$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: ERoZTHrRUq4SP1Png9TYFNLJ+ISOd4aNUfz3d2bLrz4= Subject key identifier: 5F:2D:B0:3B:85:7B:DC:D6:FA:4E:BE:EF:41:9A:A3:1E:01:C1:83:42 Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 02A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0295 Signing time: Fri 17 Apr 2026 01:28:46 +0000 Manifest this update: Fri 17 Apr 2026 01:28:46 +0000 Manifest next update: Fri 24 Apr 2026 01:28:46 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: I5oZZdXYrWV6jadg/71r/3zojdi7Gb5xmbpM+GBQOLE=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: JEoXZriBqJJhzP1nkyHSHN9MJNXjkBusjNVR9oT/r4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Apr 17 01:28:46 2026 GMT Not After : Apr 24 01:28:46 2026 GMT Subject: CN=69e18cce-03e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:7a:66:ef:79:81:13:86:f1:77:16:4f:dc: 3e:34:2a:ed:89:86:c3:02:e7:10:8e:c2:fb:9c:40: 9e:51:40:0e:78:0b:61:74:36:45:e3:36:82:86:81: bd:d5:0a:76:01:23:4d:37:1f:62:56:9b:fe:ad:67: da:e5:6c:fa:93:c3:65:fb:56:c4:a1:0b:99:4c:c6: 03:3f:64:a1:f6:9c:b1:1d:0a:5f:85:a2:b2:7c:56: c8:cc:6b:36:a5:29:e3:3c:5c:30:b0:23:58:0f:d2: ec:cd:0d:9d:72:18:78:17:92:4f:3d:92:2b:3e:c3: 68:95:33:95:60:fd:88:e2:c2:d8:3d:64:0e:aa:61: a1:49:ef:19:f4:8a:c1:06:d0:32:99:47:4f:10:e8: 78:f2:4f:1d:94:86:d2:87:86:b5:69:3b:86:19:b5: 57:50:3c:52:1e:ab:a8:af:5e:39:ce:e0:bf:60:b1: 69:e8:54:d6:5b:6d:92:55:f4:a8:d1:d6:be:8c:79: d1:f2:e3:c9:30:f1:34:38:75:4d:49:48:2b:1c:33: 8f:97:af:83:7f:0a:38:65:a9:60:9c:60:c8:19:18: ba:65:0c:85:3c:4b:e3:7a:dc:fb:c8:6c:87:4e:98: e1:9f:09:8e:33:b2:67:fa:c9:a9:39:ec:8b:88:25: 4d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2D:B0:3B:85:7B:DC:D6:FA:4E:BE:EF:41:9A:A3:1E:01:C1:83:42 X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:74:fd:32:a4:91:8f:d4:c5:ad:68:82:55:92:14:c1:78:88: 52:e4:b8:82:10:ef:c0:a0:f0:7d:16:f6:b3:1d:5c:20:2a:b2: 66:f2:39:1a:95:ce:f5:93:11:19:53:db:41:1a:0a:b1:47:ec: f1:59:67:32:ef:9c:fd:9f:1e:ed:9f:eb:42:4a:dc:30:dc:71: c3:55:6a:4c:c4:ab:55:69:99:4e:aa:d7:81:9d:e3:44:f5:a9: be:83:24:a6:d5:c1:78:69:56:1b:04:80:0b:7b:de:1a:13:2f: b7:b1:0b:a4:a5:9f:92:5f:42:b2:e8:84:48:08:f1:4a:0c:e9: 72:a4:5f:f9:ff:2a:64:e3:23:27:60:2e:65:3b:20:e8:96:17: b4:4e:9f:f5:1f:0b:c0:fb:95:6c:98:0c:1f:3f:9a:b5:e8:2e: f7:1f:fd:e7:c3:8b:72:9e:74:03:ef:6b:5f:e7:12:b1:4e:3e: 5a:a6:68:ba:be:e2:df:66:b4:a8:ef:94:55:34:69:d6:3e:70: 11:13:3d:ba:85:f2:d5:f4:0a:23:23:df:7e:6a:de:74:c9:80: 2c:fb:4d:72:f1:52:55:fa:f8:c1:36:02:62:81:b0:42:5b:b0: 82:0f:1a:31:e9:5f:c3:dd:d9:04:b7:d5:e6:b0:f9:89:2e:b8: 17:2b:7f:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjYwNDE3MDEyODQ2WhcNMjYwNDI0MDEyODQ2WjAYMRYwFAYD VQQDEw02OWUxOGNjZS0wM2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUF6Zu95gROG8XcWT9w+NCrtiYbDAucQjsL7nECeUUAOeAthdDZF4zaChoG9 1Qp2ASNNNx9iVpv+rWfa5Wz6k8Nl+1bEoQuZTMYDP2Sh9pyxHQpfhaKyfFbIzGs2 pSnjPFwwsCNYD9LszQ2dchh4F5JPPZIrPsNolTOVYP2I4sLYPWQOqmGhSe8Z9IrB BtAymUdPEOh48k8dlIbSh4a1aTuGGbVXUDxSHquor145zuC/YLFp6FTWW22SVfSo 0da+jHnR8uPJMPE0OHVNSUgrHDOPl6+Dfwo4ZalgnGDIGRi6ZQyFPEvjetz7yGyH TpjhnwmOM7Jn+smpOeyLiCVNeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF8tsDuF e9zW+k6+70Gaox4BwYNCMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP3T9MqSRj9TFrWiCVZIUwXiIUuS4ghDvwKDwfRb2sx1cICqyZvI5GpXO9ZMR GVPbQRoKsUfs8VlnMu+c/Z8e7Z/rQkrcMNxxw1VqTMSrVWmZTqrXgZ3jRPWpvoMk ptXBeGlWGwSAC3veGhMvt7ELpKWfkl9CsuiESAjxSgzpcqRf+f8qZOMjJ2AuZTsg 6JYXtE6f9R8LwPuVbJgMHz+ategu9x/958OLcp50A+9rX+cSsU4+WqZour7i32a0 qO+UVTRp1j5wERM9uoXy1fQKIyPffmredMmALPtNcvFSVfr4wTYCYoGwQluwgg8a Melfw93ZBLfV5rD5iS64Fyt/Dw== -----END CERTIFICATE-----Generated at Fri Apr 17 10:44:07 2026 by rpki-client