$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft File: vY48wqk9XbzYQnUJc4oxS_kMiH0.mft (raw, json) Hash identifier: MFX+S+n3RDQ/Lw/K3tn9Eu1lg6Y5pU1jPT2o8CWXgRI= Subject key identifier: BF:9D:D9:DA:31:11:E5:2F:32:B3:50:04:CF:C6:58:C6:2B:1F:50:5D Authority key identifier: BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D Certificate issuer: /CN=A91BFE76/serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft Manifest number: 59 Signing time: Fri 17 Apr 2026 07:49:21 +0000 Manifest this update: Fri 17 Apr 2026 07:49:21 +0000 Manifest next update: Fri 24 Apr 2026 07:49:21 +0000 Files and hashes: 1: vY48wqk9XbzYQnUJc4oxS_kMiH0.crl (hash: XCplcCU5OPwPY5/t8jiOAcp8ztYmPGpULbU4aw4Ejc4=) 2: 79734D6AB9EB11F095C2C735C4F9AE02.roa (hash: 1fKhxfq/TrlnYFDoICW1zCAYtSl3cbSlKcSl1u+qus8=) 3: E9A639DAB9EB11F0AE27CB70C4F9AE02.roa (hash: ZuP0uWcegjrbhw4CUiK7NSueNS7Vvex1xTz8Rpwula0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE76, serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Validity Not Before: Apr 17 07:49:21 2026 GMT Not After : Apr 24 07:49:21 2026 GMT Subject: CN=69e1e601-2f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:28:f0:3c:d0:7d:cf:9f:06:b9:c8:cc:9d:2b: 51:04:c1:53:1e:e8:dc:46:6c:49:a8:21:62:6f:f2: 15:29:07:43:75:44:57:b0:9f:07:9e:10:93:14:20: 5e:ff:25:79:48:6c:3e:87:01:39:dd:2b:69:1c:0c: 7b:9b:8b:1a:78:c3:d3:ff:ce:aa:db:5f:ea:49:57: fa:22:48:a7:78:66:26:ba:86:9e:65:18:cf:32:7a: 0d:76:21:05:92:64:1c:d3:3e:9c:19:17:0e:51:3c: 95:d8:e3:7c:00:f3:80:05:64:b2:26:a3:e6:53:5a: 87:c0:fc:dd:6e:5a:98:f6:97:ad:f2:ff:02:00:1c: eb:fe:80:af:ef:e9:e2:cb:fb:d1:70:3c:da:ce:9e: e9:70:09:9a:a4:5c:83:f5:81:fd:8d:a0:67:f5:40: 0e:96:e9:61:b6:cd:33:c2:78:20:b8:f7:eb:bd:0d: c6:47:15:9c:6f:fc:74:68:32:66:2f:a5:ae:66:c7: 1c:2b:5d:c8:a2:b0:3d:5d:73:6a:e1:d5:4c:54:89: 0e:cd:19:fd:df:8e:59:30:7c:ab:8c:f9:ff:6a:b9: 79:64:88:aa:76:9c:b2:ed:38:3a:76:60:fc:f5:04: 32:46:e5:64:fd:f2:80:cd:71:9c:a5:f3:10:da:6d: 02:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:9D:D9:DA:31:11:E5:2F:32:B3:50:04:CF:C6:58:C6:2B:1F:50:5D X509v3 Authority Key Identifier: keyid:BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:96:a9:59:74:8d:0e:74:c7:f0:a6:2a:bc:93:62:e5:54:41: a9:66:88:ba:34:2a:59:09:37:07:ab:f1:3b:f7:ed:38:f8:2e: ca:b0:4d:50:d3:19:da:a6:03:58:7e:3f:bc:0a:e7:1b:0e:13: f4:95:7e:27:40:ee:a3:f4:94:10:b6:52:eb:d8:38:91:92:f9: c7:bd:a6:81:1f:f5:58:3c:aa:cc:f7:8c:70:9a:ab:52:31:99: f3:24:b0:3a:e2:a7:41:b5:b9:2a:79:56:38:f1:01:0c:55:7e: bb:73:f6:98:65:7e:12:e8:96:44:96:db:09:4f:c4:22:17:3d: 86:af:84:22:66:a9:85:01:50:a6:af:df:8c:41:b3:e4:d1:17: d4:68:05:bc:c5:8d:fb:c1:94:57:f2:9e:c4:21:2b:b7:b0:23: 04:1f:7f:d4:f6:38:18:f6:34:d6:7f:99:9d:54:b9:47:d8:4c: 45:c1:14:68:75:48:b6:c3:2d:05:5f:79:72:9f:a9:2e:8e:22: 9b:61:9d:3a:76:2a:7b:c0:c6:e0:42:ef:41:8a:1d:91:a9:a6: 9d:9e:af:ee:f8:82:f8:5d:c2:1e:5f:4c:91:3a:a1:35:c7:35: e5:8c:58:10:88:56:2c:26:89:91:fd:cc:8c:9d:cb:4f:55:e2: cc:82:e8:6b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU3NjExMC8GA1UEBRMoQkQ4RTNDQzJBOTNENURCQ0Q4NDI3NTA5NzM4QTMxNEJG OTBDODg3RDAeFw0yNjA0MTcwNzQ5MjFaFw0yNjA0MjQwNzQ5MjFaMBgxFjAUBgNV BAMTDTY5ZTFlNjAxLTJmMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVKPA80H3Pnwa5yMydK1EEwVMe6NxGbEmoIWJv8hUpB0N1RFewnweeEJMUIF7/ JXlIbD6HATndK2kcDHubixp4w9P/zqrbX+pJV/oiSKd4Zia6hp5lGM8yeg12IQWS ZBzTPpwZFw5RPJXY43wA84AFZLImo+ZTWofA/N1uWpj2l63y/wIAHOv+gK/v6eLL +9FwPNrOnulwCZqkXIP1gf2NoGf1QA6W6WG2zTPCeCC49+u9DcZHFZxv/HRoMmYv pa5mxxwrXciisD1dc2rh1UxUiQ7NGf3fjlkwfKuM+f9quXlkiKp2nLLtODp2YPz1 BDJG5WT98oDNcZyl8xDabQLHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUv53Z2jER 5S8ys1AEz8ZYxisfUF0wHwYDVR0jBBgwFoAUvY48wqk9XbzYQnUJc4oxS/kMiH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTc2L0Q5RTRDNENDQjky NzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6WVFuVUpjNG94U19rTWlI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdlk0OHdxazlYYnpZUW5VSmM0b3hTX2tNaUgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG RTc2L0Q5RTRDNENDQjkyNzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6 WVFuVUpjNG94U19rTWlIMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAylqlZdI0OdMfwpiq8k2LlVEGpZoi6NCpZCTcHq/E79+04+C7KsE1Q0xnapgNY fj+8CucbDhP0lX4nQO6j9JQQtlLr2DiRkvnHvaaBH/VYPKrM94xwmqtSMZnzJLA6 4qdBtbkqeVY48QEMVX67c/aYZX4S6JZEltsJT8QiFz2Gr4QiZqmFAVCmr9+MQbPk 0RfUaAW8xY37wZRX8p7EISu3sCMEH3/U9jgY9jTWf5mdVLlH2ExFwRRodUi2wy0F X3lyn6kujiKbYZ06dip7wMbgQu9Bih2Rqaadnq/u+IL4XcIeX0yROqE1xzXljFgQ iFYsJomR/cyMnctPVeLMguhr -----END CERTIFICATE-----Generated at Fri Apr 17 14:09:23 2026 by rpki-client