$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft File: Fh4CKuiXURLudYnUmzFmDKkKBBA.mft (raw, json) Hash identifier: vfK/Ea0oZK8aOvfJ1XA9tt1OxDAYioCIH+t9dt+o/JA= Subject key identifier: 58:3D:DF:8D:D9:ED:98:05:BC:B0:A7:62:50:FA:12:8F:E9:07:84:85 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0C7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft Manifest number: 0C68 Signing time: Sat 04 Apr 2026 18:28:46 +0000 Manifest this update: Sat 04 Apr 2026 18:28:46 +0000 Manifest next update: Sat 11 Apr 2026 18:28:46 +0000 Files and hashes: 1: Fh4CKuiXURLudYnUmzFmDKkKBBA.crl (hash: nblrCr53PEVwkvxiPHu6hS9Fev4wWBz9lLFUnneA5cQ=) 2: 8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa (hash: aBLu12X/KjBQz6+vTYYYPJq2RB5e32VzOLCjoKt8rHA=) 3: 8AAF803A1C8A11EABAA73A62C4F9AE02.roa (hash: OyMpzW+KeT1/VlF8h4v55nU9WTVj14mDgJ/Hy/mEDTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F, serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Apr 4 18:28:46 2026 GMT Not After : Apr 11 18:28:46 2026 GMT Subject: CN=69d1585e-ebbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8d:b7:6e:0b:60:b8:98:d2:a7:9d:a8:18:c1: 2e:3a:4d:5c:0b:52:c0:43:8c:a6:a4:07:1e:fd:3a: 5b:ee:b5:02:4d:1b:f9:53:b4:b9:f9:dd:48:86:26: 57:fa:ef:85:c7:11:da:8f:81:af:12:a0:69:50:82: e3:5e:c8:b2:29:26:49:7d:39:a7:9d:6c:83:a9:5c: 32:b6:02:2e:87:e2:f4:1c:c4:9f:f0:61:7d:9b:c0: 61:c6:8c:ab:ac:a7:13:93:a4:25:a2:c1:f3:5b:61: 1b:8f:35:c9:82:00:e1:0a:08:4a:d3:6a:39:b7:a0: fb:f2:b3:5e:60:21:0f:a3:db:da:70:7a:28:a0:9d: cd:3f:a8:1f:52:5d:0c:6b:87:aa:64:be:92:7e:b9: 85:fd:4d:c7:18:a6:b1:98:1c:b6:1d:59:ca:ee:1b: c2:72:46:86:a7:6c:9e:2e:d1:e8:6e:e7:4f:a5:8a: 4b:19:d2:ea:de:7c:e5:e2:d1:e2:05:25:2b:de:ab: 47:e1:05:7d:25:ba:55:2b:62:47:1a:b6:12:d8:c0: 10:c8:36:b9:b2:51:ff:93:d2:22:3f:e8:04:e6:65: cd:49:a7:41:d4:ff:88:48:c1:22:d0:11:51:dc:ae: 99:71:51:f4:9e:1c:0c:76:de:9d:90:1b:2a:72:4d: 9a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:3D:DF:8D:D9:ED:98:05:BC:B0:A7:62:50:FA:12:8F:E9:07:84:85 X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:c8:df:7c:b0:cc:89:93:e3:44:12:55:b6:42:92:aa:5a:b5: fc:4f:05:f7:98:96:b0:54:92:86:8a:2a:b2:94:6d:20:4b:bc: d8:37:71:b5:14:b6:e9:a1:fc:cc:60:89:37:dc:7c:dd:29:cd: a7:8b:42:8d:09:73:85:f5:8a:ef:c5:54:7d:05:eb:95:90:88: d2:67:0b:3b:fb:15:5d:b2:1c:58:81:89:9e:d3:1a:cf:bd:cb: 0f:6a:38:74:bf:39:0e:c4:2e:eb:05:f4:83:96:e5:e6:58:42: eb:88:e7:69:07:46:32:3b:d1:a6:95:65:2b:35:38:71:ae:61: c1:42:b7:37:3e:c6:e0:85:bb:2a:3a:e2:91:78:e0:e2:30:e9: 19:f3:06:e3:55:00:4f:bf:e1:06:d5:6e:bf:57:30:3b:cf:f7: 53:cb:49:ef:f5:9c:69:fe:56:78:d9:af:65:59:0f:f2:94:ed: 54:f8:62:f9:1d:52:d4:80:5c:70:95:f6:38:76:28:2b:10:68: 7d:d5:bd:d4:92:a3:1e:f3:88:44:cb:bb:67:29:06:32:e4:23: 0d:7b:8d:49:1b:db:d4:58:d6:d3:85:e6:77:9b:70:de:33:27: 8a:79:0d:37:d5:84:5a:6c:56:1e:ab:d7:3b:35:3e:5f:40:94: 91:09:22:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjYwNDA0MTgyODQ2WhcNMjYwNDExMTgyODQ2WjAYMRYwFAYD VQQDEw02OWQxNTg1ZS1lYmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY23bgtguJjSp52oGMEuOk1cC1LAQ4ympAce/Tpb7rUCTRv5U7S5+d1IhiZX +u+FxxHaj4GvEqBpUILjXsiyKSZJfTmnnWyDqVwytgIuh+L0HMSf8GF9m8Bhxoyr rKcTk6QlosHzW2EbjzXJggDhCghK02o5t6D78rNeYCEPo9vacHoooJ3NP6gfUl0M a4eqZL6SfrmF/U3HGKaxmBy2HVnK7hvCckaGp2yeLtHobudPpYpLGdLq3nzl4tHi BSUr3qtH4QV9JbpVK2JHGrYS2MAQyDa5slH/k9IiP+gE5mXNSadB1P+ISMEi0BFR 3K6ZcVH0nhwMdt6dkBsqck2aMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFg9343Z 7ZgFvLCnYlD6Eo/pB4SFMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY1Ri9CRjk2NkU0QTFDODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVS THVkWW5VbXpGbURLa0tCQkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb8jffLDMiZPjRBJVtkKSqlq1/E8F95iWsFSShooqspRtIEu82DdxtRS26aH8 zGCJN9x83SnNp4tCjQlzhfWK78VUfQXrlZCI0mcLO/sVXbIcWIGJntMaz73LD2o4 dL85DsQu6wX0g5bl5lhC64jnaQdGMjvRppVlKzU4ca5hwUK3Nz7G4IW7KjrikXjg 4jDpGfMG41UAT7/hBtVuv1cwO8/3U8tJ7/Wcaf5WeNmvZVkP8pTtVPhi+R1S1IBc cJX2OHYoKxBofdW91JKjHvOIRMu7ZykGMuQjDXuNSRvb1FjW04Xmd5tw3jMninkN N9WEWmxWHqvXOzU+X0CUkQkieA== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:44 2026 by rpki-client