$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: vLSV6UQlCJIIFlA5s62I8rcTaipv++vpLzmfknigVSM= Subject key identifier: 2A:20:D6:8B:90:A7:96:61:79:F1:EA:12:E2:BC:68:AE:C1:BA:E8:F5 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: B6 Signing time: Fri 17 Apr 2026 06:47:20 +0000 Manifest this update: Fri 17 Apr 2026 06:47:20 +0000 Manifest next update: Fri 24 Apr 2026 06:47:20 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: IF24GtnnTo1N0C2h6vrCqUkxIRBb8rzDEBImsmqwd3w=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Apr 17 06:47:20 2026 GMT Not After : Apr 24 06:47:20 2026 GMT Subject: CN=69e1d778-846c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:aa:22:b2:7c:96:c4:56:f0:5d:39:d3:3c:b4: aa:ef:0a:9a:3e:2a:e2:30:e9:17:54:b0:59:f9:ee: d2:9e:d3:1c:3d:69:48:b2:17:dc:9d:b4:d8:ee:f9: b2:80:fa:55:0c:49:a1:7f:39:59:04:ac:7b:44:8b: 4d:b1:93:c3:4b:49:39:1d:d4:f1:43:52:15:98:65: d2:ec:c2:6d:ee:30:26:e8:85:1e:26:91:0d:5c:46: 51:79:c1:1b:65:9c:ca:43:ec:88:b0:f1:12:f0:e3: 11:a2:6a:04:be:ae:8f:95:a4:ef:5d:4e:a2:d2:ca: 61:b3:ef:40:cf:c4:2f:ae:0b:bd:b2:73:8b:04:9c: bc:23:22:53:44:0b:67:20:bb:2f:3f:a4:cd:d8:ca: aa:da:22:df:e9:db:80:cb:4a:c2:be:64:28:67:23: 71:c0:4a:68:b6:6a:55:e8:88:c8:85:1f:13:76:03: 05:15:4d:dd:51:b8:da:05:97:ca:0b:99:25:8b:b4: d4:d1:27:dc:6b:65:2b:a7:25:38:2e:67:f9:c5:23: 55:43:f7:cd:f6:b9:79:54:db:f7:11:63:42:73:59: de:4e:56:9d:43:d1:22:b3:cb:04:11:74:d5:91:86: 1a:dd:b8:2f:44:b0:0c:13:95:64:06:a1:bf:b1:6c: 53:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:20:D6:8B:90:A7:96:61:79:F1:EA:12:E2:BC:68:AE:C1:BA:E8:F5 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:dd:74:aa:da:6e:35:fd:c3:86:87:e7:40:9b:22:63:ee:7b: bf:c6:5b:c5:7f:57:9c:f7:54:73:ca:fb:db:21:67:9a:8e:5b: f6:72:df:72:21:23:90:0b:f4:98:5d:11:26:4a:8d:a9:cb:64: cc:9b:62:45:14:08:17:23:50:c9:48:4b:3f:d2:d6:e6:c8:67: 7c:da:d1:33:ca:5f:9b:46:bf:58:2b:10:e4:8e:d3:65:60:d2: ff:5e:6a:28:84:68:14:17:40:64:bf:f1:e8:47:7c:7d:30:9e: 2f:2e:b2:d3:01:71:9a:5e:53:2e:7b:f7:99:54:0c:79:78:f3: 19:0b:b6:fe:8a:cc:ca:18:d2:b9:33:48:9c:4f:f5:7b:0b:7c: 72:6c:0c:4a:a7:9c:19:0e:20:a8:85:bf:84:f4:f8:99:b6:77: fe:72:56:ee:57:87:57:5f:10:48:c9:cd:05:c9:06:08:ce:4a: 92:77:74:e8:be:35:dd:ca:3f:40:5d:a8:e3:3c:1f:f5:bd:18: 3f:c4:40:de:3f:ff:e6:f7:54:35:e4:67:4e:79:a9:1e:c8:fb: 18:4f:c4:eb:30:b8:c7:56:b9:2c:bc:b3:da:42:5f:70:5f:55: a2:7b:38:5c:09:67:52:64:ba:d9:d1:1c:44:3b:30:38:e5:56: f3:c6:6f:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwNDE3MDY0NzIwWhcNMjYwNDI0MDY0NzIwWjAYMRYwFAYD VQQDEw02OWUxZDc3OC04NDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qoisnyWxFbwXTnTPLSq7wqaPiriMOkXVLBZ+e7SntMcPWlIshfcnbTY7vmy gPpVDEmhfzlZBKx7RItNsZPDS0k5HdTxQ1IVmGXS7MJt7jAm6IUeJpENXEZRecEb ZZzKQ+yIsPES8OMRomoEvq6PlaTvXU6i0sphs+9Az8Qvrgu9snOLBJy8IyJTRAtn ILsvP6TN2Mqq2iLf6duAy0rCvmQoZyNxwEpotmpV6IjIhR8TdgMFFU3dUbjaBZfK C5kli7TU0Sfca2UrpyU4Lmf5xSNVQ/fN9rl5VNv3EWNCc1neTladQ9Eis8sEEXTV kYYa3bgvRLAME5VkBqG/sWxTdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCog1ouQ p5ZhefHqEuK8aK7Buuj1MB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dU YjhyMGVTNl8wQTVvNmgwMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPN10qtpuNf3DhofnQJsiY+57v8ZbxX9XnPdUc8r72yFnmo5b9nLfciEjkAv0 mF0RJkqNqctkzJtiRRQIFyNQyUhLP9LW5shnfNrRM8pfm0a/WCsQ5I7TZWDS/15q KIRoFBdAZL/x6Ed8fTCeLy6y0wFxml5TLnv3mVQMeXjzGQu2/orMyhjSuTNInE/1 ewt8cmwMSqecGQ4gqIW/hPT4mbZ3/nJW7leHV18QSMnNBckGCM5Kknd06L413co/ QF2o4zwf9b0YP8RA3j//5vdUNeRnTnmpHsj7GE/E6zC4x1a5LLyz2kJfcF9Vons4 XAlnUmS62dEcRDswOOVW88ZvtA== -----END CERTIFICATE-----Generated at Fri Apr 17 16:56:49 2026 by rpki-client