: 7a:fb:65:b7:db:fd:8c:1a:e0:c0:9f:ee:ca:b8:29:64:fd:cb: 30:c7:45:58:93:cc:91:44:99:04:82:64:29:e5:af:41:73:ba: cb:41:52:f2:88:55:75:6d:b1:17:3a:7c:10:19:ca:9e:74:c4: 74:4a:0b:d1:be:29:29:01:fe:11:ec:d9:1b:85:46:e4:df:c8: 66:b3:ac:5c:f0:18:45:07:3a:d2:81:0f:23:d9:38:0c:14:3d: 17:0e:46:6d:b5:ab:95:f5:ba:eb:47:b4:86:e4:85:dc:64:0e: f1:01:e0:29:10:5d:27:63:36:1b:a6:3a:48:5b:fa:f6:9b:7a: 8e:77:ed:97:70:be:f2:a2:39:a0:22:cb:95:6c:b2:f8:69:db: b3:7c:7e:db:bb:09:17:d4:d4:ec:5e:cb:83:cd:b1:8f:14:93: 0e:82:51:06:ff:23:77:14:26:39:ed:cc:86:38:44:69:88:a9: 60:4b:ff:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjYwNDE3MDAyMDQ0WhcNMjYwNDI0MDAyMDQ0WjAYMRYwFAYD VQQDEw02OWUxN2NkYy05ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5CHkLLgqfVYJ4Mt3Jc/SXWEVtbRhVm7rw+RYkejN8uEJbvRlt06CgjPEOnE a7Q2bXMp2tBzGg85pP+wzh8+j9PRx9U/YY0AwUp4rk4gCxOdWdFWGnKyut/6n5yg 3CCt8MwEbo4qJrmRKrc1kLQ8BLJAOPeE1AFEEYWIMMtK1JboqF31Io2PazdQFAEr ntESt95n1cb9TX4HEHCd1NTJth6B1mYMMwObCi6d6tYIjPMoIrGttfEOP0/mu9a0 hKNgLCC2tc1bQf0G7MbxUQzPhNwedA4gm/zo+u0n+xgtxlwA8BBQcHl6LIaBRH3m 7mCLF4j1CQeQ6K2Zyrs2EEgxBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLGMK/FB 6RzffQ1Qk0sgJ8tvJeNfMB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARKtMcQOFXRpg/m6qTY5cN3e/TkqaEryrgyrw77lSjC9O01Yle0MdHXum/iGm q831B10VEchGPHAzL8UWu1vMo5tMjssbsXIEevtlt9v9jBrgwJ/uyrgpZP3LMMdF WJPMkUSZBIJkKeWvQXO6y0FS8ohVdW2xFzp8EBnKnnTEdEoL0b4pKQH+EezZG4VG 5N/IZrOsXPAYRQc60oEPI9k4DBQ9Fw5GbbWrlfW660e0huSF3GQO8QHgKRBdJ2M2 G6Y6SFv69pt6jnftl3C+8qI5oCLLlWyy+Gnbs3x+27sJF9TU7F7Lg82xjxSTDoJR Bv8jdxQmOe3MhjhEaYipYEv/Bw== -----END CERTIFICATE-----Generated at Fri Apr 17 04:55:49 2026 by rpki-client