$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: jviTkdRH8JKJ1pNRU2Bv/Lmut7XKa2FHiEINvh3V/3Y= Subject key identifier: 3E:CB:92:3E:5B:14:5C:2F:91:2E:93:0C:B1:87:B6:53:EB:0E:50:68 Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 02A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 0292 Signing time: Fri 17 Apr 2026 01:29:32 +0000 Manifest this update: Fri 17 Apr 2026 01:29:32 +0000 Manifest next update: Fri 24 Apr 2026 01:29:32 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: W+oA/6RU7cwQrObJvAG3vaVrAKGYUxxM6j6F6tRttK8=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: NXGbpmoMOzAZwcgSz2AYwCb8kwzGpslvQ3JE0B3JbOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Apr 17 01:29:32 2026 GMT Not After : Apr 24 01:29:32 2026 GMT Subject: CN=69e18cfc-1635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a5:b6:e1:9a:c9:5e:de:77:be:9f:1f:cc:09: e3:86:4b:d0:6d:09:31:39:c0:a5:ce:07:5e:b5:25: 16:08:e7:af:81:09:ac:0d:85:75:28:41:96:67:a0: fc:39:8a:99:9f:18:2e:11:87:28:53:47:55:56:8c: e3:03:42:44:47:b6:f7:21:de:48:8b:92:37:3f:59: 1a:97:07:78:22:7b:1f:97:de:08:4c:b9:5a:90:55: 8e:e6:42:f7:36:0e:9b:ad:79:c1:41:5e:66:13:49: 8a:86:93:e9:70:a5:c6:89:a5:1d:a2:2d:28:c1:d2: e0:3b:49:8d:c6:96:87:f2:c1:91:42:5f:4f:30:7c: d4:27:55:2f:d8:69:33:df:23:eb:85:02:0c:24:c6: 73:58:90:b3:a3:33:16:23:42:44:f5:d6:4d:e5:fc: c4:19:1c:30:ce:c0:a0:7b:95:8b:30:7c:1c:96:13: 1c:a7:26:16:6b:9d:21:10:17:5b:95:9a:45:1e:fd: ac:ee:71:48:cc:98:40:f7:12:c9:c4:59:48:01:b7: dd:95:ad:31:bf:d8:a5:07:59:cf:2a:07:5e:1d:7d: 83:91:aa:af:21:f5:99:30:02:91:17:0f:c4:eb:57: 23:f4:b2:b1:c6:66:cd:ad:74:5c:06:ac:14:67:9a: ac:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CB:92:3E:5B:14:5C:2F:91:2E:93:0C:B1:87:B6:53:EB:0E:50:68 X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:2c:88:de:66:14:9e:36:e0:d4:32:d5:34:da:13:2c:e9:65: eb:c2:a9:d5:c4:7b:3b:a8:42:97:39:1e:28:8d:e8:7a:89:e6: ba:ba:71:57:4f:5e:9d:87:bf:d5:df:04:48:31:df:20:28:ed: 74:c0:71:e0:45:63:50:15:04:1a:19:89:bf:c9:1f:c8:e9:c6: 66:7a:dc:02:c5:f6:e9:41:6f:79:d6:d3:b2:3a:ee:7d:50:9d: 42:42:d4:b6:53:7f:9f:9b:3e:be:81:42:f0:af:55:dc:51:08: 0d:3a:e1:6c:16:98:6c:57:16:ff:fa:da:ca:90:c4:73:58:43: 95:bf:88:69:e3:25:36:02:37:40:81:74:2a:f3:a0:4d:79:3f: f5:a0:67:8d:19:40:f4:5c:51:4c:63:07:6a:e0:c2:70:b5:59: 2e:2f:9a:bb:f6:2c:e7:f4:27:bb:9c:10:4b:10:cd:25:cb:5c: 00:78:10:06:f4:df:e1:10:df:2e:bf:4f:56:b7:f5:cc:04:38: c2:55:69:ed:2c:79:b3:fa:d5:f7:73:c3:53:89:5c:8b:0e:f5: 94:9e:0b:1e:95:b4:a1:56:f4:36:c6:e7:96:85:e8:52:18:90: 26:31:29:00:10:1d:69:97:3c:f3:bc:2f:e7:08:1b:80:fa:e2: b7:e0:fa:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjYwNDE3MDEyOTMyWhcNMjYwNDI0MDEyOTMyWjAYMRYwFAYD VQQDEw02OWUxOGNmYy0xNjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6W24ZrJXt53vp8fzAnjhkvQbQkxOcClzgdetSUWCOevgQmsDYV1KEGWZ6D8 OYqZnxguEYcoU0dVVozjA0JER7b3Id5Ii5I3P1kalwd4Insfl94ITLlakFWO5kL3 Ng6brXnBQV5mE0mKhpPpcKXGiaUdoi0owdLgO0mNxpaH8sGRQl9PMHzUJ1Uv2Gkz 3yPrhQIMJMZzWJCzozMWI0JE9dZN5fzEGRwwzsCge5WLMHwclhMcpyYWa50hEBdb lZpFHv2s7nFIzJhA9xLJxFlIAbfdla0xv9ilB1nPKgdeHX2DkaqvIfWZMAKRFw/E 61cj9LKxxmbNrXRcBqwUZ5qsQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD7Lkj5b FFwvkS6TDLGHtlPrDlBoMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUiyI3mYUnjbg1DLVNNoTLOll68Kp1cR7O6hClzkeKI3oeonmurpxV09enYe/ 1d8ESDHfICjtdMBx4EVjUBUEGhmJv8kfyOnGZnrcAsX26UFvedbTsjrufVCdQkLU tlN/n5s+voFC8K9V3FEIDTrhbBaYbFcW//raypDEc1hDlb+IaeMlNgI3QIF0KvOg TXk/9aBnjRlA9FxRTGMHauDCcLVZLi+au/Ys5/Qnu5wQSxDNJctcAHgQBvTf4RDf Lr9PVrf1zAQ4wlVp7Sx5s/rV93PDU4lciw71lJ4LHpW0oVb0NsbnloXoUhiQJjEp ABAdaZc887wv5wgbgPrit+D66g== -----END CERTIFICATE-----Generated at Fri Apr 17 15:02:47 2026 by rpki-client