$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: hBdGk3a8JFQIbMsZ/osVnJLPeitT3ByXNgyXUpD7KcU= Subject key identifier: 0F:45:C4:9E:4C:E5:2E:0F:33:47:AC:B7:BC:D3:24:8D:C8:2C:8B:A8 Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: D8 Signing time: Fri 17 Apr 2026 06:23:11 +0000 Manifest this update: Fri 17 Apr 2026 06:23:11 +0000 Manifest next update: Fri 24 Apr 2026 06:23:11 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: EAds+qR16jljgk+xbOrBLLWeL43d11UWMoe+WA2qKLY=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: oaeasOGheSroKPV3LiPVQfpD09ef36G8xHY2SVCQJWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Apr 17 06:23:11 2026 GMT Not After : Apr 24 06:23:11 2026 GMT Subject: CN=69e1d1cf-f7ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a1:1a:a3:9d:84:8c:96:fb:d7:33:51:7c:e2: a4:fd:e3:7b:f1:08:e2:7e:3d:d7:79:0c:01:0a:c2: 1a:e5:17:3c:12:a6:d9:dd:5a:fc:0c:05:82:ca:ee: fa:ac:e3:18:75:98:76:99:d8:59:09:01:52:9a:f5: ed:5c:92:01:02:cd:84:00:14:5d:84:70:5e:f2:d4: ff:26:18:18:d9:26:5c:7a:c6:82:72:53:44:1d:3e: 2b:bd:30:8d:30:0b:ac:dd:0e:08:a9:f3:0e:7a:a0: d3:dd:31:7b:a6:2d:27:aa:74:35:32:04:dc:5b:f5: 1a:81:8f:15:d1:5c:89:47:b9:5b:90:e5:09:31:30: 0d:25:76:b5:7b:f7:ee:1f:89:04:8f:74:58:03:5d: c2:da:7f:68:f7:5f:60:57:9e:18:2e:c1:f6:f8:06: eb:2d:e0:56:48:1d:0c:f9:87:54:ab:57:3c:59:15: 80:47:46:c3:4d:15:64:60:e8:b3:b6:70:99:8e:70: f5:fc:76:83:fb:83:d2:6e:f4:c8:9e:ce:70:1b:eb: 78:d5:d3:8e:d7:e7:cd:0d:e0:33:e7:81:6a:31:37: 88:9d:d9:ef:61:ae:e2:b5:41:70:02:a5:52:82:ad: 0e:02:8a:dd:91:0e:52:b3:b2:63:4e:88:59:08:ac: 36:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:45:C4:9E:4C:E5:2E:0F:33:47:AC:B7:BC:D3:24:8D:C8:2C:8B:A8 X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:d8:aa:c8:cd:79:f3:55:26:b6:00:cb:ac:62:42:76:91:8e: 7d:96:9a:de:3c:dc:35:c8:78:63:d0:2f:31:69:30:42:29:18: 8b:d3:1a:c9:28:29:65:98:f1:b7:84:30:9c:54:01:37:ef:1a: c0:eb:80:88:6b:20:b1:32:fb:3e:1c:66:c9:ea:c3:c5:11:36: a7:c7:bf:bd:63:5c:f3:eb:b6:e8:f2:93:0f:12:d3:0e:1b:6c: 2c:b1:7e:01:f5:32:28:57:af:aa:2d:f5:27:09:ce:68:8e:3d: d8:77:81:6b:42:c7:e7:0a:a0:d5:fa:22:0b:c9:e0:ea:5a:cc: 3c:c8:d4:17:29:a1:68:56:16:84:83:d5:6e:4d:00:cc:65:3b: c0:4a:7f:26:c4:75:6b:f4:76:64:8e:0a:8c:ac:04:f9:41:49: 5e:6a:40:aa:3c:db:4d:4f:b6:23:13:e8:9a:c0:6e:1d:77:4f: 55:4b:1c:e4:70:9f:29:87:d8:df:3d:ee:ba:de:a2:67:83:55: e4:ee:0a:d8:e9:17:9e:ff:be:dc:81:01:d5:dd:ca:56:8e:d3: 32:bc:ec:bd:a4:1d:bf:76:bf:c9:41:54:0d:38:1e:dc:58:67: 5a:40:bc:f5:81:f6:c8:ea:1d:6a:87:2e:22:ac:27:2e:ee:da: 86:96:22:30 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5ODUxMTAvBgNVBAUTKDI5QURCMzlCNjIwRUFFM0NCOEFGQ0EyQ0ExODVGNUM0 ODc2RkQwNDMwHhcNMjYwNDE3MDYyMzExWhcNMjYwNDI0MDYyMzExWjAYMRYwFAYD VQQDEw02OWUxZDFjZi1mN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraEao52EjJb71zNRfOKk/eN78Qjifj3XeQwBCsIa5Rc8EqbZ3Vr8DAWCyu76 rOMYdZh2mdhZCQFSmvXtXJIBAs2EABRdhHBe8tT/JhgY2SZcesaCclNEHT4rvTCN MAus3Q4IqfMOeqDT3TF7pi0nqnQ1MgTcW/UagY8V0VyJR7lbkOUJMTANJXa1e/fu H4kEj3RYA13C2n9o919gV54YLsH2+AbrLeBWSB0M+YdUq1c8WRWAR0bDTRVkYOiz tnCZjnD1/HaD+4PSbvTIns5wG+t41dOO1+fNDeAz54FqMTeIndnvYa7itUFwAqVS gq0OAordkQ5Ss7JjTohZCKw2gwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA9FxJ5M 5S4PM0est7zTJI3ILIuoMB8GA1UdIwQYMBaAFCmts5tiDq48uK/KLKGF9cSHb9BD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzk4NS82NzNBQTJGNEY1 QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3JqeTRyOG9zb1lYMXhJZHYw RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzk4NS82NzNBQTJGNEY1QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3Jq eTRyOG9zb1lYMXhJZHYwRU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd9iqyM1581UmtgDLrGJCdpGOfZaa3jzcNch4Y9AvMWkwQikYi9MaySgpZZjx t4QwnFQBN+8awOuAiGsgsTL7PhxmyerDxRE2p8e/vWNc8+u26PKTDxLTDhtsLLF+ AfUyKFevqi31JwnOaI492HeBa0LH5wqg1foiC8ng6lrMPMjUFymhaFYWhIPVbk0A zGU7wEp/JsR1a/R2ZI4KjKwE+UFJXmpAqjzbTU+2IxPomsBuHXdPVUsc5HCfKYfY 3z3uut6iZ4NV5O4K2OkXnv++3IEB1d3KVo7TMrzsvaQdv3a/yUFUDTge3FhnWkC8 9YH2yOodaocuIqwnLu7ahpYiMA== -----END CERTIFICATE-----Generated at Sat Apr 18 05:50:56 2026 by rpki-client