$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: efICoTwTlPgK8s4uRth5pR00bTVeQUBHLMFDSQDzLHQ= Subject key identifier: 9B:E6:5F:F9:A3:12:1B:F8:4A:9C:72:71:22:29:CF:20:A5:EC:D0:F1 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 022D Signing time: Fri 17 Apr 2026 02:30:05 +0000 Manifest this update: Fri 17 Apr 2026 02:30:04 +0000 Manifest next update: Fri 24 Apr 2026 02:30:04 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: 0mb33M1PHx0bI5/9gl8WCG39WiwZnOof6Cmfdy0vDus=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: vlYY+5TtJ2iPuvI4KrqFuTWbHS6vrSjRQ3Wr/LyP/X8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Apr 17 02:30:04 2026 GMT Not After : Apr 24 02:30:04 2026 GMT Subject: CN=69e19b2d-5a3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3b:96:cd:9a:56:6d:09:f5:55:26:13:25:9e: ae:5c:e2:c3:60:8d:04:44:f1:3a:fe:75:74:67:3a: b9:c1:19:7c:35:13:31:31:b3:c9:2e:55:c0:b8:fd: 48:d9:88:0b:bb:26:bb:74:22:de:9d:14:5b:93:b4: 7b:89:8f:00:5d:d5:97:e2:56:0f:0e:f3:7b:fe:02: e4:26:ef:e8:3b:22:af:6e:37:2e:22:c1:d9:59:85: 06:56:85:2d:1e:78:a5:c4:27:33:9b:36:ac:9b:80: 77:22:30:81:d3:63:35:81:66:dd:c1:85:7c:f5:0f: 28:d8:67:5a:a0:ee:2e:4b:56:84:ba:5d:fe:b4:b7: 36:77:5a:75:c8:2a:4e:9b:73:df:c9:a5:50:67:e7: bc:08:21:dd:14:84:e8:4c:c0:1e:ba:b4:1d:2a:72: c6:b3:44:4d:68:ff:43:16:a2:b5:59:91:e4:9f:d2: bd:47:aa:50:16:0b:3a:bb:f3:41:df:4e:45:81:01: 75:29:fb:c6:86:bf:1e:2c:a4:27:5d:0a:d1:39:5d: 2b:0a:9c:87:3c:58:82:ef:ab:36:0b:11:b1:95:52: c6:0d:4d:31:61:79:fb:16:dc:dd:71:6d:ba:76:8a: 43:f4:1d:79:fe:67:b9:4d:2a:27:10:68:87:15:1e: 2f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E6:5F:F9:A3:12:1B:F8:4A:9C:72:71:22:29:CF:20:A5:EC:D0:F1 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:1b:84:bc:99:b8:8a:4f:ba:ea:19:4b:bc:6e:03:cc:f7:75: 62:90:40:90:6b:50:af:3e:69:03:0f:3b:06:46:ed:f2:89:a0: 13:05:09:e4:e1:64:28:d9:26:66:1f:a5:77:05:c6:57:4f:84: 4a:c1:2a:8f:ed:86:22:30:01:1a:d8:ae:fe:d7:fe:ea:1b:df: 45:fb:91:a4:3c:e1:0c:e6:fb:67:cc:e0:6a:9a:7a:7f:13:6d: 57:27:07:d8:b9:6e:8d:5f:fc:d7:eb:fc:28:cf:99:5f:e2:32: d1:81:31:ee:24:27:59:fb:81:50:12:df:af:37:80:1a:66:cf: f8:fd:c1:73:b8:9a:b4:40:dd:6e:01:63:68:bd:48:75:13:bb: 69:f6:9f:7e:86:9f:b8:c0:9f:46:2d:8f:83:fc:99:b3:8d:14: 33:af:16:af:9a:cd:8c:3c:57:c3:72:9c:28:a1:10:d8:e0:5f: af:d0:00:65:42:54:20:1d:42:b0:0a:44:18:6f:c7:4c:09:83: 7b:8e:ad:49:fa:91:01:79:8a:5f:0b:fb:c6:a2:9c:4e:d2:52: 87:7a:59:dc:87:2e:88:95:05:20:2f:45:d5:e8:52:16:d5:62: 0c:40:c4:2f:ea:3a:3e:c1:18:33:63:45:40:2b:4e:58:c2:71: e2:c3:81:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjYwNDE3MDIzMDA0WhcNMjYwNDI0MDIzMDA0WjAYMRYwFAYD VQQDEw02OWUxOWIyZC01YTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDuWzZpWbQn1VSYTJZ6uXOLDYI0ERPE6/nV0Zzq5wRl8NRMxMbPJLlXAuP1I 2YgLuya7dCLenRRbk7R7iY8AXdWX4lYPDvN7/gLkJu/oOyKvbjcuIsHZWYUGVoUt HnilxCczmzasm4B3IjCB02M1gWbdwYV89Q8o2GdaoO4uS1aEul3+tLc2d1p1yCpO m3PfyaVQZ+e8CCHdFIToTMAeurQdKnLGs0RNaP9DFqK1WZHkn9K9R6pQFgs6u/NB 305FgQF1KfvGhr8eLKQnXQrROV0rCpyHPFiC76s2CxGxlVLGDU0xYXn7FtzdcW26 dopD9B15/me5TSonEGiHFR4v9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJvmX/mj Ehv4SpxycSIpzyCl7NDxMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEBuEvJm4ik+66hlLvG4DzPd1YpBAkGtQrz5pAw87Bkbt8omgEwUJ5OFkKNkm Zh+ldwXGV0+ESsEqj+2GIjABGtiu/tf+6hvfRfuRpDzhDOb7Z8zgapp6fxNtVycH 2LlujV/81+v8KM+ZX+Iy0YEx7iQnWfuBUBLfrzeAGmbP+P3Bc7iatEDdbgFjaL1I dRO7afaffoafuMCfRi2Pg/yZs40UM68Wr5rNjDxXw3KcKKEQ2OBfr9AAZUJUIB1C sApEGG/HTAmDe46tSfqRAXmKXwv7xqKcTtJSh3pZ3IcuiJUFIC9F1ehSFtViDEDE L+o6PsEYM2NFQCtOWMJx4sOB4A== -----END CERTIFICATE-----Generated at Fri Apr 17 14:46:59 2026 by rpki-client