$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: q7jzyYXzSpcTBsGAQdt4Pu4WBFcg84xTpx+j8nXGP6o= Subject key identifier: BC:4F:61:70:76:80:1D:A9:02:D4:2F:A6:1B:1B:2D:CC:AB:A9:BC:D2 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3540 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 3538 Signing time: Thu 16 Apr 2026 15:03:55 +0000 Manifest this update: Thu 16 Apr 2026 15:03:55 +0000 Manifest next update: Thu 23 Apr 2026 15:03:55 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: HcXZNlweOPTtRGSWMzwxMQA5tcSnMc1ipD3Z/GtLgE0=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: grlNN+mm97djcRhLgczSf6yBI8MB1/S7/60D7ODVKSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13632 (0x3540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Apr 16 15:03:55 2026 GMT Not After : Apr 23 15:03:55 2026 GMT Subject: CN=69e0fa5b-7747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:da:f2:d2:27:ca:4c:c7:21:75:3a:da:5f:ba: 0f:12:62:c9:de:a0:24:13:8c:14:b4:25:f1:c8:5d: 2a:7b:ec:94:57:62:39:b4:a3:c8:d9:c4:f1:8f:29: 8e:4b:53:fb:d9:a7:35:25:89:99:42:29:7f:5f:58: f0:5a:cf:53:13:5f:c3:50:f6:f5:8c:2b:ff:9b:cf: 07:6f:9e:ae:81:72:e6:34:e5:b7:bf:dd:ee:de:01: 59:b4:0f:dc:11:1b:20:92:c1:f0:1d:e2:5e:42:05: 8e:9d:c4:9b:91:9d:d2:39:96:91:5b:b8:2f:e6:34: 4c:8f:96:9f:12:cf:38:67:73:7f:ce:be:12:87:2c: 15:21:3d:a4:39:9f:6c:a4:c2:6c:8a:11:e7:35:4c: 34:89:9e:cc:e2:4f:b3:c6:cc:72:f7:2b:e7:f9:39: 34:1e:2b:17:6e:fd:dd:75:62:13:2f:d0:1a:56:e0: c8:37:76:4b:6e:5e:bc:4e:fe:6a:fd:c5:83:10:a0: a4:1d:a6:cd:40:d5:85:82:4c:b8:37:f3:29:ec:d0: 79:27:a6:ce:33:ab:ee:5c:3e:86:b1:e4:ff:ce:80: 46:35:e7:43:0b:e1:66:af:c5:11:99:ab:cb:1e:08: 90:68:65:d2:ac:59:4c:f3:54:eb:ea:b2:bb:c7:ab: 5e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:4F:61:70:76:80:1D:A9:02:D4:2F:A6:1B:1B:2D:CC:AB:A9:BC:D2 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:5f:59:d6:ec:ea:e7:8b:3f:67:7d:24:38:58:6a:b4:70:01: 51:ee:f3:fa:d6:bb:bd:15:9b:37:30:8d:0f:09:af:9c:44:88: a2:d7:ff:f5:7d:93:42:2a:2f:ab:0b:67:32:d0:3a:91:cc:a2: e8:e4:f5:17:8c:91:c3:25:86:38:a6:7b:e4:42:77:79:8f:65: e2:ee:6c:01:90:4c:d0:af:a5:21:7f:e5:f7:5f:1e:75:79:43: 0d:e0:c5:e2:ae:16:e9:4f:de:6b:7d:0e:6f:bf:66:5e:59:4c: de:1b:db:67:69:24:79:03:3f:b4:4b:a5:27:af:2e:0b:fd:f6: 78:c7:42:8e:95:0f:8a:0a:8e:9c:a2:f0:7a:a7:8c:68:9d:44: a7:5f:74:8e:2d:ae:bd:32:05:8d:0f:4e:7d:ec:53:4a:0c:8c: ee:76:51:9d:0e:b7:8b:1a:2e:70:e8:72:8b:f3:49:64:46:bd: 18:bc:a5:42:85:73:02:ce:40:46:f2:8e:7a:45:81:99:3b:73: 5d:8b:92:3c:44:b2:b5:e0:83:3e:c2:91:2d:a0:44:6c:fd:92: 74:a5:d8:76:63:b0:26:93:b6:3a:9e:0f:db:85:78:03:22:ef: da:bb:2b:e4:fe:f3:2c:d6:21:c9:b0:95:ba:80:04:88:aa:8e: 89:c3:87:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjYwNDE2MTUwMzU1WhcNMjYwNDIzMTUwMzU1WjAYMRYwFAYD VQQDEw02OWUwZmE1Yi03NzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9ry0ifKTMchdTraX7oPEmLJ3qAkE4wUtCXxyF0qe+yUV2I5tKPI2cTxjymO S1P72ac1JYmZQil/X1jwWs9TE1/DUPb1jCv/m88Hb56ugXLmNOW3v93u3gFZtA/c ERsgksHwHeJeQgWOncSbkZ3SOZaRW7gv5jRMj5afEs84Z3N/zr4ShywVIT2kOZ9s pMJsihHnNUw0iZ7M4k+zxsxy9yvn+Tk0HisXbv3ddWITL9AaVuDIN3ZLbl68Tv5q /cWDEKCkHabNQNWFgky4N/Mp7NB5J6bOM6vuXD6GseT/zoBGNedDC+Fmr8URmavL HgiQaGXSrFlM81Tr6rK7x6tevQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLxPYXB2 gB2pAtQvphsbLcyrqbzSMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATV9Z1uzq54s/Z30kOFhqtHABUe7z+ta7vRWbNzCNDwmvnESIotf/9X2TQiov qwtnMtA6kcyi6OT1F4yRwyWGOKZ75EJ3eY9l4u5sAZBM0K+lIX/l918edXlDDeDF 4q4W6U/ea30Ob79mXllM3hvbZ2kkeQM/tEulJ68uC/32eMdCjpUPigqOnKLweqeM aJ1Ep190ji2uvTIFjQ9OfexTSgyM7nZRnQ63ixoucOhyi/NJZEa9GLylQoVzAs5A RvKOekWBmTtzXYuSPESyteCDPsKRLaBEbP2SdKXYdmOwJpO2Op4P24V4AyLv2rsr 5P7zLNYhybCVuoAEiKqOicOH8Q== -----END CERTIFICATE-----Generated at Fri Apr 17 09:25:41 2026 by rpki-client