$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: xUChG4WWiMen9DBtRRGamait/z/tsbN73QbqJTDFD68= Subject key identifier: 2F:FC:36:65:80:BB:16:B5:68:D9:70:9C:87:CE:80:0A:EF:E2:7B:09 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: CA Signing time: Fri 17 Apr 2026 06:32:57 +0000 Manifest this update: Fri 17 Apr 2026 06:32:57 +0000 Manifest next update: Fri 24 Apr 2026 06:32:57 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: 4o7zf9J8NU8dxU9USskzVNk+YOh/tZJE/eVdhAX83vY=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: mmIU8UeudAKZrTx8s6Nxy2r+SAdWHS9FcLl5he11RrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Apr 17 06:32:57 2026 GMT Not After : Apr 24 06:32:57 2026 GMT Subject: CN=69e1d419-bd08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:7e:45:7d:ab:d3:59:93:2b:00:72:a3:30: bd:c2:28:dd:3e:f0:33:a9:d3:c2:4b:24:53:4d:92: 72:30:7b:04:d0:e4:bd:5d:33:ed:9a:2a:2c:35:ff: 27:18:06:d3:38:e1:73:fe:5d:95:f1:58:22:08:5e: 09:95:e0:8b:21:6c:e4:97:75:ff:ee:c1:4a:15:53: bf:03:fb:3c:95:56:1f:4b:be:9a:ce:cc:97:10:fe: 1e:69:c1:fc:3c:73:bb:f1:dd:45:dc:05:51:54:82: 41:f3:3f:ef:bb:8b:be:79:2a:49:a1:70:55:fa:b2: 71:7d:53:59:de:19:43:e1:15:00:8b:4c:c5:10:9e: 81:3c:3a:a1:51:ee:ed:9b:83:61:1e:e9:78:1e:b1: dd:dd:ef:a3:c5:ad:1e:c2:f3:39:d4:34:9b:34:1e: bb:10:30:3b:0e:bb:4a:ca:db:53:47:1b:a5:b7:82: 68:96:10:2d:30:42:aa:1e:44:29:1c:45:7d:70:99: 7c:7e:cc:7c:a4:c2:c0:c6:d1:1a:e0:92:14:b5:98: 48:4d:8e:43:09:70:cb:51:91:08:da:f0:d1:42:97: c9:fa:e9:59:6b:ef:2f:32:43:69:fc:69:68:54:bc: d8:ed:7d:cf:0c:6c:57:d2:f6:a2:f0:de:76:92:ae: d6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:FC:36:65:80:BB:16:B5:68:D9:70:9C:87:CE:80:0A:EF:E2:7B:09 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:55:28:1a:38:c6:47:05:e3:14:2d:50:9d:56:5c:10:5f:10: 5e:58:f1:a4:5d:72:53:04:72:a2:b9:94:a6:d9:c4:e4:77:67: b9:a7:08:bd:94:b1:28:a9:e2:03:e3:a3:d6:04:7c:64:73:0c: 8c:9b:d5:0b:b9:05:b9:7b:a1:5f:b9:ed:aa:07:41:69:d4:17: 4e:04:83:bf:02:81:a9:fd:22:39:40:ca:93:8c:92:9d:2a:d3: aa:bc:86:15:34:f6:aa:55:b9:4d:9a:e5:44:e1:fb:e2:bf:48: 5d:d6:39:0b:37:fb:c3:97:7e:9d:f7:97:ec:9e:f4:fb:ff:07: f8:be:2a:68:55:10:c3:3d:af:74:66:fa:63:23:63:77:74:06: 6a:fa:f9:a4:b9:1a:5a:59:eb:6b:25:f2:3c:67:02:e9:bd:ad: ac:02:4e:63:1d:da:ef:e4:73:da:13:f6:0f:ee:3c:c6:06:48: 50:76:77:81:c6:66:32:2f:64:c8:45:c4:a7:a5:bb:c5:9e:85: da:35:4d:2c:04:5f:4c:54:ea:ba:74:b4:59:f6:0f:23:9a:67: 16:ab:cf:d5:99:49:6a:38:37:0c:bc:7d:51:e0:e0:4f:ec:e4: 16:97:15:df:d2:4a:78:10:a7:17:35:3b:7b:7e:8e:0a:12:cf: 24:19:bb:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCQjAxMTAvBgNVBAUTKEZFRDg0RTlGRTAxNTlBOTkzN0EyMTkzQTBCN0RCQTIz QjZDMjY1QjgwHhcNMjYwNDE3MDYzMjU3WhcNMjYwNDI0MDYzMjU3WjAYMRYwFAYD VQQDEw02OWUxZDQxOS1iZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOd+RX2r01mTKwByozC9wijdPvAzqdPCSyRTTZJyMHsE0OS9XTPtmiosNf8n GAbTOOFz/l2V8VgiCF4JleCLIWzkl3X/7sFKFVO/A/s8lVYfS76azsyXEP4eacH8 PHO78d1F3AVRVIJB8z/vu4u+eSpJoXBV+rJxfVNZ3hlD4RUAi0zFEJ6BPDqhUe7t m4NhHul4HrHd3e+jxa0ewvM51DSbNB67EDA7DrtKyttTRxult4JolhAtMEKqHkQp HEV9cJl8fsx8pMLAxtEa4JIUtZhITY5DCXDLUZEI2vDRQpfJ+ulZa+8vMkNp/Glo VLzY7X3PDGxX0vai8N52kq7WrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC/8NmWA uxa1aNlwnIfOgArv4nsJMB8GA1UdIwQYMBaAFP7YTp/gFZqZN6IZOgt9uiO2wmW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREJCMC9FNjUzRTUxMjA3 RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1wazNvaGs2QzMyNkk3YkNa YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1piZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REJCMC9FNjUzRTUxMjA3RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1w azNvaGs2QzMyNkk3YkNaYmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC1UoGjjGRwXjFC1QnVZcEF8QXljxpF1yUwRyormUptnE5HdnuacIvZSxKKni A+Oj1gR8ZHMMjJvVC7kFuXuhX7ntqgdBadQXTgSDvwKBqf0iOUDKk4ySnSrTqryG FTT2qlW5TZrlROH74r9IXdY5Czf7w5d+nfeX7J70+/8H+L4qaFUQwz2vdGb6YyNj d3QGavr5pLkaWlnrayXyPGcC6b2trAJOYx3a7+Rz2hP2D+48xgZIUHZ3gcZmMi9k yEXEp6W7xZ6F2jVNLARfTFTqunS0WfYPI5pnFqvP1ZlJajg3DLx9UeDgT+zkFpcV 39JKeBCnFzU7e36OChLPJBm7Xw== -----END CERTIFICATE-----Generated at Fri Apr 17 09:26:16 2026 by rpki-client