$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: /sWayT7oKQ01sxGBBsZPKgQq1cgoz7ItVXCiHhNyLvM= Subject key identifier: D7:44:34:1C:28:7F:38:8B:66:73:AA:B5:3E:49:91:80:FF:A3:C0:C8 Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0F45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0F3A Signing time: Thu 16 Apr 2026 17:29:41 +0000 Manifest this update: Thu 16 Apr 2026 17:29:41 +0000 Manifest next update: Thu 23 Apr 2026 17:29:41 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: oPfhWaLINOq1xIXqgLsOSRo9UESJ6JBqU9t5x2x1ZHs=) 2: DA481A0CB61811F0ABB14C31C4F9AE02.roa (hash: RiZl8jCvbX7r5OvETTD24VIJBOcLys+YJ9YI4Mrkp2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3909 (0xf45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Apr 16 17:29:41 2026 GMT Not After : Apr 23 17:29:41 2026 GMT Subject: CN=69e11c85-de09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9d:09:92:e8:3a:57:4a:0b:95:8c:db:16:89: 96:0d:88:ea:cb:5e:0a:a7:bb:a5:69:a0:9a:ad:2b: 10:6a:d5:63:87:ce:56:12:f7:0a:09:5f:77:6d:24: ba:c8:61:4d:83:1a:78:ec:c1:c2:e6:11:d7:d4:1b: fc:6d:bc:4d:d0:cb:70:26:95:e1:93:33:99:77:93: 8d:d4:a2:5d:03:3e:99:65:d5:f4:02:a7:32:b4:e7: bc:5a:b9:56:64:ca:05:6a:c7:ea:66:a4:97:3e:17: e5:bb:ea:fe:d4:f2:46:62:91:36:a4:cf:f7:65:9e: bd:67:92:41:06:19:17:ce:0b:c6:6e:72:89:1b:4a: 20:7f:47:9e:ba:2f:8d:ca:32:b3:f6:56:01:72:fd: 29:ec:c9:e4:18:80:e6:dc:eb:ed:d1:bd:60:32:55: e6:da:6c:96:61:e7:f4:d4:94:99:e1:6e:58:d8:01: 6d:ac:ef:3f:89:94:8b:da:f7:1f:b1:fa:c7:8f:9b: d6:19:b6:98:b1:88:b1:ab:15:37:3a:80:ed:45:bc: da:66:95:3e:5f:d8:91:b2:d6:db:68:23:b4:8b:45: 98:dc:3b:1f:82:84:df:99:9c:1d:74:ed:42:59:1e: d0:cc:0f:13:1d:a5:0b:a4:ef:18:df:6b:11:dd:85: 98:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:44:34:1C:28:7F:38:8B:66:73:AA:B5:3E:49:91:80:FF:A3:C0:C8 X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:af:90:45:35:6d:fe:b6:39:c8:cf:d0:69:fb:19:ac:e8:77: e5:3a:f0:bf:9b:1d:16:e4:69:b4:71:32:d3:5e:98:3d:1a:ef: 85:e8:33:b0:28:3d:7b:33:23:0b:29:8b:de:32:09:72:3d:b6: 82:eb:75:0f:a1:1d:fe:6a:84:b6:cf:9f:71:9f:eb:5f:11:78: cc:67:4f:ce:e4:32:a9:fd:3e:2b:37:94:bf:77:3b:5e:f8:00: 60:f1:60:2d:ac:f4:fd:61:2a:18:ec:2b:3b:f0:92:94:95:a7: f3:d0:35:d0:0c:89:cf:59:d9:2b:bb:55:d6:20:67:34:bc:4a: 3f:48:bb:ea:f8:21:0c:8f:5c:12:ec:f2:5a:17:87:b6:09:bd: 32:8d:b5:7f:a0:03:fa:c7:25:ba:10:00:22:97:6a:e0:8a:cd: 18:47:26:de:0d:88:75:43:31:85:db:62:b0:a6:b8:5e:eb:fe: c1:2e:a0:d7:f3:b4:7c:e8:4b:53:25:57:29:5e:e4:2c:2c:89: c2:7d:16:30:95:e8:37:53:32:11:0e:66:54:06:c4:bc:39:de: 8e:8d:42:d1:07:9e:78:3b:8e:2f:a6:b5:a5:51:3e:81:83:91: 69:3a:76:61:9d:73:90:95:86:fa:80:28:34:88:c4:21:76:0f: 30:5f:84:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjYwNDE2MTcyOTQxWhcNMjYwNDIzMTcyOTQxWjAYMRYwFAYD VQQDEw02OWUxMWM4NS1kZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA150Jkug6V0oLlYzbFomWDYjqy14Kp7ulaaCarSsQatVjh85WEvcKCV93bSS6 yGFNgxp47MHC5hHX1Bv8bbxN0MtwJpXhkzOZd5ON1KJdAz6ZZdX0AqcytOe8WrlW ZMoFasfqZqSXPhflu+r+1PJGYpE2pM/3ZZ69Z5JBBhkXzgvGbnKJG0ogf0eeui+N yjKz9lYBcv0p7MnkGIDm3Ovt0b1gMlXm2myWYef01JSZ4W5Y2AFtrO8/iZSL2vcf sfrHj5vWGbaYsYixqxU3OoDtRbzaZpU+X9iRstbbaCO0i0WY3DsfgoTfmZwddO1C WR7QzA8THaULpO8Y32sR3YWYQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNdENBwo fziLZnOqtT5JkYD/o8DIMB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASK+QRTVt/rY5yM/QafsZrOh35Trwv5sdFuRptHEy016YPRrvhegzsCg9ezMj CymL3jIJcj22gut1D6Ed/mqEts+fcZ/rXxF4zGdPzuQyqf0+KzeUv3c7XvgAYPFg Laz0/WEqGOwrO/CSlJWn89A10AyJz1nZK7tV1iBnNLxKP0i76vghDI9cEuzyWheH tgm9Mo21f6AD+scluhAAIpdq4IrNGEcm3g2IdUMxhdtisKa4Xuv+wS6g1/O0fOhL UyVXKV7kLCyJwn0WMJXoN1MyEQ5mVAbEvDnejo1C0QeeeDuOL6a1pVE+gYORaTp2 YZ1zkJWG+oAoNIjEIXYPMF+E7Q== -----END CERTIFICATE-----Generated at Fri Apr 17 05:35:19 2026 by rpki-client