$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: TkNhCJ+yo6midsEoPLKdnDcJvbEcFyG/d2Wy6avvKDA= Subject key identifier: 0F:D7:A3:DD:55:EA:A1:11:4D:65:6F:A5:80:D2:19:9C:D1:88:A5:32 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 0633 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 0627 Signing time: Thu 16 Apr 2026 22:42:53 +0000 Manifest this update: Thu 16 Apr 2026 22:42:52 +0000 Manifest next update: Thu 23 Apr 2026 22:42:52 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: ehm2arKdHhBKcvXJs3uKjlLRb7FT/z7ny0fQ6py12rI=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: paFsFa6qVLCDV+k1MXzHkgPkBlhBBEj3AZlBzmVS9gs=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: KJ2mFEWkTtrCEZw9NVFYAAnTanzrSc/7NwbR3vngF7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Apr 16 22:42:52 2026 GMT Not After : Apr 23 22:42:52 2026 GMT Subject: CN=69e165ed-452b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:66:69:63:7d:a0:81:40:7c:30:56:c0:74:60: a3:82:c3:66:29:3c:64:01:f0:5c:6b:3d:e6:8f:7e: 6f:a5:01:2b:d0:8f:b7:b9:aa:83:b9:93:14:17:86: 63:e8:be:4c:2e:67:a0:d0:72:28:ce:ef:5b:fd:b6: cc:de:b9:5c:73:69:69:cc:4f:0b:2d:85:f9:48:7f: 84:30:8a:0f:84:b3:3c:50:9c:d9:47:0b:58:ac:27: bb:21:a1:d8:24:1d:aa:07:f6:8c:93:e8:0b:3e:7c: 6f:00:9c:0b:83:52:ca:bc:58:27:f3:4c:71:8b:da: 8a:e2:2d:d5:69:e9:8c:b8:ad:81:5d:a9:98:43:e2: 08:8c:2b:41:4c:68:0a:ef:80:a4:7b:b8:23:18:4a: 0f:4e:df:43:46:2c:33:f0:ee:c6:68:51:9c:f6:22: 41:a7:a1:04:a0:f0:f2:ee:1e:bf:b1:d3:2e:7f:1d: 3d:78:79:c9:97:b9:ed:8d:c8:d5:5b:a6:18:5a:73: bb:a5:b6:fb:73:0f:cb:31:41:c3:a8:63:d0:b4:a1: b0:ba:0b:b9:f9:2d:72:be:d1:8d:51:4d:05:c1:26: bb:2e:59:21:d6:34:f2:4d:7a:4d:5e:43:08:51:1a: 65:8b:29:27:a5:11:ef:86:9a:65:0e:89:e1:ef:e5: b4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D7:A3:DD:55:EA:A1:11:4D:65:6F:A5:80:D2:19:9C:D1:88:A5:32 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:af:09:de:73:70:02:fb:b5:bc:ed:ab:8c:f3:fe:c2:e2:4e: 43:a5:2f:62:5b:da:bc:a2:44:08:8b:03:e4:d5:88:a1:3f:f5: de:91:fc:bc:b5:9a:01:d5:f8:54:d2:c9:6e:10:ea:b6:58:37: b4:99:48:5b:78:9e:02:81:76:2a:52:50:89:37:bb:c9:1f:23: 1b:69:7b:88:a0:2a:4d:c9:38:a9:da:36:da:de:1e:70:e1:fc: 67:34:90:e3:fd:9b:87:10:f4:bf:84:f9:1a:98:20:00:28:ba: 7d:86:90:89:c3:38:e5:a1:93:95:5e:2e:b8:67:bb:14:93:71: 0c:86:d5:8d:68:b9:f0:93:ba:d1:99:77:4f:32:53:74:f5:09: 81:2b:6c:3d:23:32:10:11:0b:b6:b4:13:25:5b:90:64:b1:bc: ef:23:c1:4b:23:6f:6c:de:1b:f4:e8:76:b0:81:50:54:e1:6f: dc:20:d1:79:03:57:ff:c0:ff:98:a5:b4:3f:cc:19:a7:cd:28: b8:05:38:76:e8:50:4d:6f:d4:16:1c:67:9f:1c:b4:e4:bf:c5: 14:92:3a:bd:5d:f8:8c:bb:e0:be:81:11:6f:1a:16:ba:c9:dc: 90:fa:8e:3e:49:4e:2b:e2:2e:8e:8a:4b:9c:bd:37:66:71:80: ef:2f:11:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjYwNDE2MjI0MjUyWhcNMjYwNDIzMjI0MjUyWjAYMRYwFAYD VQQDEw02OWUxNjVlZC00NTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22ZpY32ggUB8MFbAdGCjgsNmKTxkAfBcaz3mj35vpQEr0I+3uaqDuZMUF4Zj 6L5MLmeg0HIozu9b/bbM3rlcc2lpzE8LLYX5SH+EMIoPhLM8UJzZRwtYrCe7IaHY JB2qB/aMk+gLPnxvAJwLg1LKvFgn80xxi9qK4i3VaemMuK2BXamYQ+IIjCtBTGgK 74Cke7gjGEoPTt9DRiwz8O7GaFGc9iJBp6EEoPDy7h6/sdMufx09eHnJl7ntjcjV W6YYWnO7pbb7cw/LMUHDqGPQtKGwugu5+S1yvtGNUU0FwSa7Llkh1jTyTXpNXkMI URpliyknpRHvhpplDonh7+W0awIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA/Xo91V 6qERTWVvpYDSGZzRiKUyMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApK8J3nNwAvu1vO2rjPP+wuJOQ6UvYlvavKJECIsD5NWIoT/13pH8vLWaAdX4 VNLJbhDqtlg3tJlIW3ieAoF2KlJQiTe7yR8jG2l7iKAqTck4qdo22t4ecOH8ZzSQ 4/2bhxD0v4T5GpggACi6fYaQicM45aGTlV4uuGe7FJNxDIbVjWi58JO60Zl3TzJT dPUJgStsPSMyEBELtrQTJVuQZLG87yPBSyNvbN4b9Oh2sIFQVOFv3CDReQNX/8D/ mKW0P8wZp80ouAU4duhQTW/UFhxnnxy05L/FFJI6vV34jLvgvoERbxoWusnckPqO PklOK+IujopLnL03ZnGA7y8REA== -----END CERTIFICATE-----Generated at Fri Apr 17 11:02:00 2026 by rpki-client