$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft File: r_h3chh1NYXDiOm4HDkGa9ONtZI.mft (raw, json) Hash identifier: ufalepG71LYEl4yYvmHh9WWDSAtvlLqpoiazkoNejts= Subject key identifier: 64:A5:75:C8:91:60:A8:E7:D6:60:87:7B:B1:B3:A4:1F:BA:30:18:3F Authority key identifier: AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 Certificate issuer: /CN=A91CB3FE/serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft Manifest number: AD Signing time: Fri 17 Apr 2026 06:53:44 +0000 Manifest this update: Fri 17 Apr 2026 06:53:44 +0000 Manifest next update: Fri 24 Apr 2026 06:53:44 +0000 Files and hashes: 1: r_h3chh1NYXDiOm4HDkGa9ONtZI.crl (hash: PvsWyI7kFuGBogQGGd2NTzPD4JHFQESQBSlMWhUdMx8=) 2: AFD61B9C36A311F08A82A258C4F9AE02.roa (hash: pJSESHzyh46NJYdnq5GWolfK6jlgGJK8T3PBPiUJbVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3FE, serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Validity Not Before: Apr 17 06:53:44 2026 GMT Not After : Apr 24 06:53:44 2026 GMT Subject: CN=69e1d8f8-eb0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:87:9d:22:71:6b:fa:ec:8b:90:92:d2:36:55: cc:2d:eb:fc:40:21:a4:38:66:7c:ae:3a:ef:01:0b: 71:35:5b:b2:bd:cb:58:4a:ae:6f:0f:d9:fd:47:e8: 8e:9f:70:ba:6a:ac:c5:15:cf:aa:4f:6b:87:a5:e5: 17:fe:40:a3:09:33:3b:ed:d6:c7:32:d4:1a:95:cf: 14:f5:6c:d7:73:e9:7b:ce:40:df:17:1f:40:5f:29: a6:e0:c0:c0:fb:b1:c7:10:a9:ac:8f:11:19:11:13: d9:69:38:f8:93:60:38:6c:fd:50:8b:25:49:b9:db: ad:2c:b5:23:47:1c:c6:57:90:23:fa:11:7d:98:b2: ad:f4:ab:c4:61:5e:dc:11:b7:18:b4:78:0d:cc:15: 5d:9f:d0:90:9d:89:46:65:b1:50:88:5b:07:ab:ce: 65:8e:07:e9:6b:c0:b4:d0:48:2f:5a:09:3c:6f:0e: 69:d0:3b:ce:e1:e8:d1:9f:ca:6a:e7:2c:40:cb:0f: 64:ba:34:90:b1:25:8a:70:7d:3d:b6:3b:b2:57:44: 29:1b:07:15:7f:64:c8:ef:9d:a1:23:e9:ce:3e:42: f6:28:71:7f:42:09:05:eb:97:7a:7c:1d:ce:a9:d7: 6b:17:4c:68:e9:c5:8f:de:55:e3:f9:f5:8b:34:75: cb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A5:75:C8:91:60:A8:E7:D6:60:87:7B:B1:B3:A4:1F:BA:30:18:3F X509v3 Authority Key Identifier: keyid:AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:3e:67:fa:44:a0:ad:2a:fb:88:a2:e9:38:b4:0d:43:18:f8: 61:ff:4c:1e:ea:9c:d1:63:76:b4:aa:73:74:2a:98:b1:f9:79: ab:ac:c3:bf:bf:2c:c0:d7:31:d6:1a:dc:36:48:8e:c5:4b:34: 71:15:9f:dd:2f:79:5b:71:63:46:24:e1:59:31:1b:31:f2:54: fb:b4:f4:b5:a8:90:fc:f0:4f:ef:b1:89:69:95:36:55:9c:b2: d4:27:92:81:62:bd:b4:ef:d4:aa:c2:9b:3f:49:bf:6e:74:e1: 03:ee:b9:78:59:f5:1a:56:4e:49:85:a7:6e:18:3b:7a:ff:68: 01:d4:4b:48:6c:5d:fd:4b:33:a8:3f:b5:48:8d:0a:bd:98:9b: fe:00:d5:d6:98:39:8b:7a:6f:39:4b:7b:10:34:13:72:4d:7d: 67:34:52:9a:26:af:db:2d:3a:77:45:60:52:3b:28:07:d7:fb: e2:7f:f2:c1:ab:3a:81:ae:67:b9:4f:ff:fb:a7:c3:23:15:3d: 16:bb:e9:68:d2:33:a9:d6:f9:9e:da:aa:01:20:da:bb:e4:62: e1:72:ac:90:4d:03:af:62:89:15:5d:a7:7f:b2:fb:99:ff:56: 10:8a:50:34:2b:6c:50:59:24:1e:3f:cc:24:0d:31:e3:61:25: 46:9d:93:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzRkUxMTAvBgNVBAUTKEFGRjg3NzcyMTg3NTM1ODVDMzg4RTlCODFDMzkwNjZC RDM4REI1OTIwHhcNMjYwNDE3MDY1MzQ0WhcNMjYwNDI0MDY1MzQ0WjAYMRYwFAYD VQQDEw02OWUxZDhmOC1lYjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4edInFr+uyLkJLSNlXMLev8QCGkOGZ8rjrvAQtxNVuyvctYSq5vD9n9R+iO n3C6aqzFFc+qT2uHpeUX/kCjCTM77dbHMtQalc8U9WzXc+l7zkDfFx9AXymm4MDA +7HHEKmsjxEZERPZaTj4k2A4bP1QiyVJudutLLUjRxzGV5Aj+hF9mLKt9KvEYV7c EbcYtHgNzBVdn9CQnYlGZbFQiFsHq85ljgfpa8C00EgvWgk8bw5p0DvO4ejRn8pq 5yxAyw9kujSQsSWKcH09tjuyV0QpGwcVf2TI752hI+nOPkL2KHF/QgkF65d6fB3O qddrF0xo6cWP3lXj+fWLNHXLrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGSldciR YKjn1mCHe7GzpB+6MBg/MB8GA1UdIwQYMBaAFK/4d3IYdTWFw4jpuBw5BmvTjbWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNGRS8yQTU2ODc4MjM2 QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5ZWERpT200SERrR2E5T050 WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaDNjaGgxTllYRGlPbTRIRGtHYTlPTnRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjNGRS8yQTU2ODc4MjM2QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5Z WERpT200SERrR2E5T050WkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaT5n+kSgrSr7iKLpOLQNQxj4Yf9MHuqc0WN2tKpzdCqYsfl5q6zDv78swNcx 1hrcNkiOxUs0cRWf3S95W3FjRiThWTEbMfJU+7T0taiQ/PBP77GJaZU2VZyy1CeS gWK9tO/UqsKbP0m/bnThA+65eFn1GlZOSYWnbhg7ev9oAdRLSGxd/UszqD+1SI0K vZib/gDV1pg5i3pvOUt7EDQTck19ZzRSmiav2y06d0VgUjsoB9f74n/ywas6ga5n uU//+6fDIxU9FrvpaNIzqdb5ntqqASDau+Ri4XKskE0Dr2KJFV2nf7L7mf9WEIpQ NCtsUFkkHj/MJA0x42ElRp2Tdw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:24:42 2026 by rpki-client