$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft File: vHENBWM8XhGwdEtxrruIriskRuM.mft (raw, json) Hash identifier: bUR/iuObh1n+0iyeS4N6G1ZBvipCVLcvqjxxQs6BHcY= Subject key identifier: DE:54:3F:B0:70:A8:00:29:CE:51:2B:87:0D:88:F5:CD:FA:4E:BC:5D Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 13E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft Manifest number: 13DE Signing time: Sat 04 Apr 2026 16:50:09 +0000 Manifest this update: Sat 04 Apr 2026 16:50:09 +0000 Manifest next update: Sat 11 Apr 2026 16:50:09 +0000 Files and hashes: 1: vHENBWM8XhGwdEtxrruIriskRuM.crl (hash: c4swxLES2UABjJHCs+ezTdYFJo7ba5or68UxUHBTNmY=) 2: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (hash: +8AddGBFIIMgwGJltYVSUMtKxs5lAyAGDBkgXORqOLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5096 (0x13e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406, serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: Apr 4 16:50:09 2026 GMT Not After : Apr 11 16:50:09 2026 GMT Subject: CN=69d14141-5b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5c:03:68:f1:56:b4:ff:c0:f2:17:bd:9e:e5: 09:c7:1f:0f:0e:ff:5e:0f:9e:cd:5a:64:62:e8:bb: fd:c0:14:30:c2:95:cb:79:97:a7:3d:91:8e:25:1c: b5:b1:d8:80:af:cc:a2:53:65:99:3d:ef:01:6d:de: e4:0a:0c:c6:61:43:d9:ca:6e:82:40:a0:fe:a6:7b: a6:b3:f4:d5:fc:cd:b5:74:5b:54:0f:49:f9:b6:c5: f8:21:af:bb:b7:ca:73:fd:80:45:6d:1c:c7:04:58: 6d:44:64:dd:c9:4b:2b:02:50:b0:e4:61:6e:7a:b2: e8:fc:b6:4a:7e:0a:0b:16:be:93:3b:75:43:b9:27: de:49:1f:a3:6f:61:a1:01:ec:9d:07:25:c4:06:53: ab:17:01:a2:4b:99:b8:da:b1:ff:cd:f3:32:2f:ac: d8:12:0a:35:20:a8:47:0a:89:a1:89:e2:34:cb:44: f6:04:bf:60:f9:83:ce:b0:8d:23:8b:6f:d7:e4:f0: 95:66:11:e2:96:66:19:ce:00:43:0b:e2:01:e8:b0: 38:d9:57:69:f4:36:cf:22:b5:c0:80:dc:85:a4:4e: 45:19:83:24:fc:d6:9a:99:85:b7:b6:06:a3:a9:fa: 0c:c0:76:5d:08:60:09:03:c2:61:ed:45:15:a8:4c: 3f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:54:3F:B0:70:A8:00:29:CE:51:2B:87:0D:88:F5:CD:FA:4E:BC:5D X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:84:f6:d9:ec:45:6f:f0:b4:08:34:e0:f1:ad:f2:e0:64:a1: cf:a6:e7:84:16:b1:d3:4a:a4:9a:66:fa:ba:74:37:6f:54:81: de:89:79:ed:6c:b7:15:9a:6f:1b:2d:db:39:cf:d4:bb:f5:78: f1:91:14:d5:c5:79:f8:a8:4b:3d:6d:0a:c5:ba:b5:39:39:a3: 2c:d5:0a:7c:b0:5d:6d:37:f4:fb:b7:dd:b6:b9:cf:88:9b:97: bd:9c:9e:eb:35:6c:77:84:47:ad:6a:ff:74:29:72:0b:28:d9: 1e:4a:a1:8f:63:af:fa:ec:76:28:e3:1c:f4:e5:02:af:33:fa: 8d:37:5c:0e:e5:d0:d5:9e:ff:cb:8f:34:7b:19:06:ee:b2:d8: de:8d:e2:4c:52:24:c8:e3:40:d4:fe:29:43:71:78:24:1e:c5: b8:de:23:a1:46:6a:94:15:56:46:70:44:28:59:b1:c7:c0:60: 25:64:04:4d:fa:1b:32:c4:a0:1e:5a:87:6b:93:24:c0:cc:26: 98:7e:63:32:4f:58:18:93:6f:20:07:da:3b:77:db:92:e8:40: 68:04:4d:38:dd:fe:84:85:e7:d2:7f:d7:1b:c4:ee:03:34:a7: 23:eb:60:1c:97:96:40:89:bc:f1:db:d6:d8:73:47:0d:2a:b0: 3d:e1:da:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjYwNDA0MTY1MDA5WhcNMjYwNDExMTY1MDA5WjAYMRYwFAYD VQQDEw02OWQxNDE0MS01Yjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lwDaPFWtP/A8he9nuUJxx8PDv9eD57NWmRi6Lv9wBQwwpXLeZenPZGOJRy1 sdiAr8yiU2WZPe8Bbd7kCgzGYUPZym6CQKD+pnums/TV/M21dFtUD0n5tsX4Ia+7 t8pz/YBFbRzHBFhtRGTdyUsrAlCw5GFuerLo/LZKfgoLFr6TO3VDuSfeSR+jb2Gh AeydByXEBlOrFwGiS5m42rH/zfMyL6zYEgo1IKhHComhieI0y0T2BL9g+YPOsI0j i2/X5PCVZhHilmYZzgBDC+IB6LA42Vdp9DbPIrXAgNyFpE5FGYMk/NaamYW3tgaj qfoMwHZdCGAJA8Jh7UUVqEw/5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN5UP7Bw qAApzlErhw2I9c36TrxdMB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFho R3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvoT22exFb/C0CDTg8a3y4GShz6bnhBax00qkmmb6unQ3b1SB3ol57Wy3FZpv Gy3bOc/Uu/V48ZEU1cV5+KhLPW0Kxbq1OTmjLNUKfLBdbTf0+7fdtrnPiJuXvZye 6zVsd4RHrWr/dClyCyjZHkqhj2Ov+ux2KOMc9OUCrzP6jTdcDuXQ1Z7/y480exkG 7rLY3o3iTFIkyONA1P4pQ3F4JB7FuN4joUZqlBVWRnBEKFmxx8BgJWQETfobMsSg HlqHa5MkwMwmmH5jMk9YGJNvIAfaO3fbkuhAaARNON3+hIXn0n/XG8TuAzSnI+tg HJeWQIm88dvW2HNHDSqwPeHarg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:06 2026 by rpki-client