$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: 7egc1oIt3RpGXmMWr2w1MkJNtFO794mc1ZEY8d49S9Q= Subject key identifier: 68:1B:EC:6D:E8:83:14:E8:EE:0F:BA:9E:C7:08:D6:79:DF:E2:B7:30 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 0358 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 0351 Signing time: Fri 17 Apr 2026 00:50:56 +0000 Manifest this update: Fri 17 Apr 2026 00:50:56 +0000 Manifest next update: Fri 24 Apr 2026 00:50:56 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: THKRp2honY8QrS8p0YBiF8t9K4RK4JSEz85B2w+INnQ=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QRtlstVkdBXEszVrg/iIFuaNaUBnHazamE53eJaDdno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 856 (0x358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Apr 17 00:50:56 2026 GMT Not After : Apr 24 00:50:56 2026 GMT Subject: CN=69e183f0-b3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:43:f4:91:71:64:56:b9:68:56:cb:a9:ff:ff: 5c:d4:fe:a5:db:e5:1e:86:f1:9d:15:2d:b7:3d:b4: af:13:fe:5a:9f:af:a7:f3:00:7a:6c:86:37:3d:5a: 3d:2f:64:3b:11:58:44:2a:03:ad:6b:b4:12:fd:eb: b8:6a:1d:e1:df:1b:4a:62:90:24:3c:7f:9f:2e:9c: 62:63:65:fc:0b:9a:a1:9d:f5:73:54:9d:60:8a:3f: 5d:40:ee:0c:68:cf:f7:d4:d1:b7:b2:c2:f1:bb:86: 14:1e:38:03:ad:87:18:0b:ab:ce:e8:12:ec:39:68: 95:a4:42:91:89:b2:6b:37:9d:b3:48:a9:5c:25:14: a5:8a:59:b8:33:f4:b0:30:4d:92:9a:bd:c9:34:d2: 4a:4d:4a:4a:14:53:6e:52:8a:71:58:d2:86:f2:8e: 64:e2:f7:78:aa:73:cd:aa:8b:c1:74:fa:bf:19:e2: de:70:58:8d:2d:08:41:19:65:51:6c:48:08:cc:14: 7d:0a:29:09:5c:24:62:75:32:c9:e7:e4:01:49:d3: e8:77:08:19:e7:42:f6:6a:82:13:c4:a4:a0:b3:a6: a0:00:37:d7:3a:22:db:f3:6c:02:65:9d:b9:63:bb: 56:62:82:7c:43:22:e2:ac:ec:df:4e:c1:d2:cb:ca: 9b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:1B:EC:6D:E8:83:14:E8:EE:0F:BA:9E:C7:08:D6:79:DF:E2:B7:30 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:9c:30:d4:1f:f7:3b:2a:73:19:56:0a:b5:8c:dd:94:0c:8d: 81:35:1d:8c:31:79:74:70:31:15:f4:95:be:0e:0c:e4:f0:dc: 83:13:17:ab:fb:c5:fa:32:18:eb:f2:78:e3:b9:62:2b:45:c4: 7c:6d:61:8a:a0:a3:ed:b9:00:84:ea:90:2e:cd:41:2a:e6:80: fe:26:99:40:ab:4a:92:d4:c7:7b:87:17:b8:ad:a1:45:de:56: 43:f9:7f:ff:f3:c9:42:90:48:16:a2:46:84:4c:47:d3:aa:6c: 28:c1:31:00:fb:e4:32:f2:0f:9e:4a:e7:62:f4:8b:39:16:ee: ac:b8:8c:e9:b1:3a:32:4f:2f:f1:92:4d:34:67:3a:ff:dd:43: dc:94:3c:e6:25:93:b3:0e:17:d7:36:cd:db:01:f3:04:7d:18: ac:b5:8d:a1:90:1a:c8:6a:ba:b7:77:b5:8e:1c:1e:05:b2:b9: a9:6c:46:67:2d:89:61:2e:c4:15:0f:bb:b5:f3:3a:9f:5f:23: 5a:98:ff:21:28:53:4f:a1:66:16:17:7a:5f:c5:5f:0c:00:62: a2:0c:52:52:3c:96:03:e1:4a:12:05:6a:84:59:a0:61:ae:39: d8:58:bb:72:e0:2f:e0:c5:c3:05:a3:b0:ee:02:4d:6e:8a:85: df:1c:ed:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjYwNDE3MDA1MDU2WhcNMjYwNDI0MDA1MDU2WjAYMRYwFAYD VQQDEw02OWUxODNmMC1iM2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkP0kXFkVrloVsup//9c1P6l2+UehvGdFS23PbSvE/5an6+n8wB6bIY3PVo9 L2Q7EVhEKgOta7QS/eu4ah3h3xtKYpAkPH+fLpxiY2X8C5qhnfVzVJ1gij9dQO4M aM/31NG3ssLxu4YUHjgDrYcYC6vO6BLsOWiVpEKRibJrN52zSKlcJRSlilm4M/Sw ME2Smr3JNNJKTUpKFFNuUopxWNKG8o5k4vd4qnPNqovBdPq/GeLecFiNLQhBGWVR bEgIzBR9CikJXCRidTLJ5+QBSdPodwgZ50L2aoITxKSgs6agADfXOiLb82wCZZ25 Y7tWYoJ8QyLirOzfTsHSy8qb5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGgb7G3o gxTo7g+6nscI1nnf4rcwMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM5ww1B/3OypzGVYKtYzdlAyNgTUdjDF5dHAxFfSVvg4M5PDcgxMXq/vF+jIY 6/J447liK0XEfG1hiqCj7bkAhOqQLs1BKuaA/iaZQKtKktTHe4cXuK2hRd5WQ/l/ //PJQpBIFqJGhExH06psKMExAPvkMvIPnkrnYvSLORburLiM6bE6Mk8v8ZJNNGc6 /91D3JQ85iWTsw4X1zbN2wHzBH0YrLWNoZAayGq6t3e1jhweBbK5qWxGZy2JYS7E FQ+7tfM6n18jWpj/IShTT6FmFhd6X8VfDABiogxSUjyWA+FKEgVqhFmgYa452Fi7 cuAv4MXDBaOw7gJNboqF3xztFQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:59:31 2026 by rpki-client