$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft File: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft (raw, json) Hash identifier: 0xS8UI0y1iPXENzfD248Sy6Iak4mPxrmWHCHSCWWIw8= Subject key identifier: B1:FD:A2:35:D7:D6:83:CE:A6:DC:DB:47:34:19:00:A5:CA:AF:ED:F6 Authority key identifier: 24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D Certificate issuer: /CN=A91E8BAF/serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Certificate serial: 3552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft Manifest number: 353D Signing time: Thu 16 Apr 2026 15:16:13 +0000 Manifest this update: Thu 16 Apr 2026 15:16:12 +0000 Manifest next update: Thu 23 Apr 2026 15:16:12 +0000 Files and hashes: 1: JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl (hash: YA4t9NpjjyyTPgcsFXg7aYYiFOGKC1cS1OBeTfjXZaE=) 2: F87DB8B440C811EEB681DC40C4F9AE02.roa (hash: ofcFpR0dG4lGMFPSarAEqgGjniCtEUFFNDbSn2FRdQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13650 (0x3552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BAF, serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Validity Not Before: Apr 16 15:16:12 2026 GMT Not After : Apr 23 15:16:12 2026 GMT Subject: CN=69e0fd3d-9f64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:92:d1:0d:ee:fa:c4:2b:d9:e5:41:9c:52:7b: 88:c1:06:52:65:83:5c:62:fa:dd:70:56:a6:b9:d6: 1b:ed:04:e9:54:5e:4b:bb:32:cf:93:ce:a9:82:3a: dd:4f:c9:14:3e:21:e9:e0:ca:04:47:8c:7e:34:04: fe:36:aa:7d:ac:7c:15:04:2b:d9:de:f7:57:6f:89: d8:22:b8:23:f7:a7:ab:da:1e:5f:2e:92:c8:c5:2b: d9:8e:1b:f5:5a:10:4b:f9:8e:3e:cc:22:d7:16:4a: 93:e2:81:a1:76:80:6c:09:fc:a8:1f:2e:7f:1b:dc: b8:d1:75:89:0f:e8:ef:9c:43:75:c2:3e:6a:a4:18: d1:7c:2b:bc:eb:13:4f:f4:0c:4e:60:60:25:1d:99: 5c:13:0a:da:7e:de:03:7a:c6:ff:49:be:ee:5c:cc: 9c:66:59:36:f9:7c:f8:d4:95:7b:28:4b:28:66:eb: 27:c5:45:42:1c:a8:97:10:87:5f:5d:29:0f:c1:a8: eb:99:6b:2c:a0:b4:26:47:33:bb:de:de:33:4e:ff: a8:1b:46:18:b7:b3:2d:d8:d9:73:8b:27:ee:51:e2: 38:6a:c9:c4:7c:3e:59:91:1e:b0:f7:12:4d:ae:bd: 59:b4:84:50:5e:d5:a4:e7:4a:10:bf:ff:84:7d:09: b1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FD:A2:35:D7:D6:83:CE:A6:DC:DB:47:34:19:00:A5:CA:AF:ED:F6 X509v3 Authority Key Identifier: keyid:24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:10:3c:d6:8a:8f:5f:53:46:0c:50:60:82:f4:fc:2e:28:eb: 66:0c:22:9b:db:22:d2:72:b9:3c:ee:f9:2d:a5:8e:31:4a:92: e7:5d:71:d2:72:70:c6:ce:d2:dc:4a:d8:01:ec:5e:57:ce:6e: 53:a5:11:2e:42:5f:8e:c3:e8:bf:c1:c7:b7:f2:5a:55:3f:9a: 62:59:6b:43:5e:fa:70:4a:d8:42:3a:7a:77:a4:d0:11:07:da: 3e:5c:26:bd:ed:17:2d:e7:09:b4:10:eb:90:5f:fe:1a:04:f8: b2:52:f0:35:af:7d:88:11:cb:26:cf:7e:c8:96:d8:9f:dd:fd: f3:d9:64:64:66:eb:aa:9f:60:93:b3:6a:9a:f1:af:6f:96:33: da:48:40:30:63:07:a8:52:68:cb:de:ee:93:85:cb:e1:58:a3: 6e:9d:da:36:5a:52:bd:8a:46:1f:f5:c1:e1:b8:c7:4b:09:b5: 8f:97:d7:ac:ea:76:b1:15:ee:04:a8:41:d7:80:5e:62:9c:83: 41:ca:b2:80:35:87:a9:2b:8b:0f:03:4f:76:52:71:eb:32:53: b1:db:4d:c5:f8:0a:8e:dc:9e:af:b1:7a:79:c6:2d:9b:84:45: 19:5f:fb:3d:0e:86:a9:5d:b9:44:35:be:cc:3d:a7:8f:19:91: 93:b3:5d:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCQUYxMTAvBgNVBAUTKDI0OERCMUZFRTU1MTBDOEE2QUY4NUVBQzgxMEVDNEND QUU4QkY5MEQwHhcNMjYwNDE2MTUxNjEyWhcNMjYwNDIzMTUxNjEyWjAYMRYwFAYD VQQDEw02OWUwZmQzZC05ZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5LRDe76xCvZ5UGcUnuIwQZSZYNcYvrdcFamudYb7QTpVF5LuzLPk86pgjrd T8kUPiHp4MoER4x+NAT+Nqp9rHwVBCvZ3vdXb4nYIrgj96er2h5fLpLIxSvZjhv1 WhBL+Y4+zCLXFkqT4oGhdoBsCfyoHy5/G9y40XWJD+jvnEN1wj5qpBjRfCu86xNP 9AxOYGAlHZlcEwraft4Desb/Sb7uXMycZlk2+Xz41JV7KEsoZusnxUVCHKiXEIdf XSkPwajrmWssoLQmRzO73t4zTv+oG0YYt7Mt2NlziyfuUeI4asnEfD5ZkR6w9xJN rr1ZtIRQXtWk50oQv/+EfQmxzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLH9ojXX 1oPOptzbRzQZAKXKr+32MB8GA1UdIwQYMBaAFCSNsf7lUQyKavherIEOxMyui/kN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJBRi8zMkQ4RTIyRTFE QUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJcHEtRjZzZ1E3RXpLNkwt UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJMnhfdVZSRElwcS1GNnNnUTdFeks2TC1RMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJBRi8zMkQ4RTIyRTFEQUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJ cHEtRjZzZ1E3RXpLNkwtUTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACRA81oqPX1NGDFBggvT8LijrZgwim9si0nK5PO75LaWOMUqS511x0nJwxs7S 3ErYAexeV85uU6URLkJfjsPov8HHt/JaVT+aYllrQ176cErYQjp6d6TQEQfaPlwm ve0XLecJtBDrkF/+GgT4slLwNa99iBHLJs9+yJbYn93989lkZGbrqp9gk7NqmvGv b5Yz2khAMGMHqFJoy97uk4XL4Vijbp3aNlpSvYpGH/XB4bjHSwm1j5fXrOp2sRXu BKhB14BeYpyDQcqygDWHqSuLDwNPdlJx6zJTsdtNxfgKjtyer7F6ecYtm4RFGV/7 PQ6GqV25RDW+zD2njxmRk7NdTg== -----END CERTIFICATE-----Generated at Fri Apr 17 11:55:22 2026 by rpki-client