$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: PnjC8kvIckCX2VRK4haSYQyuzqfg3xUPnAYoAe/WkUU= Subject key identifier: B6:08:FA:41:D8:3C:FB:AC:39:BE:28:C4:F7:1D:97:A2:F5:74:CF:B7 Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0D13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0CFA Signing time: Thu 16 Apr 2026 18:08:10 +0000 Manifest this update: Thu 16 Apr 2026 18:08:09 +0000 Manifest next update: Thu 23 Apr 2026 18:08:09 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: mmq3ye2idu7qbGeZSOx0dVpJgIJUGBfMmacSjp37AMY=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: DvZA6XJDkyHfkolYQVEDhxnUbcvdyFYpNYGE/Rx6mkk=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: zG4D1s2xrlJsIzyQLjKkrbBcFvkHI/PRTbX5mMwZqTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3347 (0xd13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Apr 16 18:08:09 2026 GMT Not After : Apr 23 18:08:09 2026 GMT Subject: CN=69e12589-c492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2c:96:5b:78:1e:ae:b9:51:42:1b:f3:c7:57: 01:c8:dc:71:a2:f9:01:21:a7:c5:73:41:95:4d:68: 3c:97:80:65:85:5a:e5:d1:e5:b1:09:07:f9:5f:56: 96:ad:fc:22:89:0c:12:90:ef:37:91:40:d2:a1:f2: 84:a3:04:c0:e2:94:41:15:4d:ea:ed:9c:52:e6:2c: d1:db:35:c4:b2:1f:58:dc:19:b1:40:3d:b5:c4:f0: 7f:6e:2b:70:55:cc:8b:b6:6e:f9:57:08:2d:61:c2: 6d:d8:ad:2c:07:f9:52:c4:ad:51:52:51:28:25:87: 39:9a:b9:22:e1:88:88:eb:50:41:65:8d:52:b4:6a: 4b:5d:6c:cb:d4:78:9d:3a:3d:74:0b:b0:50:5f:1d: e1:9a:16:e1:ec:27:e9:d5:b2:7f:c4:16:94:36:c4: 93:a9:37:35:3c:b4:d1:bd:b7:a2:f9:56:66:cc:00: c8:6e:0a:97:8e:70:6d:35:eb:cd:2d:a9:89:b8:06: 76:93:4f:09:69:3a:ff:6b:92:55:42:81:ec:43:b9: 21:9b:c4:88:4f:c7:9a:1d:45:95:05:7b:84:4e:57: 40:3c:bb:3c:40:d0:30:c8:d3:a8:37:7b:39:40:1f: dd:32:89:04:18:0c:81:29:27:2b:ac:af:eb:1f:f7: a9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:08:FA:41:D8:3C:FB:AC:39:BE:28:C4:F7:1D:97:A2:F5:74:CF:B7 X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:76:56:3b:97:47:1d:fb:ca:85:5e:ee:d2:41:7d:68:66:01: e5:58:5f:fc:09:47:51:08:f4:ba:ea:fd:1f:e5:ab:99:97:e8: 90:4a:ed:63:61:3b:3c:fe:07:a1:cf:ff:ac:f8:a1:10:e4:9e: 9a:60:0d:d5:6b:4e:82:12:4d:99:20:78:1f:90:63:09:41:dd: 3a:b2:f3:5d:8c:b7:9c:61:9c:bb:8b:ab:02:0c:02:8a:a3:a4: 84:36:f8:dc:92:94:a4:7b:28:9c:f4:95:69:39:d7:b5:41:6c: 4b:a2:1c:73:44:c0:de:85:cc:b7:27:16:7c:53:56:ea:18:97: 77:84:ea:0d:09:bb:e0:7c:5b:b8:fc:56:f2:98:54:d0:e6:1f: 79:40:ae:3b:ad:8a:37:4e:a5:5b:2d:c7:57:93:13:40:ac:63: 2b:2a:63:e7:b1:72:e2:b6:a9:d3:e0:8b:80:16:04:a9:1e:03: 9e:02:56:74:63:fd:c1:eb:e6:a5:b4:07:81:fb:78:76:23:bb: 43:0c:b4:b4:03:53:14:0b:43:15:6e:70:8d:78:37:fc:12:52: 25:61:62:67:03:54:73:a7:13:a0:e3:6c:37:d4:b5:04:2e:d2: 53:95:91:a7:7a:22:c4:2b:e0:36:b8:ab:f2:db:47:df:45:91: 4b:58:80:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjYwNDE2MTgwODA5WhcNMjYwNDIzMTgwODA5WjAYMRYwFAYD VQQDEw02OWUxMjU4OS1jNDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSyWW3gerrlRQhvzx1cByNxxovkBIafFc0GVTWg8l4BlhVrl0eWxCQf5X1aW rfwiiQwSkO83kUDSofKEowTA4pRBFU3q7ZxS5izR2zXEsh9Y3BmxQD21xPB/bitw VcyLtm75VwgtYcJt2K0sB/lSxK1RUlEoJYc5mrki4YiI61BBZY1StGpLXWzL1Hid Oj10C7BQXx3hmhbh7Cfp1bJ/xBaUNsSTqTc1PLTRvbei+VZmzADIbgqXjnBtNevN LamJuAZ2k08JaTr/a5JVQoHsQ7khm8SIT8eaHUWVBXuETldAPLs8QNAwyNOoN3s5 QB/dMokEGAyBKScrrK/rH/ep7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLYI+kHY PPusOb4oxPcdl6L1dM+3MB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHnZWO5dHHfvKhV7u0kF9aGYB5Vhf/AlHUQj0uur9H+WrmZfokErtY2E7PP4H oc//rPihEOSemmAN1WtOghJNmSB4H5BjCUHdOrLzXYy3nGGcu4urAgwCiqOkhDb4 3JKUpHsonPSVaTnXtUFsS6Icc0TA3oXMtycWfFNW6hiXd4TqDQm74HxbuPxW8phU 0OYfeUCuO62KN06lWy3HV5MTQKxjKypj57Fy4rap0+CLgBYEqR4DngJWdGP9wevm pbQHgft4diO7Qwy0tANTFAtDFW5wjXg3/BJSJWFiZwNUc6cToONsN9S1BC7SU5WR p3oixCvgNrir8ttH30WRS1iAfQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:27:14 2026 by rpki-client