$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: 8VRCGpF2olBfbdESiGdrkb9CWC67XDSdUSYxFEInWSQ= Subject key identifier: 09:C1:56:22:83:87:6E:DE:6C:21:B7:27:2F:0E:71:DA:48:1B:3F:64 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 07CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 07BD Signing time: Sat 04 Apr 2026 21:12:44 +0000 Manifest this update: Sat 04 Apr 2026 21:12:43 +0000 Manifest next update: Sat 11 Apr 2026 21:12:43 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: 0EExE2IJX4oGkd2S3yb/QKvaq9lq+wyxS5rF4tgFx/A=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: m1LwxR5yBiEhYayYDDx+VeEVNC28wm7cqjOPRTGQW8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1995 (0x7cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Apr 4 21:12:43 2026 GMT Not After : Apr 11 21:12:43 2026 GMT Subject: CN=69d17ecb-d7f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:21:f9:a6:68:7d:60:a0:6e:71:42:8b:9d:99: dc:31:af:e9:65:dd:4c:01:f3:94:2b:8f:53:06:f5: 83:3d:c9:3f:c6:96:9d:cd:9c:39:c3:9b:13:4f:6d: 04:57:f4:90:ee:15:f4:91:ae:95:e9:40:f8:fd:4d: 69:22:70:af:d1:b0:a5:aa:cb:81:04:40:c1:4f:8a: cc:d3:d9:a1:81:80:57:c7:3d:67:3b:c0:46:27:66: f6:be:e5:92:57:dc:85:cf:65:dd:cd:95:9d:bf:b0: 9b:5d:a6:6d:6c:34:eb:33:9f:04:bd:f1:72:02:3a: f7:5d:ed:08:c3:6c:b0:5b:16:59:da:aa:23:1b:3a: 94:f2:cb:ea:1c:62:23:98:01:13:46:91:75:da:a9: 0c:87:88:80:7f:22:cd:b9:4e:6c:c7:cb:7f:57:63: 05:78:b1:39:03:7b:0a:61:2b:79:cb:2f:86:31:92: b5:60:e3:c4:ec:ef:45:49:0f:19:04:b0:36:a8:e5: 9d:9e:86:c8:b2:cf:82:3b:fb:90:9d:52:9b:54:a2: 8e:84:91:ff:81:bb:f8:a0:3c:48:7d:87:26:08:66: d9:e5:98:54:79:27:f6:ec:9a:be:a1:c5:cf:f2:81: c4:f7:df:8b:3b:f2:5d:ce:23:66:0c:28:3b:80:d5: cd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C1:56:22:83:87:6E:DE:6C:21:B7:27:2F:0E:71:DA:48:1B:3F:64 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:15:fc:78:02:64:71:04:c8:37:2c:28:b4:ae:e2:5d:ea:ae: 90:11:e9:61:28:bc:2f:89:b3:c1:fc:08:4e:1e:80:55:d2:1e: c6:75:3b:80:c3:b5:f4:cf:2f:95:a6:3c:80:d5:48:b4:fe:49: 40:e4:52:a6:a2:fc:2d:3b:5c:ee:85:c7:7c:be:a5:ef:d3:92: c2:66:9a:a2:e9:d2:38:7f:35:ff:64:03:dc:fc:87:7d:44:e4: 40:a0:c0:97:f6:be:c9:dd:a4:80:7f:87:13:1a:ec:a1:7f:ae: aa:d2:8d:8b:43:63:25:87:50:d9:8c:88:f7:44:40:a4:92:42: 8b:2c:e5:24:1e:05:f5:f3:94:31:e3:aa:ae:7f:36:54:e2:52: f2:f5:39:a1:79:47:17:05:ae:5f:68:9f:f1:39:12:ec:68:28: fc:03:c0:f6:b4:68:1c:3b:d1:00:0e:85:d9:3f:01:a4:ce:d7: 49:10:21:7c:15:25:00:c7:20:72:3a:2c:94:5f:82:b1:e0:49: 19:0b:6a:52:e4:5d:d7:07:07:ec:05:8b:6a:7b:3d:c8:14:a9: 52:37:4a:bb:13:0d:2a:26:24:93:16:2d:6d:8f:44:25:50:9d: 32:60:2d:95:6a:07:64:7b:f6:a4:9a:63:57:06:7d:03:aa:c8: ff:56:55:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjYwNDA0MjExMjQzWhcNMjYwNDExMjExMjQzWjAYMRYwFAYD VQQDEw02OWQxN2VjYi1kN2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjSH5pmh9YKBucUKLnZncMa/pZd1MAfOUK49TBvWDPck/xpadzZw5w5sTT20E V/SQ7hX0ka6V6UD4/U1pInCv0bClqsuBBEDBT4rM09mhgYBXxz1nO8BGJ2b2vuWS V9yFz2XdzZWdv7CbXaZtbDTrM58EvfFyAjr3Xe0Iw2ywWxZZ2qojGzqU8svqHGIj mAETRpF12qkMh4iAfyLNuU5sx8t/V2MFeLE5A3sKYSt5yy+GMZK1YOPE7O9FSQ8Z BLA2qOWdnobIss+CO/uQnVKbVKKOhJH/gbv4oDxIfYcmCGbZ5ZhUeSf27Jq+ocXP 8oHE99+LO/JdziNmDCg7gNXNnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAnBViKD h27ebCG3Jy8OcdpIGz9kMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUxX8eAJkcQTINywotK7iXequkBHpYSi8L4mzwfwITh6AVdIexnU7gMO19M8v laY8gNVItP5JQORSpqL8LTtc7oXHfL6l79OSwmaaounSOH81/2QD3PyHfUTkQKDA l/a+yd2kgH+HExrsoX+uqtKNi0NjJYdQ2YyI90RApJJCiyzlJB4F9fOUMeOqrn82 VOJS8vU5oXlHFwWuX2if8TkS7Ggo/APA9rRoHDvRAA6F2T8BpM7XSRAhfBUlAMcg cjoslF+CseBJGQtqUuRd1wcH7AWLans9yBSpUjdKuxMNKiYkkxYtbY9EJVCdMmAt lWoHZHv2pJpjVwZ9A6rI/1ZV5w== -----END CERTIFICATE-----Generated at Sun Apr 5 22:24:33 2026 by rpki-client