$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: +CsKY2C8nYAwmLj1Ca/I11J6LGrd3uNXmxw5chrAp8Y= Subject key identifier: 78:61:60:70:9D:0A:B4:9D:4F:54:26:F4:35:0F:1A:BE:F8:FF:30:90 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 01C4 Signing time: Sun 05 Apr 2026 03:32:20 +0000 Manifest this update: Sun 05 Apr 2026 03:32:20 +0000 Manifest next update: Sun 12 Apr 2026 03:32:20 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: nqjw/o405sKEkQJUWpG27TMg9Zz/G+Vw7TdbpN2V4sc=) 2: 749BAA209BC911F0B2979527C4F9AE02.roa (hash: yisXBV9UfHcLi2zgyB/ljlR1ltN6rD2jMrD7xMFxYDU=) 3: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: I8WOH8J1MhGqNbLqVfvMzdR8rX2Yq8UcwqrXooh3Mjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Apr 5 03:32:20 2026 GMT Not After : Apr 12 03:32:20 2026 GMT Subject: CN=69d1d7c4-f8fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:de:be:76:5b:6c:62:91:fd:3e:c6:17:82:da: 8a:c2:28:0e:f3:0d:46:5a:33:12:ea:11:6c:fd:1f: e5:22:5f:21:ad:8b:24:a3:20:51:5e:13:17:25:ef: 1b:9e:a2:f6:bd:c1:90:0e:0f:a4:86:4c:b9:00:db: 0a:ec:5b:12:52:91:98:0f:f7:95:f6:04:84:f2:40: dd:4f:de:df:e7:88:dd:85:57:c7:00:a4:b4:fd:04: e4:93:44:07:db:f4:33:73:c6:1a:e3:29:58:bf:ea: 06:6e:c7:a7:79:44:9a:ac:41:3c:7e:cf:bd:ca:bc: e5:c1:e7:c1:d6:2c:a3:f7:bc:f6:b4:26:e8:ce:0d: 69:1d:10:bc:7d:59:00:8b:4b:b4:8c:f4:86:10:7a: a5:72:99:08:09:c7:4a:fe:13:cc:90:70:38:cc:5d: b5:7f:ff:38:e0:44:d9:06:b3:5e:d9:42:f2:3a:e7: 2d:3d:2c:c7:54:8f:50:d5:dd:be:6d:67:47:72:53: 2d:1f:74:71:05:d6:a7:36:6b:9e:48:a7:fa:2b:fa: 02:df:23:6d:b9:ad:f2:4f:5c:ab:71:8c:06:f6:4f: ea:6a:de:4e:84:b4:63:75:3d:9a:9f:d7:f5:4f:1f: 15:76:03:29:0d:bd:0c:ab:92:b2:f9:b7:86:c5:d6: 54:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:61:60:70:9D:0A:B4:9D:4F:54:26:F4:35:0F:1A:BE:F8:FF:30:90 X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f1:5f:7d:76:7f:02:25:8c:d6:09:1d:c3:42:bf:5f:79:60: f1:90:65:1f:4a:fd:f0:6f:62:7c:34:8d:e4:70:2f:04:ca:b7: 78:c1:9f:e7:8a:1c:23:11:63:cd:6f:4e:a2:aa:ad:d6:dd:dc: c1:f9:da:a2:fc:ec:3b:be:e1:09:bb:c2:53:44:03:e3:11:c5: 46:22:80:3e:2c:c6:6f:2e:39:a1:c1:17:78:1d:4a:3d:bc:0b: be:a6:75:f5:1a:8a:64:2e:57:e2:53:68:08:8b:4a:ff:62:4e: 8f:82:29:1f:49:95:56:e2:70:2c:90:94:8c:1f:28:b1:21:d6: ae:2a:29:48:11:27:f9:8e:56:7d:44:2b:80:11:e7:61:61:c3: 3d:90:74:5f:56:58:18:4d:ef:07:00:83:35:ed:bd:83:f9:67: f8:7c:cc:70:47:ca:c0:c6:76:37:66:06:66:18:c8:87:42:9f: 14:f6:60:04:8c:30:c0:86:62:18:26:12:7c:17:21:67:67:2a: c8:d7:90:ea:7e:3e:9b:31:8f:65:98:d2:47:9a:4f:c8:4a:c8: 24:15:43:b0:d3:f8:90:5c:78:c7:52:74:ee:e8:55:1e:f2:a3: 3a:1f:d6:a4:a1:68:05:ff:21:e3:5c:0d:dd:36:10:a8:3a:21: 4f:02:ae:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjYwNDA1MDMzMjIwWhcNMjYwNDEyMDMzMjIwWjAYMRYwFAYD VQQDEw02OWQxZDdjNC1mOGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmd6+dltsYpH9PsYXgtqKwigO8w1GWjMS6hFs/R/lIl8hrYskoyBRXhMXJe8b nqL2vcGQDg+khky5ANsK7FsSUpGYD/eV9gSE8kDdT97f54jdhVfHAKS0/QTkk0QH 2/Qzc8Ya4ylYv+oGbseneUSarEE8fs+9yrzlwefB1iyj97z2tCbozg1pHRC8fVkA i0u0jPSGEHqlcpkICcdK/hPMkHA4zF21f/844ETZBrNe2ULyOuctPSzHVI9Q1d2+ bWdHclMtH3RxBdanNmueSKf6K/oC3yNtua3yT1yrcYwG9k/qat5OhLRjdT2an9f1 Tx8VdgMpDb0Mq5Ky+beGxdZUZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHhhYHCd CrSdT1Qm9DUPGr74/zCQMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk3Mi8yNDVCM0REQ0EzRTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJX dnlkTGkzcUpqR2tsVHJ1WU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmvFffXZ/AiWM1gkdw0K/X3lg8ZBlH0r98G9ifDSN5HAvBMq3eMGf54ocIxFj zW9Ooqqt1t3cwfnaovzsO77hCbvCU0QD4xHFRiKAPizGby45ocEXeB1KPbwLvqZ1 9RqKZC5X4lNoCItK/2JOj4IpH0mVVuJwLJCUjB8osSHWriopSBEn+Y5WfUQrgBHn YWHDPZB0X1ZYGE3vBwCDNe29g/ln+HzMcEfKwMZ2N2YGZhjIh0KfFPZgBIwwwIZi GCYSfBchZ2cqyNeQ6n4+mzGPZZjSR5pPyErIJBVDsNP4kFx4x1J07uhVHvKjOh/W pKFoBf8h41wN3TYQqDohTwKucA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:34 2026 by rpki-client