$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft File: hCMykdLcashg9UvuzoHVSwNEA78.mft (raw, json) Hash identifier: fv+f7rsyGBEWeAolesRNabWbjRdph82MEYPWxm8fDbQ= Subject key identifier: F6:C5:93:74:5A:16:13:46:05:B8:5E:CE:7B:DB:B4:08:14:3D:9D:09 Authority key identifier: 84:23:32:91:D2:DC:6A:C8:60:F5:4B:EE:CE:81:D5:4B:03:44:03:BF Certificate issuer: /CN=A91CAA8A/serialNumber=84233291D2DC6AC860F54BEECE81D54B034403BF Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft Manifest number: 33 Signing time: Fri 17 Apr 2026 08:21:26 +0000 Manifest this update: Fri 17 Apr 2026 08:21:26 +0000 Manifest next update: Fri 24 Apr 2026 08:21:26 +0000 Files and hashes: 1: hCMykdLcashg9UvuzoHVSwNEA78.crl (hash: dj51BAaXS2VGGUdENjcvkuKHg4sM3W8k7RfD82+MG7A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.crl rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA8A, serialNumber=84233291D2DC6AC860F54BEECE81D54B034403BF Validity Not Before: Apr 17 08:21:26 2026 GMT Not After : Apr 24 08:21:26 2026 GMT Subject: CN=69e1ed86-6129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:81:4a:77:c3:1f:4e:9d:14:00:cc:7b:6a: 04:41:b7:5d:0f:50:72:53:18:e4:e5:2c:1a:fc:26: 5f:9f:80:1b:4b:03:b2:17:a7:1f:cc:6f:e9:c1:e3: ef:fe:64:6f:92:c3:7c:c6:03:08:6d:01:0b:b0:11: ae:0e:87:9f:4f:04:df:96:60:9e:5f:40:86:89:21: ae:de:1f:b9:03:d8:15:64:65:85:a2:33:29:c4:1f: d4:95:1f:75:4e:73:de:24:f2:8c:55:1f:39:97:fa: d6:19:e5:53:d1:ea:b4:53:db:3f:06:5b:73:0f:ca: d9:9d:f0:6d:80:4e:60:18:42:6a:39:97:26:94:df: 3a:4b:e7:2b:76:18:dc:bf:c7:64:51:fe:20:dc:95: d1:48:4c:c6:9e:6c:81:e8:9e:19:fb:ae:6d:ed:36: ed:7e:4e:ed:7e:4e:07:8b:40:f5:89:52:25:3a:a5: 11:f1:7d:e7:92:9c:27:cd:d4:f6:ca:cd:75:78:20: 21:3e:77:54:c1:f0:a2:5e:ce:81:1f:92:50:ef:ba: ce:30:1b:77:50:7b:09:b7:57:22:11:0b:af:31:e1: d6:a9:1a:a0:6b:42:71:26:db:10:36:c9:fe:4a:12: ae:be:d2:71:c6:38:bc:30:f1:23:26:b8:e4:4a:10: 04:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C5:93:74:5A:16:13:46:05:B8:5E:CE:7B:DB:B4:08:14:3D:9D:09 X509v3 Authority Key Identifier: keyid:84:23:32:91:D2:DC:6A:C8:60:F5:4B:EE:CE:81:D5:4B:03:44:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hCMykdLcashg9UvuzoHVSwNEA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA8A/9F3E5516F2D111F0989AD8CE3C6F56BC/hCMykdLcashg9UvuzoHVSwNEA78.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:59:e4:d3:3f:f3:4a:09:07:5d:28:f7:49:e5:0c:ea:34:cf: a7:b9:d3:67:1f:1a:72:62:8f:22:d7:44:a3:be:b3:03:11:db: 31:83:b0:f6:2a:4e:37:99:7e:d6:ab:eb:d6:b0:f5:4e:90:6e: 8d:93:7b:f4:c0:a6:25:65:2e:40:ec:b7:8e:c2:3d:f6:58:a6: 46:5c:23:78:13:61:d5:25:ed:fc:8a:87:a2:9f:ae:fc:b2:ad: b3:d2:aa:d0:55:a0:53:fa:81:d4:4f:15:09:c9:0f:5f:7e:d6: 41:08:44:eb:4d:7d:c1:1d:0b:76:69:cd:df:74:3d:2c:43:30: 9e:fd:25:8e:8c:b6:36:46:8e:bc:d5:0a:e0:88:87:01:24:4f: 63:82:3e:05:d1:e2:36:01:07:71:ed:b4:b5:08:22:1f:19:23: 69:1d:89:cd:60:f0:69:c0:28:43:61:57:ce:14:27:2b:93:0f: 53:7d:ee:4c:10:71:09:89:14:78:48:d2:64:ff:7b:60:51:a0: ad:5c:60:f3:49:00:ba:9e:f4:65:5d:d7:8e:a1:29:fc:e8:02: 10:df:e3:95:30:d4:88:20:8e:62:9f:1d:d2:e9:54:71:82:a4: 52:e8:17:e5:1f:65:d5:5d:1d:04:28:32:62:43:90:16:68:52: 98:2b:e7:2d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QUE4QTExMC8GA1UEBRMoODQyMzMyOTFEMkRDNkFDODYwRjU0QkVFQ0U4MUQ1NEIw MzQ0MDNCRjAeFw0yNjA0MTcwODIxMjZaFw0yNjA0MjQwODIxMjZaMBgxFjAUBgNV BAMTDTY5ZTFlZDg2LTYxMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyJoFKd8MfTp0UAMx7agRBt10PUHJTGOTlLBr8Jl+fgBtLA7IXpx/Mb+nB4+/+ ZG+Sw3zGAwhtAQuwEa4Oh59PBN+WYJ5fQIaJIa7eH7kD2BVkZYWiMynEH9SVH3VO c94k8oxVHzmX+tYZ5VPR6rRT2z8GW3MPytmd8G2ATmAYQmo5lyaU3zpL5yt2GNy/ x2RR/iDcldFITMaebIHonhn7rm3tNu1+Tu1+TgeLQPWJUiU6pRHxfeeSnCfN1PbK zXV4ICE+d1TB8KJezoEfklDvus4wG3dQewm3VyIRC68x4dapGqBrQnEm2xA2yf5K Eq6+0nHGOLww8SMmuORKEASfAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU9sWTdFoW E0YFuF7Oe9u0CBQ9nQkwHwYDVR0jBBgwFoAUhCMykdLcashg9UvuzoHVSwNEA78w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBQThBLzlGM0U1NTE2RjJE MTExRjA5ODlBRDhDRTNDNkY1NkJDL2hDTXlrZExjYXNoZzlVdnV6b0hWU3dORUE3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaENNeWtkTGNhc2hnOVV2dXpvSFZTd05FQTc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNB QThBLzlGM0U1NTE2RjJEMTExRjA5ODlBRDhDRTNDNkY1NkJDL2hDTXlrZExjYXNo ZzlVdnV6b0hWU3dORUE3OC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQABWeTTP/NKCQddKPdJ5QzqNM+nudNnHxpyYo8i10SjvrMDEdsxg7D2Kk43mX7W q+vWsPVOkG6Nk3v0wKYlZS5A7LeOwj32WKZGXCN4E2HVJe38ioein678sq2z0qrQ VaBT+oHUTxUJyQ9fftZBCETrTX3BHQt2ac3fdD0sQzCe/SWOjLY2Ro681QrgiIcB JE9jgj4F0eI2AQdx7bS1CCIfGSNpHYnNYPBpwChDYVfOFCcrkw9Tfe5MEHEJiRR4 SNJk/3tgUaCtXGDzSQC6nvRlXdeOoSn86AIQ3+OVMNSIII5inx3S6VRxgqRS6Bfl H2XVXR0EKDJiQ5AWaFKYK+ct -----END CERTIFICATE-----Generated at Fri Apr 17 21:28:03 2026 by rpki-client