$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: nWtQeGMhKkMHLG/BqUPm8nbYkixVCTu8RIGJtGa5HgI= Subject key identifier: EC:6E:D0:F4:3C:3B:A9:2E:99:A2:98:00:68:A7:35:B9:A1:90:43:18 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0867 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 085B Signing time: Thu 16 Apr 2026 20:40:40 +0000 Manifest this update: Thu 16 Apr 2026 20:40:40 +0000 Manifest next update: Thu 23 Apr 2026 20:40:40 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: y1QEHsa1ZhVu8fxXZm5FVUAVHnDAlwTrYu+upoWDviE=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: pEoVeSKvZWCj0YeLOAFbn4+nyrnm4dpfDhs+6j8mLhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2151 (0x867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Apr 16 20:40:40 2026 GMT Not After : Apr 23 20:40:40 2026 GMT Subject: CN=69e14948-0829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e5:7f:3c:ae:55:3b:00:1e:1a:0b:24:47:d9: 5a:8e:ac:b1:42:9b:f0:b6:d9:0d:bd:2b:7d:6a:f2: f0:22:0d:52:ff:d2:a4:fb:46:64:d3:df:91:7e:d0: 23:4b:39:98:06:d4:75:bf:4b:21:4b:08:43:41:73: 58:22:5a:1b:61:14:7a:2e:11:eb:59:6b:54:52:0e: 26:3f:a7:48:96:4f:a5:df:13:33:02:00:34:9d:8e: b0:52:38:23:3e:4f:10:27:6d:0b:20:4a:21:fd:73: c2:06:53:aa:bb:25:cc:88:fd:67:48:63:f8:ca:4a: cb:0e:f4:4a:c5:43:8b:2a:19:67:f3:01:f6:57:6c: 56:c0:71:c3:1c:05:8e:4c:4e:b8:da:be:02:42:04: 7e:6e:bc:e1:36:5b:5b:a9:de:5c:6a:54:5b:9e:d0: 9b:f1:bd:05:c1:6b:f1:77:77:b5:82:12:0f:84:78: 54:87:44:27:42:3b:5c:f0:04:50:07:c6:54:e1:a2: 9c:9b:f8:8d:8f:9a:6f:a2:4c:b2:bd:9e:40:a2:0a: f2:2b:fc:07:cf:37:d1:00:73:32:1e:2e:8d:0e:9f: 46:1c:a1:61:51:a9:44:e6:2b:df:74:35:ec:44:f7: c1:6c:eb:47:7c:db:e7:ca:51:74:11:96:5f:42:0f: 9a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:6E:D0:F4:3C:3B:A9:2E:99:A2:98:00:68:A7:35:B9:A1:90:43:18 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:47:e2:3d:90:5a:52:09:6e:97:59:7c:6e:c6:d2:94:7a:a1: 6a:b2:dc:3a:34:4d:ee:55:88:98:d3:99:d9:e5:32:c2:84:88: 07:7d:09:93:7c:d9:8c:d9:3c:fc:53:2f:de:49:e4:42:ad:e5: e0:a4:5c:2f:82:c4:9c:0b:58:ee:22:f9:c2:fb:07:23:93:d4: 75:fa:9f:bf:93:85:db:fe:e9:c8:5a:f6:1e:82:c2:ef:fe:f2: 69:a0:88:ee:a0:9a:b9:22:88:97:d5:40:d6:c8:1f:9e:49:f2: f2:2e:70:13:c3:0b:f5:1e:af:88:09:0c:41:e2:ca:0e:25:b7: 87:ab:d5:82:a6:3a:7d:1b:47:9d:0f:f3:75:98:8e:c1:2e:85: 67:1f:9c:04:06:d1:e9:bb:d6:76:0b:98:2f:75:68:88:f8:47: 2f:b7:ee:b4:a0:c7:d1:93:25:49:c5:bd:c8:ed:a1:a4:1b:94: aa:2a:43:8b:9a:74:e8:65:78:31:40:2c:fd:c0:64:9b:ad:07: 9c:73:f6:0e:91:92:f4:6b:78:33:93:16:a3:e2:9f:79:42:c0: b7:f6:47:30:e1:d4:c9:1b:6e:ec:24:e8:94:5b:da:e6:95:ba: c9:83:92:1c:86:45:dc:9d:40:2c:ba:96:c4:98:d8:21:86:a8: 3a:e7:dc:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjYwNDE2MjA0MDQwWhcNMjYwNDIzMjA0MDQwWjAYMRYwFAYD VQQDEw02OWUxNDk0OC0wODI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjuV/PK5VOwAeGgskR9lajqyxQpvwttkNvSt9avLwIg1S/9Kk+0Zk09+RftAj SzmYBtR1v0shSwhDQXNYIlobYRR6LhHrWWtUUg4mP6dIlk+l3xMzAgA0nY6wUjgj Pk8QJ20LIEoh/XPCBlOquyXMiP1nSGP4ykrLDvRKxUOLKhln8wH2V2xWwHHDHAWO TE642r4CQgR+brzhNltbqd5calRbntCb8b0FwWvxd3e1ghIPhHhUh0QnQjtc8ARQ B8ZU4aKcm/iNj5pvokyyvZ5AogryK/wHzzfRAHMyHi6NDp9GHKFhUalE5ivfdDXs RPfBbOtHfNvnylF0EZZfQg+a8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOxu0PQ8 O6kumaKYAGinNbmhkEMYMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeUfiPZBaUglul1l8bsbSlHqharLcOjRN7lWImNOZ2eUywoSIB30Jk3zZjNk8 /FMv3knkQq3l4KRcL4LEnAtY7iL5wvsHI5PUdfqfv5OF2/7pyFr2HoLC7/7yaaCI 7qCauSKIl9VA1sgfnkny8i5wE8ML9R6viAkMQeLKDiW3h6vVgqY6fRtHnQ/zdZiO wS6FZx+cBAbR6bvWdguYL3VoiPhHL7futKDH0ZMlScW9yO2hpBuUqipDi5p06GV4 MUAs/cBkm60HnHP2DpGS9Gt4M5MWo+KfeULAt/ZHMOHUyRtu7CTolFva5pW6yYOS HIZF3J1ALLqWxJjYIYaoOufcZw== -----END CERTIFICATE-----Generated at Fri Apr 17 06:27:42 2026 by rpki-client