$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: 7EWvU7Wq2O4tPLqOXr/6nueOYiadXEcaphixs/qXf2M= Subject key identifier: 9D:DD:47:5B:AB:46:D3:DA:E5:E4:3A:A8:2A:AF:95:E5:47:2A:3F:F6 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 136D Signing time: Thu 16 Apr 2026 16:55:20 +0000 Manifest this update: Thu 16 Apr 2026 16:55:20 +0000 Manifest next update: Thu 23 Apr 2026 16:55:20 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: 54T/W75/ngCj3k3/Pf6gI/xOjI7omPDpIospt3TCwrE=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: O9w5ukmDcrFDcEjD6HiwQa6Y82NCxJ277Oe6QTyQjzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:55:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4993 (0x1381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Apr 16 16:55:20 2026 GMT Not After : Apr 23 16:55:20 2026 GMT Subject: CN=69e11478-d166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d0:b9:40:0e:88:05:f7:3f:ff:be:38:a6:99: 80:1b:5b:f0:00:fb:1b:68:7c:33:d7:60:b3:8e:56: 41:a9:22:1c:bc:c9:41:f6:ac:0d:bc:64:ce:77:83: 39:ec:fc:d1:85:35:d7:a0:02:69:26:fb:23:6f:9e: 9c:b8:4c:51:d2:ed:6e:49:42:8a:08:55:16:90:c4: 5a:62:12:b6:0a:6a:3f:ed:66:aa:04:14:1c:49:81: 28:09:3e:1e:f5:0c:8b:45:e3:ec:b1:72:a8:9b:5f: 8d:31:ca:0c:25:19:ea:18:de:9a:22:53:ea:7e:64: fb:dd:9b:63:19:70:75:c7:ea:68:0f:61:be:72:4b: 08:1b:2a:6a:a4:50:a4:09:3f:87:0e:f0:fa:af:f2: 94:58:1c:3f:8c:50:30:be:bc:1e:b2:2d:8b:56:5c: 02:6d:9b:00:90:cf:8e:37:02:a0:06:29:13:f8:a1: 73:aa:65:16:47:f3:0e:eb:3b:c2:0a:ff:ba:d8:88: 10:3e:04:48:a0:c4:3a:59:19:cc:dc:25:c9:16:00: 1f:ea:01:6d:de:f9:25:2e:24:cd:29:d6:24:ca:b4: c9:4f:dd:68:82:6a:cd:95:0f:2b:c0:94:02:01:21: af:75:14:48:16:89:61:df:46:1d:3b:33:c0:73:56: 8a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DD:47:5B:AB:46:D3:DA:E5:E4:3A:A8:2A:AF:95:E5:47:2A:3F:F6 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:2d:86:d3:42:e7:bb:6d:2c:8f:69:1d:48:2b:84:5d:96:cc: d0:37:e6:6a:d2:5e:8d:ba:cf:67:da:ba:f0:28:8b:53:61:9d: e5:57:bd:d4:8d:c5:84:6a:ba:53:0a:7d:ed:76:7a:6f:86:0d: cf:92:88:de:67:04:0b:7a:ed:10:e7:6c:18:01:cc:fb:b0:74: 40:7c:41:bf:d8:3f:50:ba:03:b1:be:36:63:e2:d8:04:23:91: 01:76:d9:58:a2:f3:86:ef:cc:25:b4:d0:ee:59:e2:0d:8c:59: 0a:e8:90:3f:69:7f:f8:b8:f8:4e:5b:ab:34:cb:49:77:2a:c9: 3c:3d:4f:67:03:dc:8c:4b:bb:41:75:f3:29:33:8b:e9:be:7f: 64:2e:49:98:63:52:26:2e:ea:ff:bf:85:8b:65:ef:aa:df:9b: 32:58:a6:3d:7d:c8:bd:24:19:9d:82:5c:0c:db:ab:c2:95:b1: 55:b0:9e:f6:75:ec:c1:c2:63:0e:7d:ad:d5:29:f2:17:2a:03: 02:54:c3:27:fe:f0:57:37:d9:d2:7e:91:4d:36:75:13:63:6c: f4:19:31:4c:95:d1:85:67:ab:47:42:3d:e1:cf:41:fc:7e:ea: 54:af:c8:78:05:30:e0:dc:94:d1:09:18:36:be:50:88:6c:6d: 07:ea:17:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjYwNDE2MTY1NTIwWhcNMjYwNDIzMTY1NTIwWjAYMRYwFAYD VQQDEw02OWUxMTQ3OC1kMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtC5QA6IBfc//744ppmAG1vwAPsbaHwz12CzjlZBqSIcvMlB9qwNvGTOd4M5 7PzRhTXXoAJpJvsjb56cuExR0u1uSUKKCFUWkMRaYhK2Cmo/7WaqBBQcSYEoCT4e 9QyLRePssXKom1+NMcoMJRnqGN6aIlPqfmT73ZtjGXB1x+poD2G+cksIGypqpFCk CT+HDvD6r/KUWBw/jFAwvrwesi2LVlwCbZsAkM+ONwKgBikT+KFzqmUWR/MO6zvC Cv+62IgQPgRIoMQ6WRnM3CXJFgAf6gFt3vklLiTNKdYkyrTJT91ogmrNlQ8rwJQC ASGvdRRIFolh30YdOzPAc1aKfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ3dR1ur RtPa5eQ6qCqvleVHKj/2MB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmy2G00Lnu20sj2kdSCuEXZbM0DfmatJejbrPZ9q68CiLU2Gd5Ve91I3FhGq6 Uwp97XZ6b4YNz5KI3mcEC3rtEOdsGAHM+7B0QHxBv9g/ULoDsb42Y+LYBCORAXbZ WKLzhu/MJbTQ7lniDYxZCuiQP2l/+Lj4TlurNMtJdyrJPD1PZwPcjEu7QXXzKTOL 6b5/ZC5JmGNSJi7q/7+Fi2Xvqt+bMlimPX3IvSQZnYJcDNurwpWxVbCe9nXswcJj Dn2t1SnyFyoDAlTDJ/7wVzfZ0n6RTTZ1E2Ns9BkxTJXRhWerR0I94c9B/H7qVK/I eAUw4NyU0QkYNr5QiGxtB+oXig== -----END CERTIFICATE-----Generated at Fri Apr 17 06:44:23 2026 by rpki-client