$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft File: jM5ORhldFXBPtWKTLgq2Kg65iiY.mft (raw, json) Hash identifier: BWJqfQ/LTyZPH5c7uVuGVZ8e1ksNTto7Zsqkc2koY+0= Subject key identifier: BA:E3:13:26:1B:60:B5:AD:8D:02:2B:23:B6:99:78:11:D9:A6:5A:74 Authority key identifier: 8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 Certificate issuer: /CN=A91F7334/serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft Manifest number: 04AB Signing time: Thu 16 Apr 2026 23:50:28 +0000 Manifest this update: Thu 16 Apr 2026 23:50:28 +0000 Manifest next update: Thu 23 Apr 2026 23:50:28 +0000 Files and hashes: 1: jM5ORhldFXBPtWKTLgq2Kg65iiY.crl (hash: 1I8AyQLKWzVrr6d1toYh6wFLC3A28tK4k9lwHipKTN4=) 2: 96F24818744F11ECBFE4A57DC4F9AE02.roa (hash: niq2x+TSIaVr2M9Yq4uJinm2FfqqQeskl0ZKo8P7pbQ=) 3: 0B7C7B7C751311ECA43F7D3BC4F9AE02.roa (hash: BviysmdqRD5SHQtytVhZ+gVShXWPkwicoPT5mAKuO60=) 4: 8B8B954E6C9011ED9AAF427AC4F9AE02.roa (hash: jt8czHkqDAiIWpmhFez0BMJFRbxnxmNlnLH67Wuq05Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7334, serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Validity Not Before: Apr 16 23:50:28 2026 GMT Not After : Apr 23 23:50:28 2026 GMT Subject: CN=69e175c4-cd67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e7:88:1d:2e:39:ce:cb:b9:08:b0:ce:c1:01: 42:aa:27:c4:ce:69:8b:b3:bb:3a:e1:e1:60:2b:95: 25:6e:f2:61:23:98:c8:32:de:1b:d4:e7:52:17:cb: ad:8c:ab:69:e7:0a:6d:9d:0f:04:f0:ba:80:b8:df: d0:01:ff:34:63:b8:a9:6b:3d:c0:1f:e6:10:47:cb: f8:ec:33:c7:ce:a1:48:d1:3c:2c:6c:f8:9d:5d:b0: 44:51:b6:17:d5:c3:41:07:e9:a0:c3:29:ca:7f:a3: ea:52:1d:e2:21:82:2c:cb:89:78:e5:6a:23:aa:af: 48:98:ba:57:15:79:2f:05:0d:3f:51:0f:fb:bb:e4: ba:d7:c2:c2:9e:f5:65:70:fd:ca:7a:94:e2:c5:ab: 63:60:14:9f:40:0f:2e:2c:d5:20:57:8c:c1:3e:07: ae:d7:bb:64:54:c7:e9:ad:6a:ca:9a:6d:11:bb:eb: d5:58:b7:b0:2f:6a:e8:1b:2c:29:24:e0:fb:4c:40: b4:c9:c9:2c:07:c3:c0:0f:1f:9f:95:28:c9:3e:68: ff:5f:67:21:bb:d3:73:f4:fa:6b:b7:73:71:1e:81: 12:c9:ca:53:6c:b7:b9:0b:e1:02:f0:43:93:d1:f5: 29:ef:33:73:4e:1d:1f:0d:4c:80:1a:ae:13:01:26: d1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E3:13:26:1B:60:B5:AD:8D:02:2B:23:B6:99:78:11:D9:A6:5A:74 X509v3 Authority Key Identifier: keyid:8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:66:db:eb:87:e9:bf:79:ff:d2:f9:d6:5e:3e:ee:78:72:d3: 56:13:1f:54:ec:94:a3:61:4d:ef:c5:e3:d8:02:f3:59:89:dc: 1e:09:f0:bc:32:d0:29:0c:88:5f:6c:f5:d9:57:84:a8:05:f8: ea:5f:05:b8:9c:12:1b:bf:59:28:54:ce:09:1e:2e:a4:8a:6c: 3b:f9:73:e7:1a:16:43:cc:8a:66:47:24:b7:4e:36:74:d5:5f: de:3e:8f:68:66:ab:87:a6:7e:7c:f5:5e:2b:39:59:97:4c:23: e9:82:79:83:e0:53:8c:6c:a7:d5:b1:e2:21:6c:da:c1:37:3f: 44:4a:06:59:db:0c:f5:f5:13:5d:a1:bd:1f:a6:dd:88:c1:64: 8b:41:c7:30:d4:99:6d:ee:a3:48:a7:fa:84:52:13:56:fa:cc: 27:c3:7f:00:8e:9d:cf:4f:29:4c:0c:c1:eb:fd:e7:49:6f:cd: 39:7d:71:93:7e:d9:f9:52:d8:72:a2:c2:db:ed:7d:fe:0c:16: 6b:f1:cb:62:b5:6e:d4:cf:ab:33:e4:f0:13:1f:7c:96:f3:63: 4b:6e:8e:86:50:e5:4d:88:ee:bc:ce:94:73:9f:07:eb:dd:ac: 99:a4:05:78:7c:fe:72:7b:36:21:dd:7e:7c:77:07:fe:f7:46: 15:3e:b1:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMzQxMTAvBgNVBAUTKDhDQ0U0RTQ2MTk1RDE1NzA0RkI1NjI5MzJFMEFCNjJB MEVCOThBMjYwHhcNMjYwNDE2MjM1MDI4WhcNMjYwNDIzMjM1MDI4WjAYMRYwFAYD VQQDEw02OWUxNzVjNC1jZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eeIHS45zsu5CLDOwQFCqifEzmmLs7s64eFgK5UlbvJhI5jIMt4b1OdSF8ut jKtp5wptnQ8E8LqAuN/QAf80Y7ipaz3AH+YQR8v47DPHzqFI0TwsbPidXbBEUbYX 1cNBB+mgwynKf6PqUh3iIYIsy4l45Wojqq9ImLpXFXkvBQ0/UQ/7u+S618LCnvVl cP3KepTixatjYBSfQA8uLNUgV4zBPgeu17tkVMfprWrKmm0Ru+vVWLewL2roGywp JOD7TEC0ycksB8PADx+flSjJPmj/X2chu9Nz9Pprt3NxHoESycpTbLe5C+EC8EOT 0fUp7zNzTh0fDUyAGq4TASbRTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLrjEyYb YLWtjQIrI7aZeBHZplp0MB8GA1UdIwQYMBaAFIzOTkYZXRVwT7Viky4KtioOuYom MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMzNC83QTQwNDlEQTc0 NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZYQlB0V0tUTGdxMktnNjVp aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNNU9SaGxkRlhCUHRXS1RMZ3EyS2c2NWlpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMzNC83QTQwNDlEQTc0NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZY QlB0V0tUTGdxMktnNjVpaVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaGbb64fpv3n/0vnWXj7ueHLTVhMfVOyUo2FN78Xj2ALzWYncHgnwvDLQKQyI X2z12VeEqAX46l8FuJwSG79ZKFTOCR4upIpsO/lz5xoWQ8yKZkckt042dNVf3j6P aGarh6Z+fPVeKzlZl0wj6YJ5g+BTjGyn1bHiIWzawTc/REoGWdsM9fUTXaG9H6bd iMFki0HHMNSZbe6jSKf6hFITVvrMJ8N/AI6dz08pTAzB6/3nSW/NOX1xk37Z+VLY cqLC2+19/gwWa/HLYrVu1M+rM+TwEx98lvNjS26OhlDlTYjuvM6Uc58H692smaQF eHz+cns2Id1+fHcH/vdGFT6xDg== -----END CERTIFICATE-----Generated at Fri Apr 17 23:35:39 2026 by rpki-client