$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft File: rHzRY2nXDaZnWZ2jaOICQknLAvw.mft (raw, json) Hash identifier: 5Y6T7eWBRnM3b7IUAytyLV72uH6CKB1QZg5nY3B9tvo= Subject key identifier: 2D:C2:C7:79:5A:A2:18:6B:96:93:1E:80:A1:13:EA:43:F2:C0:D9:30 Authority key identifier: AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC Certificate issuer: /CN=A91FB4F7/serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft Manifest number: 71 Signing time: Wed 15 Apr 2026 07:22:20 +0000 Manifest this update: Wed 15 Apr 2026 07:22:20 +0000 Manifest next update: Wed 22 Apr 2026 07:22:20 +0000 Files and hashes: 1: rHzRY2nXDaZnWZ2jaOICQknLAvw.crl (hash: GWANLweQzpALcT/oojqRf2yIo+Pvtd341Kgs4RHhLZM=) 2: 53AEC77E8C7511F0BEEC137FC4F9AE02.roa (hash: TEkM5L9gYDSbXl7l7QCjyJ+tRJyP8a0ZBB6nUCwEyKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 07:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB4F7, serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Validity Not Before: Apr 15 07:22:20 2026 GMT Not After : Apr 22 07:22:20 2026 GMT Subject: CN=69df3cac-d95f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:15:31:81:40:f8:5f:09:c8:bd:8c:e3:0e:8d: e4:8f:90:8d:d7:50:07:44:99:d4:bc:0f:40:c2:e1: 51:4e:9d:8d:d3:83:98:91:c3:e1:55:10:7a:7f:ed: 8e:d7:b8:40:d7:92:15:9f:33:46:56:b6:66:71:9a: b9:e7:e2:ce:95:6e:b8:ec:fb:f2:a4:71:30:67:91: 4d:04:95:8f:c1:31:e4:13:16:5d:11:c6:00:6f:b1: e8:c0:f9:43:b1:3c:12:98:71:79:44:91:d9:8a:0b: a8:5b:83:49:d2:6a:17:11:a2:e4:f0:4f:2f:65:a9: a9:b8:10:09:19:27:d8:ce:95:22:b6:91:b4:fb:34: a8:a4:9b:ee:2b:7d:9a:fc:2c:a7:de:bb:d8:75:d3: b2:b2:1c:b1:e0:a1:73:db:2a:9f:66:76:68:82:f7: 66:57:91:30:e4:78:9b:1a:d1:4f:3d:05:0d:ac:57: 6b:7d:e4:f5:95:7c:fc:00:a6:3a:30:c0:ce:cf:15: 37:08:dc:24:23:d9:ef:c6:5d:ad:40:f3:ab:e5:14: d9:73:e2:1d:5c:f3:a6:17:f9:34:c0:c3:31:b3:c1: 0b:5b:e7:15:b9:c3:28:c1:e2:9c:46:06:fd:0b:a9: 52:7a:1c:9d:c6:96:8b:e4:e6:09:4c:ea:20:3a:c0: 27:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C2:C7:79:5A:A2:18:6B:96:93:1E:80:A1:13:EA:43:F2:C0:D9:30 X509v3 Authority Key Identifier: keyid:AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:59:cc:17:72:b7:19:74:d7:4b:4c:f0:8f:6e:2e:38:b8:dd: 7c:99:e6:16:af:a9:e4:44:9e:7d:ae:62:5c:18:9d:12:3f:95: 10:64:ac:27:74:b0:36:9d:16:e4:aa:27:d5:dd:08:86:4a:cd: b1:6c:09:07:08:49:fd:ff:9c:91:8e:b1:7d:90:f2:7a:22:02: 43:1d:3a:3c:36:7d:e7:01:0d:34:2f:1f:17:16:15:9c:de:7f: b1:ee:1c:b0:4d:d0:0e:88:df:68:0e:a9:ba:54:43:4a:d0:25: 42:44:3a:e0:92:dc:48:8a:2c:64:a9:c1:51:36:a6:7e:a1:77: 72:7a:22:07:60:9f:47:a0:f9:e1:f0:b5:79:92:80:f4:77:73: 6c:47:0f:e2:a0:25:46:e1:8b:94:4f:50:11:e4:b9:e2:34:09: c9:dc:00:a8:85:81:30:d2:a3:3b:e9:6e:af:a5:56:26:df:6c: 03:fa:75:21:83:97:c8:23:cb:f5:b4:ae:bb:7b:c0:c2:08:88: fc:bc:af:14:4f:8c:b0:a8:d2:5c:2e:b7:95:25:79:fd:61:a9: e5:a5:58:04:8b:31:8a:9e:95:6c:7e:4d:a2:9a:0d:11:44:9f: a5:a8:33:43:27:55:46:80:39:a8:20:ab:42:21:f7:90:c4:6a: 57:56:00:33 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjRGNzExMC8GA1UEBRMoQUM3Q0QxNjM2OUQ3MERBNjY3NTk5REEzNjhFMjAyNDI0 OUNCMDJGQzAeFw0yNjA0MTUwNzIyMjBaFw0yNjA0MjIwNzIyMjBaMBgxFjAUBgNV BAMTDTY5ZGYzY2FjLWQ5NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnFTGBQPhfCci9jOMOjeSPkI3XUAdEmdS8D0DC4VFOnY3Tg5iRw+FVEHp/7Y7X uEDXkhWfM0ZWtmZxmrnn4s6Vbrjs+/KkcTBnkU0ElY/BMeQTFl0RxgBvsejA+UOx PBKYcXlEkdmKC6hbg0nSahcRouTwTy9lqam4EAkZJ9jOlSK2kbT7NKikm+4rfZr8 LKfeu9h107KyHLHgoXPbKp9mdmiC92ZXkTDkeJsa0U89BQ2sV2t95PWVfPwApjow wM7PFTcI3CQj2e/GXa1A86vlFNlz4h1c86YX+TTAwzGzwQtb5xW5wyjB4pxGBv0L qVJ6HJ3Glovk5glM6iA6wCeJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQULcLHeVqi GGuWkx6AoRPqQ/LA2TAwHwYDVR0jBBgwFoAUrHzRY2nXDaZnWZ2jaOICQknLAvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNEY3LzEyQkFCODk2OEM2 RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFabldaMmphT0lDUWtuTEF2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvckh6UlkyblhEYVpuV1oyamFPSUNRa25MQXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NEY3LzEyQkFCODk2OEM2RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFa bldaMmphT0lDUWtuTEF2dy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCZWcwXcrcZdNdLTPCPbi44uN18meYWr6nkRJ59rmJcGJ0SP5UQZKwndLA2nRbk qifV3QiGSs2xbAkHCEn9/5yRjrF9kPJ6IgJDHTo8Nn3nAQ00Lx8XFhWc3n+x7hyw TdAOiN9oDqm6VENK0CVCRDrgktxIiixkqcFRNqZ+oXdyeiIHYJ9HoPnh8LV5koD0 d3NsRw/ioCVG4YuUT1AR5LniNAnJ3ACohYEw0qM76W6vpVYm32wD+nUhg5fII8v1 tK67e8DCCIj8vK8UT4ywqNJcLreVJXn9YanlpVgEizGKnpVsfk2img0RRJ+lqDND J1VGgDmoIKtCIfeQxGpXVgAz -----END CERTIFICATE-----Generated at Fri Apr 17 04:10:25 2026 by rpki-client