$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft File: h2oHnURPUsZNYGBMzHT5XwitpUc.mft (raw, json) Hash identifier: 9t2G0qykynCv9JGGUZzVKVzdE5EiDJwjcWN+q7bQlCQ= Subject key identifier: 31:37:0E:90:F1:F2:5B:96:7A:EF:01:1A:77:A4:68:2E:B4:F6:04:AF Authority key identifier: 87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 Certificate issuer: /CN=A91EB527/serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft Manifest number: 03E2 Signing time: Sun 19 Apr 2026 00:27:22 +0000 Manifest this update: Sun 19 Apr 2026 00:27:21 +0000 Manifest next update: Sun 26 Apr 2026 00:27:21 +0000 Files and hashes: 1: h2oHnURPUsZNYGBMzHT5XwitpUc.crl (hash: dPx2+snFf39fpjxK9FWplRrIgY43ZJDBfs0vktqtbmw=) 2: A9D7005CA94111EF9CC46F2FC4F9AE02.roa (hash: W1I0qwQLpYviXsJHxjtUW+8G8aD5Cp7wKSmeeq2TDCw=) 3: 408045262AAA11EE86A2063BC4F9AE02.roa (hash: vU/0sCO+F2+gmxcvidyq9+M7kV+eHGWZ8IbirsSlbG8=) 4: 7AE355C0A94111EFB4F9A22EC4F9AE02.roa (hash: TagOD3ZDqaOoAVz4NHmUoadFGOSc1C7/yOL765hn6Do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 00:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB527, serialNumber=876A079D444F52C64D60604CCC74F95F08ADA547 Validity Not Before: Apr 19 00:27:21 2026 GMT Not After : Apr 26 00:27:21 2026 GMT Subject: CN=69e42169-b5e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:43:83:dd:48:c2:72:b4:c6:0a:4e:b9:06:a7: d7:34:d1:d1:9a:53:71:99:2c:72:f5:91:64:90:b8: c6:73:4d:4c:32:30:e7:6f:52:98:5b:a6:63:cf:e1: 57:0e:a4:56:1d:70:09:9f:98:c3:c8:f6:3f:be:17: e8:e0:cb:be:1a:f8:1e:d4:48:2b:07:b0:6d:99:2e: ef:25:97:65:6d:d1:5e:53:b8:4f:08:26:63:12:07: a1:3c:97:06:16:7b:c5:84:10:44:d0:be:a5:8b:69: 8a:cf:5a:d4:e5:16:c4:b8:c1:e9:af:f6:ca:a8:b4: d1:e8:57:b9:24:4d:8a:64:ef:ee:2d:55:03:45:dc: da:db:12:17:6c:26:21:8d:93:c0:b3:e3:40:f8:e8: 23:ac:91:d7:25:eb:db:f3:be:b5:44:7b:08:0d:4b: 41:55:b6:23:9e:46:61:6f:9d:f1:b3:71:dc:a9:76: 95:55:a2:38:a5:78:78:2e:d5:78:15:02:a5:0f:65: ab:c6:e1:ba:82:0b:6f:b5:1f:6a:16:2e:57:28:b0: 8c:48:54:ae:91:28:f1:77:a5:66:c9:42:38:e1:33: 35:26:38:7c:72:3e:74:a6:63:6f:17:8f:7c:a5:78: e6:fa:26:aa:19:8f:f4:c0:2d:17:c4:a0:05:54:7b: e0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:37:0E:90:F1:F2:5B:96:7A:EF:01:1A:77:A4:68:2E:B4:F6:04:AF X509v3 Authority Key Identifier: keyid:87:6A:07:9D:44:4F:52:C6:4D:60:60:4C:CC:74:F9:5F:08:AD:A5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2oHnURPUsZNYGBMzHT5XwitpUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB527/DD1AE2F6C2AA11ECAF5F9F76C4F9AE02/h2oHnURPUsZNYGBMzHT5XwitpUc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:74:3b:fd:5c:90:05:62:7b:f7:6e:c2:dd:aa:5e:47:71:cc: b9:dc:f0:a2:b9:8a:34:60:14:09:52:bd:10:14:97:ee:27:8b: fe:f7:58:f4:3b:f3:66:16:d7:62:ba:7e:98:39:0f:31:9c:96: 2e:25:83:e8:2e:a1:57:0a:e4:c1:60:78:d2:e7:a0:9f:c4:3d: e6:05:ea:54:97:81:cd:28:ee:12:c6:4b:1f:67:ee:07:f8:de: 1a:e8:1b:80:3c:16:b5:b4:ec:2f:76:b8:05:ae:2b:52:c8:0f: 0d:2c:1c:0f:65:49:36:c1:72:00:31:cb:4f:41:ac:09:59:89: b8:9a:15:fb:31:7e:51:9d:7b:6e:96:2e:23:81:e2:4b:58:4b: ff:8a:1e:ef:18:0c:1d:1c:52:09:c6:f9:76:4f:20:1e:96:77: ff:04:8c:0e:ff:8b:72:b7:71:d3:9f:72:7b:69:7b:f9:d1:77: a0:9e:9f:0f:16:3a:4c:0f:23:3b:e9:b3:b7:3c:d2:1c:72:03: 70:39:1d:01:40:d8:fa:98:15:fc:91:f1:c8:ce:1f:cf:ce:ec: 3a:7d:0f:cb:7e:ff:e6:34:5c:f2:26:38:c9:64:34:1b:02:85: b6:2d:9a:d2:c7:fb:87:0d:aa:f8:f8:ee:f7:88:66:a5:2e:52: aa:52:53:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI1MjcxMTAvBgNVBAUTKDg3NkEwNzlENDQ0RjUyQzY0RDYwNjA0Q0NDNzRGOTVG MDhBREE1NDcwHhcNMjYwNDE5MDAyNzIxWhcNMjYwNDI2MDAyNzIxWjAYMRYwFAYD VQQDEw02OWU0MjE2OS1iNWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkkOD3UjCcrTGCk65BqfXNNHRmlNxmSxy9ZFkkLjGc01MMjDnb1KYW6Zjz+FX DqRWHXAJn5jDyPY/vhfo4Mu+Gvge1EgrB7BtmS7vJZdlbdFeU7hPCCZjEgehPJcG FnvFhBBE0L6li2mKz1rU5RbEuMHpr/bKqLTR6Fe5JE2KZO/uLVUDRdza2xIXbCYh jZPAs+NA+OgjrJHXJevb8761RHsIDUtBVbYjnkZhb53xs3HcqXaVVaI4pXh4LtV4 FQKlD2WrxuG6ggtvtR9qFi5XKLCMSFSukSjxd6VmyUI44TM1Jjh8cj50pmNvF498 pXjm+iaqGY/0wC0XxKAFVHvghwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDE3DpDx 8luWeu8BGnekaC609gSvMB8GA1UdIwQYMBaAFIdqB51ET1LGTWBgTMx0+V8IraVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjUyNy9ERDFBRTJGNkMy QUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVzWk5ZR0JNekhUNVh3aXRw VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyb0huVVJQVXNaTllHQk16SFQ1WHdpdHBVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjUyNy9ERDFBRTJGNkMyQUExMUVDQUY1RjlGNzZDNEY5QUUwMi9oMm9IblVSUFVz Wk5ZR0JNekhUNVh3aXRwVWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtHQ7/VyQBWJ7927C3apeR3HMudzwormKNGAUCVK9EBSX7ieL/vdY9DvzZhbX Yrp+mDkPMZyWLiWD6C6hVwrkwWB40uegn8Q95gXqVJeBzSjuEsZLH2fuB/jeGugb gDwWtbTsL3a4Ba4rUsgPDSwcD2VJNsFyADHLT0GsCVmJuJoV+zF+UZ17bpYuI4Hi S1hL/4oe7xgMHRxSCcb5dk8gHpZ3/wSMDv+Lcrdx059ye2l7+dF3oJ6fDxY6TA8j O+mztzzSHHIDcDkdAUDY+pgV/JHxyM4fz87sOn0Py37/5jRc8iY4yWQ0GwKFti2a 0sf7hw2q+Pju94hmpS5SqlJTnQ== -----END CERTIFICATE-----Generated at Sun Apr 19 08:27:42 2026 by rpki-client