$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: I1a5lFG35pdbCFuvAY14rDn59vkiTEksKFMYfa0n6dk= Subject key identifier: BD:01:93:C1:62:EA:75:91:97:C4:CC:FA:F3:93:70:7C:6F:A5:26:BB Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0E25 Signing time: Thu 16 Apr 2026 17:47:34 +0000 Manifest this update: Thu 16 Apr 2026 17:47:34 +0000 Manifest next update: Thu 23 Apr 2026 17:47:34 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: ZsvL1b9clh+p+T3dQpjKqZoeXkRFCeKDQ7uTPOnC3YQ=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: GS10eEt1MCcAl1eDM0DD66Q/CuCpMh/GfO+nM5nY1Wc=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: V7vJC1rGtCuOdSFWDJjdd3JhuVIPp/Zsx063dJpSpzo=) 4: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: r4+DOtWwyuCWCou7THCDzdNsPWvF2TgJVmwFVcXYJF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3693 (0xe6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Apr 16 17:47:34 2026 GMT Not After : Apr 23 17:47:34 2026 GMT Subject: CN=69e120b6-f01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:99:61:40:62:df:0d:d9:54:2e:32:5f:de:53: 8d:c3:8f:5a:94:69:91:a9:75:95:42:54:42:6b:d0: a9:08:a1:be:c0:ca:03:b8:16:c1:8d:fc:82:51:66: 5d:e4:dd:e3:89:8e:6f:7c:a9:2c:39:7c:db:d6:f9: e9:ac:49:15:9c:19:ee:3c:30:3e:52:18:2d:77:4f: 1f:24:40:92:9b:f4:5e:15:c2:4e:d4:e4:cb:3a:44: 6b:bf:a6:4d:99:86:c9:85:37:fc:8e:ac:a0:b5:a6: 8a:db:e3:b3:3b:e6:1d:fc:4a:a2:d9:29:02:45:97: 71:03:19:c5:fd:91:df:49:d8:9d:6f:a1:35:c9:36: a5:9d:98:06:59:24:bf:74:e5:88:f8:54:73:81:00: d8:d0:9c:d0:30:ab:f4:ff:f7:8d:fa:14:e5:92:12: ab:d4:99:50:70:52:df:86:75:0e:ac:e4:c5:e2:f9: 23:6b:ba:1f:00:15:6b:b5:89:31:41:b0:d0:31:b6: 33:62:62:b8:39:3b:5b:a6:a2:af:a9:71:06:db:7f: 8a:46:94:fe:00:80:08:90:bd:10:79:a2:3a:6f:19: 51:d6:3b:65:b3:90:d7:91:56:db:aa:5e:0a:3a:88: 8e:3d:5d:25:67:25:5a:98:a9:c1:d4:5d:4c:73:84: ba:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:01:93:C1:62:EA:75:91:97:C4:CC:FA:F3:93:70:7C:6F:A5:26:BB X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:6b:96:09:95:d1:8e:5e:89:a8:49:82:b8:94:a7:73:14:7a: fd:11:1b:e8:92:f1:ed:76:11:2c:90:22:cf:cc:d3:ad:d3:07: 35:f4:60:d6:30:ff:06:ed:9f:5f:a4:d5:c1:88:a5:cd:4b:63: 14:7e:27:66:a1:4c:37:a0:28:9b:87:89:f5:29:e8:c4:59:43: aa:ad:3a:17:9f:d9:43:e4:5e:23:84:a1:87:94:8e:62:c7:0a: ee:74:b8:39:78:5a:1e:17:8d:5e:a2:46:2d:2c:f2:22:f2:e2: b1:c7:52:16:d3:9d:ae:ae:cc:2c:0c:f6:e3:a1:3e:8c:90:f5: cf:52:7b:1a:0f:65:11:5b:58:d5:37:b5:e4:d0:5a:69:ba:e3: 1d:1b:c9:16:6c:7a:9f:90:5f:f2:eb:1d:04:f5:0c:65:1b:b4: 59:3d:84:ba:86:ef:3a:09:75:3f:1a:11:ce:d8:47:4f:33:10: 3b:7e:9a:6b:78:b9:60:fa:17:9e:a4:d3:ac:26:72:b2:87:28: 1d:50:89:a0:bc:8b:77:fb:c9:19:d7:e5:07:40:09:6a:95:34: 34:4b:c6:d9:4c:f5:5a:5b:7a:3d:a1:86:ae:bb:22:3e:0c:1e: ec:f5:24:c0:8c:db:10:4b:cc:ac:37:4d:09:2f:c0:5a:c0:f2: cf:e8:da:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwNDE2MTc0NzM0WhcNMjYwNDIzMTc0NzM0WjAYMRYwFAYD VQQDEw02OWUxMjBiNi1mMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJlhQGLfDdlULjJf3lONw49alGmRqXWVQlRCa9CpCKG+wMoDuBbBjfyCUWZd 5N3jiY5vfKksOXzb1vnprEkVnBnuPDA+Uhgtd08fJECSm/ReFcJO1OTLOkRrv6ZN mYbJhTf8jqygtaaK2+OzO+Yd/Eqi2SkCRZdxAxnF/ZHfSdidb6E1yTalnZgGWSS/ dOWI+FRzgQDY0JzQMKv0//eN+hTlkhKr1JlQcFLfhnUOrOTF4vkja7ofABVrtYkx QbDQMbYzYmK4OTtbpqKvqXEG23+KRpT+AIAIkL0QeaI6bxlR1jtls5DXkVbbql4K OoiOPV0lZyVamKnB1F1Mc4S6AQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0Bk8Fi 6nWRl8TM+vOTcHxvpSa7MB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw2uWCZXRjl6JqEmCuJSncxR6/REb6JLx7XYRLJAiz8zTrdMHNfRg1jD/Bu2f X6TVwYilzUtjFH4nZqFMN6Aom4eJ9SnoxFlDqq06F5/ZQ+ReI4Shh5SOYscK7nS4 OXhaHheNXqJGLSzyIvLiscdSFtOdrq7MLAz246E+jJD1z1J7Gg9lEVtY1Te15NBa abrjHRvJFmx6n5Bf8usdBPUMZRu0WT2EuobvOgl1PxoRzthHTzMQO36aa3i5YPoX nqTTrCZysocoHVCJoLyLd/vJGdflB0AJapU0NEvG2Uz1Wlt6PaGGrrsiPgwe7PUk wIzbEEvMrDdNCS/AWsDyz+ja5Q== -----END CERTIFICATE-----Generated at Fri Apr 17 13:00:21 2026 by rpki-client