$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: QcZ+Bv14ASIcombMgSg0Si3PMq4kHHlkvkwPx0tsxfs= Subject key identifier: 4A:84:A3:94:5D:23:C0:85:54:6E:2E:B8:F6:FF:C6:41:39:C4:78:95 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 059E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 058B Signing time: Thu 16 Apr 2026 23:09:31 +0000 Manifest this update: Thu 16 Apr 2026 23:09:31 +0000 Manifest next update: Thu 23 Apr 2026 23:09:31 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: JTqbDTgxm5pA+Bv9WPyqTFLkvbHulII5i13MQ5vJnP4=) 2: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 6Zu4L1ezgqlBaAtZaZeJDXKxjpiSp79xQrfuVaBXNZ8=) 3: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: mFoBkWfLh0LGrOinTzXA38KoXXGaCtnMvz2q3N7gfu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1438 (0x59e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Apr 16 23:09:31 2026 GMT Not After : Apr 23 23:09:31 2026 GMT Subject: CN=69e16c2b-7dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:05:b3:ec:ed:c4:0c:51:af:84:8b:4c:4f: 05:fe:44:9c:89:b7:67:f4:c5:fa:81:21:a7:78:67: 83:0d:a1:aa:81:e5:ee:b5:59:fd:d6:68:48:c3:e1: 63:ec:fe:89:40:91:b1:8e:7b:0b:00:96:82:50:46: cc:99:6e:e0:54:e1:b8:fe:43:4f:f9:e5:06:a0:6f: 73:b5:4f:26:0c:02:1c:c3:8e:8c:a3:ef:0b:9a:c4: 2f:59:6e:3f:11:2e:8d:7f:b3:4e:c1:d0:69:64:b3: af:2c:88:39:6f:3d:46:8e:ef:d0:9e:5c:f1:f7:6c: 76:00:05:46:f8:64:c2:ac:48:9c:ca:71:79:77:35: 0f:eb:c8:7e:88:dc:a3:4a:fc:d5:64:31:49:89:59: 3f:c6:0e:b9:f8:91:72:25:ad:21:14:b3:a2:49:ef: b3:52:6d:0a:04:41:c2:23:ea:21:92:87:f2:ac:3d: ff:e0:95:27:3a:1d:10:a7:45:00:1f:05:47:29:c8: 24:a0:68:f3:81:fc:d2:6b:33:5f:19:4b:82:e7:ab: 5a:5f:8d:8b:21:db:d7:d4:3a:bb:7f:af:13:bc:00: 71:6b:c3:c1:fb:2e:53:83:5f:7d:bf:60:b2:db:d9: ae:5b:ca:cc:e0:ca:00:4a:15:a4:f7:7b:88:03:e7: 28:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:84:A3:94:5D:23:C0:85:54:6E:2E:B8:F6:FF:C6:41:39:C4:78:95 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6c:5a:76:57:26:40:fa:0f:98:9b:4a:9c:5e:29:3c:c2:09: ff:82:a5:01:cf:37:e5:f7:2c:1e:36:25:0b:8c:f6:40:80:e7: 42:7c:bd:d7:cb:c5:9d:b7:9d:4c:48:5c:3d:6d:0a:fb:22:17: 68:a8:bc:d5:1b:e2:21:e5:70:d6:7a:48:1d:dd:e4:e1:c8:c5: 5e:8b:52:70:ac:38:0c:c8:22:90:9e:45:82:42:dc:ae:94:03: dc:d4:5a:e1:aa:aa:8f:58:a0:11:e7:04:43:ef:4d:aa:79:ac: 17:29:4b:c9:57:12:8f:41:1d:93:6c:3a:78:a4:66:9c:de:19: 8b:3b:4c:9b:ed:a3:ba:0c:92:ca:f9:60:3d:03:27:9b:bf:c1: 36:4e:be:20:88:ab:b5:11:2a:fa:25:d7:84:02:9f:7a:1e:b9: cb:9f:ff:8a:60:85:41:ed:7c:0d:b2:f9:a1:6c:22:c8:ef:5f: c9:8c:0a:7e:42:4f:f7:6c:ea:a4:cc:63:80:54:ab:2f:48:a4: 5c:78:51:ab:9c:df:0b:a4:0f:08:b0:ff:4f:d4:9a:32:19:88: c0:f1:fa:12:44:ce:bd:6b:06:8c:11:08:10:d8:5e:6c:7a:fd: 9c:61:5e:15:5e:2f:dd:4b:d6:94:3d:78:03:c5:88:a1:2a:21: b5:dc:6e:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjYwNDE2MjMwOTMxWhcNMjYwNDIzMjMwOTMxWjAYMRYwFAYD VQQDEw02OWUxNmMyYi03ZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2MFs+ztxAxRr4SLTE8F/kScibdn9MX6gSGneGeDDaGqgeXutVn91mhIw+Fj 7P6JQJGxjnsLAJaCUEbMmW7gVOG4/kNP+eUGoG9ztU8mDAIcw46Mo+8LmsQvWW4/ ES6Nf7NOwdBpZLOvLIg5bz1Gju/Qnlzx92x2AAVG+GTCrEicynF5dzUP68h+iNyj SvzVZDFJiVk/xg65+JFyJa0hFLOiSe+zUm0KBEHCI+ohkofyrD3/4JUnOh0Qp0UA HwVHKcgkoGjzgfzSazNfGUuC56taX42LIdvX1Dq7f68TvABxa8PB+y5Tg199v2Cy 29muW8rM4MoAShWk93uIA+coVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEqEo5Rd I8CFVG4uuPb/xkE5xHiVMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG2xadlcmQPoPmJtKnF4pPMIJ/4KlAc835fcsHjYlC4z2QIDnQny918vFnbed TEhcPW0K+yIXaKi81RviIeVw1npIHd3k4cjFXotScKw4DMgikJ5FgkLcrpQD3NRa 4aqqj1igEecEQ+9NqnmsFylLyVcSj0Edk2w6eKRmnN4ZiztMm+2jugySyvlgPQMn m7/BNk6+IIirtREq+iXXhAKfeh65y5//imCFQe18DbL5oWwiyO9fyYwKfkJP92zq pMxjgFSrL0ikXHhRq5zfC6QPCLD/T9SaMhmIwPH6EkTOvWsGjBEIENhebHr9nGFe FV4v3UvWlD14A8WIoSohtdxuZQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:46:32 2026 by rpki-client