$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: x55wicD+rudKBfHkjUJXJXJX+2bcrXMabIrfECJsVSc= Subject key identifier: CA:EA:BC:5B:43:97:6D:BC:A7:E5:60:2D:80:55:08:AE:FD:19:B0:6C Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 0121 Signing time: Fri 17 Apr 2026 05:33:58 +0000 Manifest this update: Fri 17 Apr 2026 05:33:57 +0000 Manifest next update: Fri 24 Apr 2026 05:33:57 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: I0pPluSoSGoJrp4WbAYtCnCyaEsFGCwKeihdiD5npE0=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 7w241TOLyyucLUDf7OQQ+XxJH6J8zBk8QcqnEOt6c80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Apr 17 05:33:57 2026 GMT Not After : Apr 24 05:33:57 2026 GMT Subject: CN=69e1c645-2b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b5:41:e0:23:97:f0:b2:72:5d:3a:5f:fa:f4: 09:6b:b2:db:c9:74:91:f7:e2:f2:5c:12:9c:4d:e7: b7:c8:e6:c7:1a:e8:07:8e:84:d5:6e:8e:7d:8d:3f: 76:e7:68:0f:8c:02:1f:1c:e3:26:63:8a:71:d4:8e: 71:b8:c9:f0:c4:fa:e4:51:69:b3:4e:f8:f6:01:cd: 9a:13:52:49:50:4c:c2:b4:a1:9a:1b:bc:36:a0:36: 01:e1:a9:dd:74:50:ed:8b:5a:71:b3:b4:c3:bf:2a: 7a:5a:4b:08:47:43:f6:06:77:1d:da:4d:83:db:fa: 00:f1:98:6f:29:59:78:84:0c:49:31:f5:f3:c3:36: 2b:bc:dd:e1:d5:2a:6f:2b:85:fb:a0:06:7b:98:7e: c4:7d:cc:03:30:d7:5e:e2:6f:dd:1b:75:a5:2c:2b: ee:b1:8b:05:8e:42:49:78:4e:03:a7:12:c3:a8:44: 73:39:04:f5:2c:b0:aa:66:cf:d9:76:f4:45:91:52: 4b:e8:d8:5f:8a:1e:d6:b2:19:fd:6a:15:2a:49:d0: 42:e8:ff:8d:cc:be:3e:9c:83:2c:12:12:64:74:e2: 2b:0c:cb:22:f3:73:79:42:ca:76:d8:ec:16:d9:96: a2:de:e4:ae:81:24:71:3d:f6:9d:48:40:92:a3:05: e6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EA:BC:5B:43:97:6D:BC:A7:E5:60:2D:80:55:08:AE:FD:19:B0:6C X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:7e:9e:f4:00:85:8c:03:35:78:f5:22:2f:d5:c9:33:b4:aa: 71:7c:07:73:c2:3e:c5:79:5e:e4:e4:85:3c:89:25:65:c6:f0: 1f:85:e6:5b:7c:96:e3:9e:2f:10:da:82:be:01:66:45:f0:c0: d0:05:a2:c1:fd:ac:ce:40:22:fa:83:12:f3:5b:c4:75:f4:48: 03:25:49:8c:55:3c:c5:c4:eb:47:d1:f5:56:8a:14:32:11:c2: 3a:b8:2d:24:67:08:e4:0c:99:7d:a1:0b:68:98:e3:5e:7a:b5: 1a:fd:71:8d:ed:b7:80:57:28:9c:08:c1:e2:c5:c4:f3:8f:d0: cb:d1:63:99:da:34:e0:31:d8:a3:47:54:52:dc:44:a3:2b:55: 0c:cd:78:ad:a6:ae:44:36:ae:f4:f8:64:f4:8a:d7:d4:c1:c2: 98:27:ba:a0:c5:b4:e6:b7:c2:57:87:9a:f7:0d:53:b7:44:72: 4c:34:46:3f:99:f4:44:a7:1d:20:7d:e5:cd:8c:4f:8a:61:29: ac:b0:cc:fb:c6:04:fa:0a:e8:e9:2a:9f:d2:32:28:9d:ab:cd: f1:35:eb:5a:94:9c:75:30:b4:4a:69:fc:0c:ac:72:cd:85:76: 02:a3:0e:49:59:19:8e:79:96:33:fe:6a:5c:bb:26:38:a8:40: 0d:0d:8e:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjYwNDE3MDUzMzU3WhcNMjYwNDI0MDUzMzU3WjAYMRYwFAYD VQQDEw02OWUxYzY0NS0yYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrVB4COX8LJyXTpf+vQJa7LbyXSR9+LyXBKcTee3yObHGugHjoTVbo59jT92 52gPjAIfHOMmY4px1I5xuMnwxPrkUWmzTvj2Ac2aE1JJUEzCtKGaG7w2oDYB4and dFDti1pxs7TDvyp6WksIR0P2Bncd2k2D2/oA8ZhvKVl4hAxJMfXzwzYrvN3h1Spv K4X7oAZ7mH7EfcwDMNde4m/dG3WlLCvusYsFjkJJeE4DpxLDqERzOQT1LLCqZs/Z dvRFkVJL6Nhfih7Wshn9ahUqSdBC6P+NzL4+nIMsEhJkdOIrDMsi83N5Qsp22OwW 2Zai3uSugSRxPfadSECSowXmQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMrqvFtD l228p+VgLYBVCK79GbBsMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm36e9ACFjAM1ePUiL9XJM7SqcXwHc8I+xXle5OSFPIklZcbwH4XmW3yW454v ENqCvgFmRfDA0AWiwf2szkAi+oMS81vEdfRIAyVJjFU8xcTrR9H1VooUMhHCOrgt JGcI5AyZfaELaJjjXnq1Gv1xje23gFconAjB4sXE84/Qy9Fjmdo04DHYo0dUUtxE oytVDM14raauRDau9Phk9IrX1MHCmCe6oMW05rfCV4ea9w1Tt0RyTDRGP5n0RKcd IH3lzYxPimEprLDM+8YE+gro6Sqf0jIonavN8TXrWpScdTC0Smn8DKxyzYV2AqMO SVkZjnmWM/5qXLsmOKhADQ2OZg== -----END CERTIFICATE-----Generated at Fri Apr 17 08:08:14 2026 by rpki-client