$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft File: iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft (raw, json) Hash identifier: ztBs2rTuv1JCZF2PMIkBJf0vOu4ljs0oEewlszaWQ8w= Subject key identifier: DD:CB:F2:E3:CE:8E:46:9D:D4:EC:84:3D:D4:9E:94:05:BF:B7:BE:AF Authority key identifier: 89:78:4D:6D:93:8B:05:CC:3B:7B:66:6E:5E:7A:EE:92:23:DE:4D:70 Certificate issuer: /CN=A91D8185/serialNumber=89784D6D938B05CC3B7B666E5E7AEE9223DE4D70 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft Manifest number: 7D Signing time: Fri 17 Apr 2026 07:27:36 +0000 Manifest this update: Fri 17 Apr 2026 07:27:35 +0000 Manifest next update: Fri 24 Apr 2026 07:27:35 +0000 Files and hashes: 1: iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl (hash: KLW5D/P+1rgGhtnJUgiG0o718urdIw9d8EzT4DcV08g=) 2: CC2C3CB684AC11F0B7B8977DC4F9AE02.roa (hash: MctOJZfpNmGzytE5FJJXm650+JtZjVtwencqZk15AMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8185, serialNumber=89784D6D938B05CC3B7B666E5E7AEE9223DE4D70 Validity Not Before: Apr 17 07:27:35 2026 GMT Not After : Apr 24 07:27:35 2026 GMT Subject: CN=69e1e0e8-bf17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:eb:b9:65:13:37:c4:ce:df:0f:e4:89:e6:d1: 81:a0:4d:88:e3:cd:f6:67:9b:1b:e4:75:0e:44:75: d1:10:44:33:71:60:ce:8b:eb:3f:a9:1c:b5:9b:57: 18:dc:03:52:1c:8a:5e:21:d8:89:5d:07:14:ea:77: 80:cc:d4:ab:5b:9b:02:df:a5:7b:f6:b0:11:38:c1: b3:45:b2:e2:5b:91:9d:da:65:90:bc:97:5c:c5:12: 26:77:a5:a5:35:54:8b:7c:d5:f0:5e:29:88:b9:a2: 2e:e4:e5:50:5a:32:c6:5b:8c:e9:e9:5f:3b:75:53: c6:df:3c:e4:bd:81:38:5c:c4:ce:e9:b7:8c:e3:95: 05:93:b4:1d:c2:f6:7c:74:a7:7e:35:a5:18:69:e5: f2:4e:bc:61:3d:2d:f1:4d:8f:42:cb:28:fa:d4:f4: 1c:70:af:af:0a:69:72:03:d6:52:4a:f0:32:68:61: 27:ee:4b:ca:e6:94:5b:ca:24:5b:e0:1a:27:8a:09: 8f:00:14:16:cc:84:68:d8:5f:19:88:76:d2:d5:83: 93:4e:e6:c2:df:e5:ab:93:a6:a7:9d:7e:80:42:bb: 80:70:3a:66:4c:b0:59:8c:82:7a:eb:53:83:78:13: 4b:13:ea:89:54:0e:4e:95:d7:c8:8f:2d:ea:29:4f: 5a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CB:F2:E3:CE:8E:46:9D:D4:EC:84:3D:D4:9E:94:05:BF:B7:BE:AF X509v3 Authority Key Identifier: keyid:89:78:4D:6D:93:8B:05:CC:3B:7B:66:6E:5E:7A:EE:92:23:DE:4D:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:16:bf:9e:1a:2f:f9:d9:0d:56:f0:28:f1:32:59:b4:1b:26: 49:e3:da:2d:83:69:88:f3:58:4d:b6:29:f2:1e:74:c0:e9:3b: 3e:e8:f1:5a:bc:d3:f0:43:71:85:d4:13:65:95:3b:17:ef:50: 6d:2b:e1:50:4f:ff:56:48:3d:e3:c4:b0:77:05:18:e2:f3:69: ed:74:ca:d3:2c:c0:bc:9d:83:4e:2d:8c:73:8a:34:16:14:c4: 50:69:82:af:fe:72:a8:33:5e:94:9e:85:6e:fc:f0:b6:f3:6f: d8:b4:9f:3a:d4:11:61:a2:9d:8f:51:77:13:c9:e9:cf:1e:c4: dc:88:1b:da:dc:e4:e0:e7:e2:8c:40:ce:d7:84:1f:7f:0d:2d: eb:f0:37:75:27:3f:4d:8d:15:fa:23:65:98:bb:f4:8b:c1:3c: 15:2c:94:5a:8d:5a:05:fc:73:57:4f:94:44:33:dd:9c:b4:3d: fd:e3:79:0d:b4:a9:8d:27:d1:ab:ea:82:55:40:52:c1:3d:c6: 55:c2:d3:b1:56:c3:cd:89:1b:60:b0:2e:b5:dc:46:01:7d:7a: e2:32:7e:6c:dd:91:4e:4f:e2:d3:c3:94:6c:e0:7f:26:81:ea: 0e:10:9b:00:fe:13:97:ad:8c:70:d6:da:a2:fb:42:7b:c0:7b: 14:1a:9c:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxODUxMTAvBgNVBAUTKDg5Nzg0RDZEOTM4QjA1Q0MzQjdCNjY2RTVFN0FFRTky MjNERTRENzAwHhcNMjYwNDE3MDcyNzM1WhcNMjYwNDI0MDcyNzM1WjAYMRYwFAYD VQQDEw02OWUxZTBlOC1iZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuu5ZRM3xM7fD+SJ5tGBoE2I4832Z5sb5HUORHXREEQzcWDOi+s/qRy1m1cY 3ANSHIpeIdiJXQcU6neAzNSrW5sC36V79rAROMGzRbLiW5Gd2mWQvJdcxRImd6Wl NVSLfNXwXimIuaIu5OVQWjLGW4zp6V87dVPG3zzkvYE4XMTO6beM45UFk7QdwvZ8 dKd+NaUYaeXyTrxhPS3xTY9Cyyj61PQccK+vCmlyA9ZSSvAyaGEn7kvK5pRbyiRb 4BonigmPABQWzIRo2F8ZiHbS1YOTTubC3+Wrk6annX6AQruAcDpmTLBZjIJ661OD eBNLE+qJVA5OldfIjy3qKU9aVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN3L8uPO jkad1OyEPdSelAW/t76vMB8GA1UdIwQYMBaAFIl4TW2TiwXMO3tmbl567pIj3k1w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODE4NS84NTAxMTUzMjg0 QUMxMUYwOEQzQUI5NzlDNEY5QUUwMi9pWGhOYlpPTEJjdzdlMlp1WG5ydWtpUGVU WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYaE5iWk9MQmN3N2UyWnVYbnJ1a2lQZVRYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODE4NS84NTAxMTUzMjg0QUMxMUYwOEQzQUI5NzlDNEY5QUUwMi9pWGhOYlpPTEJj dzdlMlp1WG5ydWtpUGVUWEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQRa/nhov+dkNVvAo8TJZtBsmSePaLYNpiPNYTbYp8h50wOk7PujxWrzT8ENx hdQTZZU7F+9QbSvhUE//Vkg948SwdwUY4vNp7XTK0yzAvJ2DTi2Mc4o0FhTEUGmC r/5yqDNelJ6FbvzwtvNv2LSfOtQRYaKdj1F3E8npzx7E3Igb2tzk4OfijEDO14Qf fw0t6/A3dSc/TY0V+iNlmLv0i8E8FSyUWo1aBfxzV0+URDPdnLQ9/eN5DbSpjSfR q+qCVUBSwT3GVcLTsVbDzYkbYLAutdxGAX164jJ+bN2RTk/i08OUbOB/JoHqDhCb AP4Tl62McNbaovtCe8B7FBqcSg== -----END CERTIFICATE-----Generated at Fri Apr 17 10:38:39 2026 by rpki-client