$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft File: MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft (raw, json) Hash identifier: 661qBCtxauMKj2bblHaCAmd7FA3I7LmD+Jm9aGKWljo= Subject key identifier: E2:8E:0B:6A:BB:E6:06:FF:9F:16:AA:28:95:86:70:0C:D2:B8:80:F1 Authority key identifier: 31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF Certificate issuer: /CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft Manifest number: 0112 Signing time: Sun 05 Apr 2026 05:21:42 +0000 Manifest this update: Sun 05 Apr 2026 05:21:42 +0000 Manifest next update: Sun 12 Apr 2026 05:21:42 +0000 Files and hashes: 1: MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl (hash: 4kPR9y1efmtIMhqNSwNJByoF8zj/GidWKQUTUJOp000=) 2: BE48D4AA927D11EF9651FC4AC4F9AE02.roa (hash: MMlCyL0Z5gXZRhtwZCT1rQU/h+kkk4XV7uk2akYMz9M=) 3: D9BE56E2927D11EFB83ACB5CC4F9AE02.roa (hash: nelUbxnLDLGVDrJHYxOmJHcdHhK23+JstFe8bl+1cNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8203, serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Validity Not Before: Apr 5 05:21:42 2026 GMT Not After : Apr 12 05:21:42 2026 GMT Subject: CN=69d1f166-334c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:36:3d:34:fd:81:a2:e5:6e:b4:ff:ee:90:d6: 3d:62:ef:af:b1:78:32:f9:2f:83:0a:fa:34:9f:e5: fd:0a:37:ac:74:1b:01:a9:75:03:45:1c:70:d8:91: b5:a8:c4:6f:f4:59:bb:41:4d:20:a8:dc:e6:f5:31: 3b:2c:8a:3a:de:36:68:e6:4b:f9:a1:5c:c8:5d:f0: b2:62:2e:3f:e6:99:2a:86:8a:ad:6a:d5:2f:71:36: 47:6e:34:e2:99:31:eb:15:55:2b:ec:d2:75:7a:fd: 7b:43:f3:f1:e7:fd:59:b5:44:9c:f3:ba:5c:cb:60: 41:9b:2d:49:e9:53:a9:f2:b3:1b:92:77:bb:79:e0: 22:e4:54:c1:c7:20:8a:37:f2:36:97:08:38:2d:65: 5a:4c:50:b8:2c:cd:2e:92:77:b0:1d:05:47:7b:93: 20:19:0b:46:67:e5:97:12:9c:46:05:28:62:4e:f1: 85:fc:3f:07:b3:f9:8a:e0:06:71:c9:dc:96:e6:e8: b4:34:a6:8e:40:b7:f3:73:06:dd:5e:15:32:c8:bb: 23:4e:af:8e:7c:e4:ef:ce:d8:11:be:ed:51:22:2d: c0:74:5d:bb:5a:ff:27:34:fe:29:36:5c:d5:b9:ac: fa:8a:57:0a:16:39:7c:07:5d:67:c5:eb:e0:9a:05: 26:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8E:0B:6A:BB:E6:06:FF:9F:16:AA:28:95:86:70:0C:D2:B8:80:F1 X509v3 Authority Key Identifier: keyid:31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:24:53:68:3a:cb:4c:1e:2d:cf:04:4d:e5:9d:b6:d9:48:cd: a7:15:3b:3c:b4:43:a3:e9:9e:43:d1:eb:21:75:e1:10:f4:ce: 0d:ad:b7:48:ff:39:87:63:37:30:2b:47:3d:17:e5:36:cf:a7: 0c:ed:11:7f:8c:9c:a7:88:8d:18:de:c1:f7:30:00:91:66:50: 35:04:4d:83:3c:e8:9e:9c:6f:02:6c:41:1a:fc:7b:ff:27:99: a2:1e:7a:33:7d:f8:46:ab:c8:48:22:d3:df:aa:8b:45:ae:67: 40:ba:17:aa:61:66:50:bf:12:79:67:22:85:2f:e4:cf:bb:2c: d2:37:27:30:ef:ce:b3:fc:84:18:8b:64:aa:1c:2e:39:d2:f2: e8:ff:6b:f4:ba:b0:fc:ad:e2:f6:be:86:6c:0d:10:51:b6:bf: 67:1c:13:a9:4e:9b:65:86:c1:ad:a0:89:aa:d3:5f:8e:e3:8b: ee:39:09:96:c1:5b:01:56:24:eb:94:46:13:5c:df:70:37:4d: c1:0f:32:eb:25:66:bf:85:20:41:41:51:29:34:0e:f2:69:cf: 3b:15:37:ac:c3:68:7f:dc:e4:ba:b8:30:bf:2d:c9:94:4d:24: 5f:f2:19:a2:8a:47:20:84:41:ae:3b:a6:10:68:5b:ab:68:6e: b3:86:60:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgyMDMxMTAvBgNVBAUTKDMxRDIxRDVDRUU1RkFDREVGM0M4QzFDODdEMEQ3Mzkx RjlGNzNBRkYwHhcNMjYwNDA1MDUyMTQyWhcNMjYwNDEyMDUyMTQyWjAYMRYwFAYD VQQDEw02OWQxZjE2Ni0zMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDY9NP2BouVutP/ukNY9Yu+vsXgy+S+DCvo0n+X9CjesdBsBqXUDRRxw2JG1 qMRv9Fm7QU0gqNzm9TE7LIo63jZo5kv5oVzIXfCyYi4/5pkqhoqtatUvcTZHbjTi mTHrFVUr7NJ1ev17Q/Px5/1ZtUSc87pcy2BBmy1J6VOp8rMbkne7eeAi5FTBxyCK N/I2lwg4LWVaTFC4LM0uknewHQVHe5MgGQtGZ+WXEpxGBShiTvGF/D8Hs/mK4AZx ydyW5ui0NKaOQLfzcwbdXhUyyLsjTq+OfOTvztgRvu1RIi3AdF27Wv8nNP4pNlzV uaz6ilcKFjl8B11nxevgmgUmjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOKOC2q7 5gb/nxaqKJWGcAzSuIDxMB8GA1UdIwQYMBaAFDHSHVzuX6ze88jByH0Nc5H59zr/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODIwMy9CQzUxNURBQTky N0ExMUVGQjU2NDNDNEVDNEY5QUUwMi9NZElkWE81ZnJON3p5TUhJZlExemtmbjNP djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01kSWRYTzVmck43enlNSElmUTF6a2ZuM092OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODIwMy9CQzUxNURBQTkyN0ExMUVGQjU2NDNDNEVDNEY5QUUwMi9NZElkWE81ZnJO N3p5TUhJZlExemtmbjNPdjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkCRTaDrLTB4tzwRN5Z222UjNpxU7PLRDo+meQ9HrIXXhEPTODa23SP85h2M3 MCtHPRflNs+nDO0Rf4ycp4iNGN7B9zAAkWZQNQRNgzzonpxvAmxBGvx7/yeZoh56 M334RqvISCLT36qLRa5nQLoXqmFmUL8SeWcihS/kz7ss0jcnMO/Os/yEGItkqhwu OdLy6P9r9Lqw/K3i9r6GbA0QUba/ZxwTqU6bZYbBraCJqtNfjuOL7jkJlsFbAVYk 65RGE1zfcDdNwQ8y6yVmv4UgQUFRKTQO8mnPOxU3rMNof9zkurgwvy3JlE0kX/IZ oopHIIRBrjumEGhbq2hus4Zg9Q== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:49 2026 by rpki-client