$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: zUCdlhPkuZuFn5zie5I+pC1mKvTME+1y7PimS41repw= Subject key identifier: 05:9B:84:07:48:63:A4:D3:CB:49:65:A1:75:F9:57:E1:DD:99:6C:F5 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 0285 Signing time: Fri 17 Apr 2026 01:36:09 +0000 Manifest this update: Fri 17 Apr 2026 01:36:09 +0000 Manifest next update: Fri 24 Apr 2026 01:36:09 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: wGiHDmHKVcfSQ1xrZKYczVX7QgE1pek3swPc2qfRKm4=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: WcWgzJGh0m7kjX3X0vlH0++NcJ8zb8A6kxhRMuoMb8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Apr 17 01:36:09 2026 GMT Not After : Apr 24 01:36:09 2026 GMT Subject: CN=69e18e89-7a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:49:5e:ba:91:d8:b1:47:b7:59:90:e1:08:62: 03:07:91:10:8d:cc:a1:44:5e:59:db:f5:42:4a:bd: 3d:5b:a7:59:98:61:75:71:61:9f:2f:30:15:37:18: e4:0d:08:0f:27:1a:e8:0f:e9:ea:c9:3e:81:aa:fc: 93:09:af:76:1a:05:8e:ce:fa:38:84:2c:00:89:16: fc:04:6e:63:e8:42:72:75:db:cc:f7:4e:28:39:91: e5:ab:d0:74:35:48:52:cc:35:eb:84:b6:f8:02:96: 54:71:11:b9:84:a3:a3:85:07:bc:d9:8d:39:d9:61: 1e:e8:48:2b:20:a9:6c:d2:86:2b:53:71:d8:22:9e: 9e:10:8b:2d:99:11:90:e5:d6:09:4c:4d:ca:20:c5: 29:ef:a1:14:25:6c:a8:4a:b7:ff:99:45:61:e7:ba: 3d:c5:50:67:94:ea:ae:4d:0f:f3:d1:5d:68:9b:b1: 3a:33:ec:d9:55:af:ed:89:d2:df:0f:ed:14:64:ad: c3:64:b7:94:79:ad:80:9e:b1:1b:a5:1a:61:fa:dd: b9:67:6d:62:1e:c0:f2:56:22:8c:7f:df:7f:73:06: 77:3d:ac:4f:73:a2:ac:3a:d9:87:86:49:a2:63:c7: 48:cc:ef:e8:c4:2a:6c:b4:a5:4f:f0:68:2b:40:0b: 90:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9B:84:07:48:63:A4:D3:CB:49:65:A1:75:F9:57:E1:DD:99:6C:F5 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:37:2f:0b:06:91:44:0e:74:af:ce:98:63:f5:e8:6a:4f:77: 3a:8e:fe:3b:f8:20:b7:f8:e6:5a:89:ac:c8:63:62:9d:8c:22: b4:e8:d1:a2:90:b7:21:ad:38:aa:6f:e3:61:45:df:55:de:e0: c2:08:ba:c8:17:4e:32:50:c4:e2:4c:df:ce:03:36:f9:a0:43: 4c:c1:08:7b:2e:47:a0:68:78:39:32:60:ed:e7:ef:f2:00:82: 96:26:3f:c9:60:4b:fa:94:8a:63:c7:6b:0b:ae:3f:97:15:50: cf:ed:b1:47:ff:71:2f:29:79:9d:3d:53:0e:5e:9d:5f:55:88: 58:a9:61:a2:65:ab:cc:98:ad:f8:e0:3f:75:67:5e:7e:18:f0: b2:d1:22:c2:ef:4b:0c:02:b2:85:c8:ec:64:c5:2c:16:ae:8e: bb:db:61:db:ba:21:3a:57:ea:fe:ca:2b:99:ca:dc:ae:3b:3c: 56:f5:f9:af:e6:bd:75:a2:ec:ad:17:cd:70:5a:82:7b:69:e4: 1c:f7:2a:76:72:33:4e:11:64:17:f6:22:6d:97:ec:2f:27:83: fd:bc:24:43:c2:58:d6:13:50:88:ac:b8:16:59:e2:6c:51:d9: 4b:eb:20:5a:30:d7:02:54:9c:d2:f0:0e:ef:66:38:f4:63:25: 7e:4b:ee:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjYwNDE3MDEzNjA5WhcNMjYwNDI0MDEzNjA5WjAYMRYwFAYD VQQDEw02OWUxOGU4OS03YTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0leupHYsUe3WZDhCGIDB5EQjcyhRF5Z2/VCSr09W6dZmGF1cWGfLzAVNxjk DQgPJxroD+nqyT6BqvyTCa92GgWOzvo4hCwAiRb8BG5j6EJyddvM904oOZHlq9B0 NUhSzDXrhLb4ApZUcRG5hKOjhQe82Y052WEe6EgrIKls0oYrU3HYIp6eEIstmRGQ 5dYJTE3KIMUp76EUJWyoSrf/mUVh57o9xVBnlOquTQ/z0V1om7E6M+zZVa/tidLf D+0UZK3DZLeUea2AnrEbpRph+t25Z21iHsDyViKMf99/cwZ3PaxPc6KsOtmHhkmi Y8dIzO/oxCpstKVP8GgrQAuQYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAWbhAdI Y6TTy0lloXX5V+HdmWz1MB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqTcvCwaRRA50r86YY/Xoak93Oo7+O/ggt/jmWomsyGNinYwitOjRopC3Ia04 qm/jYUXfVd7gwgi6yBdOMlDE4kzfzgM2+aBDTMEIey5HoGh4OTJg7efv8gCCliY/ yWBL+pSKY8drC64/lxVQz+2xR/9xLyl5nT1TDl6dX1WIWKlhomWrzJit+OA/dWde fhjwstEiwu9LDAKyhcjsZMUsFq6Ou9th27ohOlfq/sormcrcrjs8VvX5r+a9daLs rRfNcFqCe2nkHPcqdnIzThFkF/YibZfsLyeD/bwkQ8JY1hNQiKy4FlnibFHZS+sg WjDXAlSc0vAO72Y49GMlfkvuCA== -----END CERTIFICATE-----Generated at Fri Apr 17 04:48:42 2026 by rpki-client