$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft File: CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft (raw, json) Hash identifier: d4MMZhPC0Bn4LnYUcG1VS/xYoeFsIozbJCmu5Kv0VZs= Subject key identifier: 3B:22:53:36:2E:21:2D:06:74:05:C5:BE:E2:97:C4:7B:F6:40:99:35 Authority key identifier: 08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F Certificate issuer: /CN=A91B8D33/serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft Manifest number: 01F7 Signing time: Fri 17 Apr 2026 03:01:38 +0000 Manifest this update: Fri 17 Apr 2026 03:01:38 +0000 Manifest next update: Fri 24 Apr 2026 03:01:38 +0000 Files and hashes: 1: CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl (hash: RgahBu4U+KrggVktTa8iP12oHRAt6tAQDqp2RVLLR60=) 2: E62F8796D1BD11EFBCCC0B68C4F9AE02.roa (hash: C+zKPU7xS4ZOCm7vmpXaLXUhKiAqHKCATTbpyOC3iPI=) 3: C698E13ED1BD11EF9C00D867C4F9AE02.roa (hash: gcd1uORIwB588IprBp+ptXbcFbF7rS1AehPmjHP27TY=) 4: 86D7DAE6D1C211EF9AA9410EC4F9AE02.roa (hash: w4ebJqxqcYTakZgYgczYh31d+UQ4emy9J0fYQLqlsn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D33, serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Validity Not Before: Apr 17 03:01:38 2026 GMT Not After : Apr 24 03:01:38 2026 GMT Subject: CN=69e1a292-5a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5a:b3:59:93:5a:8f:70:3d:48:f8:77:d7:9b: e2:39:47:35:5c:99:5c:43:17:51:3a:f1:4c:4a:76: 5d:e2:56:bb:91:c1:c6:bb:94:1c:52:e3:0d:38:75: a1:8b:46:fd:26:a3:96:c7:bf:33:34:ae:4d:a2:e0: 6b:9a:bb:dc:a6:27:4b:2f:c5:1c:7e:7c:eb:fe:4d: 37:31:74:d9:6d:b2:6e:21:cf:c5:8e:12:63:56:af: 6e:da:25:04:8f:86:8c:c9:20:74:11:e4:05:98:e2: 4b:cf:d9:b0:9f:9d:d9:9f:db:16:aa:24:b3:86:b3: 35:14:c9:c4:bf:5c:5b:4e:3b:2b:88:d3:33:a2:7d: e7:5a:91:cb:ff:81:e9:f6:81:9f:1c:ba:12:64:b1: a1:6a:c1:9c:e8:ec:c5:90:ed:2c:4d:d3:36:bf:7d: 08:47:13:10:d8:50:bf:3f:6b:e2:3d:8b:70:73:ca: 70:dd:87:cc:f9:cb:4d:fb:81:1b:9c:b0:e5:52:be: e0:bc:1a:65:9f:06:39:20:76:a2:b4:b1:48:cd:c9: f8:a7:21:69:e2:0e:d1:54:fa:c7:81:4e:cd:5e:c7: 93:8c:12:73:c6:47:a2:4a:d4:33:b1:14:e0:55:2c: 5a:b5:45:3f:d3:3a:36:00:61:08:7c:4d:b4:ed:2c: c7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:22:53:36:2E:21:2D:06:74:05:C5:BE:E2:97:C4:7B:F6:40:99:35 X509v3 Authority Key Identifier: keyid:08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:8b:65:99:7a:cd:68:ed:b9:7f:5d:c4:32:d9:ae:11:8d:aa: ac:d4:40:42:e0:e3:3b:81:3b:bd:9b:d3:52:7a:04:11:fb:04: fd:45:d6:68:81:b2:5f:1d:07:d5:c5:49:d9:bd:ff:61:6e:06: 90:d3:e7:a5:2e:73:8a:20:3e:75:88:5a:32:9e:25:e8:52:0a: 59:52:50:b9:9d:d8:b8:9d:ba:ac:48:06:9a:47:29:4f:da:3c: 0e:89:77:ae:9e:52:08:93:92:23:cb:42:e1:c4:d0:95:ea:9e: 1f:8c:bc:08:f0:41:0a:58:3f:99:4b:b0:fd:b7:f5:3c:2a:40: f9:e1:ce:d0:7a:ba:55:b1:5e:c1:04:44:68:71:0b:81:e4:ee: 30:71:6f:a7:9c:71:e7:a6:6b:64:3e:3d:e3:f6:e1:04:cf:c4: 11:9c:8d:e7:3a:94:b6:7b:6c:f0:52:d5:2a:7e:2d:f8:1d:a7: c6:26:4e:f0:6c:05:24:93:18:ca:ee:a5:0d:d9:95:96:26:55: 64:95:6f:3a:f7:de:8e:43:f2:ac:bc:00:a6:3b:58:94:10:39: 01:1e:5b:75:53:d7:ba:28:57:a1:fd:75:24:09:0f:0e:27:25: 04:bb:34:32:f1:f1:ae:53:24:bf:3c:21:af:4b:f4:59:e7:06: 24:e5:8a:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhEMzMxMTAvBgNVBAUTKDA4RDY4Q0Y0NTAwNzQ1Mzc1RkYyQ0M1ODRCQTVGQkU1 NzdCRUUzM0YwHhcNMjYwNDE3MDMwMTM4WhcNMjYwNDI0MDMwMTM4WjAYMRYwFAYD VQQDEw02OWUxYTI5Mi01YTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VqzWZNaj3A9SPh315viOUc1XJlcQxdROvFMSnZd4la7kcHGu5QcUuMNOHWh i0b9JqOWx78zNK5NouBrmrvcpidLL8Ucfnzr/k03MXTZbbJuIc/FjhJjVq9u2iUE j4aMySB0EeQFmOJLz9mwn53Zn9sWqiSzhrM1FMnEv1xbTjsriNMzon3nWpHL/4Hp 9oGfHLoSZLGhasGc6OzFkO0sTdM2v30IRxMQ2FC/P2viPYtwc8pw3YfM+ctN+4Eb nLDlUr7gvBplnwY5IHaitLFIzcn4pyFp4g7RVPrHgU7NXseTjBJzxkeiStQzsRTg VSxatUU/0zo2AGEIfE207SzHMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDsiUzYu IS0GdAXFvuKXxHv2QJk1MB8GA1UdIwQYMBaAFAjWjPRQB0U3X/LMWEul++V3vuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQzMy81OTYyNjcxMDQ3 NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJUZGY4c3hZUzZYNzVYZS00 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOYU05RkFIUlRkZjhzeFlTNlg3NVhlLTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQzMy81OTYyNjcxMDQ3NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJU ZGY4c3hZUzZYNzVYZS00ejgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdYtlmXrNaO25f13EMtmuEY2qrNRAQuDjO4E7vZvTUnoEEfsE/UXWaIGyXx0H 1cVJ2b3/YW4GkNPnpS5ziiA+dYhaMp4l6FIKWVJQuZ3YuJ26rEgGmkcpT9o8Dol3 rp5SCJOSI8tC4cTQleqeH4y8CPBBClg/mUuw/bf1PCpA+eHO0Hq6VbFewQREaHEL geTuMHFvp5xx56ZrZD494/bhBM/EEZyN5zqUtnts8FLVKn4t+B2nxiZO8GwFJJMY yu6lDdmVliZVZJVvOvfejkPyrLwApjtYlBA5AR5bdVPXuihXof11JAkPDiclBLs0 MvHxrlMkvzwhr0v0WecGJOWKHA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:32:10 2026 by rpki-client