$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE334/C5126CCEE57911F0836EEAA1416F56BC/hYu8kCwHf24DE67cSds25v7yNLI.mft File: hYu8kCwHf24DE67cSds25v7yNLI.mft (raw, json) Hash identifier: 4MbfbxKwHNm5AqAhzD4XD84jt1hGMWY9XwUlngS0TOY= Subject key identifier: A6:9F:CD:FC:BD:7F:4B:FA:F2:52:16:AB:EF:12:FF:C4:F6:55:06:D8 Authority key identifier: 85:8B:BC:90:2C:07:7F:6E:03:13:AE:DC:49:DB:36:E6:FE:F2:34:B2 Certificate issuer: /CN=A91DE334/serialNumber=858BBC902C077F6E0313AEDC49DB36E6FEF234B2 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYu8kCwHf24DE67cSds25v7yNLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE334/C5126CCEE57911F0836EEAA1416F56BC/hYu8kCwHf24DE67cSds25v7yNLI.mft Manifest number: 3D Signing time: Sun 19 Apr 2026 08:06:33 +0000 Manifest this update: Sun 19 Apr 2026 08:06:32 +0000 Manifest next update: Sun 26 Apr 2026 08:06:32 +0000 Files and hashes: 1: hYu8kCwHf24DE67cSds25v7yNLI.crl (hash: uSzRyiRpMZaQzlDaF6Sb7amptTf6hOu/YlMkzBFudUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE334/C5126CCEE57911F0836EEAA1416F56BC/hYu8kCwHf24DE67cSds25v7yNLI.crl rsync://rpki.apnic.net/member_repository/A91DE334/C5126CCEE57911F0836EEAA1416F56BC/hYu8kCwHf24DE67cSds25v7yNLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYu8kCwHf24DE67cSds25v7yNLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE334, serialNumber=858BBC902C077F6E0313AEDC49DB36E6FEF234B2 Validity Not Before: Apr 19 08:06:32 2026 GMT Not After : Apr 26 08:06:32 2026 GMT Subject: CN=69e48d09-c868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:02:8b:50:ca:81:8b:d5:93:b1:fb:5f:ba:bb: a7:6a:06:ca:56:06:8c:f0:be:f2:71:c5:27:fc:d8: e1:f7:33:7e:8a:fc:a7:ef:0d:07:5a:35:90:98:0d: cc:ca:ab:83:c3:d5:c9:5a:ca:d6:6e:7d:e1:65:c8: 66:01:f1:5d:c3:ae:09:27:ca:de:db:0c:99:4f:a6: 98:e8:00:5d:89:62:6c:0d:fc:18:cf:ba:20:3d:07: 79:11:47:61:7a:b6:03:e9:cc:eb:82:86:7e:c2:d8: 3a:c9:fc:c7:19:70:a9:db:bc:a9:29:7a:fd:ba:1e: 15:c9:68:1e:4e:86:3b:85:03:c3:40:ad:2a:dc:32: 01:1e:c6:d0:ed:4a:07:55:d5:1e:ef:99:6e:02:6e: 5f:ce:01:03:a7:f0:5a:d1:5d:a3:8d:01:25:73:48: 28:45:e0:dd:31:fe:59:a5:db:8e:c3:ed:83:f4:bc: ff:c9:22:b4:c4:e4:76:f4:c9:f5:ad:b7:39:7f:a9: 39:be:d4:7c:26:ac:f8:14:29:bd:6e:68:e4:8c:e5: a7:e6:86:9a:6a:bb:37:26:e5:e0:07:d4:c0:6f:4e: a4:0c:0c:22:da:71:19:3e:88:79:07:8e:f2:e8:9b: fd:00:81:b3:a3:bd:08:30:63:84:67:58:3f:a0:e9: f1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9F:CD:FC:BD:7F:4B:FA:F2:52:16:AB:EF:12:FF:C4:F6:55:06:D8 X509v3 Authority Key Identifier: keyid:85:8B:BC:90:2C:07:7F:6E:03:13:AE:DC:49:DB:36:E6:FE:F2:34:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE334/C5126CCEE57911F0836EEAA1416F56BC/hYu8kCwHf24DE67cSds25v7yNLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYu8kCwHf24DE67cSds25v7yNLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE334/C5126CCEE57911F0836EEAA1416F56BC/hYu8kCwHf24DE67cSds25v7yNLI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:4e:f7:b6:c2:58:78:51:b5:92:36:4a:97:41:9e:4d:4f:1a: 9d:a5:c6:38:e8:bd:e7:0e:c1:f8:ee:23:fd:40:ee:3b:28:b2: db:95:60:f1:91:e1:b1:ac:7a:b1:02:6d:c7:05:fd:83:33:bf: 1c:61:aa:00:ab:eb:a9:88:29:56:87:b8:13:ea:93:ba:04:b6: 74:77:73:21:ce:c3:bf:d5:96:4f:26:21:3a:dd:66:da:00:05: 15:cd:e5:4f:e3:cc:fe:9d:40:43:31:f4:47:af:f4:a7:a5:9e: d1:09:a2:b7:ec:68:5b:94:43:36:86:b5:39:cc:ec:19:e2:c8: 3d:8f:c0:81:91:4f:32:a7:42:e4:b1:6f:2a:ba:3a:ac:02:8e: a9:cb:71:ba:1d:ed:32:03:4d:dc:40:b0:b5:33:36:6f:53:33: 8f:27:1d:7b:40:59:b9:00:2f:1c:c9:7b:ea:8c:62:9c:0e:4b: b1:2c:f7:28:09:b0:e2:32:40:2c:a0:90:73:30:84:d1:be:ca: 4b:02:61:87:bf:1b:8f:96:ad:d3:fa:ba:a5:98:95:43:ab:35: b5:c9:28:30:8c:69:85:3a:fa:02:7f:b2:93:47:b1:df:db:fc: 3f:b0:3c:ee:4a:6d:03:cb:fe:ae:1a:36:88:80:04:e3:21:e7: 97:4e:bb:7e -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTMzNDExMC8GA1UEBRMoODU4QkJDOTAyQzA3N0Y2RTAzMTNBRURDNDlEQjM2RTZG RUYyMzRCMjAeFw0yNjA0MTkwODA2MzJaFw0yNjA0MjYwODA2MzJaMBgxFjAUBgNV BAMTDTY5ZTQ4ZDA5LWM4NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCPAotQyoGL1ZOx+1+6u6dqBspWBozwvvJxxSf82OH3M36K/KfvDQdaNZCYDczK q4PD1claytZufeFlyGYB8V3Drgknyt7bDJlPppjoAF2JYmwN/BjPuiA9B3kRR2F6 tgPpzOuChn7C2DrJ/McZcKnbvKkpev26HhXJaB5OhjuFA8NArSrcMgEextDtSgdV 1R7vmW4Cbl/OAQOn8FrRXaONASVzSChF4N0x/lml247D7YP0vP/JIrTE5Hb0yfWt tzl/qTm+1HwmrPgUKb1uaOSM5afmhppquzcm5eAH1MBvTqQMDCLacRk+iHkHjvLo m/0AgbOjvQgwY4RnWD+g6fGnAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUpp/N/L1/ S/ryUhar7xL/xPZVBtgwHwYDVR0jBBgwFoAUhYu8kCwHf24DE67cSds25v7yNLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMzM0L0M1MTI2Q0NFRTU3 OTExRjA4MzZFRUFBMTQxNkY1NkJDL2hZdThrQ3dIZjI0REU2N2NTZHMyNXY3eU5M SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFl1OGtDd0hmMjRERTY3Y1NkczI1djd5TkxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF MzM0L0M1MTI2Q0NFRTU3OTExRjA4MzZFRUFBMTQxNkY1NkJDL2hZdThrQ3dIZjI0 REU2N2NTZHMyNXY3eU5MSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAdTve2wlh4UbWSNkqXQZ5NTxqdpcY46L3nDsH47iP9QO47KLLblWDxkeGxrHqx Am3HBf2DM78cYaoAq+upiClWh7gT6pO6BLZ0d3MhzsO/1ZZPJiE63WbaAAUVzeVP 48z+nUBDMfRHr/SnpZ7RCaK37GhblEM2hrU5zOwZ4sg9j8CBkU8yp0LksW8qujqs Ao6py3G6He0yA03cQLC1MzZvUzOPJx17QFm5AC8cyXvqjGKcDkuxLPcoCbDiMkAs oJBzMITRvspLAmGHvxuPlq3T+rqlmJVDqzW1ySgwjGmFOvoCf7KTR7Hf2/w/sDzu Sm0Dy/6uGjaIgATjIeeXTrt+ -----END CERTIFICATE-----Generated at Sun Apr 19 10:22:29 2026 by rpki-client