$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft File: D1kUy7lqcNoGsR7z3StjyeQHsxw.mft (raw, json) Hash identifier: sHk9WZSDlUw/0OR6DFkKEF43lbI6LF8lZsxGCokAuQ8= Subject key identifier: 45:9C:40:59:C9:7C:0E:D5:49:6C:6C:DA:9D:EB:3E:27:3D:07:9B:94 Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft Manifest number: 0167 Signing time: Fri 17 Apr 2026 04:34:21 +0000 Manifest this update: Fri 17 Apr 2026 04:34:20 +0000 Manifest next update: Fri 24 Apr 2026 04:34:20 +0000 Files and hashes: 1: D1kUy7lqcNoGsR7z3StjyeQHsxw.crl (hash: n30Vky1Uayj+edQLtcoI/0Jy6KJQyz+VsI2TZXveYDU=) 2: 507C31C21D7211EFA095B25AC4F9AE02.roa (hash: 2X6rU+Jt1kusg1IcBqKvM06CQwBTBfrmqQ7drmfa1tQ=) 3: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (hash: fPiQQSxTOwbdMOV255D4bAXvgu9GO9QsaMcZ6OWDgrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Apr 17 04:34:20 2026 GMT Not After : Apr 24 04:34:20 2026 GMT Subject: CN=69e1b84d-bb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1c:d8:25:cd:4d:58:c9:5b:35:c7:89:b4:70: 97:f8:73:17:8f:b6:d5:f7:a3:a3:d2:4b:e8:27:be: 6f:13:d7:05:6a:e8:c6:3f:ac:95:82:e0:22:98:86: fd:02:2a:1c:9b:95:c1:dc:e9:34:c8:9b:a0:bd:f0: 8a:70:c6:ec:e3:59:f2:7d:20:a5:60:1c:cf:5f:86: 7d:96:0b:12:27:02:f3:5d:72:b1:3a:22:1f:04:59: 35:d3:9a:6b:20:89:45:fd:99:6a:b2:9f:8e:e5:9d: 05:13:48:8a:c9:76:5b:9e:c3:1e:bf:71:a4:02:a7: 7c:18:e3:85:27:af:55:e9:10:22:f8:fc:79:ef:c5: 96:5c:f0:11:d4:85:6c:f7:b6:25:af:63:8b:a6:d3: 24:4c:d6:48:e6:80:3c:47:7d:e7:17:85:51:e2:c3: cb:de:d7:9d:a2:fe:14:90:1f:59:1d:dd:e6:31:ea: 71:69:c7:8f:d2:cb:d5:e8:d9:88:47:8d:de:5c:30: 5c:d7:72:21:41:9f:55:cc:81:fe:8f:88:1f:7c:4f: fa:3a:15:bd:6c:3a:59:e2:45:69:9f:44:ad:48:b4: 3a:c2:4a:c7:f5:0b:e3:eb:e0:22:df:e6:5f:59:1b: 75:39:1c:c6:47:f8:d2:1f:8c:97:ec:d9:bb:60:43: 3a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:9C:40:59:C9:7C:0E:D5:49:6C:6C:DA:9D:EB:3E:27:3D:07:9B:94 X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d5:6d:3b:ea:1e:04:c2:7b:01:85:64:5f:cf:1d:c6:0a:4e: 84:c2:41:93:99:a4:3c:3a:8f:bc:bc:af:07:ca:0d:d7:b8:ac: 0c:67:a3:c2:48:84:0a:e6:f2:89:62:36:95:c7:0f:98:09:52: 98:7e:4c:b2:01:99:fa:33:81:7f:b4:4e:cd:a1:ad:18:be:19: 5f:e2:ae:a0:45:b0:5a:e2:3e:1f:83:90:fe:4c:3b:6a:7c:7e: 08:11:e6:b6:72:b7:2d:1d:76:98:02:31:d1:85:f6:77:8a:55: 2c:19:67:6f:29:dc:1a:98:a5:76:b0:4e:0e:65:ed:23:00:fa: 8c:2b:f0:14:a0:4a:7f:1a:dd:98:4d:d2:e5:3b:ec:52:a0:b1: 6e:9f:8b:95:a3:a6:a7:9c:22:95:60:8a:d6:a4:8e:04:18:7d: c5:59:5f:fe:c2:93:b2:ca:ae:76:6d:0e:e5:21:4d:7e:37:05: f7:28:85:f7:1f:5d:30:ec:94:62:88:f0:2f:6b:09:36:40:02: 00:05:e5:c9:9b:2b:5c:18:b0:c4:47:20:35:24:05:78:1b:a5: 4d:7e:23:1e:41:5c:9a:22:d2:c7:5b:ac:78:ec:63:05:55:43: 15:17:29:ef:52:46:75:d0:a5:47:1c:96:81:ae:6f:c9:9f:dd: 92:66:2d:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjYwNDE3MDQzNDIwWhcNMjYwNDI0MDQzNDIwWjAYMRYwFAYD VQQDEw02OWUxYjg0ZC1iYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRzYJc1NWMlbNceJtHCX+HMXj7bV96Oj0kvoJ75vE9cFaujGP6yVguAimIb9 Aiocm5XB3Ok0yJugvfCKcMbs41nyfSClYBzPX4Z9lgsSJwLzXXKxOiIfBFk105pr IIlF/Zlqsp+O5Z0FE0iKyXZbnsMev3GkAqd8GOOFJ69V6RAi+Px578WWXPAR1IVs 97Ylr2OLptMkTNZI5oA8R33nF4VR4sPL3tedov4UkB9ZHd3mMepxaceP0svV6NmI R43eXDBc13IhQZ9VzIH+j4gffE/6OhW9bDpZ4kVpn0StSLQ6wkrH9Qvj6+Ai3+Zf WRt1ORzGR/jSH4yX7Nm7YEM6KwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEWcQFnJ fA7VSWxs2p3rPic9B5uUMB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNO b0dzUjd6M1N0anllUUhzeHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALtVtO+oeBMJ7AYVkX88dxgpOhMJBk5mkPDqPvLyvB8oN17isDGejwkiECuby iWI2lccPmAlSmH5MsgGZ+jOBf7ROzaGtGL4ZX+KuoEWwWuI+H4OQ/kw7anx+CBHm tnK3LR12mAIx0YX2d4pVLBlnbyncGpildrBODmXtIwD6jCvwFKBKfxrdmE3S5Tvs UqCxbp+LlaOmp5wilWCK1qSOBBh9xVlf/sKTssqudm0O5SFNfjcF9yiF9x9dMOyU YojwL2sJNkACAAXlyZsrXBiwxEcgNSQFeBulTX4jHkFcmiLSx1useOxjBVVDFRcp 71JGddClRxyWga5vyZ/dkmYtlg== -----END CERTIFICATE-----Generated at Sat Apr 18 02:34:22 2026 by rpki-client