$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: iGJYxwm8Kv9PcNAdFFJAYKWnN97pzsvztDcz7Cji8/U= Subject key identifier: 4B:7E:D0:8D:54:67:C9:9E:1C:02:38:85:49:CF:0D:BE:44:F4:EE:28 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 0918 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 0910 Signing time: Thu 16 Apr 2026 20:10:43 +0000 Manifest this update: Thu 16 Apr 2026 20:10:42 +0000 Manifest next update: Thu 23 Apr 2026 20:10:42 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: qqQ7GP2icfDrzOKQ8zgsE85MKCVDOr7qQPOWPzqN1Qk=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: z8K9NFfgSR+lYBTmglUzfygULgy/XVJpR7AJN5E7qvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2328 (0x918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Apr 16 20:10:42 2026 GMT Not After : Apr 23 20:10:42 2026 GMT Subject: CN=69e14243-7dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d5:dc:31:33:06:8e:51:23:06:2a:bc:ed:67: 82:87:8e:0e:51:1d:d9:a9:dc:cf:b1:8a:1e:ef:46: f6:2f:27:e7:e9:0b:74:b8:74:75:58:d6:98:23:16: bf:19:a9:1a:f2:d5:13:30:96:94:cf:00:d0:61:62: ee:14:24:04:f8:b9:67:d0:1d:82:3b:29:a1:99:4f: 66:a6:da:3d:ec:0f:c8:22:cb:de:4c:53:ca:63:27: 5d:5b:ee:97:33:3c:22:21:3a:55:5d:8a:86:73:44: c0:b1:60:d6:f2:e1:c3:da:9c:7c:26:29:46:1e:d5: ae:25:90:06:98:ed:da:f7:23:bf:cb:31:5f:a4:1f: 80:6b:31:51:7d:3b:24:68:29:ca:5c:43:3a:b4:4a: b3:52:87:b5:11:be:40:3b:13:91:48:33:3e:5c:a9: ea:bc:74:e3:78:fa:54:66:75:08:ef:0a:e3:80:77: 5e:4e:bb:02:38:67:92:bb:90:a6:f0:b1:3b:c3:bb: 53:8b:80:c1:6e:92:4e:d1:05:46:5f:51:cf:9e:c8: 90:c6:09:10:3d:1a:b7:0d:30:c5:f5:3a:d6:5e:f9: 8e:0a:a2:fd:1e:87:c9:fb:c3:1f:19:f5:36:ab:6f: 7c:8d:3f:97:d4:88:ed:6f:da:38:2e:58:69:e4:69: 44:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7E:D0:8D:54:67:C9:9E:1C:02:38:85:49:CF:0D:BE:44:F4:EE:28 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:86:4b:a4:46:e3:33:6e:e8:df:a7:59:21:3c:34:79:8c:34: c4:56:8b:77:9c:f4:64:85:7c:65:fd:77:14:3a:19:d8:e4:8b: b3:56:80:4b:63:95:8a:77:3c:a6:76:55:68:88:c9:8b:73:55: 04:93:57:3f:b0:25:4c:64:0f:27:97:49:95:0c:c9:e6:f2:65: 67:d3:e0:bb:49:c9:24:43:f4:d8:53:df:43:77:46:b8:06:a8: 09:87:b9:47:bc:e3:2a:1b:05:2d:ea:27:98:df:3f:fa:8e:14: 42:55:c5:6f:c7:25:1c:5d:91:3a:3b:0d:d6:34:aa:33:bb:4b: 5e:9c:a8:d9:c1:18:c1:af:c4:4a:af:e0:ca:b2:54:6c:22:17: 0b:3d:29:65:e2:34:96:76:07:a9:d6:8a:45:4d:e6:25:97:ef: 22:3c:ef:0c:30:83:39:bf:9e:95:29:5d:b1:cf:a7:10:26:2b: 63:4c:ac:03:21:49:0b:37:26:3a:8b:f6:4d:30:ec:b2:e1:f3: 83:33:ac:11:0a:d8:be:44:77:cc:3a:f3:73:26:b3:ec:f1:17: 4e:4e:f4:12:a6:07:88:c5:36:76:b5:59:93:5e:4e:69:c5:f5: 6b:7c:62:a0:db:a0:7b:45:2a:c3:ba:dd:a4:08:7d:95:74:1c: 01:c5:3e:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjYwNDE2MjAxMDQyWhcNMjYwNDIzMjAxMDQyWjAYMRYwFAYD VQQDEw02OWUxNDI0My03ZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NXcMTMGjlEjBiq87WeCh44OUR3ZqdzPsYoe70b2Lyfn6Qt0uHR1WNaYIxa/ Gaka8tUTMJaUzwDQYWLuFCQE+Lln0B2COymhmU9mpto97A/IIsveTFPKYyddW+6X MzwiITpVXYqGc0TAsWDW8uHD2px8JilGHtWuJZAGmO3a9yO/yzFfpB+AazFRfTsk aCnKXEM6tEqzUoe1Eb5AOxORSDM+XKnqvHTjePpUZnUI7wrjgHdeTrsCOGeSu5Cm 8LE7w7tTi4DBbpJO0QVGX1HPnsiQxgkQPRq3DTDF9TrWXvmOCqL9HofJ+8MfGfU2 q298jT+X1Ijtb9o4Llhp5GlEJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEt+0I1U Z8meHAI4hUnPDb5E9O4oMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU4ZLpEbjM27o36dZITw0eYw0xFaLd5z0ZIV8Zf13FDoZ2OSLs1aAS2OVinc8 pnZVaIjJi3NVBJNXP7AlTGQPJ5dJlQzJ5vJlZ9Pgu0nJJEP02FPfQ3dGuAaoCYe5 R7zjKhsFLeonmN8/+o4UQlXFb8clHF2ROjsN1jSqM7tLXpyo2cEYwa/ESq/gyrJU bCIXCz0pZeI0lnYHqdaKRU3mJZfvIjzvDDCDOb+elSldsc+nECYrY0ysAyFJCzcm Oov2TTDssuHzgzOsEQrYvkR3zDrzcyaz7PEXTk70EqYHiMU2drVZk15OacX1a3xi oNuge0Uqw7rdpAh9lXQcAcU+Ng== -----END CERTIFICATE-----Generated at Fri Apr 17 09:59:08 2026 by rpki-client