$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: LPqIrQON7XBzK5i7Ip6f9UAz8eFskDfwSpH8Ru8RA7g= Subject key identifier: 71:E3:5A:61:7F:D5:32:3C:E6:95:DF:55:60:1D:A1:03:2A:3A:92:85 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C86 Signing time: Thu 16 Apr 2026 16:07:42 +0000 Manifest this update: Thu 16 Apr 2026 16:07:41 +0000 Manifest next update: Thu 23 Apr 2026 16:07:41 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: HXei2d36S9JeJ3yP8lY4MJyr5vsLD9KVSz5DxwKZg0g=) 2: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: GM2/Zg+eI19YNP6sUwovNgmANsfWwnnAjBpybeU+09Q=) 3: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: Mltlh2bx7WYK1xzaK+H07Yqp+mKuF+w3gv8nIlWhSn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7324 (0x1c9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Apr 16 16:07:41 2026 GMT Not After : Apr 23 16:07:41 2026 GMT Subject: CN=69e1094e-8ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f4:1d:62:9b:e2:a8:30:e8:8a:ce:22:28:92: 29:ab:64:09:e8:34:3b:e5:bf:d1:f2:98:db:70:07: 16:ae:3a:4a:0e:c3:6d:2a:42:35:f2:df:32:95:18: 9a:25:55:47:a4:78:2b:26:c9:16:a9:1d:26:1f:6e: 7a:15:4e:7e:09:97:d8:9d:0e:2d:5d:22:26:fe:03: c1:85:a5:3c:4c:14:dc:36:97:4c:62:2d:da:d8:b6: 64:8d:3d:cb:50:6f:b1:6e:91:4a:bd:83:e1:1d:0d: 0d:62:fe:22:ce:76:43:f8:88:68:bf:b5:d8:d0:9b: 39:70:07:eb:c0:4c:66:14:aa:8f:3c:e4:14:38:b8: 30:7c:bf:4a:b4:17:57:5c:5a:91:85:68:3e:83:63: b4:72:cb:8b:73:cb:d1:03:14:b5:df:00:5a:8c:50: 6d:52:e9:30:98:39:38:56:81:4d:c0:66:b1:3a:21: b2:cb:2b:49:6a:37:ad:da:c7:4b:75:56:33:53:80: cf:e0:62:29:72:42:04:cb:8a:21:2e:d0:36:e7:08: 37:fa:f7:1d:ff:7b:3e:36:1d:2d:5c:f6:8e:d3:0b: 21:cc:53:ff:e8:46:0a:8f:aa:d5:50:21:d0:47:90: 90:59:25:16:34:db:18:2a:52:e4:d9:d7:29:ae:cf: 4e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E3:5A:61:7F:D5:32:3C:E6:95:DF:55:60:1D:A1:03:2A:3A:92:85 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:99:26:70:7a:d3:4c:3e:cb:96:45:7b:7d:52:1a:86:d0:8f: db:3e:ac:d6:92:22:e3:13:52:00:02:ba:56:00:e3:61:c7:af: 86:16:d6:49:06:42:97:5e:90:37:0b:7f:81:ae:d4:02:7c:04: 2e:a5:6b:bc:81:c0:aa:f5:f7:16:41:46:aa:53:35:f5:88:e3: 21:39:26:9b:1d:b4:33:19:fe:9b:c5:da:4b:31:8a:3b:13:27: 4b:aa:a1:04:a5:ff:3e:bb:64:62:7e:e3:ed:d9:bc:c6:3b:85: 6e:7d:2e:d3:83:b5:48:8b:57:cf:b3:85:e9:99:3f:61:26:30: c6:e4:49:37:b1:11:43:9d:bd:54:94:8f:7e:60:02:19:e1:ac: ff:55:e7:a9:19:62:b6:7e:0e:8e:8a:48:69:31:9f:b8:d9:71: 98:d7:5c:f9:8a:6a:05:9b:eb:38:3e:79:23:94:0c:c0:d1:fc: 21:2f:72:83:d4:86:40:76:c3:32:d5:b8:0e:96:8f:ec:55:54: 08:9a:e6:ba:99:13:dd:9b:c9:42:c9:8e:ae:ff:39:f8:0f:96: 66:a9:26:a0:1c:61:8b:91:63:23:1f:23:70:0a:b8:03:b1:f7: e1:9f:89:d9:98:9e:a1:8c:f7:dc:6a:d1:8f:fb:bd:62:f5:b3: 37:02:66:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwNDE2MTYwNzQxWhcNMjYwNDIzMTYwNzQxWjAYMRYwFAYD VQQDEw02OWUxMDk0ZS04ZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPQdYpviqDDois4iKJIpq2QJ6DQ75b/R8pjbcAcWrjpKDsNtKkI18t8ylRia JVVHpHgrJskWqR0mH256FU5+CZfYnQ4tXSIm/gPBhaU8TBTcNpdMYi3a2LZkjT3L UG+xbpFKvYPhHQ0NYv4iznZD+Ihov7XY0Js5cAfrwExmFKqPPOQUOLgwfL9KtBdX XFqRhWg+g2O0csuLc8vRAxS13wBajFBtUukwmDk4VoFNwGaxOiGyyytJajet2sdL dVYzU4DP4GIpckIEy4ohLtA25wg3+vcd/3s+Nh0tXPaO0wshzFP/6EYKj6rVUCHQ R5CQWSUWNNsYKlLk2dcprs9O7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHHjWmF/ 1TI85pXfVWAdoQMqOpKFMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg5kmcHrTTD7LlkV7fVIahtCP2z6s1pIi4xNSAAK6VgDjYcevhhbWSQZCl16Q Nwt/ga7UAnwELqVrvIHAqvX3FkFGqlM19YjjITkmmx20Mxn+m8XaSzGKOxMnS6qh BKX/PrtkYn7j7dm8xjuFbn0u04O1SItXz7OF6Zk/YSYwxuRJN7ERQ529VJSPfmAC GeGs/1XnqRlitn4OjopIaTGfuNlxmNdc+YpqBZvrOD55I5QMwNH8IS9yg9SGQHbD MtW4DpaP7FVUCJrmupkT3ZvJQsmOrv85+A+WZqkmoBxhi5FjIx8jcAq4A7H34Z+J 2ZieoYz33GrRj/u9YvWzNwJmLg== -----END CERTIFICATE-----Generated at Fri Apr 17 14:45:50 2026 by rpki-client