$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: hkGlApoY2JZZlWuUU7qXDLVTvCQKs6Jx7ZvUmbrU640= Subject key identifier: 00:1F:BD:FC:AD:F4:C3:80:5D:D8:9B:BF:BA:78:F5:CC:4E:D4:1B:A8 Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 08EB Signing time: Sat 04 Apr 2026 20:08:38 +0000 Manifest this update: Sat 04 Apr 2026 20:08:37 +0000 Manifest next update: Sat 11 Apr 2026 20:08:37 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: JkKNRaukEwgDTYWwliD44B8xyoM1bppMo3nraUibETE=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: 4jcjYW/0FMetLdx19LfkYx1V1hLHWxOLQGODOyvAQC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: Apr 4 20:08:37 2026 GMT Not After : Apr 11 20:08:37 2026 GMT Subject: CN=69d16fc5-29e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:44:be:83:d1:5e:7c:0a:38:aa:26:af:8a:46: 73:d4:85:11:56:00:9c:d5:a3:08:c2:7c:40:3e:b5: ad:6e:9e:e6:c7:56:6e:7b:af:e8:38:0a:15:89:93: b1:1e:29:84:85:a9:b7:70:3d:ca:2e:1f:99:2a:92: df:e2:d9:52:ed:5b:b5:a1:8b:96:08:c5:10:e2:64: e7:53:53:9f:0f:d8:23:43:9c:32:0f:3b:3b:3d:a0: 13:ec:17:d2:d4:8e:21:36:fc:bb:df:48:15:c0:10: c7:9b:46:ff:0f:a3:21:25:49:87:1d:29:19:54:cc: 04:6b:e8:a8:f6:3c:f4:ea:28:b0:93:a3:dc:ac:9e: 88:dc:c4:b2:14:03:21:b0:76:fc:16:8b:3b:30:0d: d5:19:da:a1:46:c0:aa:7c:20:d1:35:c7:94:8d:97: 58:0a:b7:f2:82:52:7d:79:ad:cd:64:4c:78:bb:3f: 1c:44:e2:65:aa:ea:7d:96:73:7a:f7:ba:20:cf:bd: e2:f6:f8:d7:33:0c:cd:1e:e9:e5:53:96:fd:91:52: 8c:6f:47:0c:5c:6c:94:4f:ff:85:53:63:fd:23:72: 19:e5:d1:76:a8:f4:1e:20:67:be:5f:23:03:e6:51: a5:10:74:f8:5d:97:27:44:2e:44:ed:2e:d4:06:e4: 54:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1F:BD:FC:AD:F4:C3:80:5D:D8:9B:BF:BA:78:F5:CC:4E:D4:1B:A8 X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:bb:33:c5:d2:00:6a:07:1d:4e:6a:cb:db:4c:d9:8c:5b:0a: 2e:9e:12:0b:2c:d1:9d:17:62:33:4d:ae:9f:af:a2:36:54:2a: 7d:3a:18:c9:84:3e:6c:9a:f2:2a:5a:1c:bd:7a:39:09:a0:55: 7a:99:6c:ee:be:fc:5f:d5:f0:c6:86:12:56:5e:2c:53:97:a8: fb:bc:d8:04:c6:e8:90:d0:2c:55:b6:56:63:2a:95:a6:3e:30: 5a:4b:e8:2c:96:cf:3b:71:c8:ba:db:61:e8:53:46:26:31:65: 98:83:59:99:47:ea:6e:48:fe:78:14:e2:eb:41:72:f7:86:0a: 43:16:fd:21:17:3b:3f:52:46:6d:10:96:ab:c3:68:68:15:5b: 8a:36:85:b0:d5:3b:8e:91:74:73:15:ce:b3:ec:62:36:fa:0d: d8:47:9a:be:af:1d:d1:92:00:5f:89:b7:92:0f:45:25:a0:cf: e8:e6:f3:a7:fd:7a:6d:95:41:fb:4e:82:7c:38:51:54:0f:d8: 1a:4c:f5:20:40:5c:f7:ef:62:0e:90:ce:7e:02:7a:3e:35:84: d8:47:e0:ed:af:7e:d0:39:e2:6f:97:c3:bd:fe:67:84:da:6f: fb:82:30:7c:10:7b:7a:9f:f4:ba:f3:b2:20:b4:25:70:ee:9c: 0b:5e:9d:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjYwNDA0MjAwODM3WhcNMjYwNDExMjAwODM3WjAYMRYwFAYD VQQDEw02OWQxNmZjNS0yOWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtES+g9FefAo4qiavikZz1IURVgCc1aMIwnxAPrWtbp7mx1Zue6/oOAoViZOx HimEham3cD3KLh+ZKpLf4tlS7Vu1oYuWCMUQ4mTnU1OfD9gjQ5wyDzs7PaAT7BfS 1I4hNvy730gVwBDHm0b/D6MhJUmHHSkZVMwEa+io9jz06iiwk6PcrJ6I3MSyFAMh sHb8Fos7MA3VGdqhRsCqfCDRNceUjZdYCrfyglJ9ea3NZEx4uz8cROJlqup9lnN6 97ogz73i9vjXMwzNHunlU5b9kVKMb0cMXGyUT/+FU2P9I3IZ5dF2qPQeIGe+XyMD 5lGlEHT4XZcnRC5E7S7UBuRU3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAAfvfyt 9MOAXdibv7p49cxO1BuoMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhrszxdIAagcdTmrL20zZjFsKLp4SCyzRnRdiM02un6+iNlQqfToYyYQ+bJry KlocvXo5CaBVepls7r78X9XwxoYSVl4sU5eo+7zYBMbokNAsVbZWYyqVpj4wWkvo LJbPO3HIutth6FNGJjFlmINZmUfqbkj+eBTi60Fy94YKQxb9IRc7P1JGbRCWq8No aBVbijaFsNU7jpF0cxXOs+xiNvoN2Eeavq8d0ZIAX4m3kg9FJaDP6Obzp/16bZVB +06CfDhRVA/YGkz1IEBc9+9iDpDOfgJ6PjWE2Efg7a9+0Dnib5fDvf5nhNpv+4Iw fBB7ep/0uvOyILQlcO6cC16dkw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:04 2026 by rpki-client