$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: F0SkAjBbSAn+phrQzXDc1TaOqeBWJjt1+IKec1uk1uw= Subject key identifier: 89:9D:F3:4F:B5:33:59:9F:4D:D5:62:28:7A:52:26:99:D9:0D:AD:A9 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0C16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0C09 Signing time: Thu 16 Apr 2026 18:45:07 +0000 Manifest this update: Thu 16 Apr 2026 18:45:07 +0000 Manifest next update: Thu 23 Apr 2026 18:45:07 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: EfQcxR3ORfivrcRPwTcAF1bPWwGIThS4sxWsg2erBTU=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: lrXJAG9pwB68/9ymul53XjFddHdzlUams6o2moAtAtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:45:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3094 (0xc16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Apr 16 18:45:07 2026 GMT Not After : Apr 23 18:45:07 2026 GMT Subject: CN=69e12e33-c023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2e:71:83:41:3f:1f:23:6f:93:9c:b6:5a:35: 2b:3a:b3:90:49:74:76:ba:c7:36:a7:b6:18:fe:56: 99:56:0e:d2:da:b5:41:81:af:ea:1c:7d:f5:87:05: ff:4c:41:0b:75:3d:4d:7b:f8:46:6c:3f:ba:f7:43: 0b:65:15:fa:29:13:01:82:4a:11:b0:17:2b:01:04: 84:ec:38:de:4c:3c:9d:30:3c:0f:09:a9:02:81:de: e9:5f:2a:fa:8b:01:da:ec:60:4b:1b:17:38:c8:1a: 02:74:a8:ef:6e:0a:07:93:11:2f:f1:da:14:e8:be: 7b:9f:78:61:e6:ac:1e:cd:a3:a3:49:8f:f7:b7:e2: 9a:71:1f:c5:96:4f:67:37:ed:fb:f9:16:df:25:2e: 60:f8:fa:79:00:2f:06:7c:50:54:5b:2b:8e:81:4a: e2:cc:2b:3c:3a:b5:f3:f5:02:96:92:ee:8f:68:f5: 75:3d:ee:31:9b:0c:7e:d1:a6:b4:4f:f6:5b:1c:39: 40:63:b2:da:84:e2:5c:1c:6d:d1:17:2f:5f:8b:99: 5c:e6:ae:43:29:a0:19:cc:0e:33:ca:7a:df:c5:9e: 5e:3e:65:89:ac:09:a6:46:26:c6:b9:44:38:b3:8d: ea:5d:1c:62:9b:21:79:5e:a3:15:3f:0b:d5:12:c7: 52:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:9D:F3:4F:B5:33:59:9F:4D:D5:62:28:7A:52:26:99:D9:0D:AD:A9 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:23:ba:51:7a:ed:59:f4:8f:6e:7b:77:d6:6d:0f:14:f7:d2: 21:62:ea:c2:84:83:d4:9c:6a:48:bf:6d:21:15:73:5b:48:61: 5d:27:4e:79:e2:84:a0:3d:ed:0f:5f:7e:52:53:d4:30:0a:77: 1f:f4:8f:b8:d5:aa:3d:ba:db:6f:6f:69:c3:9b:73:b4:f5:2e: 7d:64:39:8e:7e:b4:58:b6:4a:e5:72:ae:68:5b:3e:26:3d:9f: 1f:66:b1:a5:2c:29:3e:d5:b1:f8:6a:42:87:fd:aa:e1:a1:24: 6e:82:59:94:1a:77:1c:d9:ca:b6:54:73:0a:58:fc:55:24:54: 41:26:6a:f9:6f:41:2d:ed:73:9c:e8:6e:e3:ec:27:51:1a:c1: d5:73:fc:eb:db:8d:6b:87:9d:af:55:b5:fe:50:46:3a:13:22: 52:96:41:8b:d0:46:86:10:61:6c:39:a2:64:25:ef:84:cf:8c: 71:cd:7a:c4:83:51:c7:d4:84:12:26:09:6b:1d:83:e9:c6:46: a9:29:7a:78:c2:c2:86:45:4e:bd:5e:43:29:c9:6a:b5:d4:b5: b9:62:8a:30:42:71:f1:5d:04:6a:01:dc:e6:09:5f:82:b5:e4: 85:8e:05:d0:10:37:cc:9b:29:02:34:d1:f0:02:7a:93:25:1d: 5f:b2:e8:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjYwNDE2MTg0NTA3WhcNMjYwNDIzMTg0NTA3WjAYMRYwFAYD VQQDEw02OWUxMmUzMy1jMDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy5xg0E/HyNvk5y2WjUrOrOQSXR2usc2p7YY/laZVg7S2rVBga/qHH31hwX/ TEELdT1Ne/hGbD+690MLZRX6KRMBgkoRsBcrAQSE7DjeTDydMDwPCakCgd7pXyr6 iwHa7GBLGxc4yBoCdKjvbgoHkxEv8doU6L57n3hh5qwezaOjSY/3t+KacR/Flk9n N+37+RbfJS5g+Pp5AC8GfFBUWyuOgUrizCs8OrXz9QKWku6PaPV1Pe4xmwx+0aa0 T/ZbHDlAY7LahOJcHG3RFy9fi5lc5q5DKaAZzA4zynrfxZ5ePmWJrAmmRibGuUQ4 s43qXRximyF5XqMVPwvVEsdSXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFImd80+1 M1mfTdViKHpSJpnZDa2pMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWSO6UXrtWfSPbnt31m0PFPfSIWLqwoSD1JxqSL9tIRVzW0hhXSdOeeKEoD3t D19+UlPUMAp3H/SPuNWqPbrbb29pw5tztPUufWQ5jn60WLZK5XKuaFs+Jj2fH2ax pSwpPtWx+GpCh/2q4aEkboJZlBp3HNnKtlRzClj8VSRUQSZq+W9BLe1znOhu4+wn URrB1XP869uNa4edr1W1/lBGOhMiUpZBi9BGhhBhbDmiZCXvhM+Mcc16xINRx9SE EiYJax2D6cZGqSl6eMLChkVOvV5DKclqtdS1uWKKMEJx8V0EagHc5glfgrXkhY4F 0BA3zJspAjTR8AJ6kyUdX7LoZA== -----END CERTIFICATE-----Generated at Sat Apr 18 02:32:52 2026 by rpki-client