$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: WwpRBO898HH7A6f44G2ZeBh/KfnDU5VXUh8e8+dpxLc= Subject key identifier: 10:66:30:20:04:B0:58:D7:7F:BF:B8:3D:6C:0F:A0:B8:31:E8:64:1F Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0CA1 Signing time: Thu 16 Apr 2026 18:29:54 +0000 Manifest this update: Thu 16 Apr 2026 18:29:54 +0000 Manifest next update: Thu 23 Apr 2026 18:29:54 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: OjnC7N3HSlmiJSPnRMHjIuxSkmRS16R1Ls0dFl7mhn8=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: rh5kanvG5QXPAMOrNiNLJLVHnbyU12f7aHXUzCF2hMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Apr 16 18:29:54 2026 GMT Not After : Apr 23 18:29:54 2026 GMT Subject: CN=69e12aa2-3191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5a:6a:66:45:a4:33:37:58:60:86:7e:d5:05: 08:40:44:74:ae:be:51:87:76:05:1d:8c:a9:eb:bf: 61:12:67:58:02:13:7f:2c:1b:26:4e:ff:6a:18:a9: fd:60:a8:7d:c3:5e:e2:99:68:de:52:34:55:92:d9: 31:d8:51:c9:03:f9:b8:28:2e:f3:f0:1d:bf:5d:69: 96:4d:30:83:11:f8:ac:92:40:f8:bd:fd:79:95:fd: c4:5c:29:06:1d:31:ba:0b:4e:b8:46:5b:3e:14:79: 87:51:8d:ac:38:39:91:cc:83:c7:32:de:92:78:a5: ec:9d:54:03:d0:3b:4e:54:7a:35:92:c3:ae:22:1e: 79:e0:4d:cc:32:f7:8f:09:12:f4:6d:68:39:87:cc: 04:25:0b:96:a0:e2:f5:e6:09:0c:74:54:bc:4f:49: 1d:a5:11:51:ea:ec:1a:21:19:bf:1a:f1:11:57:04: 37:dd:89:b9:f7:79:77:e1:c6:8e:ad:f1:7c:ce:80: dd:e8:50:cf:bb:e9:29:da:31:53:a2:cf:ad:c3:e0: 82:9a:9d:ab:83:3f:5c:cc:68:5b:a2:18:ac:22:d3: 04:53:f8:c1:ad:85:c9:3c:d5:0a:83:f9:97:69:8b: 8b:82:7b:76:54:48:13:4a:7f:d9:9d:e1:be:55:0d: 79:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:66:30:20:04:B0:58:D7:7F:BF:B8:3D:6C:0F:A0:B8:31:E8:64:1F X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:fa:da:04:d0:f8:c9:77:be:0a:ea:59:3a:65:e2:da:55:e6: b3:38:4d:f4:0e:78:e2:ba:3b:03:c4:88:00:1b:d3:18:bb:0d: f8:f1:33:58:26:c5:70:94:28:1a:51:14:92:67:e7:86:0e:3c: ab:d3:2c:bf:41:2b:3b:47:f1:31:ab:77:12:bb:cf:e1:0d:63: 1e:7a:b0:16:b2:11:a7:50:22:9d:b6:43:27:38:4d:5e:61:ef: 86:df:e1:bb:81:25:17:61:21:bd:28:3e:24:4d:e1:8b:8a:ce: 38:07:e7:e0:2f:7c:9f:19:04:a9:21:f0:b0:b9:41:61:f5:10: 7c:81:5d:42:e3:9c:86:75:ef:0d:a3:08:0a:8d:19:30:01:7c: 05:48:81:ad:3d:45:d4:4b:a0:9e:0d:c1:0f:eb:80:78:f0:04: 19:98:ba:80:20:10:2c:13:5d:17:00:06:fa:6b:9e:38:99:41: c9:dd:60:cf:01:69:18:c4:88:6d:4d:04:3c:23:c2:b9:1b:1f: 92:e2:52:7d:d8:f0:44:77:63:32:87:2c:76:3f:bc:b7:c6:04: d7:6d:6a:0e:ce:8d:c3:12:1d:60:7d:e4:4e:b6:a7:aa:c0:da: d8:38:af:6e:51:96:d1:22:ad:42:c5:95:8e:4a:48:a6:d9:a1: c4:9b:37:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjYwNDE2MTgyOTU0WhcNMjYwNDIzMTgyOTU0WjAYMRYwFAYD VQQDEw02OWUxMmFhMi0zMTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFpqZkWkMzdYYIZ+1QUIQER0rr5Rh3YFHYyp679hEmdYAhN/LBsmTv9qGKn9 YKh9w17imWjeUjRVktkx2FHJA/m4KC7z8B2/XWmWTTCDEfiskkD4vf15lf3EXCkG HTG6C064Rls+FHmHUY2sODmRzIPHMt6SeKXsnVQD0DtOVHo1ksOuIh554E3MMveP CRL0bWg5h8wEJQuWoOL15gkMdFS8T0kdpRFR6uwaIRm/GvERVwQ33Ym593l34caO rfF8zoDd6FDPu+kp2jFTos+tw+CCmp2rgz9czGhbohisItMEU/jBrYXJPNUKg/mX aYuLgnt2VEgTSn/ZneG+VQ15vQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBBmMCAE sFjXf7+4PWwPoLgx6GQfMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI/raBND4yXe+CupZOmXi2lXmszhN9A544ro7A8SIABvTGLsN+PEzWCbFcJQo GlEUkmfnhg48q9Msv0ErO0fxMat3ErvP4Q1jHnqwFrIRp1AinbZDJzhNXmHvht/h u4ElF2EhvSg+JE3hi4rOOAfn4C98nxkEqSHwsLlBYfUQfIFdQuOchnXvDaMICo0Z MAF8BUiBrT1F1Eugng3BD+uAePAEGZi6gCAQLBNdFwAG+mueOJlByd1gzwFpGMSI bU0EPCPCuRsfkuJSfdjwRHdjMocsdj+8t8YE121qDs6NwxIdYH3kTranqsDa2Div blGW0SKtQsWVjkpIptmhxJs3cw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:40:20 2026 by rpki-client