$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft File: _D97sEVCVvMfJcoAhkvDpr11X5Y.mft (raw, json) Hash identifier: G8BTW6s71SluUekVc9bNr4dNy2P1tLUacsULMrTjbaw= Subject key identifier: 15:35:76:BB:0E:6F:5B:B1:1B:FE:07:25:33:58:84:A8:A9:0D:A8:BA Authority key identifier: FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 Certificate issuer: /CN=A91CE2DE/serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Certificate serial: 02BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft Manifest number: 02B3 Signing time: Fri 17 Apr 2026 01:21:11 +0000 Manifest this update: Fri 17 Apr 2026 01:21:11 +0000 Manifest next update: Fri 24 Apr 2026 01:21:11 +0000 Files and hashes: 1: _D97sEVCVvMfJcoAhkvDpr11X5Y.crl (hash: tzY9PGW9uVclZ5CVhZG3YY6nSpsBh+Pjt/oAtfXyHSc=) 2: 97B4F5603B3D11ED822BB46CC4F9AE02.roa (hash: qWq9FBfV0TlO+Nnhl0xmqfZ2SJgk0It8nQYA3EDnxXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE2DE, serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Validity Not Before: Apr 17 01:21:11 2026 GMT Not After : Apr 24 01:21:11 2026 GMT Subject: CN=69e18b07-f279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:73:e6:38:33:66:53:21:a9:77:fb:9a:6c:f5: f3:de:e8:14:a6:44:a5:56:ef:41:ef:06:dc:a7:ef: 2b:47:85:14:d1:fc:ec:7b:10:cc:fc:c0:a8:8f:62: 33:e1:73:99:e2:95:3c:03:63:32:43:2c:92:c0:9c: f2:77:4a:5d:f0:ef:d6:b1:c2:1b:46:81:ba:7b:bf: 0a:c3:94:9d:b4:e0:64:08:ca:2a:a9:28:26:67:59: 09:db:8e:1d:3f:aa:75:34:8b:1e:4c:23:82:99:d0: 92:95:21:12:54:6c:3d:bb:8c:55:b5:e6:62:5c:1b: 35:43:31:9d:53:88:dc:2c:60:29:ae:0a:23:4e:68: be:19:dd:4b:df:da:f6:fd:49:ad:91:7a:24:f9:83: 23:6f:63:72:0a:e7:4c:dd:7a:15:65:88:75:2b:97: 96:84:16:73:22:6e:a9:9d:71:6d:f0:fc:53:f9:6b: 6e:ae:52:02:e9:94:e6:28:53:5f:c6:e6:33:18:68: 40:3b:ed:49:84:3b:e0:3a:a4:5e:2b:fd:89:bf:8c: 61:c7:2c:ab:1f:62:eb:d2:2a:07:3a:cc:31:0c:33: 04:87:9d:98:55:94:fc:57:38:24:c4:18:65:f6:09: 9b:84:f6:a1:dd:61:d6:f2:df:a4:be:a5:56:4e:de: c9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:35:76:BB:0E:6F:5B:B1:1B:FE:07:25:33:58:84:A8:A9:0D:A8:BA X509v3 Authority Key Identifier: keyid:FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ed:1d:ab:34:c0:95:7d:d5:5e:dc:ea:b2:e4:73:0b:e2:00: 9e:3f:fd:26:d8:b5:03:36:8a:d2:55:59:07:8a:98:bd:c1:ea: 68:ed:91:c1:6f:0d:6c:09:3e:79:82:de:be:5d:7a:4d:a1:c3: ab:9e:ac:a6:70:d5:8a:ee:87:78:cd:f2:89:4d:fd:c5:1e:97: d6:04:81:0a:53:d1:8e:b6:41:61:2f:26:4c:fd:14:b3:ed:0a: 05:b8:4e:d6:bd:a3:9a:53:91:c7:03:3d:1f:47:1e:55:c3:a3: d5:0f:f7:4e:9a:52:ae:48:8c:57:17:b4:21:11:79:ac:0f:0e: 0c:de:b9:ef:1d:79:2b:c2:9a:3d:d7:2d:ce:6f:c7:1a:55:dc: 15:6d:9e:25:0d:f9:91:0e:7a:ed:a7:44:d5:f3:a8:f8:c2:50: cc:4c:a6:b3:f3:9a:67:e1:d1:3f:0d:60:23:95:f0:07:89:14: 59:fb:01:ba:48:96:9e:f5:65:43:f8:67:bd:9b:51:5b:e4:65: 28:3b:27:d7:e1:ad:30:e1:2c:65:59:3a:9b:84:63:fe:22:03: ad:e3:47:2b:85:67:2e:ac:16:a3:fc:cc:11:1e:63:f6:89:8e: 1b:29:91:bd:62:58:42:78:a5:63:c6:6c:f9:39:b1:3a:9e:ee: ff:96:ee:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyREUxMTAvBgNVBAUTKEZDM0Y3QkIwNDU0MjU2RjMxRjI1Q0EwMDg2NEJDM0E2 QkQ3NTVGOTYwHhcNMjYwNDE3MDEyMTExWhcNMjYwNDI0MDEyMTExWjAYMRYwFAYD VQQDEw02OWUxOGIwNy1mMjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnPmODNmUyGpd/uabPXz3ugUpkSlVu9B7wbcp+8rR4UU0fzsexDM/MCoj2Iz 4XOZ4pU8A2MyQyySwJzyd0pd8O/WscIbRoG6e78Kw5SdtOBkCMoqqSgmZ1kJ244d P6p1NIseTCOCmdCSlSESVGw9u4xVteZiXBs1QzGdU4jcLGAprgojTmi+Gd1L39r2 /UmtkXok+YMjb2NyCudM3XoVZYh1K5eWhBZzIm6pnXFt8PxT+WturlIC6ZTmKFNf xuYzGGhAO+1JhDvgOqReK/2Jv4xhxyyrH2Lr0ioHOswxDDMEh52YVZT8VzgkxBhl 9gmbhPah3WHW8t+kvqVWTt7JoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBU1drsO b1uxG/4HJTNYhKipDai6MB8GA1UdIwQYMBaAFPw/e7BFQlbzHyXKAIZLw6a9dV+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTJERS9BQkRFRTg3QTM3 RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2TWZKY29BaGt2RHByMTFY NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EOTdzRVZDVnZNZkpjb0Foa3ZEcHIxMVg1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTJERS9BQkRFRTg3QTM3RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2 TWZKY29BaGt2RHByMTFYNVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUe0dqzTAlX3VXtzqsuRzC+IAnj/9Jti1AzaK0lVZB4qYvcHqaO2RwW8NbAk+ eYLevl16TaHDq56spnDViu6HeM3yiU39xR6X1gSBClPRjrZBYS8mTP0Us+0KBbhO 1r2jmlORxwM9H0ceVcOj1Q/3TppSrkiMVxe0IRF5rA8ODN657x15K8KaPdctzm/H GlXcFW2eJQ35kQ567adE1fOo+MJQzEyms/OaZ+HRPw1gI5XwB4kUWfsBukiWnvVl Q/hnvZtRW+RlKDsn1+GtMOEsZVk6m4Rj/iIDreNHK4VnLqwWo/zMER5j9omOGymR vWJYQnilY8Zs+TmxOp7u/5bu5w== -----END CERTIFICATE-----Generated at Fri Apr 17 09:42:36 2026 by rpki-client