$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: nn/Kqua+ZT7Qp0wTEewWXQ5+uF9aCXvbB5J3d7PEQ9Q= Subject key identifier: 53:2A:3B:A9:78:29:AB:F0:5F:E3:F4:04:BA:46:48:C6:F7:94:CA:C5 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2C39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2C13 Signing time: Thu 16 Apr 2026 15:30:20 +0000 Manifest this update: Thu 16 Apr 2026 15:30:19 +0000 Manifest next update: Thu 23 Apr 2026 15:30:19 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: 1jEHy2uhZ5/PpH6D/m+GIrplkJ9YzjYk32vICxxUl3g=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: uipKT1Jp/DMN4bzHM/v/VQW3NmoiBvgfgpPCrWFueSQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: 9yPl2RyPXoic4hgvWw1sNI2e0xi/PvyG32cZkvJi8ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11321 (0x2c39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Apr 16 15:30:19 2026 GMT Not After : Apr 23 15:30:19 2026 GMT Subject: CN=69e1008b-7a70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fe:b8:e1:82:f0:55:f7:ff:1d:40:7d:7e:2c: d0:0c:a1:4d:df:2f:61:f7:74:62:85:f8:89:7a:17: 9d:8e:d9:08:2e:26:af:65:6c:12:15:44:e3:19:03: 4b:ff:2d:89:2b:d5:f8:36:b7:a6:b9:13:bd:f4:50: 77:89:10:3c:49:8e:d8:dd:b9:95:d2:25:91:72:bb: bc:e0:b1:7f:97:56:e0:27:fa:f3:51:36:ac:7f:07: 83:77:2e:15:72:45:c8:1c:94:f1:e7:82:7f:c8:2c: b0:09:07:c6:2a:e8:ba:fe:32:dc:b6:ac:45:05:5f: 01:b6:13:24:1e:d0:2a:01:41:44:f1:55:33:2b:6b: 8a:d9:42:0f:67:71:c3:3f:1b:f1:b9:de:bd:7b:d2: cc:35:7f:81:b0:0d:3e:74:97:dc:ef:9c:9e:7e:d3: 1d:7c:b3:cc:26:bb:14:54:f6:86:22:21:d5:7d:38: 54:9e:b2:a7:b0:dd:44:f8:18:73:f0:fc:d3:24:fe: 20:c2:92:a2:4c:7c:e0:f4:3d:b6:60:ce:47:8e:b4: db:00:08:92:b0:8a:df:a8:7c:9c:d7:2e:2c:4e:23: e6:51:9a:1c:ff:1e:db:0f:99:e3:7e:87:f5:16:72: d9:68:5e:32:4d:8e:f0:1c:55:91:8e:d0:54:c2:44: 8c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2A:3B:A9:78:29:AB:F0:5F:E3:F4:04:BA:46:48:C6:F7:94:CA:C5 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:bf:a0:7c:49:3d:96:54:6f:b1:9a:d1:b0:12:e3:c3:26:63: 0d:8e:4d:40:0f:2a:8a:b5:c8:19:b5:57:a3:a9:0e:0e:32:60: 22:fe:d4:ed:61:b8:cd:84:24:88:b1:be:91:1d:c9:00:41:03: 77:2f:3a:aa:82:40:db:3a:5d:5d:4b:bd:c1:fb:67:e9:ef:5e: 66:f2:51:14:1d:ba:93:78:13:77:d9:3d:4e:a3:55:05:e2:e7: 31:ba:97:84:e6:33:6e:fb:71:01:95:99:13:cc:44:3b:59:41: e1:5b:d6:7c:56:23:26:c9:5a:56:20:4b:e1:a6:52:68:2d:79: e1:38:53:3a:76:c0:fe:83:c9:d2:04:fb:73:6a:4a:cb:7a:ea: 67:9d:d9:8b:e1:fb:af:40:2c:3f:9e:a6:35:66:51:25:cc:31: 50:60:b4:60:86:dd:37:b9:f4:8d:fd:73:ca:1e:5b:7b:69:a7: c9:93:96:f3:16:49:84:06:da:c2:ed:ea:0f:65:b1:cb:e5:f8: f3:c5:d4:27:45:79:08:e1:8f:b7:26:8a:32:47:01:e7:00:57: 42:14:46:e9:4a:78:34:32:0c:08:18:aa:8a:dc:89:b4:93:3d: e4:6a:44:25:7d:d6:6d:94:b0:16:14:37:5e:fe:56:5a:bb:80: 72:b4:9e:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjYwNDE2MTUzMDE5WhcNMjYwNDIzMTUzMDE5WjAYMRYwFAYD VQQDEw02OWUxMDA4Yi03YTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/644YLwVff/HUB9fizQDKFN3y9h93RihfiJehedjtkILiavZWwSFUTjGQNL /y2JK9X4NremuRO99FB3iRA8SY7Y3bmV0iWRcru84LF/l1bgJ/rzUTasfweDdy4V ckXIHJTx54J/yCywCQfGKui6/jLctqxFBV8BthMkHtAqAUFE8VUzK2uK2UIPZ3HD Pxvxud69e9LMNX+BsA0+dJfc75yeftMdfLPMJrsUVPaGIiHVfThUnrKnsN1E+Bhz 8PzTJP4gwpKiTHzg9D22YM5HjrTbAAiSsIrfqHyc1y4sTiPmUZoc/x7bD5njfof1 FnLZaF4yTY7wHFWRjtBUwkSMlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFMqO6l4 KavwX+P0BLpGSMb3lMrFMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJL+gfEk9llRvsZrRsBLjwyZjDY5NQA8qirXIGbVXo6kODjJgIv7U7WG4zYQk iLG+kR3JAEEDdy86qoJA2zpdXUu9wftn6e9eZvJRFB26k3gTd9k9TqNVBeLnMbqX hOYzbvtxAZWZE8xEO1lB4VvWfFYjJslaViBL4aZSaC154ThTOnbA/oPJ0gT7c2pK y3rqZ53Zi+H7r0AsP56mNWZRJcwxUGC0YIbdN7n0jf1zyh5be2mnyZOW8xZJhAba wu3qD2Wxy+X488XUJ0V5COGPtyaKMkcB5wBXQhRG6Up4NDIMCBiqityJtJM95GpE JX3WbZSwFhQ3Xv5WWruAcrSeXQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:11:40 2026 by rpki-client