$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: NAx3mh8hkuMzalT/25BmO2oJMlcB1KAepTJP5dkpa5Y= Subject key identifier: FB:B6:B6:68:05:EF:52:79:BF:66:DC:12:05:00:50:82:FC:46:B3:36 Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1DB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1DAB Signing time: Sat 04 Apr 2026 16:01:53 +0000 Manifest this update: Sat 04 Apr 2026 16:01:52 +0000 Manifest next update: Sat 11 Apr 2026 16:01:52 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: OFhMYunj7D1df9u3EdFR825y8JW1wCCews7f3iOGKKU=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: bYaDtLZITXZD32x/G/ifQ4D5B/vhmcgFX9IrYx2NC+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7609 (0x1db9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B, serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Validity Not Before: Apr 4 16:01:52 2026 GMT Not After : Apr 11 16:01:52 2026 GMT Subject: CN=69d135f1-6684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3b:c8:e7:fa:01:61:f0:f3:5b:45:1d:b3:f7: 7d:a9:ce:a8:80:b4:ad:13:68:14:f8:8b:69:ce:43: fe:b7:36:dd:9e:41:63:75:55:ab:40:a1:99:47:ed: 7a:17:9c:11:f4:62:de:25:53:ea:a4:9c:36:8d:f3: 5a:ea:73:48:71:5f:fb:a0:f2:7d:d0:18:15:7c:58: 0d:1a:99:e2:10:43:8e:2d:eb:72:43:7f:a4:ce:0e: 62:97:15:04:b8:58:df:52:d1:be:81:b2:fe:0d:5c: ad:c5:38:ae:7f:0f:62:e0:1e:59:76:5e:df:dc:ee: d1:17:c5:57:24:a1:7a:a2:5a:72:ab:1a:a1:79:40: 99:df:5f:b0:7e:23:af:7d:64:12:a5:b7:d0:29:51: e0:85:39:3e:b4:8b:5c:14:1c:8f:96:8b:32:a9:08: d8:bf:2c:cd:31:1d:b0:fb:3c:18:5a:10:2c:08:9c: 81:dc:d2:bf:34:73:fe:4f:c4:b9:c6:24:c1:d6:76: d2:95:f9:45:54:b6:0f:bb:d2:63:a8:7a:63:cd:75: c1:51:ef:4d:a6:26:45:90:ad:28:7a:10:0b:00:5c: 28:8f:17:16:ea:4f:e2:91:4f:62:5c:5e:55:4d:9d: 7a:82:ac:78:4a:39:6d:65:b3:97:b4:bf:5a:18:91: af:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B6:B6:68:05:EF:52:79:BF:66:DC:12:05:00:50:82:FC:46:B3:36 X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:61:ef:94:23:bc:9d:45:fc:cc:d2:cc:c6:1b:49:f9:10:ff: c0:93:f6:01:3a:cc:4e:9f:44:2c:ba:4b:4e:c7:3c:35:89:2e: 60:8a:66:99:ac:df:0b:c3:ed:d7:1b:ec:77:ac:ca:9f:9b:66: 44:db:04:68:c6:3a:de:a7:7a:3e:b8:ad:25:66:db:fa:d5:57: 5e:29:cb:7d:03:51:86:30:d7:05:16:e6:b2:76:75:46:df:35: 52:59:4d:87:0a:3e:27:69:5b:8d:39:c4:7f:0c:5a:1c:67:07: 1d:3e:fe:58:af:06:eb:91:ed:82:d1:57:b1:43:87:3c:0a:24: 4f:83:1c:fa:d6:a0:10:18:7c:7f:78:97:ec:11:1f:43:62:e2: 88:e7:db:fa:b0:80:59:e6:15:a5:75:f4:3e:ac:4c:ec:73:29: da:ed:4d:52:17:9a:35:9b:f8:41:0a:ee:7c:c6:45:73:27:07: aa:fc:c4:49:7b:a0:77:35:01:8a:66:29:61:39:4b:89:70:50: fc:94:aa:e3:e2:36:47:6a:79:4a:d5:88:fe:9d:de:f3:b0:51: 57:25:9a:ba:80:bf:20:d2:5c:92:05:82:34:e7:83:20:a0:3c: aa:04:5e:a5:af:c5:d1:ae:1b:16:81:63:20:90:7c:a4:57:0f: 8f:39:4c:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjYwNDA0MTYwMTUyWhcNMjYwNDExMTYwMTUyWjAYMRYwFAYD VQQDEw02OWQxMzVmMS02Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jvI5/oBYfDzW0Uds/d9qc6ogLStE2gU+ItpzkP+tzbdnkFjdVWrQKGZR+16 F5wR9GLeJVPqpJw2jfNa6nNIcV/7oPJ90BgVfFgNGpniEEOOLetyQ3+kzg5ilxUE uFjfUtG+gbL+DVytxTiufw9i4B5Zdl7f3O7RF8VXJKF6olpyqxqheUCZ31+wfiOv fWQSpbfQKVHghTk+tItcFByPlosyqQjYvyzNMR2w+zwYWhAsCJyB3NK/NHP+T8S5 xiTB1nbSlflFVLYPu9JjqHpjzXXBUe9NpiZFkK0oehALAFwojxcW6k/ikU9iXF5V TZ16gqx4SjltZbOXtL9aGJGv3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPu2tmgF 71J5v2bcEgUAUIL8RrM2MB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd2HvlCO8nUX8zNLMxhtJ+RD/wJP2ATrMTp9ELLpLTsc8NYkuYIpmmazfC8Pt 1xvsd6zKn5tmRNsEaMY63qd6PritJWbb+tVXXinLfQNRhjDXBRbmsnZ1Rt81UllN hwo+J2lbjTnEfwxaHGcHHT7+WK8G65HtgtFXsUOHPAokT4Mc+tagEBh8f3iX7BEf Q2LiiOfb+rCAWeYVpXX0PqxM7HMp2u1NUheaNZv4QQrufMZFcycHqvzESXugdzUB imYpYTlLiXBQ/JSq4+I2R2p5StWI/p3e87BRVyWauoC/INJckgWCNOeDIKA8qgRe pa/F0a4bFoFjIJB8pFcPjzlMhQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:51 2026 by rpki-client