$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: CRGirTsu2uicVzwxIobJ686ELaZ1qtkQniB/qppyINs= Subject key identifier: 6C:D6:60:C4:BE:AE:39:17:94:50:C4:E2:33:6B:08:7A:42:67:9E:B3 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 1065 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 1028 Signing time: Sat 18 Apr 2026 17:20:41 +0000 Manifest this update: Sat 18 Apr 2026 17:20:41 +0000 Manifest next update: Sat 25 Apr 2026 17:20:41 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: J8PcBfBzaltlK9XKfG9e0jSxVU8ExgiHM2Ik35H8UJ8=) 2: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: JScxZgQ7KHa2YwnDATSzd+qyDGdda+UIVKkiOWFhtkE=) 3: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: iazb4pmo2Q4EahE0KZo433djiT5R4KAgrFuLP/vvuqE=) 4: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: pi9NZFpg2W35Xj028DFUf+bBTXg7p56S2YuHU9tcYNM=) 5: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: r2MdZppnN10Iz6ZoKzDOm3Ycw6FnJTulCC5wJr2SXjs=) 6: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: vZn4a83LgoBkLAitNmLPLEgXCeUoidc71kLwF4uh0Ss=) 7: B490CD0621C911EB991D562EC4F9AE02.roa (hash: rBg1NOWyi7cxpOlSxmQbpoGz0c8wacC//ksLpStwuPw=) 8: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 80Ux/s/8WUCan4xcWTLCy1IlA/aIHlyIXja+HwSVmTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4197 (0x1065) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Apr 18 17:20:41 2026 GMT Not After : Apr 25 17:20:41 2026 GMT Subject: CN=69e3bd69-61b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:01:22:d3:14:7e:ca:e4:06:51:0e:80:de:75: f7:4d:42:e4:78:2b:59:b0:09:fe:53:b5:aa:1e:63: be:e6:7a:a2:dd:48:45:4b:1d:a4:4d:a5:46:01:9b: 60:90:4e:31:af:73:71:c2:82:a6:fe:43:5b:1b:a6: cf:41:01:f1:33:a4:c9:a6:32:ba:c6:4a:64:c2:b7: 5e:72:a3:6a:94:eb:df:1e:a9:22:ec:ae:9a:4a:ca: e5:b6:e0:82:11:19:df:73:05:25:b5:0e:81:17:ef: 4d:ef:4d:d0:82:f8:ca:41:ba:ac:3c:79:f0:d1:2d: dd:39:eb:a7:f4:a0:ca:8f:49:e5:4d:3f:12:21:3c: 5d:a1:3b:3d:38:4d:92:f1:e4:9d:d6:75:69:d7:78: c2:fd:d9:15:a5:c0:14:d8:a1:58:8a:53:0e:e1:42: fa:2f:e1:7f:2d:08:30:b4:61:39:61:b2:de:96:c3: 79:30:62:00:3a:7e:c8:33:db:de:f2:48:3a:fa:cf: 22:ce:53:27:a6:19:4b:3a:ab:d8:b3:c6:2e:3e:ba: fc:17:f6:9b:bf:88:8b:61:6d:23:d8:95:e4:ed:3d: 82:18:1f:ac:96:bd:25:bd:f6:50:31:d8:9e:51:6c: 47:e8:35:54:02:76:70:a0:43:8d:05:2a:f7:a0:52: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D6:60:C4:BE:AE:39:17:94:50:C4:E2:33:6B:08:7A:42:67:9E:B3 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:40:8a:6f:9e:d2:d8:0d:66:45:00:71:f2:31:38:b4:8b:84: ac:d0:f4:19:81:2b:9b:44:80:90:63:03:a3:be:47:03:0c:df: 04:5b:bd:f0:8f:d3:eb:af:e1:41:0a:af:1d:d3:a4:d1:f7:20: dc:e4:7a:2c:cb:26:68:8e:b6:37:75:94:aa:65:4e:6c:64:a4: 07:b5:af:26:ee:6f:41:28:cc:b9:7d:17:ad:6a:ae:5a:81:eb: 36:b9:c5:ff:d3:ab:02:88:32:26:91:ad:26:ae:94:6a:3c:77: 06:54:5d:69:64:03:16:87:31:c2:10:b5:02:ac:71:7d:f4:e4: 9d:69:df:2e:e1:04:58:8c:1a:d1:38:85:0e:be:e6:cc:11:11: 2e:e9:af:95:51:53:cb:eb:55:b8:54:6c:f6:19:92:c2:2e:e9: 62:4f:a5:e4:92:0d:79:eb:03:a3:e2:85:68:3f:d2:28:b6:28: 79:c2:12:00:70:f9:85:f6:6c:94:bd:9a:50:d4:58:3a:ca:17: ff:54:42:89:51:59:7d:f6:90:92:39:7c:c0:2a:7a:ba:ae:21: e5:61:09:71:d1:27:77:85:0a:96:86:54:cf:a4:bc:69:e6:02: f5:53:5b:c5:ca:cd:07:5e:a3:68:9d:de:22:b5:e1:fb:bf:5e: 4c:65:f5:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjYwNDE4MTcyMDQxWhcNMjYwNDI1MTcyMDQxWjAYMRYwFAYD VQQDEw02OWUzYmQ2OS02MWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQEi0xR+yuQGUQ6A3nX3TULkeCtZsAn+U7WqHmO+5nqi3UhFSx2kTaVGAZtg kE4xr3NxwoKm/kNbG6bPQQHxM6TJpjK6xkpkwrdecqNqlOvfHqki7K6aSsrltuCC ERnfcwUltQ6BF+9N703QgvjKQbqsPHnw0S3dOeun9KDKj0nlTT8SITxdoTs9OE2S 8eSd1nVp13jC/dkVpcAU2KFYilMO4UL6L+F/LQgwtGE5YbLelsN5MGIAOn7IM9ve 8kg6+s8izlMnphlLOqvYs8YuPrr8F/abv4iLYW0j2JXk7T2CGB+slr0lvfZQMdie UWxH6DVUAnZwoEONBSr3oFLJfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGzWYMS+ rjkXlFDE4jNrCHpCZ56zMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkECKb57S2A1mRQBx8jE4tIuErND0GYErm0SAkGMDo75HAwzfBFu98I/T66/h QQqvHdOk0fcg3OR6LMsmaI62N3WUqmVObGSkB7WvJu5vQSjMuX0XrWquWoHrNrnF /9OrAogyJpGtJq6Uajx3BlRdaWQDFocxwhC1AqxxffTknWnfLuEEWIwa0TiFDr7m zBERLumvlVFTy+tVuFRs9hmSwi7pYk+l5JINeesDo+KFaD/SKLYoecISAHD5hfZs lL2aUNRYOsoX/1RCiVFZffaQkjl8wCp6uq4h5WEJcdEnd4UKloZUz6S8aeYC9VNb xcrNB16jaJ3eIrXh+79eTGX1jA== -----END CERTIFICATE-----Generated at Sun Apr 19 09:28:42 2026 by rpki-client