$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: Pc1wpWjnvWCd/jNuLyk/nBS4ksIm0g28SmLpd97JqFc= Subject key identifier: EE:AF:86:3F:D1:6D:B2:2F:B8:19:77:52:B7:02:22:7C:A3:FE:3C:7A Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0C28 Signing time: Thu 16 Apr 2026 18:42:24 +0000 Manifest this update: Thu 16 Apr 2026 18:42:23 +0000 Manifest next update: Thu 23 Apr 2026 18:42:23 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: Ns1xOLt2tAv1jspsFrrhsLhYpAYKzRRwhz1ljW3GrlE=) 2: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: 7N0LlMCapbNJ9KXikjeWXJKbiREpp9frRRVKC1Mylhc=) 3: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: EuY5ohXxwCb20yL/oZ+Bf40RR9HQ+u8RzxEp5n6p+No=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Apr 16 18:42:23 2026 GMT Not After : Apr 23 18:42:23 2026 GMT Subject: CN=69e12d8f-b36f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:97:8a:83:0e:6e:0b:17:e8:2d:1f:82:73:40: 17:1d:0d:6c:e7:20:b2:ad:26:84:13:83:b3:ff:df: 64:b9:4d:37:7c:b1:44:5b:39:77:3c:f9:fe:5a:8c: e2:e3:c2:6f:27:a9:13:37:ba:dc:82:9d:73:d8:45: 26:3e:c1:f9:9e:46:ad:bb:88:9e:ca:ba:2f:00:1c: 3c:a4:61:30:a3:bb:3e:2f:7f:67:e3:f4:44:2c:d3: b4:06:4d:3a:ed:f8:80:1f:da:e2:47:91:eb:b4:37: 33:4d:80:f5:fd:f1:8b:9a:b4:4f:aa:4f:12:6a:5e: b5:39:be:79:0c:15:eb:20:55:ad:c3:cc:63:4d:41: 79:e0:14:38:f8:fd:d4:83:ef:4d:84:1c:98:f7:2d: a4:71:bc:89:e0:c0:d0:5f:94:6f:78:3c:ac:a8:56: fa:90:96:e8:d6:27:2e:a2:de:f0:03:25:5e:df:89: f3:f2:20:e0:47:11:b2:0c:cf:64:92:48:60:88:62: 48:7e:2b:3f:e8:ef:8c:ff:e4:24:ee:fc:b4:23:5c: 2a:68:14:ad:2c:9f:14:91:b4:00:ee:50:90:b6:d1: 60:85:a8:a8:63:de:a7:0f:08:9d:bf:05:db:b6:37: e6:5f:4a:71:01:d1:94:c5:a7:d7:f8:04:00:c2:be: 51:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AF:86:3F:D1:6D:B2:2F:B8:19:77:52:B7:02:22:7C:A3:FE:3C:7A X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:71:40:4f:b6:8e:b6:2c:6a:f6:4c:21:fc:6f:f3:7d:af:41: 7c:2c:d6:20:4f:62:83:2b:81:37:e5:0e:64:0e:13:e2:73:6c: b9:b0:3a:8f:dc:b4:e1:cb:76:60:92:a1:d2:0d:50:2a:e6:7d: e3:ae:74:31:03:d1:1a:c9:49:8e:4c:ef:4d:eb:71:ed:bd:5d: 76:cd:b1:8f:15:ff:0d:d2:2f:fa:19:83:33:8e:fb:61:4d:32: 86:f9:64:c8:f2:a8:1b:4a:41:69:2e:3a:c3:d2:ce:fe:c8:be: e9:9d:53:79:c5:7e:66:f1:89:aa:aa:61:83:fd:5b:4c:7b:0d: ab:a2:cb:ac:cf:ef:e8:dd:ef:95:a1:3f:ac:01:38:35:e4:7a: 03:22:41:27:50:2f:8c:c9:2b:84:c8:9e:a4:df:80:dc:db:c2: 3e:ae:13:cf:b2:be:06:7d:39:03:b2:49:04:e2:26:01:30:14: f6:99:fa:95:47:02:b6:80:93:10:40:b9:c6:4d:e9:f4:b1:ef: 83:21:50:e9:c1:73:24:88:5d:04:f5:ea:b1:fa:35:af:be:59: 9c:19:b9:83:a1:98:d0:05:25:bb:35:37:6c:70:19:ae:5e:0f: da:3f:25:27:29:41:ca:93:6a:72:1e:e5:ab:4c:22:4f:bb:14: a1:97:12:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjYwNDE2MTg0MjIzWhcNMjYwNDIzMTg0MjIzWjAYMRYwFAYD VQQDEw02OWUxMmQ4Zi1iMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiZeKgw5uCxfoLR+Cc0AXHQ1s5yCyrSaEE4Oz/99kuU03fLFEWzl3PPn+Wozi 48JvJ6kTN7rcgp1z2EUmPsH5nkatu4ieyrovABw8pGEwo7s+L39n4/RELNO0Bk06 7fiAH9riR5HrtDczTYD1/fGLmrRPqk8Sal61Ob55DBXrIFWtw8xjTUF54BQ4+P3U g+9NhByY9y2kcbyJ4MDQX5RveDysqFb6kJbo1icuot7wAyVe34nz8iDgRxGyDM9k kkhgiGJIfis/6O+M/+Qk7vy0I1wqaBStLJ8UkbQA7lCQttFghaioY96nDwidvwXb tjfmX0pxAdGUxafX+AQAwr5RwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO6vhj/R bbIvuBl3UrcCInyj/jx6MB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX3FAT7aOtixq9kwh/G/zfa9BfCzWIE9igyuBN+UOZA4T4nNsubA6j9y04ct2 YJKh0g1QKuZ94650MQPRGslJjkzvTetx7b1dds2xjxX/DdIv+hmDM477YU0yhvlk yPKoG0pBaS46w9LO/si+6Z1TecV+ZvGJqqphg/1bTHsNq6LLrM/v6N3vlaE/rAE4 NeR6AyJBJ1AvjMkrhMiepN+A3NvCPq4Tz7K+Bn05A7JJBOImATAU9pn6lUcCtoCT EEC5xk3p9LHvgyFQ6cFzJIhdBPXqsfo1r75ZnBm5g6GY0AUluzU3bHAZrl4P2j8l JylBypNqch7lq0wiT7sUoZcSGQ== -----END CERTIFICATE-----Generated at Fri Apr 17 14:08:44 2026 by rpki-client