$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft File: TvuTtJvxulYAjfxgYItSFq7JmsY.mft (raw, json) Hash identifier: XMV13qOshRbzVgNLjaT8MqQGAl2YKLiG8BR/CrtY5pg= Subject key identifier: A4:5F:00:9B:23:19:AE:9C:C4:18:F9:52:FD:1E:2D:C2:EA:78:9D:89 Authority key identifier: 4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 Certificate issuer: /CN=A91B8070/serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft Manifest number: CE Signing time: Fri 17 Apr 2026 06:38:20 +0000 Manifest this update: Fri 17 Apr 2026 06:38:19 +0000 Manifest next update: Fri 24 Apr 2026 06:38:19 +0000 Files and hashes: 1: TvuTtJvxulYAjfxgYItSFq7JmsY.crl (hash: FLLFki5ckDQWSAvBX/Coxt0OGBtDVYMel/iCX4BhM9c=) 2: 5905CBAEDFE111F083058845556F56BC.roa (hash: Ep0ZjILGTIRguDCqf/7ebqhYEj4n0HP0tW0NEv654xk=) 3: BA8DE47CDFE311F08DEF0674556F56BC.roa (hash: Zh6wXEXphp1EIjFhhkqihtiOfs2baqRkCWO1whLIxuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8070, serialNumber=4EFB93B49BF1BA56008DFC60608B5216AEC99AC6 Validity Not Before: Apr 17 06:38:19 2026 GMT Not After : Apr 24 06:38:19 2026 GMT Subject: CN=69e1d55c-88bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8b:df:b4:49:25:20:a9:d2:f7:f4:5b:a5:38: 43:fe:8a:0b:f7:e8:90:02:40:74:68:c3:7e:bd:20: 22:54:df:02:bd:b5:cd:51:0a:2e:1f:5b:3a:ce:ba: cd:33:22:a9:45:81:d0:af:de:49:dd:61:40:98:a9: 94:f6:14:12:0e:3f:a7:72:87:fa:f4:7d:6c:92:4a: 11:95:14:fc:93:95:13:57:5e:f4:61:a2:1e:35:e8: c9:3d:6d:8b:66:e6:87:17:31:17:91:8b:43:af:db: 0d:c6:b3:f8:42:36:3d:ec:d3:7c:ae:29:6c:40:80: fb:9e:9a:71:27:56:84:73:db:89:7f:71:4d:a6:55: cc:c8:19:90:8c:cc:3b:a2:e9:cb:a6:a6:b7:31:a2: c5:54:29:da:34:05:e5:b2:7d:9d:21:28:4e:82:4d: bb:e5:95:fb:4f:2f:50:90:7a:3b:70:35:75:04:bc: 74:33:0d:e3:24:25:40:fb:3f:15:7d:09:06:52:45: 65:5b:c1:67:52:dd:53:f6:ba:a7:58:a5:a2:80:48: 58:9c:0f:73:9a:36:25:00:db:46:72:b6:de:3e:62: 3e:96:7a:06:d3:33:7b:fe:38:78:69:5d:41:92:1c: ab:c6:da:19:38:cd:a7:ce:df:34:d2:8b:7b:37:58: 08:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5F:00:9B:23:19:AE:9C:C4:18:F9:52:FD:1E:2D:C2:EA:78:9D:89 X509v3 Authority Key Identifier: keyid:4E:FB:93:B4:9B:F1:BA:56:00:8D:FC:60:60:8B:52:16:AE:C9:9A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TvuTtJvxulYAjfxgYItSFq7JmsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8070/AE364696138411F0BC5F4547C4F9AE02/TvuTtJvxulYAjfxgYItSFq7JmsY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:e5:55:a4:39:28:00:fc:ab:c0:92:b3:6e:7a:88:95:05:7e: e9:ad:46:74:4b:d8:e8:7a:41:55:13:4d:af:7c:bc:0c:0e:2c: d7:27:b6:82:a1:98:6a:8a:86:b0:e7:6f:5c:2d:43:14:9a:6a: f3:0a:53:fd:d0:59:b7:e1:71:83:2d:3e:cc:6c:49:e0:e2:1f: de:fe:f2:c2:ea:78:55:79:e7:f4:eb:5c:f8:21:7f:af:85:62: 4b:2c:dd:a8:05:6b:10:fb:20:96:4e:50:6e:de:02:b8:cd:32: 71:c6:ba:02:7e:82:b2:5b:23:37:f1:49:a0:2b:c5:83:87:0e: f9:01:2a:21:be:a3:e6:b2:b2:c9:77:b3:22:dd:18:84:29:ad: c5:ab:bc:a1:74:13:bc:5f:86:4a:80:3b:b7:e3:4f:03:dc:1e: fe:f3:c4:76:ae:b1:c9:6e:1a:5b:7e:9d:e2:72:f7:0e:52:85: a2:cf:19:aa:2f:42:3a:88:68:d7:d4:a9:f8:6e:eb:83:a3:d0: 5e:25:7b:0b:1d:18:f2:6b:a4:aa:f8:ee:a4:2e:e8:25:cb:a2: 0a:ec:7d:c8:51:f5:fa:d8:e1:97:88:86:24:8a:be:f3:79:80: 95:c3:53:fa:3d:08:0e:47:4c:b0:fa:5d:b4:a0:f6:f3:36:30: 54:7e:61:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwNzAxMTAvBgNVBAUTKDRFRkI5M0I0OUJGMUJBNTYwMDhERkM2MDYwOEI1MjE2 QUVDOTlBQzYwHhcNMjYwNDE3MDYzODE5WhcNMjYwNDI0MDYzODE5WjAYMRYwFAYD VQQDEw02OWUxZDU1Yy04OGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYvftEklIKnS9/RbpThD/ooL9+iQAkB0aMN+vSAiVN8CvbXNUQouH1s6zrrN MyKpRYHQr95J3WFAmKmU9hQSDj+ncof69H1skkoRlRT8k5UTV170YaIeNejJPW2L ZuaHFzEXkYtDr9sNxrP4QjY97NN8rilsQID7nppxJ1aEc9uJf3FNplXMyBmQjMw7 ounLpqa3MaLFVCnaNAXlsn2dIShOgk275ZX7Ty9QkHo7cDV1BLx0Mw3jJCVA+z8V fQkGUkVlW8FnUt1T9rqnWKWigEhYnA9zmjYlANtGcrbePmI+lnoG0zN7/jh4aV1B khyrxtoZOM2nzt800ot7N1gINQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKRfAJsj Ga6cxBj5Uv0eLcLqeJ2JMB8GA1UdIwQYMBaAFE77k7Sb8bpWAI38YGCLUhauyZrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODA3MC9BRTM2NDY5NjEz ODQxMUYwQkM1RjQ1NDdDNEY5QUUwMi9UdnVUdEp2eHVsWUFqZnhnWUl0U0ZxN0pt c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R2dVR0SnZ4dWxZQWpmeGdZSXRTRnE3Sm1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODA3MC9BRTM2NDY5NjEzODQxMUYwQkM1RjQ1NDdDNEY5QUUwMi9UdnVUdEp2eHVs WUFqZnhnWUl0U0ZxN0ptc1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAa+VVpDkoAPyrwJKzbnqIlQV+6a1GdEvY6HpBVRNNr3y8DA4s1ye2gqGYaoqG sOdvXC1DFJpq8wpT/dBZt+Fxgy0+zGxJ4OIf3v7ywup4VXnn9Otc+CF/r4ViSyzd qAVrEPsglk5Qbt4CuM0ycca6An6CslsjN/FJoCvFg4cO+QEqIb6j5rKyyXezIt0Y hCmtxau8oXQTvF+GSoA7t+NPA9we/vPEdq6xyW4aW36d4nL3DlKFos8Zqi9COoho 19Sp+G7rg6PQXiV7Cx0Y8mukqvjupC7oJcuiCux9yFH1+tjhl4iGJIq+83mAlcNT +j0IDkdMsPpdtKD28zYwVH5hWw== -----END CERTIFICATE-----Generated at Fri Apr 17 14:24:07 2026 by rpki-client