$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft File: hkuImlN4cQmFJlQfDrkSVv2vp7E.mft (raw, json) Hash identifier: jUEunTeitMsVg94hntq/ksPH6aPw/agBVdhCZUMhv+Q= Subject key identifier: 6B:A6:1F:89:75:57:6D:96:8E:DC:C6:C3:C5:28:C5:F2:AA:FC:38:18 Authority key identifier: 86:4B:88:9A:53:78:71:09:85:26:54:1F:0E:B9:12:56:FD:AF:A7:B1 Certificate issuer: /CN=A91DB53B/serialNumber=864B889A537871098526541F0EB91256FDAFA7B1 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft Manifest number: 40 Signing time: Fri 17 Apr 2026 08:11:24 +0000 Manifest this update: Fri 17 Apr 2026 08:11:23 +0000 Manifest next update: Fri 24 Apr 2026 08:11:23 +0000 Files and hashes: 1: hkuImlN4cQmFJlQfDrkSVv2vp7E.crl (hash: 3aQZJqorR7B09kViZnxfEZuwcOySQBmCugjJbRj+sYU=) 2: 53F3631AE09A11F0A599D036446F56BC.roa (hash: oVM32N+EaxRSiza2FT5vk20qgpzDKgkN9n1AMpDCt+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.crl rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB53B, serialNumber=864B889A537871098526541F0EB91256FDAFA7B1 Validity Not Before: Apr 17 08:11:23 2026 GMT Not After : Apr 24 08:11:23 2026 GMT Subject: CN=69e1eb2c-806e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:43:ae:a8:28:e2:9b:97:41:05:14:ba:23:e5: d7:39:a8:98:56:e1:35:43:b5:1e:10:75:af:04:dc: a0:49:51:6c:97:fa:46:47:3b:b8:5d:87:fc:ba:99: 40:31:74:d3:b2:13:a6:e3:71:0b:1e:49:43:c9:1d: 77:ff:20:70:8d:07:a7:c8:93:46:19:ac:c7:3b:a1: 04:a6:ed:96:e6:4a:c6:c4:fb:96:8d:c6:64:28:11: 71:85:eb:47:bc:ba:85:89:f2:30:de:2c:0f:81:c0: 53:de:43:47:21:69:d7:05:75:51:31:19:e2:a3:a9: 2f:4f:a0:84:b8:a8:96:ce:80:cf:ec:f6:7c:f5:5e: 54:e7:87:8a:ef:0c:e1:03:97:37:47:8f:e2:a8:8d: 7a:d1:3d:01:ac:8b:33:e0:cd:25:ad:e8:81:82:19: 0e:f4:f6:59:3a:b1:1c:c8:3c:10:c4:fc:53:6d:12: da:2a:60:f3:7a:fc:48:97:18:1d:6b:f2:6f:39:de: a5:ef:24:b5:3d:00:6d:0a:4d:d9:f7:0c:fd:bd:5d: 41:7b:e4:a5:00:5f:23:3a:fc:dc:dc:23:ca:4c:2c: 81:da:90:b1:d3:9b:42:de:09:4c:da:f6:24:e8:c9: 77:e5:76:7b:f5:fc:61:c7:bd:cc:52:52:95:4f:68: 9d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A6:1F:89:75:57:6D:96:8E:DC:C6:C3:C5:28:C5:F2:AA:FC:38:18 X509v3 Authority Key Identifier: keyid:86:4B:88:9A:53:78:71:09:85:26:54:1F:0E:B9:12:56:FD:AF:A7:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkuImlN4cQmFJlQfDrkSVv2vp7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB53B/00DA9D68E01A11F08AD3EB8D626F56BC/hkuImlN4cQmFJlQfDrkSVv2vp7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:ef:ce:78:6e:e2:45:93:17:c8:07:dd:17:f7:7f:8c:c2:b2: f4:83:18:e4:f3:a1:7d:6e:4f:8c:75:50:08:84:02:df:ba:ad: 3a:d5:08:11:44:35:12:01:74:e2:09:68:74:22:7f:7c:67:09: a1:e5:9d:48:a5:64:26:aa:65:90:01:7c:9c:4d:53:54:fa:3a: c3:6e:a9:64:b8:ee:59:2c:55:0f:4a:e2:66:29:62:a9:d1:33: 2a:de:02:10:22:34:ea:a5:7a:10:4e:ef:72:6a:e0:f1:cc:36: 65:3f:3a:da:cf:1a:98:79:b5:db:11:01:20:87:83:5e:7e:00: 40:2b:81:ec:df:56:01:94:13:48:a0:90:d6:3a:ce:3e:9e:ed: 8f:d7:27:5c:de:ba:93:b2:07:3b:7c:95:45:40:fd:ef:a9:ce: 43:eb:d5:db:68:16:76:dd:99:ad:48:42:d0:67:5d:74:cc:03: 01:94:ce:db:48:88:76:2b:90:91:9d:3f:ae:54:d7:7f:f6:cc: ea:1b:33:d3:a2:39:e9:a6:f8:71:b9:d8:be:a3:61:3d:37:5c: 4e:6d:a3:68:e3:e9:22:26:22:34:03:e0:15:16:3a:a9:a6:92: 03:e6:77:93:d9:3c:32:40:22:44:0d:0b:13:83:a2:1b:d5:e8: fc:a9:29:4a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QjUzQjExMC8GA1UEBRMoODY0Qjg4OUE1Mzc4NzEwOTg1MjY1NDFGMEVCOTEyNTZG REFGQTdCMTAeFw0yNjA0MTcwODExMjNaFw0yNjA0MjQwODExMjNaMBgxFjAUBgNV BAMTDTY5ZTFlYjJjLTgwNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwQ66oKOKbl0EFFLoj5dc5qJhW4TVDtR4Qda8E3KBJUWyX+kZHO7hdh/y6mUAx dNOyE6bjcQseSUPJHXf/IHCNB6fIk0YZrMc7oQSm7ZbmSsbE+5aNxmQoEXGF60e8 uoWJ8jDeLA+BwFPeQ0chadcFdVExGeKjqS9PoIS4qJbOgM/s9nz1XlTnh4rvDOED lzdHj+KojXrRPQGsizPgzSWt6IGCGQ709lk6sRzIPBDE/FNtEtoqYPN6/EiXGB1r 8m853qXvJLU9AG0KTdn3DP29XUF75KUAXyM6/NzcI8pMLIHakLHTm0LeCUza9iTo yXfldnv1/GHHvcxSUpVPaJ0VAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUa6YfiXVX bZaO3MbDxSjF8qr8OBgwHwYDVR0jBBgwFoAUhkuImlN4cQmFJlQfDrkSVv2vp7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCNTNCLzAwREE5RDY4RTAx QTExRjA4QUQzRUI4RDYyNkY1NkJDL2hrdUltbE40Y1FtRkpsUWZEcmtTVnYydnA3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGt1SW1sTjRjUW1GSmxRZkRya1NWdjJ2cDdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC NTNCLzAwREE5RDY4RTAxQTExRjA4QUQzRUI4RDYyNkY1NkJDL2hrdUltbE40Y1Ft RkpsUWZEcmtTVnYydnA3RS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA97854buJFkxfIB90X93+MwrL0gxjk86F9bk+MdVAIhALfuq061QgRRDUSAXTi CWh0In98Zwmh5Z1IpWQmqmWQAXycTVNU+jrDbqlkuO5ZLFUPSuJmKWKp0TMq3gIQ IjTqpXoQTu9yauDxzDZlPzrazxqYebXbEQEgh4NefgBAK4Hs31YBlBNIoJDWOs4+ nu2P1ydc3rqTsgc7fJVFQP3vqc5D69XbaBZ23ZmtSELQZ110zAMBlM7bSIh2K5CR nT+uVNd/9szqGzPTojnppvhxudi+o2E9N1xObaNo4+kiJiI0A+AVFjqpppID5neT 2TwyQCJEDQsTg6Ib1ej8qSlK -----END CERTIFICATE-----Generated at Fri Apr 17 16:42:34 2026 by rpki-client