$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft File: 5OTCQkd4XDQv81kH9-EcSrs5i4M.mft (raw, json) Hash identifier: 9LscL0TjP83S2ip4bKhqJHzp3hvUIetQ05DLF8U7FHk= Subject key identifier: B4:3A:D7:34:DF:16:EA:4F:35:C8:48:3F:E8:72:F2:64:7F:64:AD:29 Authority key identifier: E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 Certificate issuer: /CN=A91E85F1/serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft Manifest number: CA Signing time: Fri 17 Apr 2026 06:36:00 +0000 Manifest this update: Fri 17 Apr 2026 06:36:00 +0000 Manifest next update: Fri 24 Apr 2026 06:36:00 +0000 Files and hashes: 1: 5OTCQkd4XDQv81kH9-EcSrs5i4M.crl (hash: HdZpdck2FFuDM2P6T5JnSp0APjjk3OSISyp4KU3K1fU=) 2: 212E0B520DFE11F0B266963AC4F9AE02.roa (hash: 0Pd2RnR3Fb00tGS21BR3ZHRM+0PBa1aIDio+p3wBXao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Validity Not Before: Apr 17 06:36:00 2026 GMT Not After : Apr 24 06:36:00 2026 GMT Subject: CN=69e1d4d0-e7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a5:b4:b9:7d:83:89:88:b4:f4:90:d5:6b:3b: 74:11:ea:ca:10:06:8a:b9:04:e4:5b:6e:00:3d:a3: b0:50:e7:13:0f:50:3f:85:a4:08:b5:91:50:40:a2: 78:e3:89:96:39:e9:60:1c:7f:bb:93:7e:58:2b:47: 49:2b:d4:5d:a0:e4:bc:a1:ba:0a:1a:a4:93:a0:8b: bf:55:91:7d:0d:fb:f2:47:77:32:f2:80:ea:99:38: 5c:76:6b:6d:31:1f:11:81:8e:6d:16:26:3d:8f:e4: 81:1f:1e:2f:f2:df:26:b0:33:90:e2:54:24:a5:de: 87:94:84:20:33:0e:ad:f8:b5:29:82:83:e1:ef:7d: e5:74:92:af:32:7a:df:a7:5e:5e:fa:b9:c5:8e:ca: cb:83:f6:2e:eb:6b:69:64:83:e4:f7:7b:9d:9c:bd: 10:a2:b8:f3:d2:2c:3c:6f:91:55:82:fe:b9:9e:24: 0e:55:89:08:66:4b:12:6d:4e:54:d7:c5:e9:12:35: d7:66:4c:43:8a:ab:2e:cb:09:61:34:62:f4:a5:49: 3c:fd:37:5d:62:0f:cf:48:77:a4:9f:91:77:d2:4a: ea:f8:be:e9:60:dc:6a:76:58:99:54:12:8d:1a:86: e1:91:33:c5:9b:7c:03:3c:e2:28:de:d8:15:cd:87: 67:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3A:D7:34:DF:16:EA:4F:35:C8:48:3F:E8:72:F2:64:7F:64:AD:29 X509v3 Authority Key Identifier: keyid:E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0f:08:66:0a:30:a1:72:c9:26:b9:1e:e2:c9:cc:27:5d:53: df:85:7e:ba:e6:0a:6e:25:dd:2e:42:cd:ea:e9:bd:39:d2:a1: 0e:68:66:24:fb:c7:0a:49:f5:54:54:69:9e:5c:96:55:f0:69: 68:9b:3e:d3:c0:e0:f7:f4:60:9d:94:d4:b2:04:82:61:a6:f0: b4:74:dd:f1:9d:34:46:0d:69:6e:6b:69:a9:1d:00:96:b7:74: 43:a5:c6:f2:c1:19:db:93:ac:be:32:dc:b1:86:3c:e5:89:cc: 36:e1:37:ba:9b:8a:d9:82:b7:23:8d:91:41:65:1d:1e:dc:3c: 1b:57:74:6e:d4:d4:1f:6a:6f:be:33:d1:7f:80:83:4b:f6:af: ef:10:86:56:6d:7e:54:ae:67:27:98:e9:f0:80:5a:91:85:4b: da:f2:dd:5d:a7:c1:b8:d5:d8:95:3d:af:c7:b0:df:42:d6:61: 9f:4e:ef:ef:24:01:b2:8c:23:c4:47:76:67:bd:7a:ac:3c:9c: d3:8f:3c:82:38:e9:80:e4:35:06:ec:5f:bd:c4:17:3f:1b:32: 3f:03:30:7d:ca:0e:4a:b6:29:64:2d:85:1e:2b:9e:ab:37:24: 3f:7d:2b:89:c4:8c:8c:d5:15:3b:33:07:51:58:2a:d6:dc:6d: ef:bd:b9:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1RjExMTAvBgNVBAUTKEU0RTRDMjQyNDc3ODVDMzQyRkYzNTkwN0Y3RTExQzRB QkIzOThCODMwHhcNMjYwNDE3MDYzNjAwWhcNMjYwNDI0MDYzNjAwWjAYMRYwFAYD VQQDEw02OWUxZDRkMC1lN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKW0uX2DiYi09JDVazt0EerKEAaKuQTkW24APaOwUOcTD1A/haQItZFQQKJ4 44mWOelgHH+7k35YK0dJK9RdoOS8oboKGqSToIu/VZF9DfvyR3cy8oDqmThcdmtt MR8RgY5tFiY9j+SBHx4v8t8msDOQ4lQkpd6HlIQgMw6t+LUpgoPh733ldJKvMnrf p15e+rnFjsrLg/Yu62tpZIPk93udnL0Qorjz0iw8b5FVgv65niQOVYkIZksSbU5U 18XpEjXXZkxDiqsuywlhNGL0pUk8/TddYg/PSHekn5F30krq+L7pYNxqdliZVBKN GobhkTPFm3wDPOIo3tgVzYdnhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLQ61zTf FupPNchIP+hy8mR/ZK0pMB8GA1UdIwQYMBaAFOTkwkJHeFw0L/NZB/fhHEq7OYuD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVGMS82MjIwNjMzQzBE RkMxMUYwQTFEOTgwNTNDNEY5QUUwMi81T1RDUWtkNFhEUXY4MWtIOS1FY1NyczVp NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVPVENRa2Q0WERRdjgxa0g5LUVjU3JzNWk0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVGMS82MjIwNjMzQzBERkMxMUYwQTFEOTgwNTNDNEY5QUUwMi81T1RDUWtkNFhE UXY4MWtIOS1FY1NyczVpNE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAug8IZgowoXLJJrke4snMJ11T34V+uuYKbiXdLkLN6um9OdKhDmhmJPvHCkn1 VFRpnlyWVfBpaJs+08Dg9/RgnZTUsgSCYabwtHTd8Z00Rg1pbmtpqR0Alrd0Q6XG 8sEZ25OsvjLcsYY85YnMNuE3upuK2YK3I42RQWUdHtw8G1d0btTUH2pvvjPRf4CD S/av7xCGVm1+VK5nJ5jp8IBakYVL2vLdXafBuNXYlT2vx7DfQtZhn07v7yQBsowj xEd2Z716rDyc0488gjjpgOQ1BuxfvcQXPxsyPwMwfcoOSrYpZC2FHiueqzckP30r icSMjNUVOzMHUVgq1txt7725Ag== -----END CERTIFICATE-----Generated at Fri Apr 17 11:48:45 2026 by rpki-client