$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: 2W9z6oaiJQm8yMSBEH4OA1s4AoFEdnH/df6NLMLhrAE= Subject key identifier: 77:4E:09:68:2D:32:26:C0:61:0A:23:34:53:D5:80:82:D6:58:78:B1 Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0AFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 0AF6 Signing time: Thu 16 Apr 2026 19:17:37 +0000 Manifest this update: Thu 16 Apr 2026 19:17:36 +0000 Manifest next update: Thu 23 Apr 2026 19:17:36 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: JbcdqQp0qqdQbPBYhSBVV/cSSAMyadQwrINcwR2x+rU=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: ohQ7dmr4wlhGIPSZo4SYR6kjahOfosEHSoyiv0ooBGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2815 (0xaff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1, serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Apr 16 19:17:36 2026 GMT Not After : Apr 23 19:17:36 2026 GMT Subject: CN=69e135d1-da63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:96:d1:9e:2f:aa:e2:ae:13:75:94:5a:4e:70: 1f:c0:44:b0:97:8b:fd:fc:5e:48:c2:2a:2a:2b:e8: f8:c7:39:bf:3a:b3:4c:51:84:03:d4:b7:d2:a9:81: 49:48:19:ee:cc:c4:26:9b:9f:60:51:d3:d2:ed:df: 28:ed:6e:f5:ad:63:d7:33:39:41:2f:7b:67:0d:1d: 73:7e:be:57:9c:48:3e:cc:f9:7d:2b:1b:c2:79:12: 78:bf:90:2e:d7:ae:47:83:b2:ce:8d:87:8b:37:d5: fb:67:c5:da:30:cc:e3:03:9e:fe:cf:7e:11:40:f0: b7:53:5b:28:8d:77:27:d2:0f:f5:04:66:b8:b2:22: 20:06:c5:fd:c6:45:85:6a:2d:11:e6:76:aa:57:1d: ed:1a:bd:ca:18:9c:33:73:5c:26:3b:21:14:f4:3f: 9c:a9:ba:17:2d:f4:c7:28:42:b9:9d:1a:ae:32:61: 4a:6e:0c:24:9f:28:25:c6:97:87:d3:3b:e7:5c:a9: ba:f3:fa:a0:10:84:4e:e4:ac:82:e0:ac:e5:84:3d: f6:80:f4:a2:24:79:d4:de:3c:27:8c:cb:bb:97:de: 82:86:93:f7:af:7c:8f:c9:1f:55:ac:68:26:66:2c: 94:af:2a:1e:b7:02:b6:29:4c:38:64:74:9e:c2:30: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4E:09:68:2D:32:26:C0:61:0A:23:34:53:D5:80:82:D6:58:78:B1 X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:de:06:17:cb:ef:80:2c:6a:c3:09:a9:42:51:52:89:6e:41: 97:d2:ac:6b:80:ce:75:12:f6:38:6e:84:4e:48:47:15:ca:e7: a2:59:af:16:6e:54:a1:00:65:4e:d9:aa:a3:16:9e:44:44:ea: 18:e3:92:32:7b:59:0d:bc:cb:de:ea:2a:c2:89:3c:99:5d:04: 4c:d4:eb:77:b5:9c:9e:06:23:f9:d1:47:9f:aa:fc:43:ad:87: 44:80:40:19:61:f2:37:bb:19:1d:c6:95:1a:07:ff:82:3f:a8: 89:3b:59:d9:79:61:f8:41:aa:a0:cb:c9:48:60:94:8a:0b:5b: 4e:c5:11:f2:46:fe:fd:d9:fb:a7:f7:2c:e2:a9:88:e7:6f:7b: 60:6c:65:d6:a8:98:65:38:ec:78:0b:45:f7:d3:dc:c2:c7:84: fc:38:47:70:03:d3:a2:15:7e:0a:66:d7:bd:32:41:4a:bc:4f: 8b:f4:7c:2d:8b:e4:82:43:b3:61:f8:87:fe:4c:d6:e4:45:42: 21:a4:61:06:9e:9f:cf:d0:7c:f4:65:d6:b7:10:e9:cf:09:e7: 88:1a:aa:8e:20:86:e0:70:4b:6d:e5:ee:4c:8b:77:af:2f:a2: 8a:de:42:f2:25:35:0c:a5:3b:b0:b3:e3:9f:3e:40:91:f4:d7: 9d:21:82:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjYwNDE2MTkxNzM2WhcNMjYwNDIzMTkxNzM2WjAYMRYwFAYD VQQDEw02OWUxMzVkMS1kYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpbRni+q4q4TdZRaTnAfwESwl4v9/F5IwioqK+j4xzm/OrNMUYQD1LfSqYFJ SBnuzMQmm59gUdPS7d8o7W71rWPXMzlBL3tnDR1zfr5XnEg+zPl9KxvCeRJ4v5Au 165Hg7LOjYeLN9X7Z8XaMMzjA57+z34RQPC3U1sojXcn0g/1BGa4siIgBsX9xkWF ai0R5naqVx3tGr3KGJwzc1wmOyEU9D+cqboXLfTHKEK5nRquMmFKbgwknyglxpeH 0zvnXKm68/qgEIRO5KyC4KzlhD32gPSiJHnU3jwnjMu7l96ChpP3r3yPyR9VrGgm ZiyUryoetwK2KUw4ZHSewjCk7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHdOCWgt MibAYQojNFPVgILWWHixMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKd4GF8vvgCxqwwmpQlFSiW5Bl9Ksa4DOdRL2OG6ETkhHFcrnolmvFm5UoQBl TtmqoxaeRETqGOOSMntZDbzL3uoqwok8mV0ETNTrd7WcngYj+dFHn6r8Q62HRIBA GWHyN7sZHcaVGgf/gj+oiTtZ2Xlh+EGqoMvJSGCUigtbTsUR8kb+/dn7p/cs4qmI 5297YGxl1qiYZTjseAtF99PcwseE/DhHcAPTohV+CmbXvTJBSrxPi/R8LYvkgkOz YfiH/kzW5EVCIaRhBp6fz9B89GXWtxDpzwnniBqqjiCG4HBLbeXuTIt3ry+iit5C 8iU1DKU7sLPjnz5AkfTXnSGCdw== -----END CERTIFICATE-----Generated at Fri Apr 17 20:35:30 2026 by rpki-client