$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: QmkvlrogkbY4iJcXw6lkSEndCBVxq0fpJZPgFjgWOW8= Subject key identifier: C4:21:C6:68:15:FD:DD:B9:68:B6:7B:97:94:9C:A6:A8:E3:95:91:3D Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0AF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0AD6 Signing time: Thu 16 Apr 2026 19:21:23 +0000 Manifest this update: Thu 16 Apr 2026 19:21:22 +0000 Manifest next update: Thu 23 Apr 2026 19:21:22 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: qG2b4vhg6qwCklBSUnRlb1UlptuRsKsG1t/DypmYEIg=) 2: 6E71C43EF80A11F0BD0E5DB76F6F56BC.roa (hash: exImyAeQnH2e+Miw5tPRziDVGs9lzMXANWdN6H9jKss=) 3: 6EE80A72F80A11F0BD0E5DB76F6F56BC.roa (hash: Jh4Ff7zuJk/wuhEY+gYNdPlenkcVzVFWzJ8Ffm4/pSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: Apr 16 19:21:22 2026 GMT Not After : Apr 23 19:21:22 2026 GMT Subject: CN=69e136b3-bab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d8:ff:7c:5b:7b:ea:f8:3b:a1:77:55:a5:06: ab:91:a9:4f:2e:8c:74:9d:e2:79:47:b2:60:d5:df: 92:de:05:ed:47:bb:e0:ff:63:b4:24:f0:0b:97:3b: 7f:c4:9c:8b:0b:0d:ff:1f:9f:02:68:88:c8:b6:f5: ac:bb:12:ef:ee:59:f8:27:e9:ed:40:c3:37:4c:22: 3d:06:14:68:3a:3e:33:e5:e7:bb:4d:7b:11:6a:b8: 00:11:f5:1f:e4:08:3a:f8:b5:cf:00:68:7d:e8:40: 4f:11:af:89:7d:72:f0:1e:88:85:5b:82:bd:11:b7: 47:33:c5:bd:8f:ab:cf:66:1a:f4:77:51:e4:b6:8e: 67:8b:0d:ad:83:28:52:16:69:0e:f3:2d:66:09:15: 2d:bc:f7:92:6d:fa:52:60:b3:06:b8:e8:54:27:67: 39:b6:82:ee:62:05:f3:6c:5a:45:de:5d:a0:0f:1d: c5:1a:f7:39:84:21:a9:e6:89:ca:62:8d:2a:f8:58: 16:b0:de:dd:3a:af:04:fe:33:75:3c:02:c1:1f:ff: be:3a:9d:e5:cb:82:db:cb:9e:aa:c4:4d:2a:60:95: 5c:63:f3:bc:a2:ff:96:aa:37:09:27:ad:04:12:17: 8d:86:68:c3:31:24:21:82:df:04:d5:df:ae:56:51: 1e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:21:C6:68:15:FD:DD:B9:68:B6:7B:97:94:9C:A6:A8:E3:95:91:3D X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:c2:2a:85:3f:6b:f3:15:4e:d7:df:b4:6c:14:a5:4e:61:7f: ea:0e:d6:36:ef:9e:37:74:a1:cb:d3:63:19:4b:17:a1:36:c7: ce:ec:13:06:b4:38:c0:22:eb:55:82:22:1d:8e:c4:b2:8a:c5: 5a:c0:f2:15:82:3c:92:28:d8:12:b9:bf:80:5d:89:4e:b0:22: f2:bb:c8:c0:ee:b2:86:be:86:17:3c:b4:49:3a:a8:e9:a8:90: c3:36:7e:60:d8:8a:a7:82:76:fc:5d:1b:19:08:04:cd:95:b3: 44:9e:d1:df:3c:0d:f5:d3:f4:34:3b:1b:bc:28:19:c7:9a:1a: f6:29:cf:dd:32:e9:a2:4a:bd:38:6d:81:88:a6:df:51:7d:58: b8:a6:2f:ea:c2:83:07:57:10:56:a9:ae:6d:dc:83:32:a8:60: 86:c7:7a:af:22:05:f4:88:cf:34:0f:95:98:26:b0:4a:7b:15: fa:66:71:b8:53:77:11:06:eb:bd:3f:c4:6c:a6:6d:1f:c5:43: 99:84:5f:7a:d4:28:54:85:bc:54:8a:a2:59:6a:7e:bd:64:9f: 5f:03:e5:d5:f3:14:ee:d1:ce:f5:ba:e9:e5:64:51:37:ab:0d: 4d:0d:8b:55:3c:a7:a4:b0:fc:3c:05:67:ce:66:c0:61:3a:5d: 27:92:69:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjYwNDE2MTkyMTIyWhcNMjYwNDIzMTkyMTIyWjAYMRYwFAYD VQQDEw02OWUxMzZiMy1iYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutj/fFt76vg7oXdVpQarkalPLox0neJ5R7Jg1d+S3gXtR7vg/2O0JPALlzt/ xJyLCw3/H58CaIjItvWsuxLv7ln4J+ntQMM3TCI9BhRoOj4z5ee7TXsRargAEfUf 5Ag6+LXPAGh96EBPEa+JfXLwHoiFW4K9EbdHM8W9j6vPZhr0d1Hkto5niw2tgyhS FmkO8y1mCRUtvPeSbfpSYLMGuOhUJ2c5toLuYgXzbFpF3l2gDx3FGvc5hCGp5onK Yo0q+FgWsN7dOq8E/jN1PALBH/++Op3ly4Lby56qxE0qYJVcY/O8ov+WqjcJJ60E EheNhmjDMSQhgt8E1d+uVlEeJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMQhxmgV /d25aLZ7l5ScpqjjlZE9MB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArsIqhT9r8xVO19+0bBSlTmF/6g7WNu+eN3Shy9NjGUsXoTbHzuwTBrQ4wCLr VYIiHY7EsorFWsDyFYI8kijYErm/gF2JTrAi8rvIwO6yhr6GFzy0STqo6aiQwzZ+ YNiKp4J2/F0bGQgEzZWzRJ7R3zwN9dP0NDsbvCgZx5oa9inP3TLpokq9OG2BiKbf UX1YuKYv6sKDB1cQVqmubdyDMqhghsd6ryIF9IjPNA+VmCawSnsV+mZxuFN3EQbr vT/EbKZtH8VDmYRfetQoVIW8VIqiWWp+vWSfXwPl1fMU7tHO9brp5WRRN6sNTQ2L VTynpLD8PAVnzmbAYTpdJ5JpcQ== -----END CERTIFICATE-----Generated at Fri Apr 17 14:18:21 2026 by rpki-client