$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: /jEu3vqXBai1+LO6jJgg9T/zf4yas+NnTbN6lOHFMZk= Subject key identifier: 43:2C:3F:48:F3:6D:B3:99:59:11:03:83:F2:BB:8B:A7:AA:F1:C9:E2 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 0486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 055F Signing time: Sat 04 Apr 2026 23:51:20 +0000 Manifest this update: Sat 04 Apr 2026 23:51:20 +0000 Manifest next update: Sat 11 Apr 2026 23:51:20 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: hy7KCf/drLIt4ajBsXjBSKGv/1iY/5K4nMSN+gw0yvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1158 (0x486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Apr 4 23:51:20 2026 GMT Not After : Apr 11 23:51:20 2026 GMT Subject: CN=69d1a3f8-67f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:51:cd:3d:04:74:67:87:d9:85:3b:dc:58:73: ef:eb:d1:4f:36:bf:f3:f6:73:9d:f8:f7:dc:a6:dd: 78:a2:15:ec:29:57:78:e8:d0:03:d1:8a:e2:f1:ec: fa:00:cd:86:a9:17:15:65:2e:f5:f1:43:fd:b7:74: 55:41:e4:ef:af:c5:c1:02:84:fb:fb:2e:81:a0:3c: 2b:3f:ff:b7:94:67:9c:53:1f:e0:92:81:b3:e8:52: 18:43:65:a0:df:9e:f8:e6:3b:82:3e:3b:28:4c:3a: 9d:36:48:bb:d8:f6:38:fd:43:f6:bd:fa:4c:93:d6: f0:af:67:7c:4c:b2:e3:d6:ba:70:31:a7:81:b1:59: 62:ee:cf:20:7f:7b:df:25:09:88:d6:48:c9:be:3e: 4e:61:22:c4:43:be:31:89:27:44:5c:a0:10:f4:51: 3c:c5:31:34:4c:55:05:70:f3:85:f3:87:0e:76:2c: f5:3a:aa:6e:d0:29:c3:5b:b4:df:97:35:dc:7d:fe: de:d7:49:6d:ee:f8:32:86:d2:60:ad:b1:64:cd:28: 1b:c5:6c:19:35:47:9e:55:b7:09:af:1c:bc:a3:18: 58:63:b7:04:be:88:02:28:86:26:e3:ef:62:79:ed: d8:a4:75:bb:6d:5e:6d:9d:a4:43:75:88:80:c8:b6: 6f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:2C:3F:48:F3:6D:B3:99:59:11:03:83:F2:BB:8B:A7:AA:F1:C9:E2 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:d1:0c:1f:21:c5:26:b5:7b:1e:a6:94:b1:06:c9:44:b5:f7: 93:d4:78:5a:f2:03:92:4b:f8:a9:99:bf:bc:1b:9c:27:d3:fd: f8:dc:df:b0:3b:57:c0:c6:dc:54:42:83:db:cf:e2:34:ef:36: 1b:0c:f6:cb:84:c6:79:bd:ca:29:cc:5d:26:7b:e7:ac:c4:09: 97:dc:ec:95:51:7d:e3:ec:c9:d1:d7:9a:8f:c0:4b:6e:37:d0: 83:fd:28:0e:ea:1b:45:ac:df:92:0a:17:c4:23:c3:02:a0:4a: e1:69:78:23:a6:8d:28:d7:43:e8:3c:54:ba:d7:24:1d:65:91: 1a:ee:24:ae:d1:9b:3d:6d:8b:af:60:1c:2b:da:95:e3:23:f5: 4d:d9:70:3c:2e:2b:e6:5b:7e:06:aa:33:f7:d7:c5:22:82:5e: 7a:08:b5:53:b1:93:d1:ec:b8:e0:b5:50:61:a4:28:21:73:85: ed:59:cf:24:fd:d2:4c:87:10:26:14:25:d9:73:0c:a7:ad:09: 52:b0:a7:ee:ac:89:09:f1:44:ff:28:5c:3d:0b:9b:e8:45:7b: 2c:55:da:7c:0f:c7:b5:9d:6e:8a:13:63:91:cc:f5:58:da:db: 6e:55:63:cd:cf:34:05:3a:f5:04:a0:d7:a7:96:81:03:f1:a5: 5b:7b:12:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjYwNDA0MjM1MTIwWhcNMjYwNDExMjM1MTIwWjAYMRYwFAYD VQQDEw02OWQxYTNmOC02N2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FHNPQR0Z4fZhTvcWHPv69FPNr/z9nOd+Pfcpt14ohXsKVd46NAD0Yri8ez6 AM2GqRcVZS718UP9t3RVQeTvr8XBAoT7+y6BoDwrP/+3lGecUx/gkoGz6FIYQ2Wg 35745juCPjsoTDqdNki72PY4/UP2vfpMk9bwr2d8TLLj1rpwMaeBsVli7s8gf3vf JQmI1kjJvj5OYSLEQ74xiSdEXKAQ9FE8xTE0TFUFcPOF84cOdiz1Oqpu0CnDW7Tf lzXcff7e10lt7vgyhtJgrbFkzSgbxWwZNUeeVbcJrxy8oxhYY7cEvogCKIYm4+9i ee3YpHW7bV5tnaRDdYiAyLZvQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEMsP0jz bbOZWREDg/K7i6eq8cniMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHtEMHyHFJrV7HqaUsQbJRLX3k9R4WvIDkkv4qZm/vBucJ9P9+NzfsDtXwMbc VEKD28/iNO82Gwz2y4TGeb3KKcxdJnvnrMQJl9zslVF94+zJ0deaj8BLbjfQg/0o DuobRazfkgoXxCPDAqBK4Wl4I6aNKNdD6DxUutckHWWRGu4krtGbPW2Lr2AcK9qV 4yP1TdlwPC4r5lt+Bqoz99fFIoJeegi1U7GT0ey44LVQYaQoIXOF7VnPJP3STIcQ JhQl2XMMp60JUrCn7qyJCfFE/yhcPQub6EV7LFXafA/HtZ1uihNjkcz1WNrbblVj zc80BTr1BKDXp5aBA/GlW3sS5g== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:13 2026 by rpki-client