$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: 0R5m49jn2nDupm44pKj9MuX1peZU7I++RVhcOZl1ly8= Subject key identifier: D7:88:E1:49:DC:6E:9D:67:AE:49:C8:09:12:12:E0:56:EB:5C:63:60 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 02A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 029E Signing time: Fri 17 Apr 2026 01:23:57 +0000 Manifest this update: Fri 17 Apr 2026 01:23:57 +0000 Manifest next update: Fri 24 Apr 2026 01:23:57 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: gL59yHJ3xbpjCsZZ36ZHfRDKkh+lPb8YCheuSjklmrg=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: /OmusQFGUMLnSfPvaQeL+Y1Ye83OM/m03GrlGqmFNO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Apr 17 01:23:57 2026 GMT Not After : Apr 24 01:23:57 2026 GMT Subject: CN=69e18bad-6ad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4d:a2:64:7c:29:7f:21:1c:c6:d9:04:4d:ba: fb:67:d3:93:01:67:ab:a7:7e:cd:60:c6:45:c3:a0: 56:f8:ff:1d:94:ae:64:b0:e8:a2:80:71:df:40:d8: 32:d8:49:04:48:d2:f6:ea:0c:99:2c:ad:fd:8f:4e: 6e:4a:65:a1:9f:02:3e:8a:39:88:e4:55:1c:80:96: cd:51:42:50:09:c1:d7:df:d4:5f:98:ac:21:31:97: b9:7e:ec:02:f5:02:0a:a6:dc:b9:0b:b5:9b:16:97: a2:d4:15:04:c9:09:e6:f2:88:87:5e:85:e6:bf:27: 8e:f5:cc:6d:03:62:d1:a5:46:e5:a2:d9:14:7d:c7: 9b:ff:b7:7c:08:2a:52:fe:a5:06:98:51:0a:6a:97: 52:96:2a:14:50:de:73:71:2e:ce:34:6b:d6:2a:c7: ee:aa:b9:24:86:41:57:f9:d7:04:7d:90:03:65:ec: 9b:3e:52:79:26:d7:8a:aa:f8:80:b2:61:8f:31:d9: dd:37:f0:c0:89:fd:91:29:eb:41:f1:63:73:1a:b1: be:1a:f0:de:06:88:a3:b5:80:2f:de:92:88:e2:d7: be:68:18:63:b7:46:11:c7:37:16:c4:d2:f3:01:2c: e5:25:1f:ef:f0:45:83:cc:93:dc:dd:00:74:8c:2f: ca:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:88:E1:49:DC:6E:9D:67:AE:49:C8:09:12:12:E0:56:EB:5C:63:60 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:ba:f7:3d:de:d5:64:52:7a:bf:a7:c7:12:2c:8c:73:f3:fc: 98:d2:e3:05:2c:53:b6:f3:78:1e:5e:90:11:cc:b3:be:35:8f: 2a:01:c0:5b:ad:65:f6:7d:44:f9:ca:82:2c:24:1b:4d:2b:de: 5c:f8:f0:b0:53:b2:49:31:99:b1:b8:42:5d:18:a5:38:c2:3b: fa:53:03:fd:cc:2f:90:43:67:80:40:b1:97:f2:be:69:5c:28: d7:52:4d:91:8e:b6:19:0f:7e:63:a8:a4:86:3b:0a:0a:7e:39: 99:c3:4a:39:52:bd:ed:91:f6:e0:1c:61:27:42:d8:50:35:a6: e7:8c:2a:cb:e7:83:fa:84:1e:63:c4:49:97:f6:8b:4d:fa:a6: 55:d1:a0:cf:47:7d:aa:28:fc:bd:87:bb:1b:25:b5:f8:69:84: ae:24:05:1f:4e:1d:ef:e6:71:3c:af:f3:8c:13:fc:2d:8a:cf: 3a:95:1e:65:71:b7:39:f1:09:6c:59:1f:55:3d:58:32:f2:a2: c8:66:1c:6c:83:2b:1e:2c:e0:d0:77:24:aa:f6:ed:ea:54:3b: 5b:95:db:3b:d4:33:5f:74:88:38:e1:10:6a:f7:8c:43:7b:e8: 3d:90:a0:a6:44:c8:34:20:1c:a8:6a:2a:57:5c:a1:55:d2:58: ce:2f:a7:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjYwNDE3MDEyMzU3WhcNMjYwNDI0MDEyMzU3WjAYMRYwFAYD VQQDEw02OWUxOGJhZC02YWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt02iZHwpfyEcxtkETbr7Z9OTAWerp37NYMZFw6BW+P8dlK5ksOiigHHfQNgy 2EkESNL26gyZLK39j05uSmWhnwI+ijmI5FUcgJbNUUJQCcHX39RfmKwhMZe5fuwC 9QIKpty5C7WbFpei1BUEyQnm8oiHXoXmvyeO9cxtA2LRpUblotkUfceb/7d8CCpS /qUGmFEKapdSlioUUN5zcS7ONGvWKsfuqrkkhkFX+dcEfZADZeybPlJ5JteKqviA smGPMdndN/DAif2RKetB8WNzGrG+GvDeBoijtYAv3pKI4te+aBhjt0YRxzcWxNLz ASzlJR/v8EWDzJPc3QB0jC/K7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNeI4Unc bp1nrknICRIS4FbrXGNgMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqbr3Pd7VZFJ6v6fHEiyMc/P8mNLjBSxTtvN4Hl6QEcyzvjWPKgHAW61l9n1E +cqCLCQbTSveXPjwsFOySTGZsbhCXRilOMI7+lMD/cwvkENngECxl/K+aVwo11JN kY62GQ9+Y6ikhjsKCn45mcNKOVK97ZH24BxhJ0LYUDWm54wqy+eD+oQeY8RJl/aL TfqmVdGgz0d9qij8vYe7GyW1+GmEriQFH04d7+ZxPK/zjBP8LYrPOpUeZXG3OfEJ bFkfVT1YMvKiyGYcbIMrHizg0Hckqvbt6lQ7W5XbO9QzX3SIOOEQaveMQ3voPZCg pkTINCAcqGoqV1yhVdJYzi+nkw== -----END CERTIFICATE-----Generated at Fri Apr 17 11:35:00 2026 by rpki-client