$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: 3lOvOi9Z2S6VKzd7yToNidp1GQxQi/+g4DyAxOkrZlY= Subject key identifier: B8:40:F7:C4:39:EF:60:DA:97:DB:55:CA:B7:37:40:82:A3:49:E7:6A Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1D71 Signing time: Thu 16 Apr 2026 16:04:55 +0000 Manifest this update: Thu 16 Apr 2026 16:04:54 +0000 Manifest next update: Thu 23 Apr 2026 16:04:54 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: AT868wAndWYh0TOlF1/R9cOIkQjzfE3F9QgSaUbwkoI=) 2: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: uLWtAzm0T2XZ8XrHmk3i4Qv1rCDDVOMUdZgDRK+R9AY=) 3: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: SMMdB5FfbHvQ8XxRMRHHqZDp8nFnCc1tqnhGm5C6OOg=) 4: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: 8mj54azzqhjHXfOWyNFC53u9e3MBttuOm97GXb6TaYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7567 (0x1d8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Apr 16 16:04:54 2026 GMT Not After : Apr 23 16:04:54 2026 GMT Subject: CN=69e108a6-75c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0b:b1:6c:97:6e:18:ce:fc:30:05:7f:21:19: ca:9f:ed:4f:45:b4:81:e6:14:e1:84:91:ba:00:86: 87:2a:02:48:f3:e2:fb:02:7f:cc:72:33:e9:3e:6c: bb:2c:fe:5b:95:aa:5e:b8:c7:df:47:33:cc:46:bb: ac:0d:2b:d5:e7:b6:9a:56:e8:e3:d6:02:4b:ad:93: 86:16:0a:01:e8:3f:fa:03:2a:d4:a8:0c:ff:1a:f4: 8e:33:ee:d6:6f:98:08:32:e2:9a:0e:47:73:c5:3b: bc:44:32:e0:c3:8c:6a:da:25:af:3c:cd:90:3a:93: df:07:39:7a:42:08:0c:70:51:a4:de:db:3a:ac:9d: db:de:d3:5a:99:56:8d:a4:ef:71:d0:c2:0c:2b:21: 54:ca:82:e2:f4:29:0c:d9:81:5f:0e:f0:34:e4:0a: dc:da:9c:92:b3:5e:43:f3:4e:53:b1:9f:ed:ca:c0: 78:5b:70:07:f0:d5:9d:56:7f:94:25:6a:53:1b:34: ef:b3:31:b4:46:26:05:01:48:9e:e2:41:34:ab:36: ff:3e:3c:23:11:30:04:53:dc:11:3d:a1:56:37:40: bc:7d:13:52:14:96:c2:4f:1b:3d:02:0d:fc:30:54: 95:81:c8:4c:60:02:01:b1:03:b2:e3:15:97:7e:f2: 2e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:40:F7:C4:39:EF:60:DA:97:DB:55:CA:B7:37:40:82:A3:49:E7:6A X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:49:d2:a1:c1:3d:4f:36:af:01:e6:b7:18:2f:85:33:a4:d3: 6d:2f:e2:7e:d6:e9:d7:c8:4a:ca:74:61:1c:ad:8c:4d:fe:2a: d7:62:0b:e0:79:f5:5d:8d:25:0e:b2:bb:16:07:f5:b5:b3:ad: 06:2c:31:d3:40:e9:da:78:72:5f:22:80:a2:97:ef:5f:50:a2: 21:df:c8:44:f8:de:db:b1:bb:9a:b8:0e:70:2f:23:bb:4d:46: a7:1a:e2:17:f0:3e:f5:ad:a5:5f:46:8d:23:86:76:6a:9e:e8: 46:98:04:5f:1c:41:1a:55:8e:d6:fb:f3:92:95:e2:06:75:15: 9d:4c:e9:ab:99:1d:b9:1e:7e:e1:1f:da:e5:fb:8b:f9:84:8e: 2d:af:72:e7:93:1c:7a:ac:a9:04:f4:4c:bb:f5:18:ff:c9:08: 55:ee:ae:30:50:9e:53:7b:e0:af:9c:ba:b8:e9:f3:f5:85:5a: db:2a:ce:00:45:eb:7a:d8:33:6b:a3:e9:92:ab:28:b6:b9:90: 0f:72:1b:80:66:d4:ea:a7:a7:f2:84:8c:36:ad:c3:23:93:76: e8:87:65:ed:5c:2e:6a:28:3c:78:1f:6c:ea:1c:a7:3c:1c:24: 2a:d2:d1:03:29:e3:b8:66:35:8b:9d:50:f6:7e:94:17:74:9c: 9d:b4:f3:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjYwNDE2MTYwNDU0WhcNMjYwNDIzMTYwNDU0WjAYMRYwFAYD VQQDEw02OWUxMDhhNi03NWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuguxbJduGM78MAV/IRnKn+1PRbSB5hThhJG6AIaHKgJI8+L7An/McjPpPmy7 LP5blapeuMffRzPMRrusDSvV57aaVujj1gJLrZOGFgoB6D/6AyrUqAz/GvSOM+7W b5gIMuKaDkdzxTu8RDLgw4xq2iWvPM2QOpPfBzl6QggMcFGk3ts6rJ3b3tNamVaN pO9x0MIMKyFUyoLi9CkM2YFfDvA05Arc2pySs15D805TsZ/tysB4W3AH8NWdVn+U JWpTGzTvszG0RiYFAUie4kE0qzb/PjwjETAEU9wRPaFWN0C8fRNSFJbCTxs9Ag38 MFSVgchMYAIBsQOy4xWXfvIuVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLhA98Q5 72Dal9tVyrc3QIKjSedqMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbEnSocE9TzavAea3GC+FM6TTbS/iftbp18hKynRhHK2MTf4q12IL4Hn1XY0l DrK7Fgf1tbOtBiwx00Dp2nhyXyKAopfvX1CiId/IRPje27G7mrgOcC8ju01Gpxri F/A+9a2lX0aNI4Z2ap7oRpgEXxxBGlWO1vvzkpXiBnUVnUzpq5kduR5+4R/a5fuL +YSOLa9y55MceqypBPRMu/UY/8kIVe6uMFCeU3vgr5y6uOnz9YVa2yrOAEXretgz a6PpkqsotrmQD3IbgGbU6qen8oSMNq3DI5N26Idl7Vwuaig8eB9s6hynPBwkKtLR AynjuGY1i51Q9n6UF3ScnbTzRQ== -----END CERTIFICATE-----Generated at Fri Apr 17 21:39:05 2026 by rpki-client