$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: zL7JWF8BpBEruh6WwAbhGHx8zFH0p3L89fYBYtI9cgI= Subject key identifier: 38:74:99:60:D1:C1:02:D0:1D:F6:DA:B1:AD:2D:D0:9B:8E:01:03:70 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 023B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 0237 Signing time: Fri 17 Apr 2026 02:19:49 +0000 Manifest this update: Fri 17 Apr 2026 02:19:48 +0000 Manifest next update: Fri 24 Apr 2026 02:19:48 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: A/kT4HFuAOTbB+q88JuODTesiQizXK9BF5Y+zbPZUOs=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: oP7yfPUopKTY379R1+NbnqkO2F627ZT0pvcHFpcrXM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:19:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Apr 17 02:19:48 2026 GMT Not After : Apr 24 02:19:48 2026 GMT Subject: CN=69e198c5-06fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:26:88:35:fa:ca:ae:03:c4:e3:a8:a7:ab:a5: 41:6b:dc:dc:11:8b:ad:6e:60:e9:fa:75:66:23:5f: b9:f4:39:be:08:57:51:b9:7e:84:80:f7:90:2a:b1: 5c:32:10:b7:34:a0:01:e3:d9:b3:d7:a6:eb:e2:82: 4a:09:d9:35:af:58:97:9b:1f:54:61:c7:e2:86:26: 9d:7c:e1:10:1f:2f:70:a3:ab:d2:7e:8b:25:90:bf: 0c:ee:8d:5a:06:d4:ac:63:8c:b7:2e:74:72:09:b9: 31:e3:f9:c6:6e:eb:d1:50:8c:09:6a:cd:8d:2a:39: 9e:67:8c:cb:39:f7:f0:a6:6d:41:e2:15:6e:91:24: 37:8e:e7:0f:0f:05:e5:e1:04:00:78:f4:cb:17:24: a3:8a:57:50:51:52:c0:36:48:05:08:8a:da:77:41: 84:4b:83:56:aa:17:8d:ad:6a:cd:c0:9f:24:31:68: 3d:d8:27:1e:1a:cc:16:9d:51:30:f8:1c:77:be:b0: 20:ff:54:b5:00:67:f7:2b:da:49:c1:bc:ca:f1:9f: 86:4b:5c:d0:78:53:7f:9a:24:4e:4c:34:d2:d5:85: 10:e0:05:b5:6b:3d:68:eb:94:42:03:b0:e5:b5:2b: 37:5d:63:c8:14:17:6f:a4:e4:82:fe:1d:06:d3:e9: 7b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:74:99:60:D1:C1:02:D0:1D:F6:DA:B1:AD:2D:D0:9B:8E:01:03:70 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:17:a5:dd:21:c6:db:dc:71:6b:7b:f8:c0:fb:c5:8a:ea:a4: 28:44:b2:76:f3:36:12:a7:8c:4a:f9:43:63:57:28:50:e9:55: d4:ad:b0:1d:e3:ca:db:cb:6f:40:dc:7e:dd:f3:02:bb:53:22: b8:25:38:13:b5:2e:28:39:2c:5f:88:9e:2e:84:d1:51:35:50: 04:fa:04:c4:91:c7:29:ee:e6:ab:89:65:62:72:b0:a1:b8:e2: 4a:5c:cb:60:f3:16:6b:92:db:d0:6d:cb:93:2b:03:60:76:98: c0:be:e6:e1:4d:45:1b:56:fc:40:44:58:de:38:69:ea:19:2b: 32:8a:50:0c:9a:77:14:fb:e4:fa:a3:95:62:26:92:4d:10:df: 34:b6:97:37:d2:e8:c1:f3:eb:bb:75:01:1a:f3:1e:0e:dd:a5: 33:a4:63:3f:e7:b0:e5:7f:bf:7f:a0:17:1d:04:c0:93:47:60: 4d:67:3d:d2:0e:cd:6e:ad:01:7e:23:51:5d:89:9c:39:f5:fe: aa:1e:49:1a:18:e7:a1:02:d3:05:53:9c:c8:7b:15:71:7c:e3: 27:ad:e6:ee:74:25:d3:af:57:3b:72:38:2b:35:84:22:89:13: 46:c6:a5:64:6c:80:8d:02:6b:b3:41:34:77:bb:69:32:4e:c9: d1:56:50:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjYwNDE3MDIxOTQ4WhcNMjYwNDI0MDIxOTQ4WjAYMRYwFAYD VQQDEw02OWUxOThjNS0wNmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSaINfrKrgPE46inq6VBa9zcEYutbmDp+nVmI1+59Dm+CFdRuX6EgPeQKrFc MhC3NKAB49mz16br4oJKCdk1r1iXmx9UYcfihiadfOEQHy9wo6vSfoslkL8M7o1a BtSsY4y3LnRyCbkx4/nGbuvRUIwJas2NKjmeZ4zLOffwpm1B4hVukSQ3jucPDwXl 4QQAePTLFySjildQUVLANkgFCIrad0GES4NWqheNrWrNwJ8kMWg92CceGswWnVEw +Bx3vrAg/1S1AGf3K9pJwbzK8Z+GS1zQeFN/miROTDTS1YUQ4AW1az1o65RCA7Dl tSs3XWPIFBdvpOSC/h0G0+l7fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDh0mWDR wQLQHfbasa0t0JuOAQNwMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1hel3SHG29xxa3v4wPvFiuqkKESydvM2EqeMSvlDY1coUOlV1K2wHePK28tv QNx+3fMCu1MiuCU4E7UuKDksX4ieLoTRUTVQBPoExJHHKe7mq4llYnKwobjiSlzL YPMWa5Lb0G3LkysDYHaYwL7m4U1FG1b8QERY3jhp6hkrMopQDJp3FPvk+qOVYiaS TRDfNLaXN9LowfPru3UBGvMeDt2lM6RjP+ew5X+/f6AXHQTAk0dgTWc90g7Nbq0B fiNRXYmcOfX+qh5JGhjnoQLTBVOcyHsVcXzjJ63m7nQl069XO3I4KzWEIokTRsal ZGyAjQJrs0E0d7tpMk7J0VZQZg== -----END CERTIFICATE-----Generated at Fri Apr 17 11:48:10 2026 by rpki-client