$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: /8BnwTAz4XHmeULCHQRmpemPNC2pyXssKGD9cliCMMk= Subject key identifier: 13:1C:A2:46:C5:B7:BC:C1:56:D8:C0:15:9B:A4:44:4A:7E:75:1A:21 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2308 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 22B3 Signing time: Thu 16 Apr 2026 15:49:27 +0000 Manifest this update: Thu 16 Apr 2026 15:49:26 +0000 Manifest next update: Thu 23 Apr 2026 15:49:26 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: +mStmp+5Iub5wdNMRyhzmSdIrRhRyfzoi2wa/+eyaes=) 2: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: qG9igdUpXB7wk8yx/k2tOuq/gYueDRGW4t5eH6cDkms=) 3: 05302944D38811F096791A31C4F9AE02.roa (hash: 0TpazCbbP+eq5jbcmOC+QEukwM8XRQa407MbLaS5Vso=) 4: F4B9363CD97C11F0998DA3C49DD3641D.roa (hash: VfJC1uL3SDtxI0jb1ThMloxDt/b6TXqC47eyeyvo+WI=) 5: D128F6A2366111F19FA677FACA833773.roa (hash: ZY7Vk9qpQDHcmIYTowz44r/Aadjt59khWHwSNvAaAYk=) 6: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: fekDwvX/Pg2YZ9Fe3QZAnU92TpFpbncEnNKE83KMH+M=) 7: E049BA50335911F193981E57CA833773.roa (hash: ccrqPCbKxkHUXLuFhP49NrNOV6bbgxDvMbrEYPU0/70=) 8: 0ECE3EC6F36011F0BF2DB960646F56BC.roa (hash: QtoNirbotX7R4qD1r9ev9ywMdIdpJySoQAcu/MYpiqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8968 (0x2308) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Apr 16 15:49:26 2026 GMT Not After : Apr 23 15:49:26 2026 GMT Subject: CN=69e10507-9869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:6d:8b:01:e6:66:eb:ef:e6:e7:26:e8:41: cb:21:54:b8:2d:9b:04:7b:c1:af:ae:f5:78:71:30: 14:00:42:35:6f:0e:95:26:78:f9:33:c2:96:0f:c3: 9a:e2:4b:18:32:c2:2f:13:b8:f8:bb:fd:eb:72:1e: 3a:55:9b:f0:f7:03:da:b2:d9:29:09:31:b5:db:89: 45:d2:3d:a2:62:91:a0:d7:52:74:3d:63:d2:dd:86: ef:f6:2b:ea:e7:d3:7a:b6:17:7a:9e:a4:05:93:55: f3:2a:09:ee:72:2f:c8:69:d5:e3:3c:21:27:de:79: d2:60:45:9e:53:ca:7b:68:4d:4c:55:95:a1:f3:a9: cf:ca:85:fd:e7:02:d2:94:17:56:f2:62:1f:b0:92: 49:dd:ae:19:f2:cd:60:db:4e:f1:c6:9d:55:18:5e: 32:d9:5a:99:62:3b:14:5e:35:7e:d8:80:46:d7:b6: be:97:06:6d:47:7e:ca:de:f9:79:5f:6a:af:09:1a: d8:80:01:9f:18:26:f1:77:2d:2d:b9:53:1e:f3:50: a7:38:01:f7:0a:9f:cb:c2:10:88:60:4e:2a:5a:09: a6:88:a1:7c:21:04:47:f1:24:bc:83:b7:54:eb:da: b1:6a:93:83:7e:85:dc:a1:f4:8b:49:3a:e1:c8:78: 10:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1C:A2:46:C5:B7:BC:C1:56:D8:C0:15:9B:A4:44:4A:7E:75:1A:21 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:b9:1e:4f:00:03:dd:ba:51:f3:8c:d8:5b:a2:5b:29:1e:cf: 87:93:fc:34:fc:f2:13:4d:55:74:d2:e3:bf:4a:26:0f:7f:ab: da:68:ab:37:e2:7f:a7:f2:be:7d:21:15:02:43:55:09:48:57: b7:a1:45:55:aa:58:96:07:d9:36:8d:7a:1b:6a:12:80:72:5e: 46:2e:4d:25:e9:f3:5e:02:2e:4c:22:30:5a:91:99:42:33:2d: 29:69:ca:69:ba:aa:44:42:e4:ab:19:be:85:1d:09:d1:c6:ee: f2:5b:45:54:8e:8b:df:c7:42:ca:25:e6:6c:8b:b4:9e:df:07: 97:e6:4e:62:f9:a0:44:5b:b2:1c:7a:6f:d2:01:cf:56:b3:e7: 40:c2:43:7d:e2:e1:e3:79:16:13:89:d9:8a:d3:5c:ff:6b:3b: 91:18:3d:11:fc:bb:91:65:c5:d6:51:95:d4:bb:64:fe:79:ce: 76:c9:95:1d:47:ae:8a:91:42:31:70:3a:22:49:2a:bc:cb:a2: e5:75:b1:55:86:74:b7:27:1b:c7:71:c6:99:8f:59:de:ab:f1: db:00:c3:90:a5:06:a7:7c:01:1d:07:89:5f:09:fe:f4:9f:67: 0c:f5:05:0f:62:47:37:6d:16:c8:4a:f2:2f:3a:78:74:ee:a1: 63:5d:b4:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjYwNDE2MTU0OTI2WhcNMjYwNDIzMTU0OTI2WjAYMRYwFAYD VQQDEw02OWUxMDUwNy05ODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUZtiwHmZuvv5ucm6EHLIVS4LZsEe8GvrvV4cTAUAEI1bw6VJnj5M8KWD8Oa 4ksYMsIvE7j4u/3rch46VZvw9wPastkpCTG124lF0j2iYpGg11J0PWPS3Ybv9ivq 59N6thd6nqQFk1XzKgnuci/IadXjPCEn3nnSYEWeU8p7aE1MVZWh86nPyoX95wLS lBdW8mIfsJJJ3a4Z8s1g207xxp1VGF4y2VqZYjsUXjV+2IBG17a+lwZtR37K3vl5 X2qvCRrYgAGfGCbxdy0tuVMe81CnOAH3Cp/LwhCIYE4qWgmmiKF8IQRH8SS8g7dU 69qxapODfoXcofSLSTrhyHgQ9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBMcokbF t7zBVtjAFZukREp+dRohMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHrkeTwAD3bpR84zYW6JbKR7Ph5P8NPzyE01VdNLjv0omD3+r2mirN+J/p/K+ fSEVAkNVCUhXt6FFVapYlgfZNo16G2oSgHJeRi5NJenzXgIuTCIwWpGZQjMtKWnK abqqRELkqxm+hR0J0cbu8ltFVI6L38dCyiXmbIu0nt8Hl+ZOYvmgRFuyHHpv0gHP VrPnQMJDfeLh43kWE4nZitNc/2s7kRg9Efy7kWXF1lGV1Ltk/nnOdsmVHUeuipFC MXA6IkkqvMui5XWxVYZ0tycbx3HGmY9Z3qvx2wDDkKUGp3wBHQeJXwn+9J9nDPUF D2JHN20WyEryLzp4dO6hY120gA== -----END CERTIFICATE-----Generated at Fri Apr 17 10:48:34 2026 by rpki-client