$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft File: Ikchh2oR4tOkuYshvIT3jmT-yEY.mft (raw, json) Hash identifier: Po33SZdM24/dGWv4DElpIglXHLuXE723hIoY45ppG2E= Subject key identifier: 53:43:5F:93:6A:31:6C:2B:5C:67:50:83:21:B4:34:C7:5B:F8:97:0C Authority key identifier: 22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 Certificate issuer: /CN=A91CEE6D/serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft Manifest number: 6C Signing time: Fri 17 Apr 2026 07:34:38 +0000 Manifest this update: Fri 17 Apr 2026 07:34:37 +0000 Manifest next update: Fri 24 Apr 2026 07:34:37 +0000 Files and hashes: 1: Ikchh2oR4tOkuYshvIT3jmT-yEY.crl (hash: f2GFCvAnp8viRUlq4CJhOPjpCR6LcLlNkiCxy/CjadE=) 2: 09F2A296A02E11F08BC71221C4F9AE02.roa (hash: SOUc2IXOvl/L1pMPWSJBgclEArQVhHSL8F26Jssjy60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE6D, serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Validity Not Before: Apr 17 07:34:37 2026 GMT Not After : Apr 24 07:34:37 2026 GMT Subject: CN=69e1e28e-f4e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:a9:00:aa:9c:16:3e:54:91:e2:d5:60:bb:cb: 46:c3:f6:bf:22:db:9a:da:b7:f6:dc:2d:34:46:6f: ed:1c:94:5a:75:bf:e7:53:ee:e3:b7:77:96:7e:cd: 08:a2:d7:7b:6a:80:08:d1:15:f8:9e:0f:32:e5:67: 6f:e4:a9:f3:73:72:e1:3b:b5:83:e6:c4:a9:1d:50: cd:7f:42:c1:d6:c6:5c:1c:10:7c:19:d0:4c:ca:d3: 21:4c:4a:65:d9:05:d5:c3:bf:82:3f:ca:fc:f7:c0: 68:0f:17:33:9c:c1:b0:d0:75:bf:d7:98:29:6b:c9: c8:59:18:82:40:9b:3e:1c:cf:01:7e:9a:41:5c:4f: 83:76:b8:2c:c5:5e:54:be:74:ed:60:c4:c4:70:b3: b5:97:9f:e7:ec:20:bd:d3:96:80:dd:a5:61:0e:57: f2:99:c9:cd:5d:2b:d6:61:62:17:7d:24:ae:aa:d9: 57:6e:5f:63:04:71:ce:fb:15:71:32:75:c2:93:0f: bc:29:7a:13:5a:11:65:d7:de:14:23:cb:4a:15:42: c7:50:91:9b:22:b6:15:85:70:20:a9:38:a6:20:54: ff:41:03:c0:af:bb:ab:6e:84:47:7f:a2:5b:47:27: 14:f7:25:1a:e5:0f:d8:61:d9:b0:cd:1c:1c:60:a5: 57:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:43:5F:93:6A:31:6C:2B:5C:67:50:83:21:B4:34:C7:5B:F8:97:0C X509v3 Authority Key Identifier: keyid:22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:56:c1:0d:f4:d7:c3:0b:95:44:66:30:1d:4e:82:bc:40:a9: 42:c3:d9:3e:8a:c6:31:40:99:a2:ff:6b:2c:97:53:a0:73:eb: 02:fd:46:e5:c8:ca:8c:8b:91:e6:da:26:5c:48:43:54:35:f6: db:26:4a:a4:e7:fa:90:e8:a5:9d:1c:47:75:58:3f:01:f1:89: 51:89:bc:ef:e3:19:bb:fa:20:09:8b:46:29:f2:d5:b4:8d:0f: d2:af:9c:43:58:3f:8d:5c:67:d0:a0:1b:66:e6:7b:70:7b:8d: c7:95:cd:c8:2d:72:36:ad:12:87:25:fe:e9:bd:d2:f5:c9:cf: a5:78:60:26:f6:7a:ef:76:55:34:44:a4:fc:8c:5d:6b:37:cd: 84:5b:15:9d:2c:ec:ad:40:c3:01:ee:fe:d9:64:68:33:ba:f3: 60:16:32:2f:73:c3:47:ed:b0:f2:5e:c6:90:f2:10:ae:07:7b: e2:20:b5:98:31:a3:14:4b:e2:e7:62:d1:c5:c0:4e:2e:6c:0d: 3d:02:3d:00:6e:f1:ac:3f:c1:4d:c7:4d:d4:39:e0:a3:46:ac: ab:20:e2:b2:33:69:2b:c5:5c:64:7f:dc:31:ed:52:53:d3:6f: f0:ae:a1:8c:00:bf:ad:e3:0f:0c:f0:4a:56:fa:41:2e:8e:00: c4:88:20:98 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU2RDExMC8GA1UEBRMoMjI0NzIxODc2QTExRTJEM0E0Qjk4QjIxQkM4NEY3OEU2 NEZFQzg0NjAeFw0yNjA0MTcwNzM0MzdaFw0yNjA0MjQwNzM0MzdaMBgxFjAUBgNV BAMTDTY5ZTFlMjhlLWY0ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCJqQCqnBY+VJHi1WC7y0bD9r8i25rat/bcLTRGb+0clFp1v+dT7uO3d5Z+zQii 13tqgAjRFfieDzLlZ2/kqfNzcuE7tYPmxKkdUM1/QsHWxlwcEHwZ0EzK0yFMSmXZ BdXDv4I/yvz3wGgPFzOcwbDQdb/XmClrychZGIJAmz4czwF+mkFcT4N2uCzFXlS+ dO1gxMRws7WXn+fsIL3TloDdpWEOV/KZyc1dK9ZhYhd9JK6q2VduX2MEcc77FXEy dcKTD7wpehNaEWXX3hQjy0oVQsdQkZsithWFcCCpOKYgVP9BA8Cvu6tuhEd/oltH JxT3JRrlD9hh2bDNHBxgpVcvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUU0Nfk2ox bCtcZ1CDIbQ0x1v4lwwwHwYDVR0jBBgwFoAUIkchh2oR4tOkuYshvIT3jmT+yEYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTZELzUxMTEwQUZFOTc2 NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRPa3VZc2h2SVQzam1ULXlF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWtjaGgyb1I0dE9rdVlzaHZJVDNqbVQteUVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTZELzUxMTEwQUZFOTc2NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRP a3VZc2h2SVQzam1ULXlFWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAJVsEN9NfDC5VEZjAdToK8QKlCw9k+isYxQJmi/2ssl1Ogc+sC/UblyMqMi5Hm 2iZcSENUNfbbJkqk5/qQ6KWdHEd1WD8B8YlRibzv4xm7+iAJi0Yp8tW0jQ/Sr5xD WD+NXGfQoBtm5ntwe43Hlc3ILXI2rRKHJf7pvdL1yc+leGAm9nrvdlU0RKT8jF1r N82EWxWdLOytQMMB7v7ZZGgzuvNgFjIvc8NH7bDyXsaQ8hCuB3viILWYMaMUS+Ln YtHFwE4ubA09Aj0AbvGsP8FNx03UOeCjRqyrIOKyM2krxVxkf9wx7VJT02/wrqGM AL+t4w8M8EpW+kEujgDEiCCY -----END CERTIFICATE-----Generated at Fri Apr 17 11:27:35 2026 by rpki-client