$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft File: ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json) Hash identifier: cjUQSTIese8HRPUWFKTCQ35qRIkjWFytkKEb6/KWvpI= Subject key identifier: 4B:DF:78:66:AD:1B:5C:3E:54:85:E2:41:C3:01:53:3D:F7:12:02:C6 Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Certificate serial: 1CE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft Manifest number: 1CCB Signing time: Thu 16 Apr 2026 16:06:47 +0000 Manifest this update: Thu 16 Apr 2026 16:06:47 +0000 Manifest next update: Thu 23 Apr 2026 16:06:47 +0000 Files and hashes: 1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: GxCoVvUlPv6qXLcMptVfRgmcaMRqbTp7emSVSccGQiY=) 2: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: cZ+rsKEwY27r1nNBdSw0EFhAO0NUVYDXLIIfTM0BpuM=) 3: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: yeTkxTdBgNi4XQcUnG+Z1pVZk+XziWDEhTeQDqhiWOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7400 (0x1ce8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FE2, serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Validity Not Before: Apr 16 16:06:47 2026 GMT Not After : Apr 23 16:06:47 2026 GMT Subject: CN=69e10917-4416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1a:35:ff:65:2f:99:ab:08:9d:0a:f5:3d:ce: d6:0b:7a:19:91:8b:c5:ec:14:7c:57:df:f8:b5:64: d3:42:0c:c6:83:d8:29:9a:27:63:19:fa:20:fb:c4: ee:d9:6b:7b:19:56:50:ae:55:7d:a1:dd:69:7b:ad: 21:d4:d5:80:1b:1e:51:66:fd:7c:72:4f:80:e7:3b: d5:80:9b:e7:c7:54:30:8b:d8:41:b3:e7:1d:50:8b: ab:8a:02:5e:c7:15:52:ab:f4:36:6c:da:ba:d7:54: 5b:7b:68:c1:d8:50:b9:fa:31:97:84:fe:96:94:35: cd:2c:a3:48:10:3d:4d:c1:da:4c:43:b5:b1:9a:82: 4a:64:8f:89:1e:c4:1f:34:c0:c8:0f:e2:8c:ee:c7: 82:b2:42:52:d6:9d:e7:74:83:e0:01:1e:68:73:55: 8a:f3:46:e0:2d:4f:f6:20:0a:db:0b:0a:0a:57:e5: 6e:af:a6:58:b3:d4:8f:7f:2b:f2:65:c6:3a:f6:c3: fa:55:55:be:07:7d:33:f0:36:38:68:c6:17:e0:21: 8c:91:c5:cf:8c:17:ba:88:0f:b8:6c:41:51:b6:e9: 2c:6d:2f:17:97:c6:a7:59:bf:2e:ab:ec:b9:67:25: cb:08:6e:1f:bb:0f:e4:37:cc:8f:cc:94:63:1d:16: c2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:DF:78:66:AD:1B:5C:3E:54:85:E2:41:C3:01:53:3D:F7:12:02:C6 X509v3 Authority Key Identifier: keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f1:61:37:04:e0:b4:26:eb:c7:69:cb:ac:86:2c:8e:90:8e: 8f:df:e5:69:77:48:c3:d0:dd:2e:8c:b7:d5:93:98:9f:7a:50: 50:df:27:e6:10:9f:3e:5f:31:6e:28:40:d0:c6:e2:9b:8f:b6: 7c:50:de:f8:11:ab:89:f9:6c:5a:5f:5d:53:e7:25:03:d6:1d: 60:e8:bb:d2:c2:56:f1:5c:de:7f:88:63:68:c2:7d:5d:ed:14: 46:d6:e4:f9:dd:70:ae:40:02:72:f2:f2:1c:52:d7:b5:f3:09: fa:79:05:4a:c1:b4:39:ab:2e:dd:ce:5c:eb:b1:e9:5f:46:b6: 8c:08:d6:68:b8:1d:27:67:3b:ef:ca:95:18:67:94:54:98:bf: b1:39:c9:ff:c4:c5:af:ec:6c:7d:0e:f8:9f:4c:af:05:31:d8: f0:32:66:14:f8:8d:73:95:19:d0:8f:db:1b:2c:3e:e2:00:3c: d9:e4:b3:5e:01:0d:8a:61:04:0f:b1:1f:c4:68:90:ff:30:da: 15:19:2c:97:38:9e:cd:9a:25:49:00:ee:ba:6b:97:d9:45:e8: 71:3b:a0:7b:5f:21:1d:ca:f5:b8:d0:29:6d:2b:d0:01:43:be: a9:09:f1:ce:b8:54:70:f9:60:51:97:20:07:3a:5e:1d:2b:cc: 78:64:7c:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0 ODIyNjBFRDgwHhcNMjYwNDE2MTYwNjQ3WhcNMjYwNDIzMTYwNjQ3WjAYMRYwFAYD VQQDEw02OWUxMDkxNy00NDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ho1/2UvmasInQr1Pc7WC3oZkYvF7BR8V9/4tWTTQgzGg9gpmidjGfog+8Tu 2Wt7GVZQrlV9od1pe60h1NWAGx5RZv18ck+A5zvVgJvnx1Qwi9hBs+cdUIurigJe xxVSq/Q2bNq611Rbe2jB2FC5+jGXhP6WlDXNLKNIED1NwdpMQ7WxmoJKZI+JHsQf NMDID+KM7seCskJS1p3ndIPgAR5oc1WK80bgLU/2IArbCwoKV+Vur6ZYs9SPfyvy ZcY69sP6VVW+B30z8DY4aMYX4CGMkcXPjBe6iA+4bEFRtuksbS8Xl8anWb8uq+y5 ZyXLCG4fuw/kN8yPzJRjHRbC0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEvfeGat G1w+VIXiQcMBUz33EgLGMB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4 MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZFMi8yRkY5QkIyMkU4MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dE RDN3ZVdRekJxb3RJSW1EdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS/FhNwTgtCbrx2nLrIYsjpCOj9/laXdIw9DdLoy31ZOYn3pQUN8n5hCfPl8x bihA0Mbim4+2fFDe+BGriflsWl9dU+clA9YdYOi70sJW8Vzef4hjaMJ9Xe0URtbk +d1wrkACcvLyHFLXtfMJ+nkFSsG0Oasu3c5c67HpX0a2jAjWaLgdJ2c778qVGGeU VJi/sTnJ/8TFr+xsfQ74n0yvBTHY8DJmFPiNc5UZ0I/bGyw+4gA82eSzXgENimEE D7EfxGiQ/zDaFRkslziezZolSQDuumuX2UXocTuge18hHcr1uNApbSvQAUO+qQnx zrhUcPlgUZcgBzpeHSvMeGR8Yg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:12:19 2026 by rpki-client