$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft File: WkoaHy2STehVVccdPbZrm7DkNkM.mft (raw, json) Hash identifier: XFh/4fVAHXWaueQRwzbzOsrX0S7I3Tz3dEAOZCjQJy8= Subject key identifier: F1:D3:52:74:DB:75:7D:33:3A:2F:45:6B:2F:A2:7E:68:DC:CA:6D:C1 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0CCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft Manifest number: 0CAD Signing time: Sat 18 Apr 2026 18:24:19 +0000 Manifest this update: Sat 18 Apr 2026 18:24:18 +0000 Manifest next update: Sat 25 Apr 2026 18:24:18 +0000 Files and hashes: 1: WkoaHy2STehVVccdPbZrm7DkNkM.crl (hash: S3iGBPY6EQljFzIUK6L83HdYogMFvltibcAkY993XvY=) 2: 504C179A3CDE11EAB553996BC4F9AE02.roa (hash: tnKzNTdY3kOa3JgIyvO979Ve1nnZLeLTMwODS3F4o5I=) 3: 4EB9FBD63CDE11EAB553996BC4F9AE02.roa (hash: Okct4v/9F3FMQPT9GrE+GqX5m6ZwHVEGNg/r2lmDu6k=) 4: 4F4A22E23CDE11EAB553996BC4F9AE02.roa (hash: HZYyafIDcbCm3jYO+u2UG1J/QSznk0TLPVrt1UYauvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 18:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3278 (0xcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Apr 18 18:24:18 2026 GMT Not After : Apr 25 18:24:18 2026 GMT Subject: CN=69e3cc53-afdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d8:8d:17:e4:dd:c7:f2:c6:3c:c6:ec:03:dc: a2:ca:18:69:98:57:39:87:ba:8f:54:92:17:57:56: 11:35:3f:5a:76:70:da:ef:f3:2a:2d:c0:70:35:eb: e6:4b:75:91:38:40:da:c7:6c:a3:49:9c:00:a5:ed: cb:25:f5:b7:1c:af:61:33:cf:9e:0e:e8:5e:84:a8: 49:de:91:e3:b9:0a:a5:bb:47:a4:bb:17:fa:65:43: b2:02:db:6a:bb:0e:be:d6:63:ea:ee:15:15:a0:8a: ee:9f:41:fb:10:d1:e5:ff:0d:49:1b:c2:07:a3:02: 48:79:23:b7:80:19:5d:67:ee:c8:7b:6c:6a:34:6f: c0:d4:d0:c1:3d:b8:1b:9f:84:79:0c:69:a4:09:08: cd:dd:7d:89:87:b5:42:1e:50:d7:45:5d:d9:0f:9a: da:18:34:10:c7:a4:a8:0b:c1:d6:bc:26:f0:48:7e: 82:aa:f6:fe:62:bb:b2:26:96:a7:07:b3:20:6f:38: 99:66:b2:c7:e2:35:c3:d0:00:40:40:ba:8f:96:b8: a5:2c:8d:8f:61:59:66:54:ca:0c:e5:b5:67:d3:b5: 53:25:77:83:71:1f:04:5a:a4:b2:97:e8:d1:ac:e2: 30:11:a7:c4:86:c8:c1:4c:24:ce:44:74:1a:55:8a: a3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D3:52:74:DB:75:7D:33:3A:2F:45:6B:2F:A2:7E:68:DC:CA:6D:C1 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:14:03:51:77:1e:79:6e:3d:39:e5:5c:66:d6:e9:96:7e:3e: f6:64:9f:3b:62:45:ec:73:52:fb:59:5d:b0:d7:8d:fc:ed:03: db:80:15:5a:98:1b:26:4f:ce:12:70:8d:eb:20:60:3b:2e:fa: 18:29:d4:c3:7a:1f:e8:f8:b0:49:71:a5:76:c5:8c:52:c3:19: 73:05:b4:67:55:2e:0a:4a:d4:d1:07:57:73:01:37:20:ea:95: 15:f9:99:63:1c:89:c9:dd:d4:82:75:45:4f:79:2e:9c:bb:55: a8:6f:54:5a:53:f0:70:31:d3:9e:a4:2a:49:08:6a:3d:04:1b: 80:fa:28:25:8c:1f:ce:d9:12:2e:02:ed:b7:4c:d5:df:ae:d8: 2e:04:42:ca:73:87:fd:4a:f6:a2:b3:45:b1:c3:2c:98:de:16: 32:55:7b:31:74:f7:25:71:29:8e:cd:de:bd:b6:bd:5e:b5:41: 25:8d:6c:63:52:2d:c7:8d:1e:b2:a5:b5:e5:25:d4:e1:d1:ca: 45:b6:40:cc:57:b6:a5:58:12:64:84:6d:a5:c0:f6:44:6e:51: 42:81:9f:82:19:d4:82:d5:89:c4:80:8e:4a:ae:df:49:a8:d0: dc:44:7f:13:10:3d:c1:a6:fa:aa:89:1a:8b:b5:12:b9:b7:62: 2c:69:8d:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjYwNDE4MTgyNDE4WhcNMjYwNDI1MTgyNDE4WjAYMRYwFAYD VQQDEw02OWUzY2M1My1hZmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdiNF+Tdx/LGPMbsA9yiyhhpmFc5h7qPVJIXV1YRNT9adnDa7/MqLcBwNevm S3WROEDax2yjSZwApe3LJfW3HK9hM8+eDuhehKhJ3pHjuQqlu0ekuxf6ZUOyAttq uw6+1mPq7hUVoIrun0H7ENHl/w1JG8IHowJIeSO3gBldZ+7Ie2xqNG/A1NDBPbgb n4R5DGmkCQjN3X2Jh7VCHlDXRV3ZD5raGDQQx6SoC8HWvCbwSH6Cqvb+YruyJpan B7MgbziZZrLH4jXD0ABAQLqPlrilLI2PYVlmVMoM5bVn07VTJXeDcR8EWqSyl+jR rOIwEafEhsjBTCTORHQaVYqjcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPHTUnTb dX0zOi9Fay+ifmjcym3BMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkU4Ny9BOUYzQzZFRTEyOUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1Rl aFZWY2NkUGJacm03RGtOa00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAhQDUXceeW49OeVcZtbpln4+9mSfO2JF7HNS+1ldsNeN/O0D24AVWpgbJk/O EnCN6yBgOy76GCnUw3of6PiwSXGldsWMUsMZcwW0Z1UuCkrU0QdXcwE3IOqVFfmZ YxyJyd3UgnVFT3kunLtVqG9UWlPwcDHTnqQqSQhqPQQbgPooJYwfztkSLgLtt0zV 367YLgRCynOH/Ur2orNFscMsmN4WMlV7MXT3JXEpjs3evba9XrVBJY1sY1Itx40e sqW15SXU4dHKRbZAzFe2pVgSZIRtpcD2RG5RQoGfghnUgtWJxICOSq7fSajQ3ER/ ExA9wab6qokai7USubdiLGmNdQ== -----END CERTIFICATE-----Generated at Sun Apr 19 12:38:32 2026 by rpki-client