$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: J3XWIeyoIHmemTF4TxtKTy6RLr0+m6shO0eON8buj7g= Subject key identifier: 24:BC:6E:58:45:47:F7:D3:FC:91:CE:12:9F:EC:1B:5F:7E:6A:10:04 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 013B Signing time: Fri 17 Apr 2026 05:02:50 +0000 Manifest this update: Fri 17 Apr 2026 05:02:50 +0000 Manifest next update: Fri 24 Apr 2026 05:02:50 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: h62HLDA5dGyncQh/Lnu3TSUPyRIu05rNa8C/bvkFtRc=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: rKKs75f3Fq0WXiFUQVZhwV3/C+6KDS0+3S6WBSvsbeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Apr 17 05:02:50 2026 GMT Not After : Apr 24 05:02:50 2026 GMT Subject: CN=69e1befa-271f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:d3:28:64:d8:f1:85:41:2f:4f:04:1e:9a: 5c:2a:25:d2:c5:b1:2f:3d:0b:ee:e3:8a:4f:bd:7e: 91:34:7c:d2:de:ca:e4:41:ee:e6:2a:c4:01:25:f4: 13:c8:05:bf:70:05:b4:69:f5:c5:77:6d:9f:b9:bd: 75:d7:60:9c:51:e3:21:09:27:7e:6e:07:09:ec:14: 98:0e:82:78:74:b0:01:76:35:41:e9:7d:96:2d:08: fb:a0:6f:63:d2:b4:2a:a8:ac:10:6c:19:ab:58:ee: 29:d6:b8:62:51:4d:39:5d:a1:32:c7:b4:ef:0f:b0: 2e:73:84:0a:21:23:d0:38:40:0a:65:32:7a:63:3a: d8:9c:12:ca:17:ff:72:3f:2f:a0:4f:70:a2:e0:e3: e4:5d:81:99:fb:3e:b4:c7:06:1d:ca:60:22:d6:a3: b8:9e:3d:ac:2d:66:9a:27:ae:5d:58:81:e5:2a:a8: 8c:03:d6:e1:f0:25:f2:46:95:6b:e6:b9:08:7e:3f: 00:2e:60:a2:b1:e9:61:30:f2:24:cb:fd:13:de:4f: 66:e1:9a:54:a8:33:e3:63:3f:74:18:4d:21:55:14: 1c:6a:86:7c:a2:f4:29:83:0f:35:cb:10:b3:47:5a: 75:e7:01:98:37:22:1a:36:d5:40:e6:be:ff:e6:30: f4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BC:6E:58:45:47:F7:D3:FC:91:CE:12:9F:EC:1B:5F:7E:6A:10:04 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:12:9e:8e:4f:0b:1f:dd:7e:43:ba:68:05:55:5c:21:fa:14: 0f:e0:60:f4:52:2c:8e:8d:30:ca:2f:9a:96:75:da:d0:04:aa: 5a:4c:b6:c9:a5:8a:12:25:bc:43:a3:b4:06:96:86:ba:26:e5: 6b:a1:ce:ce:a3:73:cc:6f:32:17:76:ab:8d:3b:5e:59:c0:2e: 22:cb:a6:47:2f:f2:d8:84:67:d8:c3:d8:d9:fa:3b:21:24:02: cf:f9:a0:11:ff:b4:ee:75:87:06:b4:13:e4:11:bc:3e:c3:8c: f1:d2:16:30:6d:09:12:24:bf:f3:15:97:89:3e:8a:34:7e:b6: a6:2f:8c:3c:36:55:3b:43:82:89:cc:15:0b:b3:c0:3c:d2:ec: 40:47:11:ec:90:63:cf:1f:3c:f0:47:97:40:aa:86:d8:c0:24: a6:53:59:1f:b1:44:08:eb:fd:11:1c:2c:da:1b:79:69:b5:d9: 67:36:29:a8:ca:1c:1d:3a:50:83:d4:47:da:77:bf:f6:f9:c1: f3:1d:12:b7:cb:83:a0:68:57:d1:43:99:2c:a4:f3:49:c3:cc: 6f:77:a2:f8:cd:61:43:7c:61:d3:51:58:7b:16:af:08:f0:19: 1d:ba:80:52:10:d9:44:d7:f9:fe:2a:c1:36:ee:e5:b9:34:84: e2:11:a5:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjYwNDE3MDUwMjUwWhcNMjYwNDI0MDUwMjUwWjAYMRYwFAYD VQQDEw02OWUxYmVmYS0yNzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGnTKGTY8YVBL08EHppcKiXSxbEvPQvu44pPvX6RNHzS3srkQe7mKsQBJfQT yAW/cAW0afXFd22fub1112CcUeMhCSd+bgcJ7BSYDoJ4dLABdjVB6X2WLQj7oG9j 0rQqqKwQbBmrWO4p1rhiUU05XaEyx7TvD7Auc4QKISPQOEAKZTJ6YzrYnBLKF/9y Py+gT3Ci4OPkXYGZ+z60xwYdymAi1qO4nj2sLWaaJ65dWIHlKqiMA9bh8CXyRpVr 5rkIfj8ALmCiselhMPIky/0T3k9m4ZpUqDPjYz90GE0hVRQcaoZ8ovQpgw81yxCz R1p15wGYNyIaNtVA5r7/5jD0aQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCS8blhF R/fT/JHOEp/sG19+ahAEMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkBKejk8LH91+Q7poBVVcIfoUD+Bg9FIsjo0wyi+alnXa0ASqWky2yaWKEiW8 Q6O0BpaGuibla6HOzqNzzG8yF3arjTteWcAuIsumRy/y2IRn2MPY2fo7ISQCz/mg Ef+07nWHBrQT5BG8PsOM8dIWMG0JEiS/8xWXiT6KNH62pi+MPDZVO0OCicwVC7PA PNLsQEcR7JBjzx888EeXQKqG2MAkplNZH7FECOv9ERws2ht5abXZZzYpqMocHTpQ g9RH2ne/9vnB8x0St8uDoGhX0UOZLKTzScPMb3ei+M1hQ3xh01FYexavCPAZHbqA UhDZRNf5/irBNu7luTSE4hGlkQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:40:41 2026 by rpki-client