$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft File: hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json) Hash identifier: BFRayh3yVN3wltBcl/7CnqP88Jo2HrrxK1/LNNjCn/I= Subject key identifier: F4:B2:AC:D7:14:EE:ED:1B:43:9E:79:B8:EF:66:16:EF:F4:A7:C6:E3 Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F Certificate issuer: /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft Manifest number: 06CB Signing time: Thu 16 Apr 2026 22:11:19 +0000 Manifest this update: Thu 16 Apr 2026 22:11:19 +0000 Manifest next update: Thu 23 Apr 2026 22:11:19 +0000 Files and hashes: 1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: rvlS6nhxG5AaK29GjPQTpGZfwv4uLw0t9HimUwluYXE=) 2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: dpmkPDFfKUB6qjF/TkJcrvInRqDocmXVraC9003p2B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6825, serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Validity Not Before: Apr 16 22:11:19 2026 GMT Not After : Apr 23 22:11:19 2026 GMT Subject: CN=69e15e87-8b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:55:69:08:35:e1:33:a7:81:30:cd:96:6e:d4: a8:4c:6d:91:b1:35:ed:2d:e1:00:41:4f:ef:0e:71: 69:c2:fb:6b:1a:a1:bf:48:3a:0d:74:e9:87:7d:82: 0f:52:2e:b8:a5:11:0c:9e:f5:f1:75:6d:8d:2e:d7: e7:a8:b7:cd:fa:6e:68:16:45:90:ac:35:93:b8:a6: 9f:31:ad:d7:17:d8:db:25:0c:8d:08:f5:14:74:8e: 61:a7:92:e9:fc:41:4d:5a:20:bc:55:1e:19:11:79: eb:dc:20:e1:1c:53:e2:0b:c5:8f:6f:c4:bb:51:ee: 4d:6c:84:cc:ae:09:a6:35:c6:d0:b5:79:10:5b:a3: 22:bc:0e:ea:ed:44:4a:32:52:3d:3e:10:a1:87:94: c2:45:7f:84:6e:29:ee:59:f8:fb:75:5c:94:90:ce: ca:cb:ec:ff:b5:1b:04:ab:a2:95:fa:95:ba:2d:28: a4:30:d9:45:26:76:1c:11:96:be:45:5f:f3:72:b5: 98:66:34:18:1f:8b:e9:74:39:5c:57:3b:3e:0f:f8: 85:50:3a:25:80:45:4d:5a:0c:0c:27:a8:df:46:dd: 4d:92:a0:13:52:45:38:02:54:fd:5d:ff:97:ce:b1: 30:e5:ce:93:66:83:a7:4d:5e:9c:fc:bf:ad:ad:c3: bb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B2:AC:D7:14:EE:ED:1B:43:9E:79:B8:EF:66:16:EF:F4:A7:C6:E3 X509v3 Authority Key Identifier: keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:df:45:e7:ae:0b:9a:d6:f1:f3:fb:55:82:53:63:fb:79:bc: 58:70:36:b9:da:28:c4:24:9a:31:be:30:72:7b:ca:27:22:3b: e7:ba:21:87:c7:76:d2:d3:98:dd:06:74:81:c9:93:a9:5e:f3: 82:66:a5:68:3c:80:4b:0f:cd:c6:e1:25:83:22:21:c4:a5:5a: f3:99:f4:5c:1c:9d:2f:49:00:81:d9:93:80:f0:b0:cf:22:6a: a2:58:8c:59:bf:39:e0:ee:0b:2f:2c:25:ae:5a:6c:be:19:97: 0f:aa:1f:74:06:52:d9:0f:9d:77:2b:6d:39:b6:a4:ba:df:2b: 0b:6d:70:fd:e5:8e:f3:09:b8:b7:07:df:61:2b:f8:81:4b:27: fb:a2:2c:56:aa:db:23:24:64:be:da:ff:fd:7f:f2:e2:02:bf: 00:f0:59:b8:cb:38:ad:c2:b1:42:d0:ed:9f:1e:f9:34:ed:4f: 83:f9:ed:d0:3a:44:79:71:17:b8:af:56:60:00:ab:df:92:82: 18:36:08:be:9e:0d:f2:96:4f:41:d1:d6:2a:c4:59:8b:3a:79: 44:00:39:0f:36:68:9e:3d:c4:06:c2:7e:9d:4a:fb:fa:4e:ad: 2e:54:58:7a:04:ce:1e:d9:0f:0d:05:75:2e:09:89:be:34:34: 75:29:a8:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4MjUxMTAvBgNVBAUTKDg3MTQ5N0M4ODUwRTQxNjI1Nzk1QzRGOEQ5NDVDN0Iz RDA0MTZDMUYwHhcNMjYwNDE2MjIxMTE5WhcNMjYwNDIzMjIxMTE5WjAYMRYwFAYD VQQDEw02OWUxNWU4Ny04YjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslVpCDXhM6eBMM2WbtSoTG2RsTXtLeEAQU/vDnFpwvtrGqG/SDoNdOmHfYIP Ui64pREMnvXxdW2NLtfnqLfN+m5oFkWQrDWTuKafMa3XF9jbJQyNCPUUdI5hp5Lp /EFNWiC8VR4ZEXnr3CDhHFPiC8WPb8S7Ue5NbITMrgmmNcbQtXkQW6MivA7q7URK MlI9PhChh5TCRX+EbinuWfj7dVyUkM7Ky+z/tRsEq6KV+pW6LSikMNlFJnYcEZa+ RV/zcrWYZjQYH4vpdDlcVzs+D/iFUDolgEVNWgwMJ6jfRt1NkqATUkU4AlT9Xf+X zrEw5c6TZoOnTV6c/L+trcO7qwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPSyrNcU 7u0bQ555uO9mFu/0p8bjMB8GA1UdIwQYMBaAFIcUl8iFDkFiV5XE+NlFx7PQQWwf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjgyNS8xQUE5MEZCNjlB QkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FXSlhsY1Q0MlVYSHM5QkJi QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4U1h5SVVPUVdKWGxjVDQyVVhIczlCQmJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjgyNS8xQUE5MEZCNjlBQkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FX SlhsY1Q0MlVYSHM5QkJiQjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkt9F564Lmtbx8/tVglNj+3m8WHA2udooxCSaMb4wcnvKJyI757ohh8d20tOY 3QZ0gcmTqV7zgmalaDyASw/NxuElgyIhxKVa85n0XBydL0kAgdmTgPCwzyJqoliM Wb854O4LLywlrlpsvhmXD6ofdAZS2Q+ddyttObakut8rC21w/eWO8wm4twffYSv4 gUsn+6IsVqrbIyRkvtr//X/y4gK/APBZuMs4rcKxQtDtnx75NO1Pg/nt0DpEeXEX uK9WYACr35KCGDYIvp4N8pZPQdHWKsRZizp5RAA5DzZonj3EBsJ+nUr7+k6tLlRY egTOHtkPDQV1LgmJvjQ0dSmoHw== -----END CERTIFICATE-----Generated at Fri Apr 17 13:25:05 2026 by rpki-client