$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: xFHWaux39/NMQjJ53Av0gt1ufOOlNDRXgkRQVMxaA5I= Subject key identifier: F1:D2:EC:D7:0B:21:EA:00:C7:6A:8F:D0:F5:53:7D:13:56:94:F7:C4 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01FC Signing time: Fri 17 Apr 2026 02:54:08 +0000 Manifest this update: Fri 17 Apr 2026 02:54:08 +0000 Manifest next update: Fri 24 Apr 2026 02:54:08 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: dn//SKb+nyOY2BuuhP66+NLDfOT7DFn5Ws4en/UPWSU=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: EWx+8I0dKpQmMmJmVtybBvo6VPcidxqCNBnDbqWKSIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Apr 17 02:54:08 2026 GMT Not After : Apr 24 02:54:08 2026 GMT Subject: CN=69e1a0d0-b4a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:00:5a:e8:2e:11:ae:37:58:31:d0:59:a2:3d: ca:8a:ac:ed:f9:32:93:cd:bd:e3:d0:5e:fe:00:a8: b2:89:bb:f6:8e:8b:46:8f:36:d5:00:86:78:39:d3: af:60:a5:d9:50:17:eb:47:13:d5:0d:56:d0:8a:0e: 0f:93:9f:c5:be:2c:7d:48:15:81:a6:43:70:77:e6: b1:73:ad:41:cf:f8:d2:84:f6:c1:31:02:8d:3e:0d: d1:b1:5f:99:55:76:e5:29:e2:5e:03:a9:a4:b0:fe: 38:03:46:8c:56:28:d0:95:8b:86:06:59:98:8d:ee: c4:d8:22:db:2e:f0:5f:18:01:a8:1d:6d:f0:3b:05: 8f:9f:3d:f3:6b:cf:b1:47:2f:81:ae:93:f4:49:91: 8a:b5:28:bb:cf:ca:c0:4c:b3:68:a2:14:85:5e:81: 6b:6b:19:d9:7b:ec:19:73:78:3a:e1:2a:a7:22:76: 75:9d:3d:82:ce:3d:86:38:66:9d:5c:f0:f1:94:59: ba:7f:56:30:b9:b9:55:e1:a3:3d:6f:eb:f5:42:94: d4:70:15:ad:fd:2a:6b:d3:be:f1:71:18:9c:6c:66: d7:a5:30:93:24:04:3c:69:84:7f:ad:8f:62:e3:bf: 9d:b1:6f:b5:c4:22:68:93:0f:86:3b:6d:72:4b:4c: 53:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D2:EC:D7:0B:21:EA:00:C7:6A:8F:D0:F5:53:7D:13:56:94:F7:C4 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:1b:52:20:80:c9:b1:b5:19:e1:3b:44:90:59:6a:11:c2:4d: 1f:87:48:83:67:56:8f:3f:0a:38:90:ab:7e:21:d1:ce:74:97: 73:60:89:83:ee:d4:27:d9:16:17:c2:91:d6:1b:c0:04:47:32: 9a:86:36:05:f0:c4:3e:83:22:93:2f:03:30:3d:92:4a:13:d7: 0c:86:af:cc:cb:df:cf:60:89:3a:b8:77:ce:5a:7b:db:93:c0: 6c:25:cd:6a:27:0b:ec:8a:00:00:9c:0a:2d:56:a9:19:dc:4f: 7e:a8:b9:96:67:ee:d3:3a:85:e5:66:cf:06:59:b3:3b:19:06: 92:94:7c:b7:59:df:9a:83:c3:1d:df:4f:d7:66:87:8a:1f:be: 8d:e8:20:e4:09:55:82:f2:53:14:38:8c:91:bd:f5:21:90:5f: bc:dd:ab:b1:ea:2a:23:db:5b:3a:8e:19:eb:95:77:c6:8c:f7: eb:6c:83:3c:58:69:dd:0b:cb:02:07:7b:38:0c:05:41:c4:9b: 6c:a5:71:34:02:7a:c6:8a:1a:f4:59:66:71:be:b9:51:c8:bc: 4d:48:23:a2:5b:8d:74:15:79:58:62:83:dd:4e:e9:8e:05:9f: 3e:68:4f:a0:0d:a7:4d:27:79:38:3a:9d:84:eb:79:cb:35:69: f6:30:2c:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjYwNDE3MDI1NDA4WhcNMjYwNDI0MDI1NDA4WjAYMRYwFAYD VQQDEw02OWUxYTBkMC1iNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQBa6C4RrjdYMdBZoj3Kiqzt+TKTzb3j0F7+AKiyibv2jotGjzbVAIZ4OdOv YKXZUBfrRxPVDVbQig4Pk5/Fvix9SBWBpkNwd+axc61Bz/jShPbBMQKNPg3RsV+Z VXblKeJeA6mksP44A0aMVijQlYuGBlmYje7E2CLbLvBfGAGoHW3wOwWPnz3za8+x Ry+BrpP0SZGKtSi7z8rATLNoohSFXoFraxnZe+wZc3g64SqnInZ1nT2Czj2GOGad XPDxlFm6f1YwublV4aM9b+v1QpTUcBWt/Spr077xcRicbGbXpTCTJAQ8aYR/rY9i 47+dsW+1xCJokw+GO21yS0xT0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPHS7NcL IeoAx2qP0PVTfRNWlPfEMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjBtSIIDJsbUZ4TtEkFlqEcJNH4dIg2dWjz8KOJCrfiHRznSXc2CJg+7UJ9kW F8KR1hvABEcymoY2BfDEPoMiky8DMD2SShPXDIavzMvfz2CJOrh3zlp725PAbCXN aicL7IoAAJwKLVapGdxPfqi5lmfu0zqF5WbPBlmzOxkGkpR8t1nfmoPDHd9P12aH ih++jegg5AlVgvJTFDiMkb31IZBfvN2rseoqI9tbOo4Z65V3xoz362yDPFhp3QvL Agd7OAwFQcSbbKVxNAJ6xooa9Flmcb65Uci8TUgjoluNdBV5WGKD3U7pjgWfPmhP oA2nTSd5ODqdhOt5yzVp9jAs8A== -----END CERTIFICATE-----Generated at Fri Apr 17 10:02:10 2026 by rpki-client