$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: LlCl1137l57jPPyds6WMZZt+dQ2SjgC1dbZHK8ggHjk= Subject key identifier: E9:DF:67:BB:0C:0C:8E:52:64:5E:75:FE:E3:19:EF:BD:DD:24:17:23 Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 018B Signing time: Sun 19 Apr 2026 04:08:55 +0000 Manifest this update: Sun 19 Apr 2026 04:08:54 +0000 Manifest next update: Sun 26 Apr 2026 04:08:54 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: jXElftB4nfILS82tKzLPGVDwko8sRRYv4uK47Fy4UjA=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: nCvz3RU6o2FWhURZ/L0SyrKbzGjsC9xVoGzwhNL9hs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Apr 19 04:08:54 2026 GMT Not After : Apr 26 04:08:54 2026 GMT Subject: CN=69e45556-216c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f5:c2:12:51:b0:4a:ea:66:ac:b1:83:a8:3a: 53:3b:ab:df:06:03:cd:9c:c4:9b:64:ca:73:f0:19: 65:e1:ff:f7:2b:b7:86:84:ff:da:d0:35:90:26:46: fc:a3:0d:61:4f:9f:3f:39:ea:f6:95:a6:0f:20:a3: ab:e4:29:75:e9:dd:ba:1d:c6:3e:5a:25:33:23:24: 6a:1d:67:90:27:d3:ac:cc:13:e6:c6:f8:d2:e7:2a: 80:61:da:7f:ec:b6:d7:a2:0f:51:09:ac:98:8d:db: b8:9c:59:e0:cf:4e:0c:39:2d:3b:5c:ba:76:d0:5d: 31:7f:6c:74:46:71:fd:24:38:a5:4a:66:c8:91:26: 0d:26:a7:63:51:e2:17:3f:a6:b4:8f:8c:cd:06:be: 1e:f4:1f:94:52:83:fd:87:cb:c4:b1:25:c0:31:aa: 04:0e:87:2d:28:42:33:50:f3:a2:2f:cd:e6:6c:7d: c4:70:1f:a0:d5:29:a3:c0:0f:70:9e:cb:16:f0:90: c3:6e:a9:e1:3f:cd:ae:57:cb:73:a8:ef:7d:36:2d: c6:da:96:35:5b:a3:ce:87:92:cd:8e:01:d3:b8:b0: 3c:f9:bf:d5:c3:ba:a8:61:5a:32:8e:28:d5:a4:d7: 32:ca:da:a3:b3:d0:e9:76:5b:2a:b5:28:3c:2f:61: 1d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DF:67:BB:0C:0C:8E:52:64:5E:75:FE:E3:19:EF:BD:DD:24:17:23 X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ad:70:13:b9:a3:b5:ba:32:25:77:22:1f:e9:1d:cb:1e:f2: 62:07:c6:09:b9:c9:1f:60:d6:52:b9:9d:e6:55:78:0c:71:e6: 15:02:b5:e8:56:b5:bf:fa:a8:e2:6d:12:93:51:28:73:ac:53: 2b:f7:bd:26:3c:0a:d4:b1:a5:67:61:44:25:61:23:ab:cc:75: ac:0f:ea:29:6e:ef:d5:d0:c8:bb:da:8d:c9:bb:8c:06:b9:fd: af:cd:84:1f:c0:43:82:00:75:84:13:21:03:72:6e:db:6b:64: 69:72:1e:57:fc:86:77:62:60:6e:55:92:10:9d:61:04:5c:46: 04:86:6f:de:82:89:ca:28:44:b2:c3:40:01:7b:d1:ec:a5:50: 54:a2:91:66:3b:e7:c6:a0:09:93:32:4e:c1:5b:42:bd:ae:05: 35:16:99:b0:71:da:d6:3c:e0:81:a8:e8:12:55:aa:5c:85:ac: be:20:e4:76:83:c5:16:c6:8e:a4:d9:3a:f1:4a:90:12:8b:fc: c3:e2:fe:17:5f:d9:7e:78:ed:5d:09:38:e1:02:ce:5f:fc:eb: 35:96:42:2c:29:6f:5c:9f:13:c2:d6:45:e2:c2:83:c5:3e:86: 2a:96:01:60:1c:61:fe:0f:07:70:17:02:e9:49:10:b4:97:e4: e9:40:2f:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjYwNDE5MDQwODU0WhcNMjYwNDI2MDQwODU0WjAYMRYwFAYD VQQDEw02OWU0NTU1Ni0yMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPXCElGwSupmrLGDqDpTO6vfBgPNnMSbZMpz8Bll4f/3K7eGhP/a0DWQJkb8 ow1hT58/Oer2laYPIKOr5Cl16d26HcY+WiUzIyRqHWeQJ9OszBPmxvjS5yqAYdp/ 7LbXog9RCayYjdu4nFngz04MOS07XLp20F0xf2x0RnH9JDilSmbIkSYNJqdjUeIX P6a0j4zNBr4e9B+UUoP9h8vEsSXAMaoEDoctKEIzUPOiL83mbH3EcB+g1SmjwA9w nssW8JDDbqnhP82uV8tzqO99Ni3G2pY1W6POh5LNjgHTuLA8+b/Vw7qoYVoyjijV pNcyytqjs9DpdlsqtSg8L2EdtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOnfZ7sM DI5SZF51/uMZ773dJBcjMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADq1wE7mjtboyJXciH+kdyx7yYgfGCbnJH2DWUrmd5lV4DHHmFQK16Fa1v/qo 4m0Sk1Eoc6xTK/e9JjwK1LGlZ2FEJWEjq8x1rA/qKW7v1dDIu9qNybuMBrn9r82E H8BDggB1hBMhA3Ju22tkaXIeV/yGd2JgblWSEJ1hBFxGBIZv3oKJyihEssNAAXvR 7KVQVKKRZjvnxqAJkzJOwVtCva4FNRaZsHHa1jzggajoElWqXIWsviDkdoPFFsaO pNk68UqQEov8w+L+F1/ZfnjtXQk44QLOX/zrNZZCLClvXJ8TwtZF4sKDxT6GKpYB YBxh/g8HcBcC6UkQtJfk6UAvwg== -----END CERTIFICATE-----Generated at Sun Apr 19 08:27:35 2026 by rpki-client