$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: XqJXIiUwS1J6MwCnSTPViPTjjxcpP4pgERzDp65uHZs= Subject key identifier: EA:61:65:93:34:2C:54:4C:E8:6D:81:C9:25:92:32:4E:84:A5:70:71 Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: 0100 Signing time: Fri 17 Apr 2026 05:55:24 +0000 Manifest this update: Fri 17 Apr 2026 05:55:24 +0000 Manifest next update: Fri 24 Apr 2026 05:55:24 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: zsBUVnrW//Z1EbfUxA/PXuWfxsfKTxT4E614G9Tkpu0=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: 0O2Y56VE28BDUyW/y7K+tvSZF089IWlNTSJ1ih9VrPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: Apr 17 05:55:24 2026 GMT Not After : Apr 24 05:55:24 2026 GMT Subject: CN=69e1cb4c-e493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ad:84:39:f3:6b:57:3c:8d:9f:e7:f2:3a:d4: f4:39:33:50:0d:e6:6d:27:4f:68:26:9e:5e:79:e8: 45:31:45:08:6f:59:9b:68:8a:95:1d:f7:24:db:34: 04:47:d3:c4:ab:c9:3d:a5:07:5f:64:24:47:73:27: 07:a8:c0:99:9c:c8:0b:79:bc:d6:9e:ab:3f:1f:ce: d0:3d:90:d4:56:cc:3b:38:3a:61:43:dd:bc:9a:97: d6:80:67:2f:c3:8b:50:c7:02:0d:33:4c:c8:97:62: 1b:43:50:8f:e0:84:4d:ab:8a:02:4b:35:ac:6b:9b: 04:ac:bb:1b:3a:1e:3f:29:8f:a3:d3:29:04:38:d7: dc:b0:64:09:ee:b4:cf:19:f5:14:4d:6a:9b:8e:f7: 2c:a5:e2:13:ff:b4:85:19:e2:6c:0b:ff:8c:26:c2: 84:11:5c:dc:19:ec:04:93:e1:23:1e:f4:12:b3:6d: d8:91:3f:f7:dd:49:70:26:d5:e0:b6:a1:53:28:44: 01:1d:b7:07:26:ca:62:4d:97:3c:c1:90:61:d1:3b: 1c:ad:05:a6:0c:01:c9:a2:1d:a0:23:88:1b:98:7f: 41:38:81:c3:e3:49:81:4a:9f:ab:27:93:ad:c1:e5: 7c:01:22:d7:fb:23:8f:1a:65:d2:57:f8:71:7b:f8: 1f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:61:65:93:34:2C:54:4C:E8:6D:81:C9:25:92:32:4E:84:A5:70:71 X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:71:44:a1:1f:10:be:d1:12:7e:65:07:d5:6f:b5:bd:fc:b9: 7c:7e:3b:76:7e:aa:bf:2b:8c:35:9b:9c:77:c7:eb:43:d6:09: 3f:c4:7d:54:b8:68:7a:f8:a2:29:b3:7f:aa:93:3a:09:dc:e2: 57:c2:8f:0a:17:fe:9b:88:7b:b1:9b:8b:32:21:b7:b0:4f:37: c6:f9:e7:7b:8b:4c:a4:31:22:0c:34:fc:56:30:2e:ff:bb:61: a9:c1:e4:bd:19:23:04:c0:0a:d2:ec:75:7e:d9:7d:28:d8:56: e3:b4:82:a4:5c:b7:d3:f7:5d:c0:0e:e6:e9:66:10:31:47:c9: 45:9e:20:b3:6e:43:96:c1:18:75:95:48:f5:e0:99:39:52:b1: 21:d7:74:99:66:4a:ce:15:7d:49:41:a3:6f:94:9c:77:60:e4: 74:75:bf:b3:b7:90:f0:16:31:0f:ea:ea:9e:ce:ad:fa:0d:ba: 7f:9b:83:b9:97:bf:42:11:53:1e:0d:2b:d9:81:0c:f1:c9:ed: 49:79:a5:30:93:a8:7a:14:1d:c7:c1:96:b6:a3:8f:d8:6d:89: 26:fe:6d:08:62:af:e6:da:0d:1c:36:e2:8c:5b:4b:57:7d:b9: be:08:8d:0b:4d:a8:db:10:f6:11:da:29:8f:f3:66:2f:69:00: fd:93:8f:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzN0IxMTAvBgNVBAUTKEZBMjI4MDFDNTJBRTJBNUZDNDkxQjdDQkVCRTY4RUZD QTJDOEQxRDkwHhcNMjYwNDE3MDU1NTI0WhcNMjYwNDI0MDU1NTI0WjAYMRYwFAYD VQQDEw02OWUxY2I0Yy1lNDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy62EOfNrVzyNn+fyOtT0OTNQDeZtJ09oJp5eeehFMUUIb1mbaIqVHfck2zQE R9PEq8k9pQdfZCRHcycHqMCZnMgLebzWnqs/H87QPZDUVsw7ODphQ928mpfWgGcv w4tQxwINM0zIl2IbQ1CP4IRNq4oCSzWsa5sErLsbOh4/KY+j0ykEONfcsGQJ7rTP GfUUTWqbjvcspeIT/7SFGeJsC/+MJsKEEVzcGewEk+EjHvQSs23YkT/33UlwJtXg tqFTKEQBHbcHJspiTZc8wZBh0TscrQWmDAHJoh2gI4gbmH9BOIHD40mBSp+rJ5Ot weV8ASLX+yOPGmXSV/hxe/gf7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOphZZM0 LFRM6G2BySWSMk6EpXBxMB8GA1UdIwQYMBaAFPoigBxSripfxJG3y+vmjvyiyNHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM3Qi8xNThEN0YzQ0I5 OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUtsX0VrYmZMNi1hT19LTEkw ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM3Qi8xNThEN0YzQ0I5OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUts X0VrYmZMNi1hT19LTEkwZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFnFEoR8QvtESfmUH1W+1vfy5fH47dn6qvyuMNZucd8frQ9YJP8R9VLhoevii KbN/qpM6CdziV8KPChf+m4h7sZuLMiG3sE83xvnne4tMpDEiDDT8VjAu/7thqcHk vRkjBMAK0ux1ftl9KNhW47SCpFy30/ddwA7m6WYQMUfJRZ4gs25DlsEYdZVI9eCZ OVKxIdd0mWZKzhV9SUGjb5Scd2DkdHW/s7eQ8BYxD+rqns6t+g26f5uDuZe/QhFT Hg0r2YEM8cntSXmlMJOoehQdx8GWtqOP2G2JJv5tCGKv5toNHDbijFtLV325vgiN C02o2xD2Edopj/NmL2kA/ZOPyQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:00:54 2026 by rpki-client