$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: d6osfR/L1qwPhSuZk0CQIUmY0cv6G5e/iJ7uIcRDlkY= Subject key identifier: D4:63:8F:56:9A:2D:D2:53:0C:46:88:82:69:26:1C:62:A4:D5:C9:5E Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0D09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0CF6 Signing time: Thu 16 Apr 2026 18:13:27 +0000 Manifest this update: Thu 16 Apr 2026 18:13:27 +0000 Manifest next update: Thu 23 Apr 2026 18:13:27 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: yIzHL2wf26aHsItl0q3W4gJRJf0xeOdwuvYuRLyRzhc=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: VuO6oFmdrg28zC8aljPGAA2mZqdTmBMcrxACwaZ0phY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Apr 16 18:13:27 2026 GMT Not After : Apr 23 18:13:27 2026 GMT Subject: CN=69e126c7-a7d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:62:61:9a:2a:b2:da:57:ef:86:b1:a9:15:4a: 53:f2:9f:f9:14:d4:9e:9a:a0:1b:48:30:60:ab:53: 7b:19:36:dd:ff:58:40:74:0a:45:8d:4d:13:82:b8: 14:a3:91:5e:a9:bc:de:74:30:59:ee:0b:eb:90:03: e4:cc:7c:33:1d:a7:13:ab:d0:bf:29:1e:58:dc:e5: 14:46:54:5e:85:92:bd:21:fa:dc:ed:f0:93:ee:21: 51:41:4f:fe:fb:22:9b:ac:00:de:6a:ba:e9:3d:b9: 2d:18:d4:f6:c8:d7:d9:1f:5d:bc:82:77:c7:1d:34: b9:cc:f4:0f:02:ae:aa:93:31:64:cd:3e:4d:8c:c5: 78:11:b8:72:dc:37:22:ec:08:eb:52:08:db:90:8c: 04:50:83:b8:bd:5a:aa:8c:34:28:76:21:f1:d3:53: 72:50:a6:d3:84:ae:3b:2d:1a:3c:ca:95:12:42:d0: e5:60:0f:1c:7a:3b:1b:44:e7:1d:36:5f:65:f7:95: b2:65:55:1d:86:76:b5:09:aa:ed:27:9c:e6:a0:ce: fd:15:07:39:aa:86:c8:1d:3d:85:85:60:3f:91:ba: 4b:73:33:5e:e6:ba:e4:07:34:04:ca:35:13:fc:d2: 37:de:c4:0e:fb:f3:60:ea:b2:4b:09:36:d3:5b:44: 40:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:63:8F:56:9A:2D:D2:53:0C:46:88:82:69:26:1C:62:A4:D5:C9:5E X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:0c:75:51:27:8e:72:aa:71:fc:97:ed:28:6f:9e:dd:ec:1a: d4:d3:92:0c:50:09:14:15:9a:19:14:56:b8:39:bf:0f:22:24: e3:16:dd:e7:4c:2a:f6:91:70:c0:2c:51:d3:cf:d7:b6:31:97: c2:72:45:9f:eb:9e:0d:45:2b:5e:c6:f5:36:09:ca:fd:04:83: 72:33:52:33:ec:ae:1c:b8:ca:38:68:a2:37:27:87:9f:e1:74: ef:0f:2f:6a:08:75:a3:e7:1d:0b:e5:26:a6:5e:69:2d:61:e3: 1b:9d:e3:b5:d5:1f:0b:21:22:1a:15:27:00:f3:7f:2f:f1:c4: d4:17:32:e9:5a:2e:1c:c4:b8:48:e1:93:14:0f:30:07:42:74: f1:dd:38:d1:0c:9e:20:80:33:8e:04:43:ce:8c:96:e3:6e:4d: d9:d7:ef:af:be:9f:fb:1f:2b:5a:bf:16:2a:fb:8c:ca:06:0d: 94:47:13:6b:26:66:31:2c:b7:ee:51:ea:6b:bf:2a:4e:86:a9: 84:29:7c:ad:55:d5:33:49:8d:4f:cd:d3:fb:56:b9:d0:79:b6: 34:7c:28:8a:35:1b:6f:96:8b:71:bd:f2:f3:42:2a:e3:be:6c: 78:e9:3f:34:05:fc:e3:30:18:f9:a6:bf:ed:ca:ff:dd:82:aa: de:1b:8e:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjYwNDE2MTgxMzI3WhcNMjYwNDIzMTgxMzI3WjAYMRYwFAYD VQQDEw02OWUxMjZjNy1hN2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmJhmiqy2lfvhrGpFUpT8p/5FNSemqAbSDBgq1N7GTbd/1hAdApFjU0TgrgU o5FeqbzedDBZ7gvrkAPkzHwzHacTq9C/KR5Y3OUURlRehZK9Ifrc7fCT7iFRQU/+ +yKbrADearrpPbktGNT2yNfZH128gnfHHTS5zPQPAq6qkzFkzT5NjMV4Ebhy3Dci 7AjrUgjbkIwEUIO4vVqqjDQodiHx01NyUKbThK47LRo8ypUSQtDlYA8cejsbROcd Nl9l95WyZVUdhna1CartJ5zmoM79FQc5qobIHT2FhWA/kbpLczNe5rrkBzQEyjUT /NI33sQO+/Ng6rJLCTbTW0RAXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNRjj1aa LdJTDEaIgmkmHGKk1cleMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAggx1USeOcqpx/JftKG+e3ewa1NOSDFAJFBWaGRRWuDm/DyIk4xbd50wq9pFw wCxR08/XtjGXwnJFn+ueDUUrXsb1NgnK/QSDcjNSM+yuHLjKOGiiNyeHn+F07w8v agh1o+cdC+Umpl5pLWHjG53jtdUfCyEiGhUnAPN/L/HE1Bcy6VouHMS4SOGTFA8w B0J08d040QyeIIAzjgRDzoyW425N2dfvr76f+x8rWr8WKvuMygYNlEcTayZmMSy3 7lHqa78qToaphCl8rVXVM0mNT83T+1a50Hm2NHwoijUbb5aLcb3y80Iq475seOk/ NAX84zAY+aa/7cr/3YKq3huOiQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:28:40 2026 by rpki-client