$ rpki-client -vvf rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft File: aecBsfM0KSOA56u5AcNCYzLGqlo.mft (raw, json) Hash identifier: ubdq87cdIGfCksAFw8PvzIF1sd9HWbdUB9UygFEOL5A= Subject key identifier: 97:D3:4A:39:48:DD:EF:59:8A:53:FE:94:C1:3B:14:AE:C6:22:09:54 Authority key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A Certificate issuer: /CN=A91F44EA/serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Certificate serial: 167A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft Manifest number: 1668 Signing time: Thu 16 Apr 2026 16:39:08 +0000 Manifest this update: Thu 16 Apr 2026 16:39:07 +0000 Manifest next update: Thu 23 Apr 2026 16:39:07 +0000 Files and hashes: 1: aecBsfM0KSOA56u5AcNCYzLGqlo.crl (hash: ceH00Lwtm37VpTaLfZe692MAZ/juMry6v03LyF8vgs4=) 2: F6CE4EEC56F911E997D5B40AC4F9AE02.roa (hash: KmhukKmF5EOvpy7I16yjXo0PVUDB0PQfpBY9iUTxeeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5754 (0x167a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F44EA, serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Validity Not Before: Apr 16 16:39:07 2026 GMT Not After : Apr 23 16:39:07 2026 GMT Subject: CN=69e110ac-ca50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:71:7f:e4:65:19:e1:1d:2c:ce:1f:f6:31:44: 4f:83:9d:42:23:d6:0a:ad:25:02:eb:9f:47:e7:18: a4:8e:65:45:2e:84:3a:04:84:39:1e:33:11:7b:a1: 91:76:2d:4a:c9:3f:e2:3f:d3:75:7b:60:3e:4f:2e: 6e:8b:9e:31:38:05:5c:15:6c:c4:25:92:c1:f1:9d: ac:4a:5d:db:bc:52:f8:a9:58:5c:38:48:66:1e:a6: 6c:5f:4c:5c:a0:4b:64:60:35:2f:a0:da:32:04:a0: 3a:bc:e1:a0:fc:ab:61:1c:42:66:5d:70:14:02:32: 19:a6:4c:bb:10:38:d7:de:91:25:1d:a9:50:a8:84: f3:00:bd:b3:bd:79:ea:8c:23:3c:18:52:63:af:67: 79:74:7a:5e:38:65:ec:36:3e:0b:d3:7d:17:b8:54: f1:ed:b8:46:93:43:4c:14:cc:0b:a7:04:18:45:bd: 92:9b:39:1e:54:fe:70:bf:fc:4a:55:c3:d0:66:3e: dd:07:ca:95:7c:14:a0:fa:f6:f1:9f:4e:57:b1:91: 7d:30:53:62:2c:98:29:5c:64:90:24:ae:b3:27:92: 78:90:8d:1e:65:c0:58:31:0d:75:ec:51:fe:8c:ac: 19:47:1f:03:3b:bb:e9:d8:fe:82:0f:d3:37:52:4e: 25:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D3:4A:39:48:DD:EF:59:8A:53:FE:94:C1:3B:14:AE:C6:22:09:54 X509v3 Authority Key Identifier: keyid:69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:96:c5:11:e8:06:6f:09:6d:6d:52:29:fe:27:c3:2a:eb:4b: 36:e1:12:f1:1e:eb:12:8d:0b:bf:26:69:4c:12:8d:7c:9d:48: c3:f4:0c:8f:18:ba:c7:7f:1a:ba:cd:de:48:8c:b9:09:91:d7: e8:28:9c:ae:05:45:0c:25:de:a4:c1:c7:1a:66:34:da:13:a9: f9:1d:6d:e4:d6:ce:4f:ef:69:88:a9:c1:9f:fb:a8:e2:56:e3: 40:d0:0e:ed:8b:4e:3f:b8:5f:30:62:92:e8:64:c7:d2:a3:7c: 9f:4d:f3:cb:a9:30:66:8d:81:41:e2:a3:5b:d8:34:7a:99:e8: 3d:cc:59:f4:64:df:fe:d6:eb:8c:a9:29:78:4a:7a:64:c0:65: 6b:89:9e:48:87:79:6b:01:ff:e1:e6:d9:a7:4f:b5:91:d0:77: 9e:60:bd:3d:5d:f5:ad:94:8a:ce:ca:01:bd:e5:f2:67:07:51: 29:45:9d:be:b1:3d:07:65:fa:b2:1f:4e:8b:d0:a3:57:a6:b8: 72:e1:ff:42:b7:f1:0f:31:45:38:a2:0c:43:52:49:fd:b3:63: b1:95:4c:c7:3c:88:73:ee:8a:48:0e:8d:7d:63:25:08:c6:6f: 63:4a:b8:e7:b0:77:21:2a:86:52:57:50:69:ae:0f:d6:88:d5: 9b:5a:2f:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ0RUExMTAvBgNVBAUTKDY5RTcwMUIxRjMzNDI5MjM4MEU3QUJCOTAxQzM0MjYz MzJDNkFBNUEwHhcNMjYwNDE2MTYzOTA3WhcNMjYwNDIzMTYzOTA3WjAYMRYwFAYD VQQDEw02OWUxMTBhYy1jYTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHF/5GUZ4R0szh/2MURPg51CI9YKrSUC659H5xikjmVFLoQ6BIQ5HjMRe6GR di1KyT/iP9N1e2A+Ty5ui54xOAVcFWzEJZLB8Z2sSl3bvFL4qVhcOEhmHqZsX0xc oEtkYDUvoNoyBKA6vOGg/KthHEJmXXAUAjIZpky7EDjX3pElHalQqITzAL2zvXnq jCM8GFJjr2d5dHpeOGXsNj4L030XuFTx7bhGk0NMFMwLpwQYRb2SmzkeVP5wv/xK VcPQZj7dB8qVfBSg+vbxn05XsZF9MFNiLJgpXGSQJK6zJ5J4kI0eZcBYMQ117FH+ jKwZRx8DO7vp2P6CD9M3Uk4l0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJfTSjlI 3e9ZilP+lME7FK7GIglUMB8GA1UdIwQYMBaAFGnnAbHzNCkjgOeruQHDQmMyxqpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDRFQS82ODkwMzM5NjJC NDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtTT0E1NnU1QWNOQ1l6TEdx bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlY0JzZk0wS1NPQTU2dTVBY05DWXpMR3Fsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDRFQS82ODkwMzM5NjJCNDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtT T0E1NnU1QWNOQ1l6TEdxbG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJJbFEegGbwltbVIp/ifDKutLNuES8R7rEo0LvyZpTBKNfJ1Iw/QMjxi6x38a us3eSIy5CZHX6CicrgVFDCXepMHHGmY02hOp+R1t5NbOT+9piKnBn/uo4lbjQNAO 7YtOP7hfMGKS6GTH0qN8n03zy6kwZo2BQeKjW9g0epnoPcxZ9GTf/tbrjKkpeEp6 ZMBla4meSId5awH/4ebZp0+1kdB3nmC9PV31rZSKzsoBveXyZwdRKUWdvrE9B2X6 sh9Oi9CjV6a4cuH/QrfxDzFFOKIMQ1JJ/bNjsZVMxzyIc+6KSA6NfWMlCMZvY0q4 57B3ISqGUldQaa4P1ojVm1ov8Q== -----END CERTIFICATE-----Generated at Fri Apr 17 20:18:49 2026 by rpki-client