$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: Bg4e+SAb3Zq1+h7rPDcfKZNtxrnFprrtulkYpYfsxWg= Subject key identifier: 82:A7:95:04:3C:A8:01:93:CF:61:B1:23:34:12:A5:0C:D0:53:28:C0 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E69 Signing time: Thu 16 Apr 2026 15:27:33 +0000 Manifest this update: Thu 16 Apr 2026 15:27:33 +0000 Manifest next update: Thu 23 Apr 2026 15:27:33 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: XKLKrr1ISOY781fELzo7fOEEvzWY3gA40X236eCpmIE=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: 6f1TkFWNlMl/F/acGbghOLoUP+OqCJaMnvA5r+odhLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11912 (0x2e88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Apr 16 15:27:33 2026 GMT Not After : Apr 23 15:27:33 2026 GMT Subject: CN=69e0ffe5-2ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:46:23:1e:c9:a5:e7:6f:49:5e:5c:72:0a:2a: bf:2c:ce:6c:15:dd:10:04:11:e8:04:19:1a:56:74: 8f:1b:f6:48:06:32:0b:26:21:95:7b:28:e7:d6:55: 9b:a4:f4:ce:65:8f:32:25:2f:66:46:ee:ba:69:a1: bb:fe:4f:8a:29:7f:64:17:41:6a:23:6b:9c:0a:91: a6:4f:9a:0a:a8:81:c7:fd:14:bc:a3:7a:c4:0e:b1: 24:0a:9f:56:40:e9:3f:1a:61:5e:d4:b6:07:32:59: 93:3e:f9:01:e2:d8:8b:82:b5:9d:08:21:33:77:b6: f0:0b:6c:e2:db:3b:b5:20:d5:f5:df:21:f3:f5:01: bc:a9:db:e5:3f:c5:a4:5d:b7:06:6e:a2:cc:72:c2: 7e:0e:da:e8:f1:49:07:49:07:29:8e:ac:14:c4:66: ab:37:2d:f4:a0:3b:25:8d:ce:6b:af:53:83:5a:3f: 21:13:c0:66:1a:40:af:8d:c7:ef:2b:d1:d6:88:82: 0d:8c:9c:76:4b:13:72:7a:50:81:d8:2a:d1:3a:26: ac:b3:82:43:7f:2b:28:62:c7:78:c1:8b:6c:8a:51: 5f:ce:b0:de:2e:6f:53:91:9a:a1:87:f1:38:86:8d: f6:93:69:ca:29:7a:1b:c9:a7:f4:4f:f0:4d:83:bb: 14:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A7:95:04:3C:A8:01:93:CF:61:B1:23:34:12:A5:0C:D0:53:28:C0 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:01:9b:7e:7c:44:fb:b9:17:ef:ab:5e:28:17:a5:a4:e5:0e: ee:b8:ec:d5:94:ed:59:23:3f:71:d8:81:7e:00:82:8c:5e:db: 0b:1a:4c:15:ce:89:07:a5:9a:01:7a:bf:49:59:bc:cf:c9:af: 26:b5:e5:ee:f1:45:c5:84:a6:d2:74:8a:b9:a6:5c:a2:89:9e: 60:cc:e1:8c:c5:b4:77:30:22:f0:2a:35:e0:1c:4f:3e:51:b1: f5:89:d5:c4:e1:a2:85:ef:3a:db:b5:49:ce:79:a4:40:c5:b3: b7:c8:77:42:36:0a:25:2c:e7:cc:86:97:4c:e2:72:b0:74:03: 42:b0:7f:a5:17:4b:fc:41:d5:df:cb:91:8d:42:5d:d7:57:2c: e5:cb:d0:c6:d1:a4:68:72:e0:82:f9:ea:99:38:6e:df:06:68: 55:f9:75:b4:fd:df:01:ce:94:1d:c9:ec:0f:c3:5f:d6:6b:14: d8:19:24:83:f5:dc:b4:4f:ed:b6:86:10:19:2b:14:a8:25:8b: da:50:4c:f4:37:b4:6a:cc:f2:d5:27:6b:3c:ea:3e:85:cb:f3: 7f:cc:de:37:3e:c3:25:12:e7:d7:0e:23:44:70:09:17:57:f0: 96:93:72:5e:c3:d5:05:4e:cd:06:e4:82:af:1f:8b:64:d4:db: ac:fe:61:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjYwNDE2MTUyNzMzWhcNMjYwNDIzMTUyNzMzWjAYMRYwFAYD VQQDEw02OWUwZmZlNS0yZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0YjHsml529JXlxyCiq/LM5sFd0QBBHoBBkaVnSPG/ZIBjILJiGVeyjn1lWb pPTOZY8yJS9mRu66aaG7/k+KKX9kF0FqI2ucCpGmT5oKqIHH/RS8o3rEDrEkCp9W QOk/GmFe1LYHMlmTPvkB4tiLgrWdCCEzd7bwC2zi2zu1INX13yHz9QG8qdvlP8Wk XbcGbqLMcsJ+Dtro8UkHSQcpjqwUxGarNy30oDsljc5rr1ODWj8hE8BmGkCvjcfv K9HWiIINjJx2SxNyelCB2CrROiass4JDfysoYsd4wYtsilFfzrDeLm9TkZqhh/E4 ho32k2nKKXobyaf0T/BNg7sUjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIKnlQQ8 qAGTz2GxIzQSpQzQUyjAMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASAGbfnxE+7kX76teKBelpOUO7rjs1ZTtWSM/cdiBfgCCjF7bCxpMFc6JB6Wa AXq/SVm8z8mvJrXl7vFFxYSm0nSKuaZcoomeYMzhjMW0dzAi8Co14BxPPlGx9YnV xOGihe8627VJznmkQMWzt8h3QjYKJSznzIaXTOJysHQDQrB/pRdL/EHV38uRjUJd 11cs5cvQxtGkaHLggvnqmThu3wZoVfl1tP3fAc6UHcnsD8Nf1msU2Bkkg/XctE/t toYQGSsUqCWL2lBM9De0aszy1SdrPOo+hcvzf8zeNz7DJRLn1w4jRHAJF1fwlpNy XsPVBU7NBuSCrx+LZNTbrP5hwA== -----END CERTIFICATE-----Generated at Fri Apr 17 16:01:22 2026 by rpki-client