$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: TKkMmUIkGM27Gd2nCEDE0l7LujCfj5AkgGyHMiEKb5E= Subject key identifier: CA:3A:39:6F:A6:99:30:22:C8:8A:E5:30:05:5E:7F:13:77:37:9E:85 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 3596 Signing time: Thu 16 Apr 2026 14:24:35 +0000 Manifest this update: Thu 16 Apr 2026 14:24:34 +0000 Manifest next update: Thu 23 Apr 2026 14:24:34 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: 1jta/jNa5e87QOV6mz1Hnn1xMCPH/4BqJffHb2x838Y=) 2: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: 2+uDGIyNCQwdI4kpyLzkpL270iQx3eFCTQmOCW4llcA=) 3: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: AAS+jxhp2xik0OYMSPq+B01L4sPGFryRO2dGHyui2mE=) 4: 80222864027211F19767E73A2C3D8C67.roa (hash: ywqZnsw0viWQVsstxlcIR8TqE6o6V9nWSSr21sJVdy4=) 5: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: GK0larljqDnIZSIDwqWiFQo4BToMGpYrvOsSZwaLGDI=) 6: D0886954188811EC8E86754FC4F9AE02.roa (hash: W4C6/CMmIu13G3sy+4epSwhK8wjgstVqttIzDULu+ak=) 7: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: Aq2aXJwiDmleCL4Y5dXro6eaNkC/MLx9wlaLd0aot6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13874 (0x3632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Apr 16 14:24:34 2026 GMT Not After : Apr 23 14:24:34 2026 GMT Subject: CN=69e0f122-8812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ad:76:74:5d:37:d5:e2:7a:ab:a2:52:44:7a: 2b:2a:b1:e7:61:15:80:39:a0:55:18:72:a3:3b:d1: 36:ea:a0:ba:b0:74:48:c4:8b:49:6d:10:cd:57:85: 4e:80:f6:11:5e:6a:74:9d:81:8e:9f:13:f5:cc:fb: c4:38:43:db:e6:24:2c:c3:96:6f:e6:fb:cd:90:9a: 58:5c:0a:b0:62:33:16:60:c6:5e:0b:e2:51:66:25: 1c:4c:6f:33:f6:94:2e:e6:a8:5c:64:e1:8c:dd:de: 2c:66:80:dc:1a:20:b3:e2:13:24:34:e7:71:3c:85: 75:1a:3f:07:c5:19:01:11:6a:e7:06:1b:fc:13:b6: 0e:b7:96:d9:5b:09:90:0b:cc:1e:66:5a:6b:af:98: 88:d3:de:50:86:c1:3e:8d:47:ff:0a:6f:b0:7d:68: fc:08:e2:e2:93:2f:86:57:82:04:38:c4:b4:a6:9a: 72:78:d8:f3:78:0b:ce:8e:63:53:a1:08:0f:8b:36: 6b:91:18:d8:34:01:2c:43:20:4b:0e:76:17:61:16: e2:75:16:77:2a:d6:61:4f:f2:b3:7f:d2:76:bd:48: 83:eb:21:bd:0c:eb:63:57:42:af:21:74:63:01:52: 02:20:2a:b9:ee:45:1a:60:61:3f:96:50:8d:df:2c: 6b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3A:39:6F:A6:99:30:22:C8:8A:E5:30:05:5E:7F:13:77:37:9E:85 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:3a:ec:26:f3:63:a6:58:8c:c2:0b:ac:42:cb:a3:1d:6f:d8: b7:ec:3b:d4:a1:f2:70:21:6b:c4:5f:2b:ad:82:ce:b3:b3:9b: a4:06:0b:5c:fb:76:72:b1:ec:ec:99:16:31:c3:3d:28:d4:53: b0:f5:1e:12:71:a7:04:52:05:7c:0a:1b:d5:fd:38:18:88:a0: f6:e6:e9:49:d3:34:f3:af:96:fe:bb:7a:89:c8:21:ab:4f:65: 44:72:cc:67:dd:9d:e9:50:34:fc:c0:26:51:a1:b2:e1:7b:1d: c5:f0:89:fc:e0:d1:f2:1b:05:9b:4c:d9:26:97:9d:23:81:bd: 9b:06:71:b0:9f:b5:32:61:67:a4:a0:46:47:8d:66:cb:04:fd: 0a:e6:63:fc:83:e3:d2:00:05:db:28:ba:a2:72:3b:63:52:c0: 2a:b0:e8:2e:58:14:aa:a9:07:5b:a8:d8:b3:4d:cd:60:a0:77: 0d:28:6d:46:0c:bc:bc:11:7a:da:51:8d:33:63:e1:a6:d9:66: 9c:67:04:be:49:86:0c:97:2a:a2:32:21:97:e6:39:c4:b1:00: f0:ea:4a:68:76:45:5c:1e:ad:ad:09:42:4f:eb:f4:ed:89:db: eb:66:a5:4b:db:bf:56:d7:3c:86:e8:a1:d8:09:b8:1a:2c:ac: e1:9f:d2:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjYwNDE2MTQyNDM0WhcNMjYwNDIzMTQyNDM0WjAYMRYwFAYD VQQDEw02OWUwZjEyMi04ODEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwa12dF031eJ6q6JSRHorKrHnYRWAOaBVGHKjO9E26qC6sHRIxItJbRDNV4VO gPYRXmp0nYGOnxP1zPvEOEPb5iQsw5Zv5vvNkJpYXAqwYjMWYMZeC+JRZiUcTG8z 9pQu5qhcZOGM3d4sZoDcGiCz4hMkNOdxPIV1Gj8HxRkBEWrnBhv8E7YOt5bZWwmQ C8weZlprr5iI095QhsE+jUf/Cm+wfWj8COLiky+GV4IEOMS0pppyeNjzeAvOjmNT oQgPizZrkRjYNAEsQyBLDnYXYRbidRZ3KtZhT/Kzf9J2vUiD6yG9DOtjV0KvIXRj AVICICq57kUaYGE/llCN3yxr1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMo6OW+m mTAiyIrlMAVefxN3N56FMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUjrsJvNjpliMwgusQsujHW/Yt+w71KHycCFrxF8rrYLOs7ObpAYLXPt2crHs 7JkWMcM9KNRTsPUeEnGnBFIFfAob1f04GIig9ubpSdM086+W/rt6icghq09lRHLM Z92d6VA0/MAmUaGy4XsdxfCJ/ODR8hsFm0zZJpedI4G9mwZxsJ+1MmFnpKBGR41m ywT9CuZj/IPj0gAF2yi6onI7Y1LAKrDoLlgUqqkHW6jYs03NYKB3DShtRgy8vBF6 2lGNM2PhptlmnGcEvkmGDJcqojIhl+Y5xLEA8OpKaHZFXB6trQlCT+v07Ynb62al S9u/Vtc8huih2Am4Giys4Z/SuQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:17:03 2026 by rpki-client