$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: k95gMdsirc3ay+8ZhV0UmiukWOXV9VWsYQc+iWQWHTs= Subject key identifier: C8:54:A9:EA:BE:A7:BC:C4:58:43:2F:17:07:3F:F3:1B:4D:29:DD:70 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 35F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 3589 Signing time: Thu 16 Apr 2026 14:52:10 +0000 Manifest this update: Thu 16 Apr 2026 14:52:09 +0000 Manifest next update: Thu 23 Apr 2026 14:52:09 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: XZGj0VHwE9RWcBaXoh4Wl7RStPaKCI2wiQgy/rDKPh8=) 2: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 81ReA4BHk/lxP9lEIuQUr4XFnT42WFD0y3bTKzIXKJE=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: usfpiMLWoGDExv0ZzDkffe8BVX1FZLRCU+Dn0/pmF+g=) 4: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: UKXFh7gTm0rXHnOIQY0kDYmGOiQsiOQkbThjpV/y9Uk=) 5: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: qLKIOz6Oedhwx38zJO/77LtAdjmKeuJ/j9qSOecidn0=) 6: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: 8UZTwXBUXA7yxIQmBCYd7utQyxqxmd+gxoz97Gybm9s=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: DAjpYy2F7JuENdM1mCWzZ4UuisI9F+H32xQyrUo660o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13812 (0x35f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Apr 16 14:52:09 2026 GMT Not After : Apr 23 14:52:09 2026 GMT Subject: CN=69e0f79a-a46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:2c:55:c8:8a:6a:4d:4b:3b:2a:84:0b:17:25: 0f:f9:9d:69:9f:68:3e:70:07:a5:42:6f:47:2b:d0: 11:46:b9:98:c9:8a:69:e3:44:91:5d:f5:c4:bf:d3: 25:47:d6:5a:40:ad:16:5e:16:65:46:d9:43:28:a1: 5e:ae:4a:c2:d2:48:93:13:d1:3d:b7:b3:a2:4a:1f: 8a:cc:8f:3d:08:4d:f3:8f:61:b0:10:fc:62:f3:a4: 2a:19:b1:d8:63:43:3c:ca:a3:69:92:7e:3f:bd:3d: 1c:e2:ae:de:2c:45:03:f8:86:2e:24:f7:23:5f:f3: 16:13:02:20:d8:ce:a5:a8:34:cc:71:0d:04:72:8b: 05:9d:30:b7:e8:2f:26:f1:48:2a:98:13:cd:04:8c: fe:7c:33:8d:37:4b:a0:68:34:f1:ba:34:a7:2e:19: 8c:ff:43:41:bd:1c:94:8e:f6:b1:c7:46:92:98:4f: b4:8d:2c:42:f6:ef:05:fb:04:0b:d2:fd:e6:97:47: ea:e6:33:9c:f5:36:c6:99:5a:03:9c:84:41:0e:8c: 44:62:ed:4f:c6:59:11:b5:fb:9b:0a:ee:50:a9:f9: cb:23:04:a0:3f:2b:6c:22:67:12:80:29:d7:ad:1b: 34:30:71:f3:1e:7c:d0:8c:05:b4:74:60:b4:23:9a: dc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:54:A9:EA:BE:A7:BC:C4:58:43:2F:17:07:3F:F3:1B:4D:29:DD:70 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:36:db:d1:a5:03:65:5f:a7:2c:8a:1c:65:02:de:3f:1f:f3: a9:74:8a:84:82:45:fa:d4:15:c3:91:97:f6:dc:4f:50:a1:a2: c2:20:60:7f:96:20:3c:e8:a4:55:9b:06:d7:cb:2a:08:8b:b6: c9:fa:b0:f9:bf:3f:10:10:5b:8a:57:e1:e0:0f:7a:8e:35:df: fc:49:c2:a8:93:16:dd:b3:1e:0d:66:49:af:12:fb:6e:c1:c2: d7:d9:90:d1:60:b6:e1:65:6e:64:aa:ce:58:e1:7b:59:fa:96: 68:0d:3b:4f:cd:cb:77:c6:a0:b3:7d:d4:73:8c:d0:55:5e:af: 52:ad:e5:78:27:5c:6a:44:5f:dd:4a:34:52:90:75:6d:1c:c2: 46:7f:28:48:0e:66:7f:c8:4e:bb:03:61:35:31:e9:02:e8:1f: 34:74:e8:6d:57:fa:56:e3:33:20:ae:91:62:c6:f5:49:2c:92: 0f:08:28:ae:b7:8c:13:78:61:ed:89:b3:f2:20:d2:d5:e1:80: 3e:d6:c8:83:18:4e:17:79:63:93:c0:ec:8d:e8:78:f2:9f:90: fe:cc:60:0f:0f:5a:a3:83:69:1d:db:c9:85:25:22:71:73:f7: f0:87:60:95:e5:07:c5:3c:31:56:5c:cc:29:ab:73:d4:5a:ae: 73:a3:47:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjYwNDE2MTQ1MjA5WhcNMjYwNDIzMTQ1MjA5WjAYMRYwFAYD VQQDEw02OWUwZjc5YS1hNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhCxVyIpqTUs7KoQLFyUP+Z1pn2g+cAelQm9HK9ARRrmYyYpp40SRXfXEv9Ml R9ZaQK0WXhZlRtlDKKFerkrC0kiTE9E9t7OiSh+KzI89CE3zj2GwEPxi86QqGbHY Y0M8yqNpkn4/vT0c4q7eLEUD+IYuJPcjX/MWEwIg2M6lqDTMcQ0EcosFnTC36C8m 8UgqmBPNBIz+fDONN0ugaDTxujSnLhmM/0NBvRyUjvaxx0aSmE+0jSxC9u8F+wQL 0v3ml0fq5jOc9TbGmVoDnIRBDoxEYu1PxlkRtfubCu5QqfnLIwSgPytsImcSgCnX rRs0MHHzHnzQjAW0dGC0I5rc2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMhUqeq+ p7zEWEMvFwc/8xtNKd1wMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmTbb0aUDZV+nLIocZQLePx/zqXSKhIJF+tQVw5GX9txPUKGiwiBgf5YgPOik VZsG18sqCIu2yfqw+b8/EBBbilfh4A96jjXf/EnCqJMW3bMeDWZJrxL7bsHC19mQ 0WC24WVuZKrOWOF7WfqWaA07T83Ld8ags33Uc4zQVV6vUq3leCdcakRf3Uo0UpB1 bRzCRn8oSA5mf8hOuwNhNTHpAugfNHTobVf6VuMzIK6RYsb1SSySDwgorreME3hh 7Ymz8iDS1eGAPtbIgxhOF3ljk8Dsjeh48p+Q/sxgDw9ao4NpHdvJhSUicXP38Idg leUHxTwxVlzMKatz1Fquc6NHwQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:30:44 2026 by rpki-client