$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: pHAtR/vk8VmZT1DAlBtXZmaVQNOrVqwNUotR5Kd6lyQ= Subject key identifier: 07:60:9A:30:C9:DE:F1:F1:09:D2:FE:36:DF:57:3E:D9:0E:5E:BB:DC Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0C69 Signing time: Thu 16 Apr 2026 18:34:13 +0000 Manifest this update: Thu 16 Apr 2026 18:34:12 +0000 Manifest next update: Thu 23 Apr 2026 18:34:12 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: KxRHF6QB1lExhUWsEaScSS5oI5JA3+WDE5GIKMh1rCs=) 2: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: xWH01miclcx5O31BfTSaGuwngoIny+30I/eW071OJcs=) 3: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: bTLlb/2u7iS5Ad2viXPUXPjVg32ujRVd0pzOx369Isg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Apr 16 18:34:12 2026 GMT Not After : Apr 23 18:34:12 2026 GMT Subject: CN=69e12ba5-2705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:05:d5:b0:48:b3:76:0f:2d:b0:7a:a2:29:72: 05:8f:8d:62:ee:49:8b:aa:33:87:b6:23:41:bd:4d: dc:96:f7:c1:85:57:0c:09:3a:db:43:48:b4:f8:c5: ee:de:e8:d1:5e:f6:34:e1:18:30:69:dc:ee:de:7b: 08:b8:27:0a:78:11:bd:ed:64:15:63:b8:40:8a:4a: 8d:b1:54:c3:57:98:b0:19:b7:63:5b:89:1f:3c:b9: 3b:85:37:86:be:93:7d:b2:80:9a:26:fc:d0:4d:56: ed:0e:80:38:2c:42:93:32:64:23:23:7b:70:45:df: db:76:0a:10:11:d5:e5:b4:5f:e5:a6:47:42:3e:b4: 7a:6f:90:02:25:87:08:4a:f1:94:e4:5d:4b:85:d2: ae:ee:ad:b8:26:a1:73:9a:ba:44:84:ef:33:74:d9: 12:f1:a4:7b:86:d5:5b:96:83:b0:a6:ab:eb:8a:2a: 56:20:87:de:ae:0b:e1:c9:c7:48:e1:aa:94:37:c6: 38:f5:24:1f:5b:88:f3:64:c9:b4:4a:b7:a3:0e:82: a0:d6:bd:33:52:b1:e9:ae:82:0b:eb:92:2b:00:85: 40:19:56:96:bb:b3:22:b1:28:85:01:cb:57:dd:f7: 13:07:73:72:c6:00:d5:a1:0d:e8:c5:30:ee:b4:5c: 28:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:60:9A:30:C9:DE:F1:F1:09:D2:FE:36:DF:57:3E:D9:0E:5E:BB:DC X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:e9:7a:30:c0:39:2a:fd:3e:7c:20:d6:4a:4f:76:3c:54:4a: 7a:67:6e:44:2d:1b:8a:b2:21:dd:39:1d:e1:da:53:8d:ac:d2: d6:fb:6d:9c:be:23:f2:36:13:72:96:59:46:fc:d2:09:5f:6a: 70:18:99:45:64:e0:73:29:55:2b:d3:9a:1f:4e:93:d6:cb:78: c4:33:61:71:7f:e6:e8:28:70:32:d8:62:b3:57:49:69:20:0e: f0:39:2c:b3:51:ef:2d:17:3d:24:c8:41:0f:13:4a:74:8d:0f: 63:e6:fa:48:15:a5:fd:e8:14:cd:41:ff:63:d3:b8:84:c1:45: 3f:b0:5d:69:86:11:3c:37:71:06:99:27:ac:00:04:aa:c4:6f: 70:96:01:ea:dc:55:22:33:ee:03:9a:74:7b:57:88:eb:7d:e0: ac:49:30:d8:f1:bd:d4:d7:97:b6:30:dc:e7:66:99:cb:4b:57: 3d:aa:e6:23:3f:fa:ca:fb:55:e6:5b:a0:71:66:07:73:e0:dd: 87:4a:48:7b:86:16:bc:f3:5d:30:2f:b2:81:78:db:63:b4:e0: 39:f1:ca:28:03:98:db:ac:0a:e2:19:82:6c:d8:ae:a9:56:f6: a7:3a:91:43:9f:4c:ee:80:ec:64:37:dc:8b:9b:12:91:50:8e: b5:d4:1f:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjYwNDE2MTgzNDEyWhcNMjYwNDIzMTgzNDEyWjAYMRYwFAYD VQQDEw02OWUxMmJhNS0yNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAXVsEizdg8tsHqiKXIFj41i7kmLqjOHtiNBvU3clvfBhVcMCTrbQ0i0+MXu 3ujRXvY04Rgwadzu3nsIuCcKeBG97WQVY7hAikqNsVTDV5iwGbdjW4kfPLk7hTeG vpN9soCaJvzQTVbtDoA4LEKTMmQjI3twRd/bdgoQEdXltF/lpkdCPrR6b5ACJYcI SvGU5F1LhdKu7q24JqFzmrpEhO8zdNkS8aR7htVbloOwpqvriipWIIfergvhycdI 4aqUN8Y49SQfW4jzZMm0SrejDoKg1r0zUrHproIL65IrAIVAGVaWu7MisSiFActX 3fcTB3NyxgDVoQ3oxTDutFwoNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAdgmjDJ 3vHxCdL+Nt9XPtkOXrvcMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL+l6MMA5Kv0+fCDWSk92PFRKemduRC0birIh3Tkd4dpTjazS1vttnL4j8jYT cpZZRvzSCV9qcBiZRWTgcylVK9OaH06T1st4xDNhcX/m6ChwMthis1dJaSAO8Dks s1HvLRc9JMhBDxNKdI0PY+b6SBWl/egUzUH/Y9O4hMFFP7BdaYYRPDdxBpknrAAE qsRvcJYB6txVIjPuA5p0e1eI633grEkw2PG91NeXtjDc52aZy0tXParmIz/6yvtV 5lugcWYHc+Ddh0pIe4YWvPNdMC+ygXjbY7TgOfHKKAOY26wK4hmCbNiuqVb2pzqR Q59M7oDsZDfci5sSkVCOtdQfZA== -----END CERTIFICATE-----Generated at Fri Apr 17 15:50:55 2026 by rpki-client