$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: VeO+4+IaoKdMmPvOytl0KMIB5+Y+iDTRKLRYibPIYDo= Subject key identifier: A9:E1:89:6A:C5:CA:32:98:4B:4F:A2:A4:D8:D6:C5:D8:10:2A:F4:A3 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 3559 Signing time: Sat 04 Apr 2026 14:43:33 +0000 Manifest this update: Sat 04 Apr 2026 14:43:33 +0000 Manifest next update: Sat 11 Apr 2026 14:43:33 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: VlAngR1+vTu06TtWLMceb2R9XQMjkvpApm4tPiA0dXQ=) 2: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM=) 3: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: tHNQzy8hGbC74qvfPySY/DdlrWAoieO3qDg8gWPCkbw=) 4: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: 1fzcpx/xvt8MI/rxgZvshROVbIS3fA549ggTMJ5QBwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13716 (0x3594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Apr 4 14:43:33 2026 GMT Not After : Apr 11 14:43:33 2026 GMT Subject: CN=69d12395-5434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fc:f2:57:36:7a:1f:4c:57:b0:ea:1a:3a:a5: 64:32:e3:81:12:56:26:74:c6:d2:49:44:cf:0c:1a: d9:ed:1a:8c:5a:21:fb:87:b1:63:53:05:64:f5:cd: a2:14:6c:e0:3c:6d:0f:bf:10:23:08:b9:13:28:05: 19:70:e5:4f:a9:8f:52:a6:96:a7:71:1e:ce:9e:9e: 4c:bf:45:0d:3b:77:73:60:37:66:7c:15:24:90:89: 9c:ea:85:50:3b:f8:26:a9:37:d5:ec:08:82:42:b3: ac:df:1d:3e:e6:e4:b6:d4:ef:08:a0:90:86:bb:43: 96:d2:6b:e8:42:ed:91:64:28:92:bf:ce:aa:06:d2: 22:7b:0f:a2:f1:6b:af:88:f8:ea:90:a4:70:dc:ed: 2b:1b:ab:92:ae:be:7b:e5:a1:97:02:7e:b1:7b:3f: 0b:0a:07:19:3c:9f:68:84:ee:82:99:80:30:d0:99: 6c:72:12:15:1e:6b:b0:42:6f:ca:79:f2:4d:0f:a2: b2:b9:5b:56:91:98:43:b5:b9:40:9b:1a:d2:3d:81: aa:91:e1:8d:cd:c8:a7:2e:82:85:a0:6c:1a:2b:15: 00:47:a3:a3:ed:33:fb:c4:ec:08:05:9f:ae:e2:ef: 27:aa:d2:53:53:e9:e6:f6:7c:05:59:43:fb:66:9f: bc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E1:89:6A:C5:CA:32:98:4B:4F:A2:A4:D8:D6:C5:D8:10:2A:F4:A3 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c8:25:a0:d7:33:2f:a6:5b:85:51:dc:b6:0d:ee:49:f4:35: 3a:3f:e1:16:6d:ed:8b:16:8f:dc:91:ae:1b:92:3d:83:e4:01: e1:8d:de:08:76:cd:5c:6f:ad:63:76:77:e8:f5:4f:f5:e1:94: 3e:4d:6f:fa:e9:6d:71:b3:3d:04:1b:c4:08:70:75:03:8c:20: 15:2f:84:22:3f:c4:3c:f6:6d:bf:e7:41:46:f7:62:d8:92:e4: c8:c6:b9:e8:e3:c8:22:1d:76:72:04:c6:71:72:a4:68:58:a8: cc:48:7c:80:32:1b:a8:98:65:16:1f:85:2e:b1:51:79:55:4d: a4:25:75:18:4c:e9:eb:61:c1:c6:3f:36:bf:42:ab:73:47:26: 25:7a:b5:7c:fb:05:51:36:9b:8e:ed:af:93:3d:42:b6:30:61: fa:89:ce:eb:9f:7c:01:c9:1d:5d:69:11:ca:24:66:52:54:6d: 50:c3:9f:34:73:5c:61:e2:c1:dd:af:75:0d:11:c2:ab:88:4f: 74:4c:a0:aa:59:49:18:de:b1:4b:d8:e1:76:58:72:33:b0:52: b0:d5:47:29:25:2e:02:45:93:1e:84:37:03:42:42:37:9d:94: 2b:1d:fd:4b:44:7b:4b:0d:2c:9c:21:4b:d5:23:23:62:05:cf: 84:35:63:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjYwNDA0MTQ0MzMzWhcNMjYwNDExMTQ0MzMzWjAYMRYwFAYD VQQDEw02OWQxMjM5NS01NDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvzyVzZ6H0xXsOoaOqVkMuOBElYmdMbSSUTPDBrZ7RqMWiH7h7FjUwVk9c2i FGzgPG0PvxAjCLkTKAUZcOVPqY9SppancR7Onp5Mv0UNO3dzYDdmfBUkkImc6oVQ O/gmqTfV7AiCQrOs3x0+5uS21O8IoJCGu0OW0mvoQu2RZCiSv86qBtIiew+i8Wuv iPjqkKRw3O0rG6uSrr575aGXAn6xez8LCgcZPJ9ohO6CmYAw0JlschIVHmuwQm/K efJND6KyuVtWkZhDtblAmxrSPYGqkeGNzcinLoKFoGwaKxUAR6Oj7TP7xOwIBZ+u 4u8nqtJTU+nm9nwFWUP7Zp+8jQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKnhiWrF yjKYS0+ipNjWxdgQKvSjMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAccgloNczL6ZbhVHctg3uSfQ1Oj/hFm3tixaP3JGuG5I9g+QB4Y3eCHbNXG+t Y3Z36PVP9eGUPk1v+ultcbM9BBvECHB1A4wgFS+EIj/EPPZtv+dBRvdi2JLkyMa5 6OPIIh12cgTGcXKkaFiozEh8gDIbqJhlFh+FLrFReVVNpCV1GEzp62HBxj82v0Kr c0cmJXq1fPsFUTabju2vkz1CtjBh+onO6598AckdXWkRyiRmUlRtUMOfNHNcYeLB 3a91DRHCq4hPdEygqllJGN6xS9jhdlhyM7BSsNVHKSUuAkWTHoQ3A0JCN52UKx39 S0R7Sw0snCFL1SMjYgXPhDVjKQ== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:00 2026 by rpki-client