$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: Ikv1eu/FyMEE9UBIDcMVhjUWkdN+/h1lADrJbSuHNew= Subject key identifier: B7:05:98:D6:EB:B9:30:86:B5:6E:F7:CC:45:90:F9:3F:26:F6:47:40 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 362C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 359E Signing time: Thu 16 Apr 2026 14:16:20 +0000 Manifest this update: Thu 16 Apr 2026 14:16:20 +0000 Manifest next update: Thu 23 Apr 2026 14:16:20 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: i2qgyFIOiavgPzRNJtkVjGHL6oQPsFmoXLHuiswmQE0=) 2: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: 13OCzHbeP84SVts3fLFM8ezvX9wYG+xk9oztS8IQ/oo=) 3: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: y6ZiKIpbO8nVe1RhgWjLdE8kQETpbK+AjZQf/Ewa3Fk=) 4: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: 0TLVORl6wSPXD4zN0o2eNo/c7mH0Sa6LVUUSVrU3gGs=) 5: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: US7l9IRW6KnysaR3hgfIHQKP61jxpaRsUq+BQajlvlE=) 6: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: 46CC9LcyzFfBkRedCj8zONrcqyJIMjuxJScGt32qKqY=) 7: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: oS/2Yr0f0AX3IY6Qw0kprzC/haS0V2Vl/e9gsEC9t0o=) 8: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: Zl7CL1hILK98z1K1OQnmQBFBX3AF5k+q1EWP8nnTBiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:16:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13868 (0x362c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Apr 16 14:16:20 2026 GMT Not After : Apr 23 14:16:20 2026 GMT Subject: CN=69e0ef34-c288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:78:22:b6:83:b3:f5:18:b7:1b:9d:df:f6:3c: bd:0b:7a:97:d3:c6:f7:8e:67:1e:81:49:6a:ee:bd: 1e:b6:10:1c:29:e7:6b:bd:4a:52:0d:8e:68:42:68: 9c:a3:68:11:22:0b:67:fd:da:39:73:83:a8:62:ae: c2:85:f0:2b:b8:c1:a0:60:ec:ab:77:86:a8:7f:db: cf:57:3b:0b:c1:bd:8d:06:57:65:25:1e:63:a6:13: a3:2f:d1:9b:54:7e:2a:62:45:bf:1c:b4:d4:08:8f: 31:0f:1f:1c:d3:f1:b9:e2:d8:ed:d1:76:24:cb:b1: 39:50:60:fd:4b:bb:52:78:33:e8:97:ac:0c:bc:95: 3f:94:3f:e6:91:93:bc:e6:8b:ec:1f:80:b9:bc:b1: 6e:26:77:44:59:0b:fe:93:f6:93:44:8b:a0:69:b9: f1:52:ad:a7:5a:87:00:b2:82:e5:d1:28:20:96:40: 6c:c8:f6:63:36:9b:e2:63:a7:0e:e7:85:95:07:0b: ae:df:4b:ab:5d:94:a4:04:2a:b3:05:aa:2d:7d:ab: 4a:8f:03:92:c5:e2:49:7f:ed:d1:de:a7:5b:33:b0: c4:b4:f6:c4:5c:ff:6d:47:eb:6d:74:a9:08:98:ae: f5:2f:0c:4b:b4:a4:94:84:23:58:8c:36:4b:72:fc: 60:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:05:98:D6:EB:B9:30:86:B5:6E:F7:CC:45:90:F9:3F:26:F6:47:40 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:68:3e:83:de:a0:b8:58:25:51:8e:c7:b4:d7:a5:5c:41:1c: 0d:62:1e:22:00:35:2f:c8:bb:5b:97:87:76:26:36:fc:c5:d6: e9:e7:f0:b4:44:28:3f:c6:cb:89:92:38:7c:f2:8a:2d:fd:a8: 67:f5:a7:e9:ac:8b:97:28:ea:2d:96:71:54:d1:e9:93:ee:1f: 18:53:9a:35:4c:91:39:90:8f:44:ab:c3:8b:e1:59:ee:dc:9b: 09:f0:15:49:04:c3:83:06:f8:1d:16:c9:9a:6a:45:19:c0:62: 87:59:e2:58:f3:64:61:a2:ad:bb:a6:ff:7f:0e:4e:07:66:2b: d1:06:e4:75:d2:53:39:37:f2:98:cf:9e:e8:9a:9b:64:14:69: 7f:da:bc:9a:a1:73:0d:3f:8b:27:b6:a6:49:b3:e1:ae:a3:89: b1:97:80:8f:3e:83:46:88:3c:7e:60:72:ef:77:24:4a:4e:15: 08:e0:aa:c2:4b:62:14:08:aa:29:c6:3d:80:bd:0d:d3:78:18: 74:0b:3f:fc:59:1d:87:c7:fa:12:9f:2e:11:62:b3:c7:df:25: b6:67:73:96:11:c6:a1:02:01:5e:42:c8:74:c7:dd:b2:5a:b5: 96:c6:9e:a9:4e:ba:b4:cd:2e:ec:a2:46:da:b2:f7:0d:0b:39: 47:8b:16:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwNDE2MTQxNjIwWhcNMjYwNDIzMTQxNjIwWjAYMRYwFAYD VQQDEw02OWUwZWYzNC1jMjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHgitoOz9Ri3G53f9jy9C3qX08b3jmcegUlq7r0ethAcKedrvUpSDY5oQmic o2gRIgtn/do5c4OoYq7ChfAruMGgYOyrd4aof9vPVzsLwb2NBldlJR5jphOjL9Gb VH4qYkW/HLTUCI8xDx8c0/G54tjt0XYky7E5UGD9S7tSeDPol6wMvJU/lD/mkZO8 5ovsH4C5vLFuJndEWQv+k/aTRIugabnxUq2nWocAsoLl0SgglkBsyPZjNpviY6cO 54WVBwuu30urXZSkBCqzBaotfatKjwOSxeJJf+3R3qdbM7DEtPbEXP9tR+ttdKkI mK71LwxLtKSUhCNYjDZLcvxg8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLcFmNbr uTCGtW73zEWQ+T8m9kdAMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeGg+g96guFglUY7HtNelXEEcDWIeIgA1L8i7W5eHdiY2/MXW6efwtEQoP8bL iZI4fPKKLf2oZ/Wn6ayLlyjqLZZxVNHpk+4fGFOaNUyROZCPRKvDi+FZ7tybCfAV SQTDgwb4HRbJmmpFGcBih1niWPNkYaKtu6b/fw5OB2Yr0QbkddJTOTfymM+e6Jqb ZBRpf9q8mqFzDT+LJ7amSbPhrqOJsZeAjz6DRog8fmBy73ckSk4VCOCqwktiFAiq KcY9gL0N03gYdAs//Fkdh8f6Ep8uEWKzx98ltmdzlhHGoQIBXkLIdMfdslq1lsae qU66tM0u7KJG2rL3DQs5R4sWxw== -----END CERTIFICATE-----Generated at Fri Apr 17 05:29:11 2026 by rpki-client