$ rpki-client -vvf rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft File: T0h-_rfHeWiBVy2X1iVPot21qHw.mft (raw, json) Hash identifier: RwUHGbECB+cRnJpQygwxxJGqoyC7zZ8ZS+Qtn5bGimM= Subject key identifier: 30:E7:C5:FE:FF:DA:15:48:19:2C:A4:06:63:13:86:D7:6D:73:06:DA Authority key identifier: 4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C Certificate issuer: /CN=A91C32D9/serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft Manifest number: 29 Signing time: Wed 15 Apr 2026 08:20:36 +0000 Manifest this update: Wed 15 Apr 2026 08:20:36 +0000 Manifest next update: Wed 22 Apr 2026 08:20:36 +0000 Files and hashes: 1: T0h-_rfHeWiBVy2X1iVPot21qHw.crl (hash: HGI3GonacoGnw/4jd6NzzX/ZhWwLRl0kC1cK79LKEPc=) 2: 9DD3FFC6001111F18C67D2A9406F56BC.roa (hash: l4S9gMbXi+gUDu4apCdlLMULJuB61B4wV3lZ30Od2K0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 08:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C32D9, serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Validity Not Before: Apr 15 08:20:36 2026 GMT Not After : Apr 22 08:20:36 2026 GMT Subject: CN=69df4a54-66a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7e:2d:ef:5a:ab:aa:33:08:95:09:1c:03:5f: 98:70:38:dd:61:37:0d:3c:3e:a0:a2:ab:4c:c1:23: 43:bc:fa:b8:f2:81:48:9e:cb:05:f7:f8:c5:c2:d4: 96:5a:b8:08:2d:31:0e:63:af:db:61:9b:88:5f:5d: d2:43:8e:0d:0f:3e:ad:ec:cc:0b:18:7e:bb:0a:fd: 63:2c:7d:ca:73:a4:c7:7f:e6:1c:ce:3f:5a:30:9a: 70:b4:dd:b7:3f:d2:e3:dd:f2:ce:29:97:27:62:aa: 1c:a4:35:b3:3d:6b:9f:19:d1:ea:05:99:be:e1:64: 9f:57:7d:5d:77:83:f7:be:3b:09:f7:15:12:c5:8a: ee:92:03:cc:ee:c8:b1:02:7e:20:23:54:d7:48:4e: 90:6a:f3:99:38:4c:b4:85:2c:d4:7d:b4:6a:3a:d6: 01:c1:80:b3:2a:21:ea:10:b5:29:14:88:13:2a:39: a1:f8:53:ba:32:98:c3:f4:c0:d2:a1:27:98:b3:cb: 17:e2:0e:54:1b:47:b9:cd:8d:2d:79:26:ed:35:26: 64:f2:08:94:e6:bd:f0:40:b4:1b:cc:61:4e:03:11: 0d:37:5a:85:35:bf:db:d1:a4:12:af:f7:20:da:c5: 45:35:3f:ae:a5:ba:d6:4a:3b:ab:7d:5a:ce:b2:1b: 99:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E7:C5:FE:FF:DA:15:48:19:2C:A4:06:63:13:86:D7:6D:73:06:DA X509v3 Authority Key Identifier: keyid:4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:fc:a0:0e:e5:8c:59:68:5a:41:9a:b0:b6:30:3c:cc:03:0e: dd:e3:49:d8:9e:1c:77:6c:ce:75:48:9a:5e:73:d3:fd:fc:34: 9d:62:61:e3:a3:18:53:4d:bd:c2:7f:f1:11:a2:15:e9:7f:90: f7:27:bc:8c:03:41:eb:38:a3:15:94:c9:d4:58:76:09:a9:49: 39:d1:6d:43:74:06:79:30:ff:c2:b5:db:41:f8:22:ae:7b:29: 6b:f9:6d:1e:c8:8f:35:d9:00:9d:6c:78:6e:9c:15:6d:ea:c8: 17:f7:31:41:83:5a:82:9b:f2:55:71:b5:80:73:c1:4d:ab:cf: 25:be:1f:33:8d:9a:3f:53:2b:7c:51:23:3c:15:5a:61:85:be: b6:2e:99:14:bd:f2:14:39:38:df:5c:f2:11:c0:98:08:b3:80: d1:86:fb:d2:81:ad:6e:02:3a:24:52:00:7b:4c:65:58:aa:de: 1d:a8:c4:e0:2e:f7:1a:9f:80:41:db:3e:6e:56:fd:2f:2f:be: 2c:c0:c6:45:c4:79:4e:5d:3a:73:d4:7f:92:ba:7a:d9:d8:ad: 01:6c:78:38:59:4b:8e:48:5d:98:7a:64:95:61:f5:a6:73:53: c4:47:a6:dc:9b:3b:5a:cb:65:89:6d:55:d2:93:1d:f1:25:cd: 3a:10:68:a7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzJEOTExMC8GA1UEBRMoNEY0ODdFRkVCN0M3Nzk2ODgxNTcyRDk3RDYyNTRGQTJE REI1QTg3QzAeFw0yNjA0MTUwODIwMzZaFw0yNjA0MjIwODIwMzZaMBgxFjAUBgNV BAMTDTY5ZGY0YTU0LTY2YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCefi3vWquqMwiVCRwDX5hwON1hNw08PqCiq0zBI0O8+rjygUieywX3+MXC1JZa uAgtMQ5jr9thm4hfXdJDjg0PPq3szAsYfrsK/WMsfcpzpMd/5hzOP1owmnC03bc/ 0uPd8s4plydiqhykNbM9a58Z0eoFmb7hZJ9XfV13g/e+Own3FRLFiu6SA8zuyLEC fiAjVNdITpBq85k4TLSFLNR9tGo61gHBgLMqIeoQtSkUiBMqOaH4U7oymMP0wNKh J5izyxfiDlQbR7nNjS15Ju01JmTyCJTmvfBAtBvMYU4DEQ03WoU1v9vRpBKv9yDa xUU1P66lutZKO6t9Ws6yG5mjAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUMOfF/v/a FUgZLKQGYxOG121zBtowHwYDVR0jBBgwFoAUT0h+/rfHeWiBVy2X1iVPot21qHww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMkQ5LzY0REYxMzJDMDAx MTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdpQlZ5MlgxaVZQb3QyMXFI dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDBoLV9yZkhlV2lCVnkyWDFpVlBvdDIxcUh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz MkQ5LzY0REYxMzJDMDAxMTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdp QlZ5MlgxaVZQb3QyMXFIdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAy/KAO5YxZaFpBmrC2MDzMAw7d40nYnhx3bM51SJpec9P9/DSdYmHjoxhTTb3C f/ERohXpf5D3J7yMA0HrOKMVlMnUWHYJqUk50W1DdAZ5MP/CtdtB+CKueylr+W0e yI812QCdbHhunBVt6sgX9zFBg1qCm/JVcbWAc8FNq88lvh8zjZo/Uyt8USM8FVph hb62LpkUvfIUOTjfXPIRwJgIs4DRhvvSga1uAjokUgB7TGVYqt4dqMTgLvcan4BB 2z5uVv0vL74swMZFxHlOXTpz1H+SunrZ2K0BbHg4WUuOSF2YemSVYfWmc1PER6bc mztay2WJbVXSkx3xJc06EGin -----END CERTIFICATE-----Generated at Fri Apr 17 10:06:34 2026 by rpki-client