$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: fAsTpXAQ1CFGWNNlspRQ8UOZlQSgReBzHrmE2ONnT3s= Subject key identifier: 07:C9:FD:EA:ED:7E:2A:42:98:35:3E:79:BB:BA:6D:D5:E8:7E:9A:5A Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 012F Signing time: Fri 17 Apr 2026 05:16:48 +0000 Manifest this update: Fri 17 Apr 2026 05:16:47 +0000 Manifest next update: Fri 24 Apr 2026 05:16:47 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: I8z3aJjs6J1zHFYeEw4tRv7snRZEUEZlilMYI2hO/KA=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: /pgTpJCeELO0vx7ey0ylXFhJZdDNJrts1Zcttp5czrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:16:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Apr 17 05:16:47 2026 GMT Not After : Apr 24 05:16:47 2026 GMT Subject: CN=69e1c23f-bcfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:e5:ae:85:71:de:4c:57:71:4f:70:2b:30: 5c:39:bf:da:a2:b6:80:5b:bf:65:27:f2:cf:84:7e: 37:4c:5c:2c:db:b4:3d:ea:da:47:90:a6:57:d8:90: 23:63:84:9a:15:d5:70:a8:16:d0:7f:a7:11:66:7d: 4a:24:8a:ce:c1:9b:6b:f7:8c:f7:e3:35:c5:e5:a7: a6:0e:b0:e4:43:d2:0c:ae:b7:78:6d:21:05:fd:ca: d9:0d:f4:d3:0e:0a:f6:76:20:20:86:60:d0:62:27: 6f:0a:05:6a:e7:6d:9c:18:9d:88:75:c9:3c:0a:bf: 9b:aa:a0:5a:d7:a7:f4:80:6e:10:ec:17:53:20:47: 06:65:00:5d:ea:10:cc:cd:19:4c:03:01:34:be:22: fc:0d:c8:99:e6:21:9d:73:b3:c1:72:29:71:3a:06: 85:58:2d:bd:92:89:df:f6:13:63:11:1e:13:91:ef: 46:f7:7d:7e:18:5a:7c:bf:65:88:f2:31:f0:c0:5a: c6:3d:9a:0e:47:22:93:51:c3:18:5e:03:4c:e0:ad: ff:e0:29:23:c8:b2:8a:d5:a8:75:0a:56:e4:a0:58: 5e:8c:58:91:d0:51:6e:43:db:0b:a7:5f:08:70:61: 87:13:bf:f6:d8:c1:91:a6:6e:a2:c4:0d:53:9d:01: 0f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C9:FD:EA:ED:7E:2A:42:98:35:3E:79:BB:BA:6D:D5:E8:7E:9A:5A X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:d8:ab:21:7c:e8:48:ef:d4:06:f8:6f:5c:a3:8a:ec:ad:38: 5e:0d:a8:6d:8c:c2:14:e6:32:77:9a:47:a6:40:85:2f:2c:88: b4:45:e3:03:7b:24:24:93:55:63:21:a2:a0:39:f0:cf:3c:c2: 67:a7:5c:07:2e:50:05:ca:1d:4b:38:ba:fd:79:cf:4f:ee:a2: 7a:94:75:1b:02:8e:d8:d5:76:05:13:0d:be:ba:eb:75:d7:7b: fe:4b:11:60:50:ba:c1:19:3c:91:bf:0b:76:be:91:c3:cd:9c: cf:f8:5e:9d:4f:f1:0b:df:b7:55:cb:62:23:4c:35:e0:fc:6c: ee:89:9c:71:95:83:53:fd:ac:df:6e:b5:77:dd:21:f1:5f:00: da:d6:f9:fb:f8:ab:d2:10:37:8c:da:c1:bf:50:ba:d7:8d:4a: f3:9d:52:15:db:3c:bb:11:f7:0b:e8:26:bd:aa:b7:76:6e:7b: 65:f8:6f:a4:e8:6c:ce:d0:b4:ae:7f:97:9f:c8:af:43:fa:fb: 33:bf:1b:f7:ba:33:d4:b0:fb:8b:71:57:61:1d:8e:d8:79:d5: dd:dc:0a:51:d6:30:d6:9b:1a:3c:36:7a:3b:24:0e:35:53:05: 83:17:9d:45:8f:cb:e2:ec:1e:35:6f:2f:0b:86:44:dd:de:31: c1:75:d2:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjYwNDE3MDUxNjQ3WhcNMjYwNDI0MDUxNjQ3WjAYMRYwFAYD VQQDEw02OWUxYzIzZi1iY2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGvlroVx3kxXcU9wKzBcOb/aoraAW79lJ/LPhH43TFws27Q96tpHkKZX2JAj Y4SaFdVwqBbQf6cRZn1KJIrOwZtr94z34zXF5aemDrDkQ9IMrrd4bSEF/crZDfTT Dgr2diAghmDQYidvCgVq522cGJ2Idck8Cr+bqqBa16f0gG4Q7BdTIEcGZQBd6hDM zRlMAwE0viL8DciZ5iGdc7PBcilxOgaFWC29konf9hNjER4Tke9G931+GFp8v2WI 8jHwwFrGPZoORyKTUcMYXgNM4K3/4CkjyLKK1ah1ClbkoFhejFiR0FFuQ9sLp18I cGGHE7/22MGRpm6ixA1TnQEPdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAfJ/ert fipCmDU+ebu6bdXofppaMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZNirIXzoSO/UBvhvXKOK7K04Xg2obYzCFOYyd5pHpkCFLyyItEXjA3skJJNV YyGioDnwzzzCZ6dcBy5QBcodSzi6/XnPT+6iepR1GwKO2NV2BRMNvrrrddd7/ksR YFC6wRk8kb8Ldr6Rw82cz/henU/xC9+3VctiI0w14Pxs7omccZWDU/2s3261d90h 8V8A2tb5+/ir0hA3jNrBv1C6141K851SFds8uxH3C+gmvaq3dm57ZfhvpOhsztC0 rn+Xn8ivQ/r7M78b97oz1LD7i3FXYR2O2HnV3dwKUdYw1psaPDZ6OyQONVMFgxed RY/L4uweNW8vC4ZE3d4xwXXSNg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:07:14 2026 by rpki-client