$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: 3XsbLCPDX7LZsCzj8bLCi/DtouZHtjBoKCkU3xe2wXU= Subject key identifier: D9:56:CF:5D:44:87:E6:18:EF:D2:CA:BE:44:2E:F2:2D:65:B4:53:2E Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 3528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 3528 Signing time: Thu 16 Apr 2026 15:02:21 +0000 Manifest this update: Thu 16 Apr 2026 15:02:21 +0000 Manifest next update: Thu 23 Apr 2026 15:02:21 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: hmBXuOLYvRgq1p9SkUMgR8amE6TmXsNH9fYQ8W469wg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13608 (0x3528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Apr 16 15:02:21 2026 GMT Not After : Apr 23 15:02:21 2026 GMT Subject: CN=69e0f9fd-e449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:9c:0f:66:f5:bd:d4:f0:dd:f9:bc:5a:c1:93: 4c:8d:11:a3:6b:71:db:16:81:97:58:3f:d0:5e:7f: 8a:81:f9:c5:83:04:4d:05:59:7a:e5:28:0c:4c:e9: 15:a1:28:a3:59:6e:19:64:8a:53:b6:27:6e:ff:8d: b0:d7:c4:38:a2:c0:83:5c:68:6a:ff:ee:ec:77:02: 22:0a:40:99:f5:b5:6b:c5:8c:e7:49:1c:cd:f8:f2: fe:95:3a:18:e6:64:49:e3:8d:09:21:87:b7:da:4b: 75:45:14:0d:7d:10:c2:ee:22:bc:ac:71:70:05:34: 8d:1c:38:a1:69:9a:ee:5f:42:cd:b5:2c:2a:9a:b4: 86:22:29:e1:67:98:41:48:60:5f:c9:69:d8:c7:58: 85:c7:1c:cd:52:c3:09:85:93:d0:19:98:c8:f0:14: 2c:79:f3:64:05:ec:c3:2c:55:6f:a5:e3:cc:7f:55: a9:e5:f4:90:49:e6:4d:65:3e:51:d2:7c:eb:a9:0a: 7e:0b:63:64:40:6b:b5:62:bc:b8:96:52:ec:e6:35: 10:4e:b8:91:c2:f1:d3:ed:18:20:9c:0c:69:15:71: 33:fd:74:3e:12:45:25:6b:2f:38:76:44:2b:f3:6c: 00:79:f4:b5:12:5c:6b:af:31:2b:71:71:a1:2f:5f: d7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:56:CF:5D:44:87:E6:18:EF:D2:CA:BE:44:2E:F2:2D:65:B4:53:2E X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:db:eb:64:14:54:60:87:b2:b4:e8:b8:ed:4d:f5:3f:21:b1: 77:ee:ed:51:26:20:2d:40:58:76:3a:b0:ad:33:40:10:eb:7d: 10:85:e4:67:c4:f3:a4:64:85:2e:3f:63:aa:8f:7c:16:69:20: 53:4e:d2:52:df:b5:d7:56:b3:5c:f7:53:98:7b:d5:6e:92:a7: 51:73:69:64:83:35:cc:b4:f2:a8:ce:25:58:69:35:26:20:0c: bf:ea:e6:68:e6:21:c2:bb:53:30:9b:61:6c:79:1f:fb:2b:18: 6c:95:2f:c3:e6:0a:59:1c:3c:0a:f3:3d:04:9f:cb:be:0f:31: 1b:be:a3:fb:02:62:55:60:7f:01:5e:8f:f7:09:5a:a3:23:0f: a9:06:0c:be:df:8a:a0:57:86:f8:70:c9:e7:0e:d2:06:7c:15: 14:7d:8d:4a:56:5b:2b:fe:f2:64:ff:bc:5b:b9:6f:66:3e:df: 54:4a:1d:ef:73:2a:39:1e:ad:35:77:98:82:9f:ef:f8:b9:6d: b3:41:88:ed:33:0f:3b:2a:6b:76:eb:02:84:c0:12:a9:c0:48: 75:cc:26:48:1a:40:ea:30:cb:50:1f:0f:83:51:ee:64:52:87: c2:f2:24:d6:f7:72:75:96:91:00:15:ac:c9:88:eb:21:54:a9: 89:cf:6e:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjYwNDE2MTUwMjIxWhcNMjYwNDIzMTUwMjIxWjAYMRYwFAYD VQQDEw02OWUwZjlmZC1lNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkJwPZvW91PDd+bxawZNMjRGja3HbFoGXWD/QXn+KgfnFgwRNBVl65SgMTOkV oSijWW4ZZIpTtidu/42w18Q4osCDXGhq/+7sdwIiCkCZ9bVrxYznSRzN+PL+lToY 5mRJ440JIYe32kt1RRQNfRDC7iK8rHFwBTSNHDihaZruX0LNtSwqmrSGIinhZ5hB SGBfyWnYx1iFxxzNUsMJhZPQGZjI8BQsefNkBezDLFVvpePMf1Wp5fSQSeZNZT5R 0nzrqQp+C2NkQGu1Yry4llLs5jUQTriRwvHT7RggnAxpFXEz/XQ+EkUlay84dkQr 82wAefS1ElxrrzErcXGhL1/XuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNlWz11E h+YY79LKvkQu8i1ltFMuMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAStvrZBRUYIeytOi47U31PyGxd+7tUSYgLUBYdjqwrTNAEOt9EIXkZ8TzpGSF Lj9jqo98FmkgU07SUt+111azXPdTmHvVbpKnUXNpZIM1zLTyqM4lWGk1JiAMv+rm aOYhwrtTMJthbHkf+ysYbJUvw+YKWRw8CvM9BJ/Lvg8xG76j+wJiVWB/AV6P9wla oyMPqQYMvt+KoFeG+HDJ5w7SBnwVFH2NSlZbK/7yZP+8W7lvZj7fVEod73MqOR6t NXeYgp/v+Llts0GI7TMPOyprdusChMASqcBIdcwmSBpA6jDLUB8Pg1HuZFKHwvIk 1vdydZaRABWsyYjrIVSpic9u0Q== -----END CERTIFICATE-----Generated at Sat Apr 18 01:41:04 2026 by rpki-client