$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: Emo4pD3h1dvhc9fIsGL8L4OHQTCImLtWpAsmY9Dl+W0= Subject key identifier: EB:31:3A:5B:FF:CB:90:40:E6:33:7A:53:CA:4E:FE:EA:04:76:E2:D5 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0896 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 0878 Signing time: Thu 16 Apr 2026 20:43:33 +0000 Manifest this update: Thu 16 Apr 2026 20:43:32 +0000 Manifest next update: Thu 23 Apr 2026 20:43:32 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: mGJbZXNBPPZUwgRmU2Um5DWPX1AknbISw5bylXoxbSE=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: 08lz7b6szSEMQO1jrd2yTTyJym47lMNxqFGZhqAfyUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2198 (0x896) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Apr 16 20:43:32 2026 GMT Not After : Apr 23 20:43:32 2026 GMT Subject: CN=69e149f5-b860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:50:e3:63:bb:fe:a6:0a:a8:d6:d8:4e:62:77: 9f:2a:5d:0d:c5:cc:b7:f6:12:ce:6f:ea:1a:00:6a: 8e:cf:66:04:7a:63:c9:dc:c0:b5:6e:73:da:34:52: 87:9c:6c:4b:ea:83:c9:e9:d7:57:b9:f7:1c:21:dc: 4f:7d:32:27:1f:40:58:82:da:93:11:20:e1:81:87: aa:65:93:75:47:38:8f:07:fb:b9:30:74:1f:5d:ce: 8b:6d:a0:27:5c:ca:b5:1d:18:6e:47:18:41:96:e2: f5:39:8d:72:de:40:f1:56:99:f5:67:a0:70:5f:21: 76:f8:4c:b9:ed:3b:08:79:53:ea:21:ef:db:c9:06: 80:8b:e0:a7:77:10:3f:a5:a0:f1:7b:2d:76:fb:5a: 6a:4b:c6:b2:c6:c0:35:5d:d3:1d:7c:a3:fc:fe:cf: 8c:e8:f5:b2:f7:25:26:f8:da:66:9d:4d:47:81:45: 49:c5:30:fc:04:6c:b7:53:9c:ee:46:4a:1d:52:ae: 44:22:86:f3:39:07:a2:72:06:32:0a:6f:d7:1c:dd: 7c:86:cf:4d:b7:d8:86:11:ca:3d:44:4a:20:be:e7: 8d:c9:41:c8:b0:64:94:65:07:ed:6f:d3:7c:e0:64: 3d:08:1f:ef:6e:c0:97:9b:92:60:88:24:4d:d9:23: 2d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:31:3A:5B:FF:CB:90:40:E6:33:7A:53:CA:4E:FE:EA:04:76:E2:D5 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:4a:6d:4b:94:39:f7:5b:a8:0f:68:db:5d:c8:e3:20:87:a6: 7a:37:f6:3c:7b:e6:c5:76:21:61:81:2d:84:05:e4:14:11:56: b2:0e:2c:81:e1:45:bc:e7:b7:4e:63:10:52:8f:b7:3f:02:72: b4:60:0b:e7:d9:e0:55:b1:84:4b:77:b3:55:84:d5:10:b3:b1: 3a:0f:4b:ff:5e:5a:7c:74:03:30:c5:6f:5c:6b:23:8c:75:d8: 00:94:36:8e:ba:92:6b:75:c7:5e:5d:3f:1f:7f:95:1a:3b:c4: 73:52:7e:c3:35:61:a6:dd:4f:07:26:19:d5:dc:7f:b4:a3:2c: bb:a1:37:84:df:8a:c9:15:23:c4:d6:34:99:7d:41:ba:5b:c7: c0:7b:80:e6:2b:6f:dd:55:a6:55:4c:07:31:b5:2e:c0:d7:dd: 33:3d:f2:f1:ea:60:29:b8:e1:32:79:f8:6f:0a:76:a2:8f:19: b8:6e:ca:b7:c1:4e:4d:4d:61:10:7d:67:ac:3a:ac:75:af:3b: 6c:a7:69:9b:41:ff:4c:44:be:7d:c0:86:d8:3c:1f:1e:7d:6b: ed:43:07:8a:aa:31:7f:a4:86:47:a4:fe:a1:38:3f:64:55:e8: 91:ab:a1:c7:47:a8:03:f1:65:d6:e9:fe:27:07:d7:7e:da:32: a8:e7:43:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwNDE2MjA0MzMyWhcNMjYwNDIzMjA0MzMyWjAYMRYwFAYD VQQDEw02OWUxNDlmNS1iODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj1DjY7v+pgqo1thOYnefKl0Nxcy39hLOb+oaAGqOz2YEemPJ3MC1bnPaNFKH nGxL6oPJ6ddXufccIdxPfTInH0BYgtqTESDhgYeqZZN1RziPB/u5MHQfXc6LbaAn XMq1HRhuRxhBluL1OY1y3kDxVpn1Z6BwXyF2+Ey57TsIeVPqIe/byQaAi+CndxA/ paDxey12+1pqS8ayxsA1XdMdfKP8/s+M6PWy9yUm+NpmnU1HgUVJxTD8BGy3U5zu RkodUq5EIobzOQeicgYyCm/XHN18hs9Nt9iGEco9REogvueNyUHIsGSUZQftb9N8 4GQ9CB/vbsCXm5JgiCRN2SMtBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOsxOlv/ y5BA5jN6U8pO/uoEduLVMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ0ptS5Q591uoD2jbXcjjIIemejf2PHvmxXYhYYEthAXkFBFWsg4sgeFFvOe3 TmMQUo+3PwJytGAL59ngVbGES3ezVYTVELOxOg9L/15afHQDMMVvXGsjjHXYAJQ2 jrqSa3XHXl0/H3+VGjvEc1J+wzVhpt1PByYZ1dx/tKMsu6E3hN+KyRUjxNY0mX1B ulvHwHuA5itv3VWmVUwHMbUuwNfdMz3y8epgKbjhMnn4bwp2oo8ZuG7Kt8FOTU1h EH1nrDqsda87bKdpm0H/TES+fcCG2DwfHn1r7UMHiqoxf6SGR6T+oTg/ZFXokauh x0eoA/Fl1un+JwfXftoyqOdDJA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:40:02 2026 by rpki-client