$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: r1M+9gMC2bextjhN5YdM0x2UJGF/o8NdseGcNypJoag= Subject key identifier: 85:D6:59:C5:DE:94:1C:F3:7D:CD:AB:38:C8:F2:D5:49:78:E8:10:CC Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 0A15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 09BE Signing time: Thu 16 Apr 2026 20:26:29 +0000 Manifest this update: Thu 16 Apr 2026 20:26:28 +0000 Manifest next update: Thu 23 Apr 2026 20:26:28 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: IIvhA3GEI2Wg4MASrkIqb+rmdAY99kse46HbCLoWMP0=) 2: 6B7D02AEB4A111F08515F713C4F9AE02.roa (hash: KSjOH0qSpAK/DBNETg1G0TL4OaIKzJinGTqF6Z++SO4=) 3: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: ktr77GGT9fUMH7Uwa9KLHv2apdlBRjzWDQ3Us8CVMz4=) 4: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: /AqzGVP/RU7VivZQf679uLu1hQ4PEwap68JYs68UOUA=) 5: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: OcTJGmV3ruCByOlEEfhn4J37GE6D+EDW5cjJYcZ4n2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2581 (0xa15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Apr 16 20:26:28 2026 GMT Not After : Apr 23 20:26:28 2026 GMT Subject: CN=69e145f5-d3b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:27:e4:5e:a3:c6:f9:97:2d:8b:09:95:dd: 5d:c6:8b:b1:b1:a8:ea:37:fd:17:4c:62:72:ab:8e: 7c:69:74:88:f5:cb:63:8c:27:4d:15:4e:30:2c:8c: 2a:6a:c7:8e:d1:df:3a:68:4d:75:8a:18:05:d0:4c: fe:c4:16:59:91:93:aa:59:6e:eb:c3:ec:22:91:98: bd:37:ff:84:65:30:28:75:61:04:35:7a:fc:f0:cb: 5e:7e:73:9b:bd:e5:90:df:5a:26:94:50:70:e2:fd: 8d:ae:8e:7e:66:9d:41:1e:71:1f:da:69:00:30:d3: ad:1f:1e:85:0f:8a:3c:fc:7b:4e:ad:66:37:cd:48: d4:30:6b:c9:b8:80:ad:c0:21:a0:ed:61:88:97:16: 15:e8:5d:49:67:64:d7:e0:b6:6e:2b:96:25:3d:b4: 49:d8:ad:75:64:76:0c:74:cf:52:c4:b9:51:a3:96: f4:47:08:7c:94:d4:90:ac:a9:77:66:c9:36:e1:52: 82:c7:48:40:8f:0a:9e:ca:94:3d:74:21:88:c8:1a: 1e:a8:4a:4b:d8:e2:dc:41:54:8d:2f:e8:20:2e:ca: 3f:79:77:5d:f8:ca:18:4e:26:17:98:7f:9e:b3:6b: bc:85:b8:d2:76:bd:51:63:af:b4:c3:de:98:02:3b: b7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D6:59:C5:DE:94:1C:F3:7D:CD:AB:38:C8:F2:D5:49:78:E8:10:CC X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:4b:ec:e3:0f:ea:ba:b3:50:27:d7:f2:94:de:52:dc:fd:98: 40:06:c7:53:b0:36:06:70:78:6c:6b:39:66:24:78:a3:70:f7: 03:63:95:4c:9d:5b:2a:de:c5:43:2d:53:3d:1b:0f:b1:ad:43: e3:54:b0:c2:0d:84:a2:3f:16:55:37:ea:95:16:d3:bc:62:6e: 5f:c8:d4:a9:d7:39:fb:cb:6c:4e:d2:24:1e:d5:99:77:de:f4: 1e:66:6d:ad:6d:b5:da:a1:e3:d6:97:3b:5e:28:89:d7:7c:88: be:3a:10:e5:6f:55:31:23:a6:a8:ed:a3:5e:9e:16:f3:92:18: d3:3b:66:6d:a9:7f:07:07:c0:69:02:5a:5e:8b:e8:d1:25:d3: 2a:4d:52:57:74:e7:c9:b7:06:e6:bc:d0:aa:a8:30:b2:3b:fb: 3f:92:64:fe:b7:42:e7:1e:b3:58:13:fa:90:a4:ea:5f:fb:15: b2:ea:f1:25:07:4d:5e:3c:d8:b5:16:23:a1:19:23:89:8e:b2: 3e:58:5e:bd:83:82:de:6d:1c:55:3b:50:be:b5:34:d9:8f:8f: 3d:d3:f0:99:34:44:2f:b0:28:62:7b:96:3e:21:61:93:cd:8d: 9a:9a:37:78:10:f6:98:e5:a0:11:c9:b7:a6:de:6d:b9:c7:d6: 1a:de:20:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjYwNDE2MjAyNjI4WhcNMjYwNDIzMjAyNjI4WjAYMRYwFAYD VQQDEw02OWUxNDVmNS1kM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJQn5F6jxvmXLYsJld1dxouxsajqN/0XTGJyq458aXSI9ctjjCdNFU4wLIwq aseO0d86aE11ihgF0Ez+xBZZkZOqWW7rw+wikZi9N/+EZTAodWEENXr88MtefnOb veWQ31omlFBw4v2Nro5+Zp1BHnEf2mkAMNOtHx6FD4o8/HtOrWY3zUjUMGvJuICt wCGg7WGIlxYV6F1JZ2TX4LZuK5YlPbRJ2K11ZHYMdM9SxLlRo5b0Rwh8lNSQrKl3 Zsk24VKCx0hAjwqeypQ9dCGIyBoeqEpL2OLcQVSNL+ggLso/eXdd+MoYTiYXmH+e s2u8hbjSdr1RY6+0w96YAju3awIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIXWWcXe lBzzfc2rOMjy1Ul46BDMMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZkvs4w/qurNQJ9fylN5S3P2YQAbHU7A2BnB4bGs5ZiR4o3D3A2OVTJ1bKt7F Qy1TPRsPsa1D41Swwg2Eoj8WVTfqlRbTvGJuX8jUqdc5+8tsTtIkHtWZd970HmZt rW212qHj1pc7XiiJ13yIvjoQ5W9VMSOmqO2jXp4W85IY0ztmbal/BwfAaQJaXovo 0SXTKk1SV3TnybcG5rzQqqgwsjv7P5Jk/rdC5x6zWBP6kKTqX/sVsurxJQdNXjzY tRYjoRkjiY6yPlhevYOC3m0cVTtQvrU02Y+PPdPwmTREL7AoYnuWPiFhk82Nmpo3 eBD2mOWgEcm3pt5tucfWGt4gJA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:55:17 2026 by rpki-client