$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: zg+io95hvx4KMzIaZKi9zwyyP7xRhPpEgriIRJKwrno= Subject key identifier: EE:B8:4F:11:66:6B:E9:6F:83:E3:30:A5:E5:13:5D:95:94:70:D5:02 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 08C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 08B8 Signing time: Thu 16 Apr 2026 20:22:54 +0000 Manifest this update: Thu 16 Apr 2026 20:22:53 +0000 Manifest next update: Thu 23 Apr 2026 20:22:53 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: MAYo446wjafKtE73D3GHH84KRsmUrzz8fhMuGuzUYC4=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: KkfurgFgQaSiOoD1DoZqsh9tHMcIVcJW+jsOCJRRuvo=) 3: CEDD71FAE48811F09BEEC367446F56BC.roa (hash: n4+tu4whf2PQeZcNUGvCEnzwL08T5EGFFqHM2nYkstI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2247 (0x8c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Apr 16 20:22:53 2026 GMT Not After : Apr 23 20:22:53 2026 GMT Subject: CN=69e1451e-215c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a4:06:e3:7f:2e:ab:84:6c:c3:c7:4f:05:e2: 0a:30:ec:05:3a:1d:ab:90:bc:98:49:df:46:1c:a5: 32:42:84:07:9a:7a:e8:b1:d4:6c:86:fd:ce:7b:ce: 8d:66:59:ec:dc:6f:60:7b:4b:30:72:e2:af:9c:b2: 13:61:8c:cc:6b:a4:58:4d:4c:70:a7:f8:51:f2:53: 2e:04:87:b9:59:1c:69:bd:8a:c5:e1:ea:64:b5:9e: 5d:f9:c8:80:df:ac:c9:af:52:5b:c6:99:62:34:33: 54:e5:c0:e2:bf:5f:20:4e:94:69:7c:b3:e6:78:e1: f9:cb:56:3a:6b:29:68:8e:ad:42:48:25:b0:d1:b2: 69:55:a2:5f:fb:d0:92:0c:44:98:44:17:a1:23:94: 8f:42:11:72:ca:51:34:49:cd:2e:42:c9:69:43:00: b8:92:3e:ca:5b:7b:ae:b8:83:12:76:17:1b:5f:df: 26:7c:2c:5a:45:f8:76:ad:5a:eb:60:69:25:3d:44: 3e:d5:3d:da:50:61:94:48:6a:a4:d2:77:28:60:8d: 8c:e3:e1:0d:94:43:d0:80:6f:0e:1b:96:c4:d9:f0: 26:38:1a:5a:19:ef:91:85:01:ef:a4:f9:e3:a9:f4: 96:6a:89:06:ae:66:84:4c:f0:9d:3c:77:8c:52:e4: 85:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B8:4F:11:66:6B:E9:6F:83:E3:30:A5:E5:13:5D:95:94:70:D5:02 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:39:7f:75:0a:6b:b6:7a:ef:ea:b2:46:33:ae:06:fa:b2:b2: 2c:0d:46:42:17:72:bd:21:dc:22:9c:41:6f:89:e1:e0:68:3b: cc:b4:71:2f:60:57:19:72:ae:3f:7f:6c:b7:71:cf:61:b2:b2: bc:e9:d8:ee:63:fb:a1:29:93:f8:2b:72:ee:0a:fc:72:90:cd: ad:68:e7:e9:41:9f:32:58:bd:fb:8a:07:e5:c0:44:e1:a8:d6: b9:1b:b1:ef:3c:6b:84:cd:e6:ed:5a:0b:be:b7:52:3e:62:4c: 09:7a:0e:ef:51:2f:23:9e:a2:db:d4:19:18:14:4b:43:fb:6b: d1:f2:f7:0d:03:85:b3:e4:59:48:9a:40:42:dc:5a:b0:c7:2d: 1d:42:56:e4:22:0c:b9:17:11:df:b2:0e:0c:8f:e5:4d:10:b3: 3a:bc:7f:cc:88:be:ed:43:90:d4:97:db:71:58:d6:49:65:8d: c3:4f:02:8c:ef:5c:52:59:b2:75:7c:fc:db:e0:33:d1:13:e7: 4e:f3:74:e5:c3:30:21:1c:6d:2b:de:75:8c:37:82:10:ad:ac: ed:63:f1:5a:12:9b:34:59:23:fa:d8:ea:5a:a6:c2:25:b9:b1: 75:b9:20:51:41:19:4c:a8:80:dc:11:71:91:0d:c7:a7:4e:dd: 6b:1b:43:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjYwNDE2MjAyMjUzWhcNMjYwNDIzMjAyMjUzWjAYMRYwFAYD VQQDEw02OWUxNDUxZS0yMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26QG438uq4Rsw8dPBeIKMOwFOh2rkLyYSd9GHKUyQoQHmnrosdRshv3Oe86N Zlns3G9ge0swcuKvnLITYYzMa6RYTUxwp/hR8lMuBIe5WRxpvYrF4epktZ5d+ciA 36zJr1JbxpliNDNU5cDiv18gTpRpfLPmeOH5y1Y6aylojq1CSCWw0bJpVaJf+9CS DESYRBehI5SPQhFyylE0Sc0uQslpQwC4kj7KW3uuuIMSdhcbX98mfCxaRfh2rVrr YGklPUQ+1T3aUGGUSGqk0ncoYI2M4+ENlEPQgG8OG5bE2fAmOBpaGe+RhQHvpPnj qfSWaokGrmaETPCdPHeMUuSFowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO64TxFm a+lvg+MwpeUTXZWUcNUCMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMjl/dQprtnrv6rJGM64G+rKyLA1GQhdyvSHcIpxBb4nh4Gg7zLRxL2BXGXKu P39st3HPYbKyvOnY7mP7oSmT+Cty7gr8cpDNrWjn6UGfMli9+4oH5cBE4ajWuRux 7zxrhM3m7VoLvrdSPmJMCXoO71EvI56i29QZGBRLQ/tr0fL3DQOFs+RZSJpAQtxa sMctHUJW5CIMuRcR37IODI/lTRCzOrx/zIi+7UOQ1JfbcVjWSWWNw08CjO9cUlmy dXz82+Az0RPnTvN05cMwIRxtK951jDeCEK2s7WPxWhKbNFkj+tjqWqbCJbmxdbkg UUEZTKiA3BFxkQ3Hp07daxtDew== -----END CERTIFICATE-----Generated at Fri Apr 17 19:06:11 2026 by rpki-client