$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: TOWOzQ0anUfdIiZHIz6fMYWV7w2yv2BcBp99S2zrzkA= Subject key identifier: 5A:35:42:36:77:AA:96:23:E0:C6:5D:6A:36:59:9C:2C:0B:86:72:12 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1BF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1BEA Signing time: Thu 16 Apr 2026 16:10:52 +0000 Manifest this update: Thu 16 Apr 2026 16:10:52 +0000 Manifest next update: Thu 23 Apr 2026 16:10:52 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: P0imjuX2n5tsrXhtsNcymwz1r9efDvevU0s/fLLU/ic=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: Y6ha1LXXijatzuKxRvx5GL0m9bXoYJ6BXHEwlVlS+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7157 (0x1bf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Apr 16 16:10:52 2026 GMT Not After : Apr 23 16:10:52 2026 GMT Subject: CN=69e10a0c-d3fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cf:0e:14:8e:3e:52:88:c4:a0:76:17:4c:4f: 4f:b2:0b:e0:3e:15:dd:68:1d:fe:e0:2d:ef:03:62: 87:cf:70:b8:29:6f:8c:e1:e4:84:c7:87:d4:51:87: b1:85:c2:04:82:9f:85:ce:d9:4d:08:76:01:e5:e8: 89:2f:67:c9:e4:0d:5b:1d:00:6a:8d:91:2f:1b:77: 7c:e2:89:8a:7c:dd:9c:4b:29:57:e6:96:cf:54:1c: e4:8e:59:07:de:82:c7:01:02:d6:0f:db:08:93:61: f9:2a:90:0a:f5:fd:cf:4a:e3:e6:74:a0:13:39:65: c3:69:b8:61:83:9c:97:cf:53:56:0a:24:cf:7f:d5: 30:17:a1:0c:bb:32:b4:39:b0:0e:a4:cb:80:24:7f: 05:0e:38:90:68:34:21:f5:a3:39:55:88:94:a5:cd: a1:5d:15:8f:51:4f:b2:df:95:d9:dc:19:cb:5c:c8: e3:c9:32:1f:a5:5a:d8:4c:2f:b4:c9:d9:23:fa:2c: bf:61:f4:42:93:01:be:73:61:0c:f6:ed:e4:2e:ef: 16:ba:f1:5f:20:33:e1:cc:ad:bf:83:00:07:7c:2a: 04:4a:19:de:d1:dd:c2:bb:d3:74:ce:74:dd:a7:84: 30:96:44:ae:4a:00:f9:7f:48:d7:86:27:2b:08:20: cd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:35:42:36:77:AA:96:23:E0:C6:5D:6A:36:59:9C:2C:0B:86:72:12 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d9:d5:9e:72:99:af:72:92:bf:f6:17:4e:57:15:67:e9:7c: e8:d1:c0:09:d8:66:9e:55:dc:38:8c:2f:3f:9e:09:3e:f3:99: 4a:d4:8b:7a:b5:34:e9:29:d6:fe:2a:0a:53:6e:65:0d:02:fe: a1:ec:e0:2b:e4:26:79:4e:0c:c0:d9:41:4a:0a:3b:e7:5f:08: 18:33:10:2b:4a:95:f1:2a:74:5e:82:2c:06:34:af:02:64:44: c7:69:0b:e5:7f:84:c1:15:02:27:6d:65:d6:47:51:5b:5a:e2: 83:7c:48:0e:48:f0:2e:42:44:0e:9c:74:0c:f7:24:5f:73:c9: ae:dc:69:71:e7:b0:60:89:6d:3a:8a:71:a8:e0:09:ef:c5:b2: d3:86:67:3f:df:bb:6d:08:b7:d7:59:ea:19:0f:25:94:c2:22: ec:4c:c3:e9:7c:76:0b:26:62:a3:a2:7f:63:3b:e1:04:cd:b6: f7:47:b4:c9:83:fb:e1:c7:67:6d:3f:75:27:ff:ac:64:0a:d3: 8a:39:0d:d8:e3:6c:3a:bb:39:f9:dd:d9:e5:1a:7d:84:ef:b5: e5:0e:42:68:55:47:3b:c0:da:d8:64:4c:cd:8a:d4:fc:7f:61: 6f:c7:42:67:12:a9:b4:17:bd:a7:a4:fc:4f:f5:ed:b0:5c:68: 89:12:3e:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjYwNDE2MTYxMDUyWhcNMjYwNDIzMTYxMDUyWjAYMRYwFAYD VQQDEw02OWUxMGEwYy1kM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0s8OFI4+UojEoHYXTE9PsgvgPhXdaB3+4C3vA2KHz3C4KW+M4eSEx4fUUYex hcIEgp+FztlNCHYB5eiJL2fJ5A1bHQBqjZEvG3d84omKfN2cSylX5pbPVBzkjlkH 3oLHAQLWD9sIk2H5KpAK9f3PSuPmdKATOWXDabhhg5yXz1NWCiTPf9UwF6EMuzK0 ObAOpMuAJH8FDjiQaDQh9aM5VYiUpc2hXRWPUU+y35XZ3BnLXMjjyTIfpVrYTC+0 ydkj+iy/YfRCkwG+c2EM9u3kLu8WuvFfIDPhzK2/gwAHfCoEShne0d3Cu9N0znTd p4QwlkSuSgD5f0jXhicrCCDNPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFo1QjZ3 qpYj4MZdajZZnCwLhnISMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASNnVnnKZr3KSv/YXTlcVZ+l86NHACdhmnlXcOIwvP54JPvOZStSLerU06SnW /ioKU25lDQL+oezgK+QmeU4MwNlBSgo7518IGDMQK0qV8Sp0XoIsBjSvAmREx2kL 5X+EwRUCJ21l1kdRW1rig3xIDkjwLkJEDpx0DPckX3PJrtxpceewYIltOopxqOAJ 78Wy04ZnP9+7bQi311nqGQ8llMIi7EzD6Xx2CyZio6J/YzvhBM2290e0yYP74cdn bT91J/+sZArTijkN2ONsOrs5+d3Z5Rp9hO+15Q5CaFVHO8Da2GRMzYrU/H9hb8dC ZxKptBe9p6T8T/XtsFxoiRI++Q== -----END CERTIFICATE-----Generated at Fri Apr 17 09:58:05 2026 by rpki-client