$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: SYZqfFMyDWoTg6+c7OHMb77JoBDZ46AVKGz6kC99C18= Subject key identifier: A6:E9:09:FC:84:BF:D0:1D:63:3C:A4:39:6F:56:9F:F5:8C:E0:FA:4A Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 0668 Signing time: Thu 16 Apr 2026 22:31:20 +0000 Manifest this update: Thu 16 Apr 2026 22:31:20 +0000 Manifest next update: Thu 23 Apr 2026 22:31:20 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: SKdUX9SYJhk36p9RteqW92oNBFl/GaWI4E53WSc7njE=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: F2GebCWcaFjXC+R1GW0YWmxK0km0Z1FV+dTDi5Ce6Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:31:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Apr 16 22:31:20 2026 GMT Not After : Apr 23 22:31:20 2026 GMT Subject: CN=69e16338-38c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:14:c1:6d:e1:a4:02:5f:c4:b8:a2:07:66:f5: 93:c0:50:87:2b:55:9b:6e:e2:00:1b:5a:8b:c0:28: f8:21:ae:06:66:57:5f:1b:6f:0f:a8:62:d4:eb:45: 8a:d3:4f:7d:f7:84:e9:5b:09:b3:a2:b4:d6:e7:38: 39:23:8f:5a:a9:2f:36:f5:d3:3c:63:6e:5c:94:fd: 47:ae:af:f4:fe:c2:75:61:ad:3d:f7:85:69:0d:7a: 54:05:37:f0:fa:3e:96:c8:60:b1:5f:d6:ad:b0:b6: a8:cf:3e:d3:d1:ab:cb:ab:d2:fb:f3:90:1c:68:49: bf:fc:34:b4:7b:b8:7c:2f:30:e5:43:ca:98:32:ea: fe:3e:02:66:59:65:c1:8a:03:a1:3e:42:5b:ad:ee: 27:30:47:13:1b:57:a6:71:dc:00:6f:85:ed:1b:bf: ed:d5:33:21:35:7e:ca:e0:16:82:f1:1b:b1:23:81: 61:36:6e:44:a0:42:8f:e3:38:63:63:15:b3:df:7b: 3d:10:e9:1a:02:1a:0e:0c:c3:7a:c9:12:0c:4d:f0: db:94:cb:9d:c0:8f:50:e8:d3:65:fc:c5:83:b6:87: 7b:c3:34:70:14:24:85:19:67:79:1f:57:14:e7:aa: a2:11:a7:00:d5:6d:b0:3b:4a:47:4d:80:84:df:aa: 21:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E9:09:FC:84:BF:D0:1D:63:3C:A4:39:6F:56:9F:F5:8C:E0:FA:4A X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:9a:d4:6e:2b:c6:79:31:88:8e:34:41:c5:af:4a:a9:2a:00: 20:b9:7f:41:d5:35:fb:5f:3c:9d:a3:39:ba:fe:56:9c:ea:0a: eb:43:a4:b9:17:51:57:72:5a:d0:41:4a:06:b5:d9:0d:02:6f: fe:25:86:e8:5a:93:0d:8c:bd:f6:c7:ad:b6:11:32:0d:13:ff: 2b:b4:6c:73:ca:df:76:5c:20:d6:3d:0f:29:36:37:eb:ab:01: 59:b2:3b:20:cd:71:16:fc:5c:ab:27:45:5a:b9:d6:9a:65:84: 93:92:f4:d9:2f:eb:c4:f0:c6:7d:82:3e:0a:82:67:45:c9:16: e3:c5:91:0e:67:ba:97:bd:32:63:f5:55:6f:fa:75:97:ed:48: 40:79:39:15:b1:12:e5:f4:55:92:22:47:16:01:62:d8:a5:8b: 0a:f3:4c:8f:0d:a8:f2:8b:cc:04:3d:df:36:0a:df:cb:c8:91: 2a:58:7b:bc:b4:2a:e2:dc:52:04:51:5f:42:28:1c:66:a3:eb: 50:8f:c6:29:55:12:da:fa:0b:1b:1a:61:e8:4e:58:08:15:84: 39:95:e9:f8:fe:0a:63:90:1a:d0:ad:e2:80:dd:0e:0b:fc:e9: c8:62:96:7c:13:97:00:9d:da:a1:32:bf:e3:d3:da:df:c2:97: 9f:0c:9b:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjYwNDE2MjIzMTIwWhcNMjYwNDIzMjIzMTIwWjAYMRYwFAYD VQQDEw02OWUxNjMzOC0zOGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BTBbeGkAl/EuKIHZvWTwFCHK1WbbuIAG1qLwCj4Ia4GZldfG28PqGLU60WK 009994TpWwmzorTW5zg5I49aqS829dM8Y25clP1Hrq/0/sJ1Ya0994VpDXpUBTfw +j6WyGCxX9atsLaozz7T0avLq9L785AcaEm//DS0e7h8LzDlQ8qYMur+PgJmWWXB igOhPkJbre4nMEcTG1emcdwAb4XtG7/t1TMhNX7K4BaC8RuxI4FhNm5EoEKP4zhj YxWz33s9EOkaAhoODMN6yRIMTfDblMudwI9Q6NNl/MWDtod7wzRwFCSFGWd5H1cU 56qiEacA1W2wO0pHTYCE36ohGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKbpCfyE v9AdYzykOW9Wn/WM4PpKMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApZrUbivGeTGIjjRBxa9KqSoAILl/QdU1+188naM5uv5WnOoK60OkuRdRV3Ja 0EFKBrXZDQJv/iWG6FqTDYy99setthEyDRP/K7Rsc8rfdlwg1j0PKTY366sBWbI7 IM1xFvxcqydFWrnWmmWEk5L02S/rxPDGfYI+CoJnRckW48WRDme6l70yY/VVb/p1 l+1IQHk5FbES5fRVkiJHFgFi2KWLCvNMjw2o8ovMBD3fNgrfy8iRKlh7vLQq4txS BFFfQigcZqPrUI/GKVUS2voLGxph6E5YCBWEOZXp+P4KY5Aa0K3igN0OC/zpyGKW fBOXAJ3aoTK/49Pa38KXnwybQA== -----END CERTIFICATE-----Generated at Fri Apr 17 21:04:03 2026 by rpki-client