$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft File: CekFd0f2O6Ciga54ATZozt6kCrQ.mft (raw, json) Hash identifier: ZOMhbNCwSHKOq2lm2M1dctfkCkyXXJIPdCmMz34YJ4o= Subject key identifier: 05:90:33:E3:C2:B2:A3:04:6E:59:F4:A9:A3:1E:2A:01:43:65:90:B3 Authority key identifier: 09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 Certificate issuer: /CN=A91CDAFB/serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft Manifest number: 0213 Signing time: Sun 05 Apr 2026 02:25:42 +0000 Manifest this update: Sun 05 Apr 2026 02:25:42 +0000 Manifest next update: Sun 12 Apr 2026 02:25:42 +0000 Files and hashes: 1: CekFd0f2O6Ciga54ATZozt6kCrQ.crl (hash: a7Vtm1o8y3OojsYZTz+3rs0YNSCBq8gWEURkQfBQ6EE=) 2: 2815D106041A11EEA67A6B4DC4F9AE02.roa (hash: OYerZcew/z3W1QIzxa4XrF+WiLMIJxrcPO1hXH0kxM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDAFB, serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Validity Not Before: Apr 5 02:25:42 2026 GMT Not After : Apr 12 02:25:42 2026 GMT Subject: CN=69d1c826-9c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3a:c0:3d:37:6d:83:7a:18:cd:9c:66:18:25: 69:a4:ea:43:52:1b:f8:c2:ea:4f:12:48:4a:69:06: 85:eb:79:82:bc:58:f9:58:a3:63:25:0d:8a:17:19: 3e:8c:4a:dd:ce:d9:d2:56:26:4e:04:f8:17:8a:cd: 08:e0:53:43:9e:d5:8e:43:ba:9a:62:88:98:51:a2: dd:f6:01:4c:4e:50:cc:6b:0a:2a:23:81:fb:34:df: e0:67:59:4a:48:54:46:ed:f6:da:93:5d:51:4d:07: 17:9e:c7:f3:43:57:d9:8f:3d:5e:4f:6a:bb:7d:56: c1:f2:c9:3f:05:5f:64:d7:43:a8:03:db:7d:d4:66: 35:cd:92:5e:2d:da:c3:a2:56:ab:df:59:50:7c:4c: b1:2e:53:a5:0b:c5:34:96:25:a8:c5:4f:91:b7:64: 1c:b9:ee:fe:67:a1:2b:ca:19:ae:71:b3:03:56:0d: 7b:71:d9:54:34:3f:43:cd:94:30:46:72:f4:69:56: e2:4d:13:e7:09:4b:17:d9:6d:a4:b5:b8:7e:6d:61: 5c:fc:a3:03:e3:80:eb:eb:f2:5f:68:3d:6f:ff:cb: bf:a1:b4:52:ad:b0:18:74:67:d2:d5:61:42:e5:02: 30:f2:6c:5d:38:73:a3:ea:c7:fb:40:ea:67:7f:53: 6f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:90:33:E3:C2:B2:A3:04:6E:59:F4:A9:A3:1E:2A:01:43:65:90:B3 X509v3 Authority Key Identifier: keyid:09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:f1:8b:e8:96:0f:a0:e6:b5:64:7a:fe:9d:ae:98:a7:71:38: be:db:e8:b9:36:34:c6:ad:d0:28:fc:d1:9c:07:bc:22:6e:18: 36:59:65:46:4b:b9:92:e4:ea:af:29:0c:3f:d9:17:6a:9a:10: d2:4b:d8:d2:33:e9:88:12:de:e4:ba:81:f3:d6:c4:4b:65:00: db:c3:2b:0f:61:ea:7f:74:34:31:9f:a0:81:fe:70:a2:cc:72: dd:df:a9:64:57:2f:73:bd:25:4e:e6:bc:aa:ce:1f:68:58:3e: 04:52:82:2c:92:75:8b:26:fd:d1:91:77:b1:53:70:26:26:fa: 09:59:89:f7:b4:d6:c6:28:9a:4a:24:e4:59:c7:eb:9b:05:9a: 42:3f:74:4b:41:dc:97:56:a8:95:44:88:c7:d9:5e:57:55:fc: f4:9a:6f:c8:03:a2:53:31:b5:79:75:28:ea:19:54:c2:96:1a: c2:54:38:83:45:2b:a3:97:36:26:48:d2:49:34:5c:7d:af:ed: 2b:e1:ba:c9:83:92:cd:13:e6:d6:d8:80:20:8f:28:75:e6:14: 9b:db:12:87:c1:ab:6b:ae:10:91:c2:11:f0:58:40:87:0d:88: b9:04:b3:b6:af:a5:29:d2:46:12:ca:17:8f:a8:ce:50:7f:4b: 77:79:dd:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RBRkIxMTAvBgNVBAUTKDA5RTkwNTc3NDdGNjNCQTBBMjgxQUU3ODAxMzY2OENF REVBNDBBQjQwHhcNMjYwNDA1MDIyNTQyWhcNMjYwNDEyMDIyNTQyWjAYMRYwFAYD VQQDEw02OWQxYzgyNi05YzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTrAPTdtg3oYzZxmGCVppOpDUhv4wupPEkhKaQaF63mCvFj5WKNjJQ2KFxk+ jErdztnSViZOBPgXis0I4FNDntWOQ7qaYoiYUaLd9gFMTlDMawoqI4H7NN/gZ1lK SFRG7fbak11RTQcXnsfzQ1fZjz1eT2q7fVbB8sk/BV9k10OoA9t91GY1zZJeLdrD olar31lQfEyxLlOlC8U0liWoxU+Rt2Qcue7+Z6EryhmucbMDVg17cdlUND9DzZQw RnL0aVbiTRPnCUsX2W2ktbh+bWFc/KMD44Dr6/JfaD1v/8u/obRSrbAYdGfS1WFC 5QIw8mxdOHOj6sf7QOpnf1NvsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAWQM+PC sqMEbln0qaMeKgFDZZCzMB8GA1UdIwQYMBaAFAnpBXdH9jugooGueAE2aM7epAq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREFGQi9FQzBGNkEzODAz NDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82Q2lnYTU0QVRab3p0NmtD clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nla0ZkMGYyTzZDaWdhNTRBVFpvenQ2a0NyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REFGQi9FQzBGNkEzODAzNDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82 Q2lnYTU0QVRab3p0NmtDclEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhvGL6JYPoOa1ZHr+na6Yp3E4vtvouTY0xq3QKPzRnAe8Im4YNlllRku5kuTq rykMP9kXapoQ0kvY0jPpiBLe5LqB89bES2UA28MrD2Hqf3Q0MZ+ggf5wosxy3d+p ZFcvc70lTua8qs4faFg+BFKCLJJ1iyb90ZF3sVNwJib6CVmJ97TWxiiaSiTkWcfr mwWaQj90S0Hcl1aolUSIx9leV1X89JpvyAOiUzG1eXUo6hlUwpYawlQ4g0Uro5c2 JkjSSTRcfa/tK+G6yYOSzRPm1tiAII8odeYUm9sSh8Gra64QkcIR8FhAhw2IuQSz tq+lKdJGEsoXj6jOUH9Ld3ndrw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:41:31 2026 by rpki-client