$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: xbsuJwhjSpBvUZ6v/J4KiUT76GGXmQys5c1FHkjeRi4= Subject key identifier: A3:73:44:0A:47:A0:DF:E3:CF:02:21:54:88:2D:B9:72:C8:8A:5E:BA Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 067E Signing time: Thu 16 Apr 2026 22:26:21 +0000 Manifest this update: Thu 16 Apr 2026 22:26:20 +0000 Manifest next update: Thu 23 Apr 2026 22:26:20 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: AL63RUeyG5RbjEAtUb4ieS99mOxNv0SOr/PPNz60GHU=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: PC7NOM6+hnkG1gPiPyv+NHeq+JDdl65OBUlZqNZsHp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Apr 16 22:26:20 2026 GMT Not After : Apr 23 22:26:20 2026 GMT Subject: CN=69e1620c-8549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:27:73:ce:0b:1b:a6:c1:4f:df:ea:d5:21:eb: 29:75:ba:79:9b:12:65:d4:aa:8f:23:22:ef:9f:d9: ec:33:a4:67:ac:46:21:7e:76:a3:7a:82:53:cb:7d: b6:59:35:bd:c4:ac:4c:6f:88:6b:e8:eb:5b:dd:93: 25:32:27:7d:5e:7e:ca:32:40:b2:e9:51:61:eb:9b: 69:c8:07:73:d5:95:f8:d9:41:84:83:20:b4:d2:ef: ea:60:7e:5f:74:11:d5:ce:8e:3e:78:1e:15:1e:9c: 6b:37:21:9a:35:7c:00:ce:87:30:e3:50:fe:84:74: cc:bc:2c:90:3d:85:6d:96:70:3f:a6:92:34:6f:3f: 7c:37:0c:3c:6a:5b:9f:ef:fa:12:84:4f:70:95:27: ac:22:67:69:d2:ae:fb:2b:72:70:32:e1:94:47:84: 6a:6d:db:e3:ad:5e:cd:03:b1:2d:4a:54:41:b9:69: c0:9e:8c:33:be:66:9c:a1:91:db:b3:ef:d2:f5:bd: 17:0f:9b:eb:1d:1d:e1:5b:ef:de:2e:06:ca:dc:1b: f0:42:52:c3:97:a0:01:64:d2:22:a4:e5:a0:18:3f: c9:73:57:fa:c7:7c:8a:9a:b1:af:22:db:d8:34:83: f3:b8:34:49:6b:e8:5e:73:8c:35:92:31:48:ce:57: 2c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:73:44:0A:47:A0:DF:E3:CF:02:21:54:88:2D:B9:72:C8:8A:5E:BA X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1d:22:be:a7:1c:66:28:61:b9:fa:83:f1:b0:76:4b:81:e6: ac:a2:d8:00:28:5b:a4:ff:5c:ad:7c:ae:ce:80:d0:6d:19:c1: 7d:63:69:5f:df:bc:12:c6:eb:a5:f3:29:bd:6b:32:96:d3:ba: 4c:de:3b:f0:f5:a6:1b:2d:c3:82:bb:ed:ef:55:8a:89:5d:7a: 24:a0:5b:e2:90:c8:f5:65:ff:34:55:da:4f:cc:24:cd:d8:5b: 50:4a:50:df:83:c9:e1:4d:64:9f:ce:93:6c:32:d2:a9:41:97: 35:b8:36:12:02:63:c3:3a:d7:92:31:15:33:45:be:62:33:95: 39:88:b1:b3:ce:3e:e7:39:d6:e3:b8:a1:90:be:75:f6:a2:d3: 70:1d:99:b4:99:da:48:5f:d0:db:22:9d:e7:5b:3e:de:67:0f: d3:74:5b:1f:c7:70:f2:fb:64:95:77:b4:05:67:4e:b1:ee:4d: 2a:46:30:ec:34:dd:62:12:79:84:16:65:ae:3f:e3:e2:3d:4e: 26:d6:c9:1b:9d:4d:40:f3:5e:62:23:04:f9:09:8f:7b:b6:62: ff:6f:b4:83:b5:9f:80:84:32:c4:92:f5:f8:15:81:90:d8:58: f9:15:63:dc:9d:43:6f:e2:f5:e0:a8:0b:23:70:52:f2:9c:38: 15:af:f2:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjYwNDE2MjIyNjIwWhcNMjYwNDIzMjIyNjIwWjAYMRYwFAYD VQQDEw02OWUxNjIwYy04NTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAridzzgsbpsFP3+rVIespdbp5mxJl1KqPIyLvn9nsM6RnrEYhfnajeoJTy322 WTW9xKxMb4hr6Otb3ZMlMid9Xn7KMkCy6VFh65tpyAdz1ZX42UGEgyC00u/qYH5f dBHVzo4+eB4VHpxrNyGaNXwAzocw41D+hHTMvCyQPYVtlnA/ppI0bz98Nww8aluf 7/oShE9wlSesImdp0q77K3JwMuGUR4RqbdvjrV7NA7EtSlRBuWnAnowzvmacoZHb s+/S9b0XD5vrHR3hW+/eLgbK3BvwQlLDl6ABZNIipOWgGD/Jc1f6x3yKmrGvItvY NIPzuDRJa+hec4w1kjFIzlcs0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKNzRApH oN/jzwIhVIgtuXLIil66MB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhB0ivqccZihhufqD8bB2S4HmrKLYAChbpP9crXyuzoDQbRnBfWNpX9+8Esbr pfMpvWsyltO6TN478PWmGy3Dgrvt71WKiV16JKBb4pDI9WX/NFXaT8wkzdhbUEpQ 34PJ4U1kn86TbDLSqUGXNbg2EgJjwzrXkjEVM0W+YjOVOYixs84+5znW47ihkL51 9qLTcB2ZtJnaSF/Q2yKd51s+3mcP03RbH8dw8vtklXe0BWdOse5NKkYw7DTdYhJ5 hBZlrj/j4j1OJtbJG51NQPNeYiME+QmPe7Zi/2+0g7WfgIQyxJL1+BWBkNhY+RVj 3J1Db+L14KgLI3BS8pw4Fa/ybg== -----END CERTIFICATE-----Generated at Fri Apr 17 06:18:08 2026 by rpki-client