$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: 9zA0y01w0/QuApox0ajpAkSPN6/NKq783hMrhwgQJuk= Subject key identifier: 4C:34:4E:F2:74:FF:27:DF:A0:1F:BE:FB:41:7D:82:7C:E0:BD:4A:79 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 08FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 08F0 Signing time: Sat 18 Apr 2026 20:13:00 +0000 Manifest this update: Sat 18 Apr 2026 20:13:00 +0000 Manifest next update: Sat 25 Apr 2026 20:13:00 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: ByMGkwjqMN7PAfTRIeVseZJ9J0SoHr7dcmFvfj9bMl4=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: wbC8vyImx6v6ewZMr1D8zOdi43W+XjTwWRTdg25wKL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 20:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2299 (0x8fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Apr 18 20:13:00 2026 GMT Not After : Apr 25 20:13:00 2026 GMT Subject: CN=69e3e5cc-ea88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:72:fc:31:a6:f1:ef:f1:64:b6:c8:12:9c:22: 46:ab:8c:c2:e1:41:4c:6d:2c:ac:08:1d:63:dd:32: f8:af:43:0e:20:71:a0:76:e9:12:11:3a:6d:a6:57: d8:4f:2a:c1:0f:5e:6a:f4:56:59:af:a8:80:f7:25: 08:ed:ce:d2:89:75:88:01:4a:62:93:34:33:98:78: 56:3b:7a:a6:2f:24:0a:ca:70:57:05:65:ec:c0:43: 4f:53:b4:cc:66:5e:c9:8d:8d:2d:0f:d3:48:1e:65: 4c:cf:bc:88:b3:d2:f3:df:68:49:fc:61:05:26:f1: 38:e2:9a:f3:38:33:1a:b4:9e:8f:de:fb:6f:15:13: 2a:e3:c6:dc:fc:29:04:0c:f1:d0:c2:38:0e:29:5e: 54:3c:72:c4:01:f4:e6:54:cb:4d:d6:9e:e9:52:cc: 3f:03:bd:15:c5:d8:85:63:2f:f4:bd:5c:81:9a:5d: d8:4a:a2:ab:1b:bd:d3:e7:b5:c7:c4:40:b1:a4:a5: 95:13:19:c3:35:9c:e9:59:26:2e:20:60:08:45:40: 98:8e:e1:e1:e9:2a:99:37:27:32:53:4f:85:7e:a8: bb:c9:64:50:77:d9:a8:bc:c5:92:44:d6:fd:32:3b: 86:d5:29:f4:2f:41:b7:00:ce:21:9e:bc:3c:af:9d: df:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:34:4E:F2:74:FF:27:DF:A0:1F:BE:FB:41:7D:82:7C:E0:BD:4A:79 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:b0:0e:2d:68:a4:cd:13:2b:33:27:a3:d9:5e:13:4e:27:da: f4:1f:d1:80:16:1e:23:29:8c:6d:34:c4:e2:23:7b:58:02:89: 61:45:85:08:06:6a:fc:8f:15:52:62:b3:b8:4a:1e:8d:23:1b: 1c:4b:7a:38:ee:54:aa:41:30:6b:76:eb:d1:01:25:00:1c:03: 08:c1:b9:b9:17:9b:58:91:24:8d:15:d8:7c:e8:b9:33:2f:7c: 18:4d:dc:30:0f:d1:52:dc:4d:f0:ef:70:db:fa:0e:00:f5:3b: 47:cc:08:d0:db:c4:c5:5d:4c:b5:21:18:07:89:f5:36:47:9b: 85:0a:ea:b1:19:ee:89:57:c4:0d:a5:75:6a:55:24:72:8f:63: fb:f5:94:ee:f3:fb:50:c2:c7:f6:1f:1c:82:d9:32:36:70:c6: 76:f6:c6:08:87:10:4f:38:33:0f:f7:62:be:ec:e1:67:23:46: 92:36:6d:82:69:1b:31:ee:35:70:5a:e4:b8:01:84:f9:8d:3c: 58:af:7f:79:ab:57:74:dc:bb:16:da:f9:12:b7:b9:e9:be:bf: b8:e5:ac:e8:e1:5c:df:a2:d0:3e:1c:d8:78:81:0e:fa:9f:44: 57:d9:da:b3:4f:c9:c6:88:0d:df:f3:d5:82:4c:15:e8:32:c3: 3a:74:eb:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjYwNDE4MjAxMzAwWhcNMjYwNDI1MjAxMzAwWjAYMRYwFAYD VQQDEw02OWUzZTVjYy1lYTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlHL8Mabx7/FktsgSnCJGq4zC4UFMbSysCB1j3TL4r0MOIHGgdukSETptplfY TyrBD15q9FZZr6iA9yUI7c7SiXWIAUpikzQzmHhWO3qmLyQKynBXBWXswENPU7TM Zl7JjY0tD9NIHmVMz7yIs9Lz32hJ/GEFJvE44przODMatJ6P3vtvFRMq48bc/CkE DPHQwjgOKV5UPHLEAfTmVMtN1p7pUsw/A70VxdiFYy/0vVyBml3YSqKrG73T57XH xECxpKWVExnDNZzpWSYuIGAIRUCYjuHh6SqZNycyU0+Ffqi7yWRQd9movMWSRNb9 MjuG1Sn0L0G3AM4hnrw8r53fNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEw0TvJ0 /yffoB+++0F9gnzgvUp5MB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr7AOLWikzRMrMyej2V4TTifa9B/RgBYeIymMbTTE4iN7WAKJYUWFCAZq/I8V UmKzuEoejSMbHEt6OO5UqkEwa3br0QElABwDCMG5uRebWJEkjRXYfOi5My98GE3c MA/RUtxN8O9w2/oOAPU7R8wI0NvExV1MtSEYB4n1NkebhQrqsRnuiVfEDaV1alUk co9j+/WU7vP7UMLH9h8cgtkyNnDGdvbGCIcQTzgzD/divuzhZyNGkjZtgmkbMe41 cFrkuAGE+Y08WK9/eatXdNy7Ftr5Ere56b6/uOWs6OFc36LQPhzYeIEO+p9EV9na s0/JxogN3/PVgkwV6DLDOnTryQ== -----END CERTIFICATE-----Generated at Sun Apr 19 10:23:08 2026 by rpki-client