$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft File: CekFd0f2O6Ciga54ATZozt6kCrQ.mft (raw, json) Hash identifier: sGRvtX0BaR7blRRF3qrwEFOLt+821TvofWqw3Mhdlxs= Subject key identifier: C3:2D:FD:E3:49:A8:FA:91:00:13:CB:95:D4:6B:50:E7:02:9B:B8:31 Authority key identifier: 09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 Certificate issuer: /CN=A91CDAFB/serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft Manifest number: 0219 Signing time: Fri 17 Apr 2026 02:34:22 +0000 Manifest this update: Fri 17 Apr 2026 02:34:21 +0000 Manifest next update: Fri 24 Apr 2026 02:34:21 +0000 Files and hashes: 1: CekFd0f2O6Ciga54ATZozt6kCrQ.crl (hash: hYbHAfNVbSuQpFhzQdlrdT3Inil8InGW8Qld8CiUK3A=) 2: 2815D106041A11EEA67A6B4DC4F9AE02.roa (hash: OYerZcew/z3W1QIzxa4XrF+WiLMIJxrcPO1hXH0kxM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDAFB, serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Validity Not Before: Apr 17 02:34:21 2026 GMT Not After : Apr 24 02:34:21 2026 GMT Subject: CN=69e19c2d-e2c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:74:89:32:ef:07:22:da:19:fd:96:02:67:96: 5a:53:bf:ae:72:52:89:7e:29:92:12:00:23:7b:8c: 28:db:e7:d8:c3:2d:6c:93:fb:ed:2e:15:48:10:0a: c6:52:90:14:b6:80:00:33:07:96:84:37:d5:07:ad: 37:61:38:3a:37:f0:8b:88:a2:90:e5:41:8a:af:ea: b1:23:03:80:88:5c:c3:74:5e:5d:c1:cb:e7:6c:50: 38:ba:49:e2:11:52:96:5d:03:84:82:5b:6e:a0:9f: a9:0d:5f:b9:3b:8d:50:68:a2:ff:e6:3f:a3:0d:fc: 13:40:24:52:b7:bc:5a:12:5d:e0:39:22:a5:ae:d7: 9f:f6:44:e4:b8:44:c4:d2:b0:ff:25:6e:f8:40:39: 24:dc:2f:21:b4:7b:97:f0:60:b2:ab:be:76:85:ce: cd:e3:55:18:c0:e8:52:9b:2c:37:b7:dd:de:ea:cd: 9b:7d:de:f7:c8:55:32:5a:a8:03:30:20:93:f0:74: 71:b6:07:04:9c:a0:39:17:66:0a:07:bb:ce:ca:ac: 41:0f:38:64:bf:7e:b3:b8:86:eb:27:aa:2c:01:d8: 03:6a:85:08:64:82:54:80:ce:0e:95:73:cd:4a:47: b9:26:47:9a:66:7a:f0:9e:d8:3f:36:b8:c0:6c:f7: 98:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:2D:FD:E3:49:A8:FA:91:00:13:CB:95:D4:6B:50:E7:02:9B:B8:31 X509v3 Authority Key Identifier: keyid:09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:75:18:e8:2e:15:49:e0:0f:23:d8:25:47:72:6a:c4:39:3e: 0a:43:0a:d1:3a:14:27:93:1f:25:0e:f6:4e:67:51:33:ef:a5: 67:7a:d4:10:82:4b:c9:ed:4b:ae:14:ae:86:0e:e3:2f:1b:65: ff:da:8b:60:65:d0:cd:5b:42:19:b9:fb:48:f5:82:39:c8:f1: b6:2d:e9:49:55:c9:4b:7f:5e:9e:c2:40:f0:8d:3f:b5:a1:89: 71:29:a6:ab:3c:2d:1e:71:8d:25:9a:a5:c0:33:36:30:24:92: 62:79:8d:bb:ed:ea:cc:f3:b8:4f:e5:4b:60:51:11:17:7e:58: da:3a:3b:85:b3:d7:19:87:4e:8a:7a:3c:6e:d2:01:4a:64:d8: 73:e4:19:12:39:75:67:4a:04:26:ea:cb:73:e4:04:74:f1:e6: af:d6:7f:09:cf:3e:f6:a7:b8:c4:83:08:ac:af:d7:6f:3a:75: 3f:04:c0:77:18:ae:12:ae:f7:02:74:73:43:dd:a5:d1:11:a4: 44:0a:f7:b7:d3:22:32:16:d8:ca:cf:7c:a1:d4:58:b7:ac:d0: 7d:8d:9a:5c:84:8d:8f:77:aa:c1:bc:a6:03:37:d5:40:9d:7c: 95:18:a2:e1:9e:b9:2e:e1:8e:5b:2d:d2:64:c9:2c:d3:f1:8f: 30:ef:19:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RBRkIxMTAvBgNVBAUTKDA5RTkwNTc3NDdGNjNCQTBBMjgxQUU3ODAxMzY2OENF REVBNDBBQjQwHhcNMjYwNDE3MDIzNDIxWhcNMjYwNDI0MDIzNDIxWjAYMRYwFAYD VQQDEw02OWUxOWMyZC1lMmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHSJMu8HItoZ/ZYCZ5ZaU7+uclKJfimSEgAje4wo2+fYwy1sk/vtLhVIEArG UpAUtoAAMweWhDfVB603YTg6N/CLiKKQ5UGKr+qxIwOAiFzDdF5dwcvnbFA4ukni EVKWXQOEgltuoJ+pDV+5O41QaKL/5j+jDfwTQCRSt7xaEl3gOSKlrtef9kTkuETE 0rD/JW74QDkk3C8htHuX8GCyq752hc7N41UYwOhSmyw3t93e6s2bfd73yFUyWqgD MCCT8HRxtgcEnKA5F2YKB7vOyqxBDzhkv36zuIbrJ6osAdgDaoUIZIJUgM4OlXPN Ske5JkeaZnrwntg/NrjAbPeY5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMMt/eNJ qPqRABPLldRrUOcCm7gxMB8GA1UdIwQYMBaAFAnpBXdH9jugooGueAE2aM7epAq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREFGQi9FQzBGNkEzODAz NDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82Q2lnYTU0QVRab3p0NmtD clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nla0ZkMGYyTzZDaWdhNTRBVFpvenQ2a0NyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REFGQi9FQzBGNkEzODAzNDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82 Q2lnYTU0QVRab3p0NmtDclEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf3UY6C4VSeAPI9glR3JqxDk+CkMK0ToUJ5MfJQ72TmdRM++lZ3rUEIJLye1L rhSuhg7jLxtl/9qLYGXQzVtCGbn7SPWCOcjxti3pSVXJS39ensJA8I0/taGJcSmm qzwtHnGNJZqlwDM2MCSSYnmNu+3qzPO4T+VLYFERF35Y2jo7hbPXGYdOino8btIB SmTYc+QZEjl1Z0oEJurLc+QEdPHmr9Z/Cc8+9qe4xIMIrK/Xbzp1PwTAdxiuEq73 AnRzQ92l0RGkRAr3t9MiMhbYys98odRYt6zQfY2aXISNj3eqwbymAzfVQJ18lRii 4Z65LuGOWy3SZMks0/GPMO8Zqw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:15:41 2026 by rpki-client