$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: SB0v8Gg2pURxfgoJ5iWh+2GlGTU57wkZmlKmMNnUqjM= Subject key identifier: E7:AA:6D:F9:1C:A9:4B:11:4B:D5:A9:BF:B9:38:C8:22:C7:8C:90:10 Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 021D Signing time: Fri 17 Apr 2026 02:32:52 +0000 Manifest this update: Fri 17 Apr 2026 02:32:51 +0000 Manifest next update: Fri 24 Apr 2026 02:32:51 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: PygbUYfz7i7gdbzcL0D7xTBBOGEjRvHIsKCzUtS5qwQ=) 2: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: 4YIOdgZToNd6AkQxJEZ/tpO5YcOz0+4fIKBE30sHvQQ=) 3: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: q1UHSMWRHkyPM5/ZpC9nIF7x6czgaR9lk1C/QVX3U48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Apr 17 02:32:51 2026 GMT Not After : Apr 24 02:32:51 2026 GMT Subject: CN=69e19bd3-3687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1c:2e:a4:45:10:26:8f:bc:a7:51:f8:4e:23: ec:f3:f0:1b:60:11:7a:ca:ca:29:4b:e4:4f:58:aa: 6c:b4:15:88:50:3b:aa:0a:6a:77:0f:1e:1c:4e:d7: 70:cf:f4:c2:87:c5:b3:6e:27:28:53:bf:aa:d5:ad: 6f:da:6a:7f:c4:56:97:73:f3:3f:bc:37:b8:43:be: e2:0d:8f:e3:11:cc:b9:fe:86:5c:61:98:66:f6:6f: 18:83:82:85:06:34:15:72:94:a1:23:62:f5:c6:5d: df:bb:4b:15:68:6e:82:89:52:06:8d:cf:02:87:d8: 5d:51:75:b2:19:af:e6:1c:7f:d8:9c:cc:9f:76:4f: eb:78:2b:71:69:b6:ae:84:af:69:62:a8:61:42:22: a3:2c:d3:ae:44:df:cb:99:8a:cd:81:86:0d:6a:9c: 3a:fa:e8:43:7f:b5:16:31:8d:be:6f:06:34:28:6e: f2:9d:c8:86:12:48:fd:25:96:9d:aa:bb:05:bb:c8: e7:0b:c6:cf:6c:33:b6:7f:c2:b5:cf:7b:4b:42:32: b9:e4:80:0c:1b:96:87:22:11:ed:fb:7d:3e:d2:4b: b7:70:b9:f5:c4:a9:2f:e2:77:77:f7:07:18:c6:4a: 61:71:b1:2c:4d:29:d2:a9:99:91:7d:14:42:66:57: 4b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:AA:6D:F9:1C:A9:4B:11:4B:D5:A9:BF:B9:38:C8:22:C7:8C:90:10 X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:de:15:a2:00:dd:d1:00:7c:21:a5:74:59:44:3e:48:9a:eb: c9:4c:6d:74:8f:29:3a:69:e0:ac:48:72:b7:35:ae:b7:e9:4b: 02:69:3f:56:b1:3b:23:ea:24:c5:ea:3b:13:ee:9c:10:ed:e7: 70:36:29:cb:df:24:4e:c7:dc:e2:47:c5:a5:1e:fe:2b:dc:2b: ea:f6:3d:77:8d:9e:59:0a:ad:f4:9a:ae:93:6e:75:91:2f:9a: fb:a4:eb:cd:5a:81:22:48:40:26:4e:a4:ff:1a:a8:e9:01:79: fc:7a:da:f5:16:97:9f:b9:06:cc:10:78:56:18:64:75:8e:fb: 00:14:6a:a0:52:d2:b0:da:2b:89:c3:bd:91:8d:2f:0a:21:33: 48:ae:b8:7e:05:24:7b:23:c5:b7:38:95:df:c4:c4:05:4d:09: df:aa:ed:71:57:0c:0f:62:01:28:bd:5b:99:c3:2e:73:b3:cb: 24:c1:14:24:c9:3b:97:66:3c:54:31:24:7c:0e:61:a5:fd:03: 82:69:e0:02:02:02:16:27:85:e9:18:ab:59:7f:a4:98:33:e9: 3c:77:53:cf:54:0c:09:02:fb:58:f4:a0:1a:9b:6c:b2:9b:53: d7:f9:7d:11:90:98:f9:9a:bc:0a:5e:85:8c:8b:a0:bf:54:13: c2:1e:bb:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjYwNDE3MDIzMjUxWhcNMjYwNDI0MDIzMjUxWjAYMRYwFAYD VQQDEw02OWUxOWJkMy0zNjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hwupEUQJo+8p1H4TiPs8/AbYBF6ysopS+RPWKpstBWIUDuqCmp3Dx4cTtdw z/TCh8WzbicoU7+q1a1v2mp/xFaXc/M/vDe4Q77iDY/jEcy5/oZcYZhm9m8Yg4KF BjQVcpShI2L1xl3fu0sVaG6CiVIGjc8Ch9hdUXWyGa/mHH/YnMyfdk/reCtxabau hK9pYqhhQiKjLNOuRN/LmYrNgYYNapw6+uhDf7UWMY2+bwY0KG7ynciGEkj9JZad qrsFu8jnC8bPbDO2f8K1z3tLQjK55IAMG5aHIhHt+30+0ku3cLn1xKkv4nd39wcY xkphcbEsTSnSqZmRfRRCZldL1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOeqbfkc qUsRS9Wpv7k4yCLHjJAQMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe94VogDd0QB8IaV0WUQ+SJrryUxtdI8pOmngrEhytzWut+lLAmk/VrE7I+ok xeo7E+6cEO3ncDYpy98kTsfc4kfFpR7+K9wr6vY9d42eWQqt9Jquk251kS+a+6Tr zVqBIkhAJk6k/xqo6QF5/Hra9RaXn7kGzBB4VhhkdY77ABRqoFLSsNoricO9kY0v CiEzSK64fgUkeyPFtziV38TEBU0J36rtcVcMD2IBKL1bmcMuc7PLJMEUJMk7l2Y8 VDEkfA5hpf0DgmngAgICFieF6RirWX+kmDPpPHdTz1QMCQL7WPSgGptssptT1/l9 EZCY+Zq8Cl6FjIugv1QTwh67jg== -----END CERTIFICATE-----Generated at Fri Apr 17 10:03:33 2026 by rpki-client