$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: v6CY7fAlzcWQZSJRgRR1uSVWxc3S/qaE9+PmMSltpUA= Subject key identifier: 64:98:94:CF:38:17:DD:2B:52:9E:88:42:19:86:63:C5:74:20:89:CA Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 0144 Signing time: Fri 17 Apr 2026 05:03:56 +0000 Manifest this update: Fri 17 Apr 2026 05:03:55 +0000 Manifest next update: Fri 24 Apr 2026 05:03:55 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: fDrDHsgxUMBOegKrJxYI5CMw3RDtihXGXNnOk6ptGi4=) 2: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: yjLxdwzIuckVEpvjPtBFZMr56OhqZEN8C8fQw3Xhxos=) 3: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: rrKRhHeiohcyIqeCIJv+44R0SbRHPDcNTcaSyqFnNBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Apr 17 05:03:55 2026 GMT Not After : Apr 24 05:03:55 2026 GMT Subject: CN=69e1bf3c-568d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:45:27:0c:13:73:3b:74:b5:c5:7f:32:ea:22: 30:ed:83:dd:dc:ca:4b:eb:56:a5:ca:7a:17:0f:a9: 0a:75:19:2c:70:71:f5:fc:22:b2:ad:1f:0e:8b:0c: 3d:12:73:ce:e3:5d:ce:43:20:91:bd:9f:26:43:2c: cb:fa:4f:4c:ac:41:aa:9d:6e:a9:9c:89:35:f5:ca: 57:ea:9f:41:22:b7:78:64:40:3b:05:cd:4c:97:f4: a2:4f:60:89:33:a6:8f:33:8e:fd:77:85:fc:76:f9: 41:ac:4f:b7:44:56:cf:3e:21:c0:df:03:c3:6f:08: a5:00:39:a3:ec:44:ef:d8:9b:d6:02:53:63:ad:24: 76:a6:32:93:9b:41:14:e5:5f:5c:69:aa:99:7e:c2: ec:21:58:5f:26:8f:22:44:6d:fc:b9:3b:c8:40:d8: 7b:6c:c4:15:eb:7b:95:83:cd:5a:a2:16:f4:5a:98: 5a:63:a7:4b:4c:92:1c:d9:46:4b:ab:98:0c:18:d5: b9:57:31:e1:6e:4b:1d:17:c8:e4:92:ff:5b:5d:31: 9c:88:3c:e3:12:09:15:0f:f7:60:6d:1f:fe:71:77: bc:21:ca:ff:0d:84:f7:b9:d1:16:9d:c1:b0:f1:89: 2d:43:9a:51:0c:a9:bf:df:f0:b6:63:cd:9c:1e:ef: fd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:98:94:CF:38:17:DD:2B:52:9E:88:42:19:86:63:C5:74:20:89:CA X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0d:a6:f4:85:ca:77:7e:5b:af:16:cd:bf:aa:3a:5a:32:65: e1:41:be:fe:b7:75:77:9a:f3:5c:28:17:7b:db:70:0f:84:79: 0f:60:2b:64:a4:17:35:3c:a2:42:dd:9e:7e:fd:33:f6:24:ca: 5e:bd:59:1c:79:fa:4d:f5:6e:20:b0:21:86:19:ac:61:f5:12: c5:27:40:bd:e9:a4:f4:e7:b6:de:a0:fd:68:d7:66:fa:0c:58: 42:94:42:98:81:cc:72:b5:72:7e:ef:76:c6:9f:d9:76:92:d2: b4:15:53:91:93:aa:45:eb:0b:1d:89:3c:a3:94:ed:e6:30:cb: e9:89:ec:79:2e:6b:32:a6:3c:66:7d:c6:f8:e9:a2:8a:c2:df: ed:18:54:79:8f:1e:92:26:31:5b:33:e3:3f:59:16:a8:f6:d5: b2:68:f1:b9:f8:81:9c:1d:e4:38:bb:b9:59:00:f0:7b:cb:41: aa:be:54:c7:35:4d:88:84:87:1d:cc:8b:09:d2:e1:a2:1c:55: 4a:66:92:6b:c1:4a:f1:e9:71:14:a9:fc:cb:43:35:c6:d8:8f: ff:07:a1:f1:be:9a:12:fa:60:0e:45:fa:db:3f:1a:cf:c9:01: b2:25:dd:89:82:18:43:a8:71:41:4d:17:a5:ae:58:2c:a4:83: 7d:f7:39:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjYwNDE3MDUwMzU1WhcNMjYwNDI0MDUwMzU1WjAYMRYwFAYD VQQDEw02OWUxYmYzYy01NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9EUnDBNzO3S1xX8y6iIw7YPd3MpL61alynoXD6kKdRkscHH1/CKyrR8Oiww9 EnPO413OQyCRvZ8mQyzL+k9MrEGqnW6pnIk19cpX6p9BIrd4ZEA7Bc1Ml/SiT2CJ M6aPM479d4X8dvlBrE+3RFbPPiHA3wPDbwilADmj7ETv2JvWAlNjrSR2pjKTm0EU 5V9caaqZfsLsIVhfJo8iRG38uTvIQNh7bMQV63uVg81aohb0WphaY6dLTJIc2UZL q5gMGNW5VzHhbksdF8jkkv9bXTGciDzjEgkVD/dgbR/+cXe8Icr/DYT3udEWncGw 8YktQ5pRDKm/3/C2Y82cHu/9AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGSYlM84 F90rUp6IQhmGY8V0IInKMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbg2m9IXKd35brxbNv6o6WjJl4UG+/rd1d5rzXCgXe9twD4R5D2ArZKQXNTyi Qt2efv0z9iTKXr1ZHHn6TfVuILAhhhmsYfUSxSdAvemk9Oe23qD9aNdm+gxYQpRC mIHMcrVyfu92xp/ZdpLStBVTkZOqResLHYk8o5Tt5jDL6YnseS5rMqY8Zn3G+Omi isLf7RhUeY8ekiYxWzPjP1kWqPbVsmjxufiBnB3kOLu5WQDwe8tBqr5UxzVNiISH HcyLCdLhohxVSmaSa8FK8elxFKn8y0M1xtiP/weh8b6aEvpgDkX62z8az8kBsiXd iYIYQ6hxQU0Xpa5YLKSDffc51g== -----END CERTIFICATE-----Generated at Fri Apr 17 15:29:53 2026 by rpki-client