$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: n7sRf9jqroC3SyI3NZn/91V6DpHh8KHpjFk5J3XJDx8= Subject key identifier: 8B:37:46:7E:F1:60:28:29:0B:A8:37:37:35:A6:24:62:AF:29:BB:EA Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 0143 Signing time: Fri 17 Apr 2026 05:02:39 +0000 Manifest this update: Fri 17 Apr 2026 05:02:38 +0000 Manifest next update: Fri 24 Apr 2026 05:02:38 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: eANiz4Z3uiMrKOr2pec2ASRyXPYA7BHpZ/ZK9kcgE1c=) 2: 9EC3DA0CABC311F0B5C5583DC4F9AE02.roa (hash: oQRja5kNE1xgzFCqir1541pX0ir8ZOqbUXiW5IO5uBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Apr 17 05:02:38 2026 GMT Not After : Apr 24 05:02:38 2026 GMT Subject: CN=69e1beef-af19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ec:e1:22:a0:c1:f4:ed:55:68:5f:27:b2:97: d9:ce:93:ce:9f:f6:79:a7:b5:ae:d4:17:59:eb:2b: d1:39:af:9a:59:98:7b:13:c6:b1:fa:9c:57:c0:c1: af:a5:88:f2:14:eb:17:60:7c:58:f2:4b:19:ea:32: 86:65:dd:dc:5d:19:21:ed:bb:6b:31:84:ae:09:59: af:04:e8:54:07:cc:24:33:08:39:91:59:d5:d5:e9: 41:99:19:b4:2a:b2:03:67:f9:8d:7d:e2:4e:a5:ab: 69:43:e5:c4:d7:7e:bf:db:78:f0:06:ed:25:3b:c5: ba:f7:9e:c9:c9:b7:94:db:34:44:8d:0a:ae:73:c5: 54:79:aa:47:32:5f:52:fa:0b:54:ce:ec:e8:b9:4e: fd:5f:89:a1:65:47:5c:aa:f2:e3:55:0d:db:6e:e1: e6:5b:0f:9a:c9:65:44:b3:0c:98:fe:91:49:d1:3e: be:f5:de:58:f9:f1:de:58:ab:fb:0b:f0:dd:2b:8d: 44:8a:94:f4:7e:db:0b:e8:53:2a:d5:6f:89:88:ae: 2d:3d:bb:05:1a:8c:84:be:37:91:c5:39:b3:a4:29: 46:93:b4:72:93:28:ff:22:ee:20:ab:2c:ae:fd:05: fd:18:32:d7:81:aa:18:64:78:fd:58:ad:37:49:02: bf:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:37:46:7E:F1:60:28:29:0B:A8:37:37:35:A6:24:62:AF:29:BB:EA X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:e8:82:98:73:54:97:f1:1e:9b:55:10:eb:51:2c:70:8b:47: 67:59:da:d9:c0:c2:82:22:7b:49:cf:4e:a3:02:e3:a8:4f:45: e5:70:26:b9:bf:48:44:6a:72:38:06:1f:b3:d8:d4:32:b3:b7: c7:4e:d6:ca:ac:ca:1a:58:94:ce:48:67:bb:c6:d4:b9:fc:d3: 34:eb:a4:fe:39:a2:79:34:45:d3:a5:54:4e:39:b7:5c:f8:12: b7:40:c9:21:e3:f8:ed:31:59:df:8b:7c:4c:f3:a5:6b:ec:76: 2d:5f:a3:64:47:5f:74:71:4a:49:58:3c:b0:07:55:4d:d8:22: bf:d5:cd:12:17:fb:68:fd:06:d0:a1:9a:f4:49:73:71:25:24: 31:bd:59:4f:fb:08:15:b2:e8:34:11:12:07:fb:99:be:fb:94: 49:c5:ab:05:10:87:18:53:e7:a9:7d:a8:5b:21:ca:e7:57:46: 77:24:26:53:c2:04:98:1f:9d:9e:21:25:2d:f2:32:21:ca:31: 19:7b:6e:4e:f1:2e:bf:35:4a:b5:95:e2:1d:6d:2b:f3:59:c8: 82:94:de:8d:4f:74:dd:0f:a3:e0:22:6b:bb:c7:45:a6:5c:86: 9c:00:c6:b3:01:c1:bc:81:d1:25:9d:1e:7e:39:e1:28:d7:ca: 62:bb:80:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjYwNDE3MDUwMjM4WhcNMjYwNDI0MDUwMjM4WjAYMRYwFAYD VQQDEw02OWUxYmVlZi1hZjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquzhIqDB9O1VaF8nspfZzpPOn/Z5p7Wu1BdZ6yvROa+aWZh7E8ax+pxXwMGv pYjyFOsXYHxY8ksZ6jKGZd3cXRkh7btrMYSuCVmvBOhUB8wkMwg5kVnV1elBmRm0 KrIDZ/mNfeJOpatpQ+XE136/23jwBu0lO8W6957JybeU2zREjQquc8VUeapHMl9S +gtUzuzouU79X4mhZUdcqvLjVQ3bbuHmWw+ayWVEswyY/pFJ0T6+9d5Y+fHeWKv7 C/DdK41EipT0ftsL6FMq1W+JiK4tPbsFGoyEvjeRxTmzpClGk7Rykyj/Iu4gqyyu /QX9GDLXgaoYZHj9WK03SQK/lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIs3Rn7x YCgpC6g3NzWmJGKvKbvqMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAveiCmHNUl/Eem1UQ61EscItHZ1na2cDCgiJ7Sc9OowLjqE9F5XAmub9IRGpy OAYfs9jUMrO3x07WyqzKGliUzkhnu8bUufzTNOuk/jmieTRF06VUTjm3XPgSt0DJ IeP47TFZ34t8TPOla+x2LV+jZEdfdHFKSVg8sAdVTdgiv9XNEhf7aP0G0KGa9Elz cSUkMb1ZT/sIFbLoNBESB/uZvvuUScWrBRCHGFPnqX2oWyHK51dGdyQmU8IEmB+d niElLfIyIcoxGXtuTvEuvzVKtZXiHW0r81nIgpTejU903Q+j4CJru8dFplyGnADG swHBvIHRJZ0efjnhKNfKYruAgg== -----END CERTIFICATE-----Generated at Fri Apr 17 22:25:10 2026 by rpki-client