$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: rdVJiLPo4BfZkdwrb243O7DTJaJLpX73wClaoZJgeH4= Subject key identifier: 35:37:99:7B:D6:74:CC:FF:42:9A:9C:76:AF:0C:39:AA:C4:E9:9A:41 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 033D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 032D Signing time: Fri 17 Apr 2026 01:00:25 +0000 Manifest this update: Fri 17 Apr 2026 01:00:24 +0000 Manifest next update: Fri 24 Apr 2026 01:00:24 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: Rh5DCWqeX+31Dga08hh0cvqJSFvNlPahW4RcrSgVWfo=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: O3Ls+9YBYFMKkyDDzAoAnYOjitWoJ58mnyLKpWOVBLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Apr 17 01:00:24 2026 GMT Not After : Apr 24 01:00:24 2026 GMT Subject: CN=69e18628-dec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:88:ad:b7:a9:0f:0f:fa:c8:91:2f:1d:e3:f3: 6b:db:fd:b6:d5:f9:5f:7a:96:cb:69:7b:83:5b:c3: 99:1a:c4:b8:ab:70:46:cc:e9:54:ac:8d:3f:74:5f: 56:09:12:8f:bc:89:ee:44:55:a3:3b:d9:29:85:e1: d4:49:2f:2b:15:8d:fc:5f:c7:7a:77:a5:41:88:64: 56:c8:29:7f:67:2c:ea:16:3f:8e:c8:a0:55:ae:45: 0b:1e:87:fb:57:8c:06:08:bb:54:ef:1f:d0:00:e1: 48:8e:bc:e1:b6:b2:25:e1:0a:80:17:07:f9:3a:8f: 3c:a4:8a:f6:56:17:f9:19:58:08:b9:66:1c:b7:23: ba:57:4f:53:0f:ec:a2:bf:25:9c:12:37:61:6d:ea: 71:5f:bd:d3:3c:ca:a0:b9:e7:61:d9:f9:dc:f0:be: 8f:38:5f:ed:9f:07:d6:38:eb:e4:db:98:aa:51:9a: 46:dc:7a:0d:9e:87:99:3a:e9:ab:fd:d0:19:93:5e: 73:69:66:f6:65:51:a9:55:26:26:77:42:bf:81:fe: 47:65:5f:ff:aa:1b:60:d2:47:3e:8a:02:96:46:cc: 79:20:46:ba:e4:f7:bd:ad:ab:2c:fc:73:45:db:98: 56:db:a5:36:0c:e3:8c:35:98:76:90:b9:cc:6f:da: 6f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:37:99:7B:D6:74:CC:FF:42:9A:9C:76:AF:0C:39:AA:C4:E9:9A:41 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0d:29:bc:92:32:83:a3:9a:52:56:8a:68:0d:9f:ac:7f:6f: 96:81:f2:76:13:bf:5e:2d:28:1b:62:f1:6d:b6:d1:39:27:aa: 2a:0e:fc:b6:ec:84:57:b9:90:49:83:0d:81:43:29:97:7e:40: f9:a1:75:2f:8c:43:f0:c6:31:20:3e:ad:ba:80:97:bf:e4:03: 5c:63:13:37:3e:69:bc:de:1b:8d:d2:f6:2d:40:23:c8:38:68: 80:24:57:7b:2f:c1:95:d1:d5:65:e1:78:3f:a0:99:aa:b5:57: 37:5f:b9:3a:7a:44:d5:84:0b:09:dc:6b:bd:ed:f4:03:12:19: 46:25:d7:0b:a4:64:de:10:d0:25:53:1a:e2:ad:03:c6:17:f4: 5d:62:dd:35:7f:82:d7:71:b1:4c:46:29:64:72:ca:62:3d:e5: 90:8e:81:14:a2:39:25:cd:4f:75:37:84:a4:b0:19:02:71:c1: bd:6c:ad:c1:2b:e7:8d:2e:0b:c0:a2:9a:f3:aa:96:a2:f5:bc: f8:fd:57:2e:c4:22:aa:e2:f9:f1:65:b0:2a:8f:0f:b0:aa:17: 3a:ae:4d:f5:50:6c:f4:7e:dc:e1:ac:c9:9a:22:73:f1:57:00: 83:c0:81:29:cb:63:7a:d0:d6:6a:16:1f:b2:13:f4:18:c4:74: 5f:7a:42:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjYwNDE3MDEwMDI0WhcNMjYwNDI0MDEwMDI0WjAYMRYwFAYD VQQDEw02OWUxODYyOC1kZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Yitt6kPD/rIkS8d4/Nr2/221flfepbLaXuDW8OZGsS4q3BGzOlUrI0/dF9W CRKPvInuRFWjO9kpheHUSS8rFY38X8d6d6VBiGRWyCl/ZyzqFj+OyKBVrkULHof7 V4wGCLtU7x/QAOFIjrzhtrIl4QqAFwf5Oo88pIr2Vhf5GVgIuWYctyO6V09TD+yi vyWcEjdhbepxX73TPMqguedh2fnc8L6POF/tnwfWOOvk25iqUZpG3HoNnoeZOumr /dAZk15zaWb2ZVGpVSYmd0K/gf5HZV//qhtg0kc+igKWRsx5IEa65Pe9rass/HNF 25hW26U2DOOMNZh2kLnMb9pvYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDU3mXvW dMz/Qpqcdq8MOarE6ZpBMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnA0pvJIyg6OaUlaKaA2frH9vloHydhO/Xi0oG2LxbbbROSeqKg78tuyEV7mQ SYMNgUMpl35A+aF1L4xD8MYxID6tuoCXv+QDXGMTNz5pvN4bjdL2LUAjyDhogCRX ey/BldHVZeF4P6CZqrVXN1+5OnpE1YQLCdxrve30AxIZRiXXC6Rk3hDQJVMa4q0D xhf0XWLdNX+C13GxTEYpZHLKYj3lkI6BFKI5Jc1PdTeEpLAZAnHBvWytwSvnjS4L wKKa86qWovW8+P1XLsQiquL58WWwKo8PsKoXOq5N9VBs9H7c4azJmiJz8VcAg8CB KctjetDWahYfshP0GMR0X3pCow== -----END CERTIFICATE-----Generated at Fri Apr 17 12:33:02 2026 by rpki-client