$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: vd0kLDbBKTO/jhBUzbn+B2UsfYhpJ3XQBi3Xb6cX1xg= Subject key identifier: BF:06:9A:07:0B:A8:11:8A:DA:1C:F3:D4:0F:9A:12:7E:31:52:E4:95 Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 020D Signing time: Fri 17 Apr 2026 02:42:32 +0000 Manifest this update: Fri 17 Apr 2026 02:42:31 +0000 Manifest next update: Fri 24 Apr 2026 02:42:31 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: 2fF4zWzi2jNJxnSwZdv2Ls3WCeNOspvyvwYoYRUI8F8=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: LOVQf/LdRjlXMFrzIgrgv8KlqIFzre3Qe7jhRSJb4JQ=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: xb0+uYgRF2Qsu64pqIvTIsaUIoIoJYA9r/GFBorr/Cw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Apr 17 02:42:31 2026 GMT Not After : Apr 24 02:42:31 2026 GMT Subject: CN=69e19e18-b18e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:56:13:63:9d:0b:00:3a:15:39:3f:c5:ba:73: 07:34:e5:a0:42:f3:44:4b:5e:6e:b1:26:0c:b4:55: dc:4b:b2:10:44:dd:c0:49:31:bc:9d:46:b1:84:64: 58:d4:f6:6b:b9:86:5a:cb:b2:e6:75:90:ab:a8:98: fb:33:c2:a0:54:09:7c:76:a2:fa:1d:3c:46:51:1f: 49:9a:e8:b4:05:e9:b0:09:40:ff:ec:1f:01:63:60: 72:d1:2c:b0:25:f7:ca:7d:4a:2c:c3:74:92:2c:e4: 07:7e:97:9c:06:65:a2:c6:cc:dd:ba:79:1e:65:ad: 96:76:eb:19:ef:65:03:77:fc:42:c8:fb:8d:df:b8: 0e:88:f2:15:b5:90:64:a3:e7:d1:ee:77:9f:6c:41: 0a:90:98:08:f7:50:f1:dc:1e:6e:05:fa:ff:9b:85: 14:76:ef:4b:a7:ac:7e:f0:ac:9e:fe:0b:b7:4f:32: 43:f3:6b:4f:a4:de:03:d2:52:01:3a:44:33:2d:79: 5b:00:6f:aa:6d:2e:46:26:cb:15:6a:c6:17:a3:a5: e0:46:ec:99:d6:fc:b6:66:e4:68:82:ba:c1:34:c3: d8:27:9e:ed:41:e2:92:d8:58:d0:e5:06:7e:ee:ce: 84:73:67:26:a9:86:cb:86:21:d7:9e:cf:7b:bb:f7: 5e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:06:9A:07:0B:A8:11:8A:DA:1C:F3:D4:0F:9A:12:7E:31:52:E4:95 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d6:cc:90:f2:ad:51:16:04:bd:e4:ee:87:0d:0d:8d:15:0c: 9a:68:8f:0c:84:44:0d:53:eb:9a:be:81:7f:d9:f7:a7:a2:e4: 8b:c7:18:67:5e:4d:cf:35:12:fa:a0:fb:d1:98:e1:0d:6e:f3: 4c:8f:32:03:8d:7e:8b:4d:7e:65:f0:25:26:13:76:2c:ce:03: b9:a9:a1:18:eb:5e:b8:07:05:96:36:7f:0b:62:ff:07:08:4c: 08:fd:b5:74:78:80:fb:76:62:a3:88:0c:02:12:c8:db:15:82: ec:0c:03:2e:a4:14:c1:dd:7a:6f:fe:b5:36:96:40:81:bc:90: 9d:6a:bc:33:8a:d3:ac:be:dd:ba:37:10:5d:13:48:ff:42:0a: 22:7d:7e:59:4e:fe:39:73:38:0a:5e:e4:22:c7:90:ff:08:c9: 62:34:4c:70:5d:ce:04:24:d1:52:35:74:c1:9b:d7:62:13:5d: fe:65:a9:c5:f4:4f:4d:72:9e:1e:1b:00:16:ae:0b:b6:18:37: 4f:18:b1:86:99:8e:e0:a6:cd:2d:cf:47:b3:c2:09:53:12:2d: 93:6d:42:6c:b6:fe:14:10:fe:c1:8c:3b:04:e3:ef:92:81:a5: 50:b0:5d:87:9f:57:8a:ac:4c:0a:56:7f:46:34:47:85:4b:83: be:bf:26:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjYwNDE3MDI0MjMxWhcNMjYwNDI0MDI0MjMxWjAYMRYwFAYD VQQDEw02OWUxOWUxOC1iMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FYTY50LADoVOT/FunMHNOWgQvNES15usSYMtFXcS7IQRN3ASTG8nUaxhGRY 1PZruYZay7LmdZCrqJj7M8KgVAl8dqL6HTxGUR9Jmui0BemwCUD/7B8BY2By0Syw JffKfUosw3SSLOQHfpecBmWixszdunkeZa2WdusZ72UDd/xCyPuN37gOiPIVtZBk o+fR7nefbEEKkJgI91Dx3B5uBfr/m4UUdu9Lp6x+8Kye/gu3TzJD82tPpN4D0lIB OkQzLXlbAG+qbS5GJssVasYXo6XgRuyZ1vy2ZuRogrrBNMPYJ57tQeKS2FjQ5QZ+ 7s6Ec2cmqYbLhiHXns97u/denQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL8GmgcL qBGK2hzz1A+aEn4xUuSVMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY9bMkPKtURYEveTuhw0NjRUMmmiPDIREDVPrmr6Bf9n3p6Lki8cYZ15NzzUS +qD70ZjhDW7zTI8yA41+i01+ZfAlJhN2LM4DuamhGOteuAcFljZ/C2L/BwhMCP21 dHiA+3Zio4gMAhLI2xWC7AwDLqQUwd16b/61NpZAgbyQnWq8M4rTrL7dujcQXRNI /0IKIn1+WU7+OXM4Cl7kIseQ/wjJYjRMcF3OBCTRUjV0wZvXYhNd/mWpxfRPTXKe HhsAFq4Lthg3TxixhpmO4KbNLc9Hs8IJUxItk21CbLb+FBD+wYw7BOPvkoGlULBd h59XiqxMClZ/RjRHhUuDvr8mcQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:08:47 2026 by rpki-client