$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: yEyXFD3/lxm1aKCgeNIkE482Eai4O/17wcvcyJPaqbI= Subject key identifier: 26:15:14:AD:73:E4:8F:21:D4:7F:50:2D:13:0E:6B:A1:FD:81:F8:B6 Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2AB4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2AA7 Signing time: Thu 16 Apr 2026 14:23:39 +0000 Manifest this update: Thu 16 Apr 2026 14:23:38 +0000 Manifest next update: Thu 23 Apr 2026 14:23:38 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: ZE+d04aXV9yZ9HLGLYzHwZtYKeM7YxQWG0okp+y3FUs=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: qeOImN/OPXFrmVSnTa/uFkjmKzAD8SUjcGoXbzqtLu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10932 (0x2ab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Apr 16 14:23:38 2026 GMT Not After : Apr 23 14:23:38 2026 GMT Subject: CN=69e0f0ea-dc99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6f:15:60:6c:0a:23:6f:30:43:53:6e:1c:7c: b6:c9:7c:4a:dc:a8:78:fa:77:43:bb:11:80:76:c7: 78:8c:c3:c6:d1:9e:6d:6d:be:e0:65:c8:55:d7:47: 2b:1b:83:cd:8c:05:cc:e8:ad:67:ad:f6:16:ce:9c: 23:25:32:0e:25:08:de:2f:19:29:cc:d7:c8:3a:dc: c5:45:47:b0:2d:17:f1:47:e6:95:66:25:da:35:0f: a6:29:c0:0e:60:9f:a6:f5:3b:81:46:ef:df:e9:88: f2:54:41:d4:05:e1:47:7d:67:06:99:3c:9e:27:d4: 6c:48:56:7b:dc:7b:f8:fc:c0:6a:79:39:76:a2:5b: ed:78:29:b6:be:21:90:a2:71:6f:59:7a:01:59:10: 3c:cd:76:93:d6:85:85:cf:b3:4f:0b:c9:11:00:15: d0:33:7b:11:56:97:49:f0:a2:a1:3b:c9:dc:b9:48: 01:d4:ca:5f:37:c3:df:96:df:b1:47:26:b8:8b:c7: 20:1d:92:f0:f5:04:38:1f:14:01:30:3b:37:b1:26: bf:cf:b3:5e:2c:25:bd:e4:bb:7a:b2:20:02:5c:f7: eb:4a:ea:d6:a1:86:ae:2c:f8:e9:61:04:30:e2:92: 06:64:e1:9f:d6:92:7b:b6:27:cd:03:b0:8f:d1:d9: 6c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:15:14:AD:73:E4:8F:21:D4:7F:50:2D:13:0E:6B:A1:FD:81:F8:B6 X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a6:1f:3d:7d:e3:1d:28:dc:14:18:50:ad:54:2e:8d:43:8d: f3:3b:ca:2b:f2:34:df:02:d9:26:5f:c0:40:aa:ea:3f:aa:76: fe:72:98:f6:a3:8f:fe:f5:95:a8:2b:85:e6:f5:e7:d7:f5:be: c4:cd:bd:00:ef:54:a1:f6:ae:e8:f4:87:2d:36:b7:73:6f:a1: 5f:85:d6:39:20:c2:3d:ce:68:cc:9a:2a:68:d2:18:56:40:77: fd:03:39:4d:1b:e3:fa:ec:6a:25:eb:12:a6:c6:b9:f1:a1:b7: 08:b7:ca:ce:ee:0e:31:ef:38:41:14:0a:75:73:72:e7:92:35: 51:4a:8c:01:93:aa:36:f3:05:5f:5f:f3:6b:d8:c2:e5:6f:f2: 20:07:66:6a:a4:90:37:a9:a8:bb:b0:9b:66:05:c3:7d:52:5c: 15:42:37:ae:87:f6:e5:ac:e9:ef:be:79:7e:bc:51:07:99:34: 61:60:57:58:9e:6f:32:52:c8:86:22:d6:c8:87:21:00:dd:43: 15:5d:b4:39:db:c9:fc:14:f1:22:eb:ea:fa:8c:b2:6a:83:61: 14:80:19:b3:30:1f:22:96:9e:fd:7d:9c:75:00:6d:ee:b8:67: 6a:f8:e1:c3:a4:3f:6f:ab:65:8e:db:a6:e0:f3:db:34:b7:f5: 96:2d:fc:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjYwNDE2MTQyMzM4WhcNMjYwNDIzMTQyMzM4WjAYMRYwFAYD VQQDEw02OWUwZjBlYS1kYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtm8VYGwKI28wQ1NuHHy2yXxK3Kh4+ndDuxGAdsd4jMPG0Z5tbb7gZchV10cr G4PNjAXM6K1nrfYWzpwjJTIOJQjeLxkpzNfIOtzFRUewLRfxR+aVZiXaNQ+mKcAO YJ+m9TuBRu/f6YjyVEHUBeFHfWcGmTyeJ9RsSFZ73Hv4/MBqeTl2olvteCm2viGQ onFvWXoBWRA8zXaT1oWFz7NPC8kRABXQM3sRVpdJ8KKhO8ncuUgB1MpfN8Pflt+x Rya4i8cgHZLw9QQ4HxQBMDs3sSa/z7NeLCW95Lt6siACXPfrSurWoYauLPjpYQQw 4pIGZOGf1pJ7tifNA7CP0dlsjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCYVFK1z 5I8h1H9QLRMOa6H9gfi2MB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS6YfPX3jHSjcFBhQrVQujUON8zvKK/I03wLZJl/AQKrqP6p2/nKY9qOP/vWV qCuF5vXn1/W+xM29AO9Uofau6PSHLTa3c2+hX4XWOSDCPc5ozJoqaNIYVkB3/QM5 TRvj+uxqJesSpsa58aG3CLfKzu4OMe84QRQKdXNy55I1UUqMAZOqNvMFX1/za9jC 5W/yIAdmaqSQN6mou7CbZgXDfVJcFUI3rof25azp7755frxRB5k0YWBXWJ5vMlLI hiLWyIchAN1DFV20OdvJ/BTxIuvq+oyyaoNhFIAZszAfIpae/X2cdQBt7rhnavjh w6Q/b6tljtum4PPbNLf1li38zQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:03:17 2026 by rpki-client