$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft File: h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft (raw, json) Hash identifier: lmd7CoMmwtig8fUcNPVOlQpyAPtyZmWEGDm/OnXx7cA= Subject key identifier: C7:70:55:70:7A:D0:E8:3D:EA:A9:E5:6A:96:2B:BA:92:7F:1C:04:69 Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft Manifest number: 0234 Signing time: Fri 17 Apr 2026 02:31:57 +0000 Manifest this update: Fri 17 Apr 2026 02:31:56 +0000 Manifest next update: Fri 24 Apr 2026 02:31:56 +0000 Files and hashes: 1: h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl (hash: G1IPoJxD16uklBzM0XvjFpYOjAi8cfgb5Xd5ARozI7I=) 2: 3681B720B2D611EF9B481340C4F9AE02.roa (hash: 7FkfyTgMYCNyYJWlTpM6j8Of7FP+cV14dFT59AfozbY=) 3: 3C4FDE3C0FCA11F18E293E94403D8C67.roa (hash: WfW3TvX//PVo0P/ZBW64rIIqCW2R7aTX6JlE3iuszp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Apr 17 02:31:56 2026 GMT Not After : Apr 24 02:31:56 2026 GMT Subject: CN=69e19b9d-debd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:41:97:30:2d:2a:3c:be:79:30:78:1b:d7:5a: 88:b7:94:d4:9e:96:26:e9:22:58:96:83:d0:d1:c3: b3:6d:30:6f:fa:39:d8:b1:f0:98:bc:10:12:c3:a3: 8b:ba:f3:d3:38:e4:aa:16:17:95:ff:be:00:17:9d: 34:52:0f:73:8e:ad:cd:ad:ab:4f:7e:16:23:dc:b1: 0a:a5:a3:b8:a7:0d:96:58:e7:b4:0c:3f:5f:dc:d3: e0:32:e6:40:ca:4d:86:5c:04:8e:bf:cc:6b:d7:fd: 16:57:22:16:13:76:9f:ac:d9:fe:b7:b2:8c:86:42: dd:d5:f2:10:8e:14:7c:dd:99:aa:da:72:43:48:37: 90:a2:2e:89:6f:28:f4:64:90:a9:9c:db:44:fe:2d: 54:3b:eb:02:d6:d5:65:6e:3e:58:ff:81:5f:66:13: 63:82:01:9d:1c:8d:9e:d4:13:b3:02:28:43:be:5c: 1b:2a:4a:52:f3:41:d5:4d:52:3e:97:7e:3e:88:81: 9c:ea:0d:77:6a:86:55:5c:a4:b1:2b:df:9d:e1:31: 3a:e5:a3:73:c6:8d:f8:3d:60:6c:c7:1c:d1:fe:8d: 41:1d:f4:61:30:99:c3:2e:58:f2:c3:13:5f:62:13: 1c:9b:72:a1:4d:9f:5f:d6:53:49:89:99:8d:0c:d8: b8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:70:55:70:7A:D0:E8:3D:EA:A9:E5:6A:96:2B:BA:92:7F:1C:04:69 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e3:5d:19:58:ad:dc:c8:9f:7d:20:c3:ea:f2:c6:69:2c:fa: 33:8a:4e:85:d1:50:3d:95:73:8a:b7:09:28:6e:d4:be:65:f6: 06:2b:3a:b2:22:d5:52:69:57:c5:58:6c:8f:30:0c:ca:8e:b8: 8b:e5:40:d8:c8:d1:61:c4:d9:92:f5:da:e2:cc:01:0e:36:3d: 32:df:19:12:ea:2e:26:d6:b6:d1:e3:38:96:54:17:80:a0:6a: 85:a0:10:d8:b8:ec:c3:5d:af:5b:49:67:2c:06:94:87:ac:3d: 0d:14:1a:79:e5:63:97:b4:b4:8e:de:9f:26:7f:4e:d9:a8:fe: 60:33:ab:88:88:ed:dc:53:5c:22:bb:ab:ff:31:3c:67:5b:3c: 85:4b:9e:ca:05:af:f2:fc:ba:e2:cd:00:22:ff:d3:a7:60:e3: 6f:a9:3d:40:04:98:15:a1:77:b9:5b:ab:71:c6:0f:3c:7b:7d: c7:89:68:39:ec:4b:62:51:85:b9:d3:5f:f5:94:c8:37:0e:44: 68:de:cd:e1:6d:cd:6f:c0:3d:4b:ca:26:c6:40:2a:75:c1:0c: a4:29:fb:c4:c7:c3:d5:fe:74:94:96:63:84:36:ce:71:12:de: 60:0d:c5:d3:7f:7c:f6:06:ee:9b:35:53:29:92:6e:a9:0f:4b: ce:c0:46:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjYwNDE3MDIzMTU2WhcNMjYwNDI0MDIzMTU2WjAYMRYwFAYD VQQDEw02OWUxOWI5ZC1kZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj0GXMC0qPL55MHgb11qIt5TUnpYm6SJYloPQ0cOzbTBv+jnYsfCYvBASw6OL uvPTOOSqFheV/74AF500Ug9zjq3NratPfhYj3LEKpaO4pw2WWOe0DD9f3NPgMuZA yk2GXASOv8xr1/0WVyIWE3afrNn+t7KMhkLd1fIQjhR83Zmq2nJDSDeQoi6Jbyj0 ZJCpnNtE/i1UO+sC1tVlbj5Y/4FfZhNjggGdHI2e1BOzAihDvlwbKkpS80HVTVI+ l34+iIGc6g13aoZVXKSxK9+d4TE65aNzxo34PWBsxxzR/o1BHfRhMJnDLljywxNf YhMcm3KhTZ9f1lNJiZmNDNi4jwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMdwVXB6 0Og96qnlapYrupJ/HARpMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjI2Ri9ENUM1NkUyOEZBRDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZi dXowcGd0eHZ1Y0V0NzB3alEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAduNdGVit3MiffSDD6vLGaSz6M4pOhdFQPZVzircJKG7UvmX2Bis6siLVUmlX xVhsjzAMyo64i+VA2MjRYcTZkvXa4swBDjY9Mt8ZEuouJta20eM4llQXgKBqhaAQ 2Ljsw12vW0lnLAaUh6w9DRQaeeVjl7S0jt6fJn9O2aj+YDOriIjt3FNcIrur/zE8 Z1s8hUueygWv8vy64s0AIv/Tp2Djb6k9QASYFaF3uVurccYPPHt9x4loOexLYlGF udNf9ZTINw5EaN7N4W3Nb8A9S8omxkAqdcEMpCn7xMfD1f50lJZjhDbOcRLeYA3F 03989gbumzVTKZJuqQ9LzsBGgQ== -----END CERTIFICATE-----Generated at Fri Apr 17 09:39:12 2026 by rpki-client