$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft File: i6wN0-SRhYlP2uKChO3IBHILRhQ.mft (raw, json) Hash identifier: BwO3NFmeIuzV3F0i836yXaheWLeE9BF66RgXYbgKsjE= Subject key identifier: AD:09:15:44:C9:D8:5A:1E:71:4B:31:2E:CE:25:D6:44:3B:16:7F:42 Authority key identifier: 8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 Certificate issuer: /CN=A91EBFAE/serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Certificate serial: 3533 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft Manifest number: 3532 Signing time: Thu 16 Apr 2026 14:32:18 +0000 Manifest this update: Thu 16 Apr 2026 14:32:17 +0000 Manifest next update: Thu 23 Apr 2026 14:32:17 +0000 Files and hashes: 1: i6wN0-SRhYlP2uKChO3IBHILRhQ.crl (hash: vGZVi5m3T2DiKCx6o1oR2OjqdDiesEJfyyq6UOGTHtA=) 2: 93F991501F4C11F19ED52041133D8C67.roa (hash: riV+YFoj73RGskIzJAtr/Lp7lGHXyMFCcQQ1eQ66pUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13619 (0x3533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Validity Not Before: Apr 16 14:32:17 2026 GMT Not After : Apr 23 14:32:17 2026 GMT Subject: CN=69e0f2f2-da52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:20:3a:b9:e5:7d:55:5b:03:75:c8:f8:7d:eb: 25:b2:2f:73:d2:08:86:b8:57:5a:d4:70:60:b4:f8: ee:92:e2:61:3c:b0:8b:16:83:10:26:68:b6:ca:74: 40:68:ea:2e:f9:3a:7e:d3:65:01:54:63:c8:f2:a2: ba:f6:d6:19:6d:09:d5:40:78:93:8b:12:90:6a:23: 0c:c4:cc:a9:32:fe:8e:f6:fd:97:2d:a9:0a:14:11: 42:b6:63:97:a3:41:09:11:85:c2:a2:3f:be:55:57: af:6a:e7:83:b3:62:39:d0:91:f1:89:d7:86:6e:83: f4:f8:d1:9d:69:2d:4f:88:e0:cb:0d:29:56:14:e1: d4:17:b7:ca:c4:e2:4c:a0:01:6f:ef:9a:5b:7d:df: 4e:de:bf:3f:d4:ed:e2:ee:d9:ff:a6:b4:8b:be:3d: ae:74:dd:59:f3:15:97:1e:f5:2d:0e:2d:44:70:2c: ba:3a:82:ba:13:8b:d4:1c:c7:d0:33:0d:4b:57:e4: 0d:5a:9d:8e:25:98:c0:39:00:81:a2:ba:b0:2b:d0: 81:d5:de:8b:3b:64:1e:58:c5:cc:44:de:d9:02:fd: 9d:11:5e:f6:d1:47:c3:6f:53:c1:52:1e:cc:aa:1c: 78:d9:a1:70:80:a3:6e:49:5a:5d:98:cd:25:e7:e8: f1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:09:15:44:C9:D8:5A:1E:71:4B:31:2E:CE:25:D6:44:3B:16:7F:42 X509v3 Authority Key Identifier: keyid:8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:5b:1a:2f:01:fc:3f:50:43:6e:20:a1:6d:91:99:b5:21:b1: c3:b0:36:1a:b0:08:89:7f:ba:58:f5:41:3c:ff:3b:d1:48:f7: 81:73:42:cf:71:b5:af:2c:cd:ee:df:9d:76:11:d0:c2:8f:2e: 7d:fa:be:fe:95:38:f4:79:57:9c:e5:aa:ef:79:2d:98:de:e5: 1b:99:d9:6f:51:84:00:cd:b6:7b:82:71:c7:a0:37:a7:c4:7e: e7:b1:ef:29:b8:e4:83:74:ec:48:5a:21:f1:0a:fc:4e:0c:a5: 11:8f:16:c7:53:f4:4e:81:8e:89:5f:2a:39:91:f8:b7:48:47: 0c:cd:8b:27:9b:ea:fb:27:d8:26:bf:b9:c1:66:e1:10:57:f9: 6a:f3:83:f9:d2:51:22:d4:87:0a:74:2f:61:b2:48:c9:0d:aa: 1a:46:5c:80:57:41:f0:cb:b2:52:fc:8a:ba:68:d3:9c:22:49: ae:cc:b3:72:cf:d5:b6:58:52:d7:11:8c:27:b0:cf:da:d1:5d: 3e:a3:14:e9:04:63:54:a4:03:11:df:3a:5d:f2:ab:10:d8:d4: 1e:c8:bf:a2:36:3c:76:a1:e6:c8:31:d9:af:23:95:a7:47:5f: a9:cf:66:b4:48:49:d1:0a:e9:41:93:9b:35:af:c6:2d:d9:4d: c6:f3:8f:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKDhCQUMwREQzRTQ5MTg1ODk0RkRBRTI4Mjg0RURDODA0 NzIwQjQ2MTQwHhcNMjYwNDE2MTQzMjE3WhcNMjYwNDIzMTQzMjE3WjAYMRYwFAYD VQQDEw02OWUwZjJmMi1kYTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlyA6ueV9VVsDdcj4feslsi9z0giGuFda1HBgtPjukuJhPLCLFoMQJmi2ynRA aOou+Tp+02UBVGPI8qK69tYZbQnVQHiTixKQaiMMxMypMv6O9v2XLakKFBFCtmOX o0EJEYXCoj++VVevaueDs2I50JHxideGboP0+NGdaS1PiODLDSlWFOHUF7fKxOJM oAFv75pbfd9O3r8/1O3i7tn/prSLvj2udN1Z8xWXHvUtDi1EcCy6OoK6E4vUHMfQ Mw1LV+QNWp2OJZjAOQCBorqwK9CB1d6LO2QeWMXMRN7ZAv2dEV720UfDb1PBUh7M qhx42aFwgKNuSVpdmM0l5+jxxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK0JFUTJ 2FoecUsxLs4l1kQ7Fn9CMB8GA1UdIwQYMBaAFIusDdPkkYWJT9rigoTtyARyC0YU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS8xNjhGRkQ2QzFE OEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZbFAydUtDaE8zSUJISUxS aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2d04wLVNSaFlsUDJ1S0NoTzNJQkhJTFJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS8xNjhGRkQ2QzFEOEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZ bFAydUtDaE8zSUJISUxSaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqlsaLwH8P1BDbiChbZGZtSGxw7A2GrAIiX+6WPVBPP870Uj3gXNCz3G1ryzN 7t+ddhHQwo8uffq+/pU49HlXnOWq73ktmN7lG5nZb1GEAM22e4Jxx6A3p8R+57Hv Kbjkg3TsSFoh8Qr8TgylEY8Wx1P0ToGOiV8qOZH4t0hHDM2LJ5vq+yfYJr+5wWbh EFf5avOD+dJRItSHCnQvYbJIyQ2qGkZcgFdB8MuyUvyKumjTnCJJrsyzcs/VtlhS 1xGMJ7DP2tFdPqMU6QRjVKQDEd86XfKrENjUHsi/ojY8dqHmyDHZryOVp0dfqc9m tEhJ0QrpQZObNa/GLdlNxvOPOQ== -----END CERTIFICATE-----Generated at Fri Apr 17 11:04:26 2026 by rpki-client