$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: 3c4RwdPOtjgJ/iGJkSymXobFctaBSLahdoZyBGer1/Q= Subject key identifier: 70:CA:F5:D5:09:D2:46:01:7F:F7:C4:64:48:B8:88:0F:1E:ED:4A:34 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: 01AE Signing time: Fri 17 Apr 2026 03:45:46 +0000 Manifest this update: Fri 17 Apr 2026 03:45:46 +0000 Manifest next update: Fri 24 Apr 2026 03:45:46 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: OZ/UhOtflvuR4Um3R7ios2GwJ66GCPLFDi4Wj4iQRgY=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: I3Aip9lEI/tB1p617YVnjX7fZuimKLHKae3IrKIw1Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Apr 17 03:45:46 2026 GMT Not After : Apr 24 03:45:46 2026 GMT Subject: CN=69e1acea-c643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b0:71:69:70:1b:d8:f1:67:20:20:7a:6a:00: d0:72:56:d7:41:94:26:db:62:44:fc:df:71:b0:c7: ba:62:15:c2:95:9e:d1:04:7a:aa:49:ac:9c:bc:08: c1:f3:5e:bd:57:89:79:68:25:7e:82:88:9b:04:e2: 38:07:82:2e:7a:ad:c1:b1:fd:b8:12:ee:1c:f1:bc: eb:98:e5:78:9b:24:87:09:af:64:a6:46:1e:b7:2b: cd:59:cd:ab:bd:49:ca:34:0f:f6:ae:25:fb:8d:12: d6:3a:ee:cf:2b:ac:25:32:4f:de:c2:b4:2d:f7:0a: db:27:e0:1a:40:1b:4b:d5:d1:15:5e:3e:c2:55:0d: 4b:4c:54:b9:95:fe:85:1d:8c:01:80:95:7d:93:40: 09:72:33:e4:5a:47:f4:31:89:b4:23:e7:ff:91:36: d7:d9:9b:ea:36:39:d2:92:58:8e:0b:20:a2:fb:85: 3a:77:d1:89:d4:67:51:94:f7:9f:8a:9c:17:5c:ff: 7f:ac:c5:0b:c3:9d:e2:8e:3c:7b:03:db:bf:78:60: c5:9b:1b:8e:cb:bc:dc:ee:02:de:4e:f7:f7:dd:4b: 6d:c4:75:80:f6:86:51:86:fe:35:4d:08:79:f5:b6: 72:56:76:1f:43:fa:8f:09:d8:c4:db:eb:a3:23:1d: 03:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:CA:F5:D5:09:D2:46:01:7F:F7:C4:64:48:B8:88:0F:1E:ED:4A:34 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:8c:ff:87:20:f9:1b:a8:ab:25:9e:61:10:2e:86:c7:76:34: f3:b8:75:3b:8a:ce:4f:34:e3:87:10:a9:b0:cd:eb:41:6c:6c: ba:c0:ab:bb:4b:c5:dc:25:91:91:e9:ed:b2:2e:bf:cf:7a:f0: 0c:eb:d2:72:9d:ae:7f:13:c7:b6:20:e1:f4:b7:1a:37:8d:1c: 12:2f:62:57:03:6d:a0:7e:95:91:60:31:95:fc:5e:29:58:7f: 64:50:07:06:5c:27:79:b8:41:d5:13:cc:91:4f:1e:a1:0a:58: 06:d1:11:3c:70:df:a2:18:71:b8:7b:fa:3e:84:1b:2f:37:ae: 5b:b7:54:38:79:25:88:a4:55:5d:df:e0:9c:28:a1:f4:a4:e8: 5a:24:fb:6d:b0:b8:85:9d:01:6b:90:b8:6e:1c:3f:2d:76:57: e6:93:57:3d:4e:21:76:d6:bd:ad:cf:6a:60:28:47:11:e6:0c: 60:ac:49:2e:9f:ed:ba:f9:e1:3f:c6:65:a4:5b:c5:bb:34:5f: cc:eb:bd:2d:a5:66:ae:1e:6b:11:f0:cf:dc:f6:f7:15:72:f5: 06:26:32:d6:5b:09:5f:f6:b0:84:a5:bd:83:aa:d3:e8:08:a3: 21:ea:1a:2e:2f:5e:8e:87:f1:77:f7:e2:c2:62:a2:2e:20:1f: b0:bb:09:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjYwNDE3MDM0NTQ2WhcNMjYwNDI0MDM0NTQ2WjAYMRYwFAYD VQQDEw02OWUxYWNlYS1jNjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLBxaXAb2PFnICB6agDQclbXQZQm22JE/N9xsMe6YhXClZ7RBHqqSaycvAjB 8169V4l5aCV+goibBOI4B4Iueq3Bsf24Eu4c8bzrmOV4mySHCa9kpkYetyvNWc2r vUnKNA/2riX7jRLWOu7PK6wlMk/ewrQt9wrbJ+AaQBtL1dEVXj7CVQ1LTFS5lf6F HYwBgJV9k0AJcjPkWkf0MYm0I+f/kTbX2ZvqNjnSkliOCyCi+4U6d9GJ1GdRlPef ipwXXP9/rMULw53ijjx7A9u/eGDFmxuOy7zc7gLeTvf33UttxHWA9oZRhv41TQh5 9bZyVnYfQ/qPCdjE2+ujIx0D1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHDK9dUJ 0kYBf/fEZEi4iA8e7Uo0MB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYIz/hyD5G6irJZ5hEC6Gx3Y087h1O4rOTzTjhxCpsM3rQWxsusCru0vF3CWR kentsi6/z3rwDOvScp2ufxPHtiDh9LcaN40cEi9iVwNtoH6VkWAxlfxeKVh/ZFAH BlwnebhB1RPMkU8eoQpYBtERPHDfohhxuHv6PoQbLzeuW7dUOHkliKRVXd/gnCih 9KToWiT7bbC4hZ0Ba5C4bhw/LXZX5pNXPU4hdta9rc9qYChHEeYMYKxJLp/tuvnh P8ZlpFvFuzRfzOu9LaVmrh5rEfDP3Pb3FXL1BiYy1lsJX/awhKW9g6rT6AijIeoa Li9ejofxd/fiwmKiLiAfsLsJSg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:38:09 2026 by rpki-client