$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft File: 5CK_AmFA0gPv1r_eruJoqosEZtU.mft (raw, json) Hash identifier: bfTgvvRifIqChOYcGiiVwyqQShyv/8qooVTjce5IqHw= Subject key identifier: 24:DE:97:01:63:8A:13:EB:2D:CE:E3:74:B9:BB:92:05:62:D9:57:31 Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft Manifest number: 0368 Signing time: Sun 05 Apr 2026 00:39:15 +0000 Manifest this update: Sun 05 Apr 2026 00:39:15 +0000 Manifest next update: Sun 12 Apr 2026 00:39:15 +0000 Files and hashes: 1: 5CK_AmFA0gPv1r_eruJoqosEZtU.crl (hash: R8WWa3lMgMDvDBUl/jNGTvOgNgqMrZYljWqlT3a0j9k=) 2: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (hash: f5h2sD9kDZrihuG/xzAAfLrQX5aqTNr2XYWOpp8neZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174, serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: Apr 5 00:39:15 2026 GMT Not After : Apr 12 00:39:15 2026 GMT Subject: CN=69d1af33-4dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2e:44:6e:45:90:f3:94:6d:91:d4:85:23:d6: 3b:ed:c4:31:c4:fd:ac:6a:18:dd:a1:2b:8c:0e:89: 29:1c:2a:99:78:42:4e:4f:ec:25:25:d9:4e:af:65: 22:8d:8c:db:c2:ad:5a:d7:8b:4b:16:8b:a4:b9:16: 06:c0:9b:ca:da:59:44:ee:3b:78:88:8c:67:28:6c: 59:9e:84:59:b1:ab:a8:30:48:92:86:4b:8e:d8:86: 30:66:69:b8:e4:9e:31:61:c5:a9:28:76:a3:0c:fd: 44:ba:a2:8a:0c:66:a3:05:c0:5e:c0:1b:95:b1:4e: 81:67:8f:63:a1:53:9b:9f:73:59:42:47:11:90:54: ac:d0:19:d1:47:b7:34:28:a5:64:27:b0:cd:92:87: 16:f7:9c:98:18:9b:34:df:83:7f:7a:a3:5d:2d:e8: a8:4c:7c:53:dd:51:90:19:b2:a8:10:71:29:58:4a: 43:0a:79:77:06:60:ee:73:0b:94:f8:e0:4d:17:ee: 14:31:23:e8:24:a5:fa:23:51:4f:f0:c7:ad:27:37: b4:0a:a3:d7:5a:2c:3a:80:9b:3f:a6:7e:60:5f:2c: 1c:b4:c8:fe:96:95:19:33:de:f1:82:83:87:29:3c: 01:0f:a8:bf:cb:3d:f0:56:40:2d:21:b4:99:37:39: b1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DE:97:01:63:8A:13:EB:2D:CE:E3:74:B9:BB:92:05:62:D9:57:31 X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8f:44:b9:eb:fb:5e:03:d2:57:93:5c:17:e8:fa:e5:da:d0: 28:ed:78:99:ad:16:db:44:01:cf:f6:5f:bb:fb:67:30:ef:5d: a6:6a:20:80:0d:c1:2f:a9:13:eb:1d:52:f9:8f:4a:dc:42:8a: 15:30:e5:5f:11:66:91:d2:16:99:7a:90:84:74:99:70:09:69: 73:05:0d:d1:4d:da:1a:58:9f:ec:0c:d2:06:18:9c:20:00:03: e6:7b:1f:ea:f5:8d:e6:07:e9:47:13:ad:d5:57:8e:08:36:f2: a5:39:d0:20:e2:39:fa:d8:b2:1f:db:42:fd:88:62:11:1a:d2: 08:b9:1b:31:a1:af:fb:e4:1f:fc:d0:da:72:7e:92:60:93:97: 39:2f:37:7a:63:d9:2b:a7:a5:4c:2e:fd:5f:e0:41:aa:5c:64: 25:51:34:fb:52:6d:e2:56:73:5d:9a:8f:0d:a8:7e:8e:c3:07: 8f:c8:2d:62:15:3c:9d:01:93:9b:87:ff:47:96:6d:74:e4:31: 37:c6:8e:fd:13:39:54:3f:53:d1:9a:48:3b:28:31:bc:e8:7c: a4:fd:a2:00:65:b0:14:e9:87:f1:00:bf:74:09:d3:c9:24:06: f9:1b:f7:eb:f7:8f:de:39:e4:e7:c0:cf:47:cb:f7:18:7a:35: 94:76:d8:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjYwNDA1MDAzOTE1WhcNMjYwNDEyMDAzOTE1WjAYMRYwFAYD VQQDEw02OWQxYWYzMy00ZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnC5EbkWQ85RtkdSFI9Y77cQxxP2sahjdoSuMDokpHCqZeEJOT+wlJdlOr2Ui jYzbwq1a14tLFoukuRYGwJvK2llE7jt4iIxnKGxZnoRZsauoMEiShkuO2IYwZmm4 5J4xYcWpKHajDP1EuqKKDGajBcBewBuVsU6BZ49joVObn3NZQkcRkFSs0BnRR7c0 KKVkJ7DNkocW95yYGJs034N/eqNdLeioTHxT3VGQGbKoEHEpWEpDCnl3BmDucwuU +OBNF+4UMSPoJKX6I1FP8MetJze0CqPXWiw6gJs/pn5gXywctMj+lpUZM97xgoOH KTwBD6i/yz3wVkAtIbSZNzmxYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCTelwFj ihPrLc7jdLm7kgVi2VcxMB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBn UHYxcl9lcnVKb3Fvc0VadFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe49Euev7XgPSV5NcF+j65drQKO14ma0W20QBz/Zfu/tnMO9dpmoggA3BL6kT 6x1S+Y9K3EKKFTDlXxFmkdIWmXqQhHSZcAlpcwUN0U3aGlif7AzSBhicIAAD5nsf 6vWN5gfpRxOt1VeOCDbypTnQIOI5+tiyH9tC/YhiERrSCLkbMaGv++Qf/NDacn6S YJOXOS83emPZK6elTC79X+BBqlxkJVE0+1Jt4lZzXZqPDah+jsMHj8gtYhU8nQGT m4f/R5ZtdOQxN8aO/RM5VD9T0ZpIOygxvOh8pP2iAGWwFOmH8QC/dAnTySQG+Rv3 6/eP3jnk58DPR8v3GHo1lHbYHA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:48 2026 by rpki-client