$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft File: -BaXnSqJmynqWV8rVO6jmQokNvk.mft (raw, json) Hash identifier: f/Ft+o8v2tgAmYdQ/i84BuF2Rdkz0XdU+AWBxaPBlCw= Subject key identifier: A9:F0:A5:58:2C:81:CB:47:94:B6:68:9C:87:C5:E2:BA:C2:45:C3:0F Authority key identifier: F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9 Certificate issuer: /CN=A91D5DB6/serialNumber=F816979D2A899B29EA595F2B54EEA3990A2436F9 Certificate serial: 1697 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft Manifest number: 1697 Signing time: Sat 04 Apr 2026 16:35:24 +0000 Manifest this update: Sat 04 Apr 2026 16:35:23 +0000 Manifest next update: Sat 11 Apr 2026 16:35:23 +0000 Files and hashes: 1: -BaXnSqJmynqWV8rVO6jmQokNvk.crl (hash: 5FW+sZ5oqNqdAbLUmj6vf7vc8XKo3xUWdldAbmSr4fs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.crl rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5783 (0x1697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5DB6, serialNumber=F816979D2A899B29EA595F2B54EEA3990A2436F9 Validity Not Before: Apr 4 16:35:23 2026 GMT Not After : Apr 11 16:35:23 2026 GMT Subject: CN=69d13dcc-2c1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:47:a4:2b:fb:f8:39:eb:3a:a4:b5:f9:90:54: 39:c4:d7:46:72:d3:31:c5:e5:0f:0b:b0:06:49:23: 5a:7f:fa:d5:eb:ad:5e:75:fb:6c:76:3e:13:aa:43: 8b:bb:53:74:09:67:1d:55:00:19:7d:52:97:51:ff: 78:89:3e:e6:67:b6:2e:48:37:4f:14:65:65:4f:ff: 94:4a:97:84:9b:b3:6a:30:33:d0:09:1c:a9:a6:d8: bd:d3:d9:4e:9b:3f:fa:a6:e6:aa:ac:d4:4a:44:b4: 9c:cb:32:79:8d:27:ba:c9:59:fa:2a:8b:d0:00:97: d2:e1:b6:74:10:0b:bf:f4:06:c2:b2:f0:60:b7:39: af:52:3d:5d:ad:5d:0e:c9:02:6d:9a:aa:ef:4f:93: 69:6f:42:6a:cc:63:23:58:67:9a:93:ef:24:a9:b8: 6d:40:1b:68:31:f0:48:3e:8b:e8:09:ac:b8:d8:c2: f8:d7:30:04:b6:ef:c1:27:ae:d0:be:aa:21:b8:ab: b7:fe:98:dc:a0:49:73:9a:2e:a4:40:4c:eb:df:da: 8f:d2:88:17:10:a5:63:79:2d:10:27:71:18:b5:9b: 09:d7:93:05:5e:31:df:9d:3a:51:78:bc:ba:5e:1f: 53:0c:10:eb:60:e6:b7:16:b2:d7:d9:1a:90:a3:d9: 17:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F0:A5:58:2C:81:CB:47:94:B6:68:9C:87:C5:E2:BA:C2:45:C3:0F X509v3 Authority Key Identifier: keyid:F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:f9:fd:a8:36:72:a1:5b:c7:31:46:fd:74:4a:20:99:cb:ab: 74:af:d4:26:1a:a2:79:f1:2b:27:f7:c1:7c:40:30:2f:9e:eb: d7:dd:10:6d:43:1f:6d:c3:8f:38:e1:4d:90:d5:83:35:32:27: 91:fb:b4:5f:ee:9c:27:25:9b:dc:58:ff:94:e7:a3:ae:fe:7f: 9f:ff:4d:2e:3b:fc:83:44:f0:55:9a:8c:bb:ab:68:eb:e3:53: 9e:2a:22:bb:c2:4a:f4:70:e3:76:47:f7:1d:0e:c7:0d:04:a6: 25:38:81:70:79:a2:42:b1:7e:f0:34:fa:91:87:33:ba:af:eb: 6f:e6:85:55:62:f9:43:b8:b5:32:e9:ef:48:e0:af:b8:2e:4c: 1e:2e:51:c0:e5:77:6a:73:d5:0d:ff:df:b8:57:41:1d:4d:e4: 7f:f0:71:c4:dd:94:3f:95:9c:90:47:83:bb:aa:42:b6:fd:b5: da:dc:07:db:f1:76:71:11:aa:44:b1:8c:fa:6f:3c:16:b3:b4: b8:2b:28:73:b9:62:a1:59:6c:3d:7e:d4:15:cb:82:f7:3a:42: b0:f9:b8:b1:c3:e8:64:55:d9:22:96:2b:1d:0b:ec:ef:80:e8: 0a:98:04:b8:05:1c:e2:37:77:e0:9e:10:b3:21:59:7c:28:5d: 69:53:55:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVEQjYxMTAvBgNVBAUTKEY4MTY5NzlEMkE4OTlCMjlFQTU5NUYyQjU0RUVBMzk5 MEEyNDM2RjkwHhcNMjYwNDA0MTYzNTIzWhcNMjYwNDExMTYzNTIzWjAYMRYwFAYD VQQDEw02OWQxM2RjYy0yYzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0ekK/v4Oes6pLX5kFQ5xNdGctMxxeUPC7AGSSNaf/rV661edftsdj4TqkOL u1N0CWcdVQAZfVKXUf94iT7mZ7YuSDdPFGVlT/+USpeEm7NqMDPQCRyppti909lO mz/6puaqrNRKRLScyzJ5jSe6yVn6KovQAJfS4bZ0EAu/9AbCsvBgtzmvUj1drV0O yQJtmqrvT5Npb0JqzGMjWGeak+8kqbhtQBtoMfBIPovoCay42ML41zAEtu/BJ67Q vqohuKu3/pjcoElzmi6kQEzr39qP0ogXEKVjeS0QJ3EYtZsJ15MFXjHfnTpReLy6 Xh9TDBDrYOa3FrLX2RqQo9kX6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKnwpVgs gctHlLZonIfF4rrCRcMPMB8GA1UdIwQYMBaAFPgWl50qiZsp6llfK1Tuo5kKJDb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENURCNi8xM0Y5NkI4MjE4 NjIxMUU4QjFFMzE3MjlDNEY5QUUwMi8tQmFYblNxSm15bnFXVjhyVk82am1Rb2tO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CYVhuU3FKbXlucVdWOHJWTzZqbVFva052ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NURCNi8xM0Y5NkI4MjE4NjIxMUU4QjFFMzE3MjlDNEY5QUUwMi8tQmFYblNxSm15 bnFXVjhyVk82am1Rb2tOdmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABPn9qDZyoVvHMUb9dEogmcurdK/UJhqiefErJ/fBfEAwL57r190QbUMfbcOP OOFNkNWDNTInkfu0X+6cJyWb3Fj/lOejrv5/n/9NLjv8g0TwVZqMu6to6+NTnioi u8JK9HDjdkf3HQ7HDQSmJTiBcHmiQrF+8DT6kYczuq/rb+aFVWL5Q7i1MunvSOCv uC5MHi5RwOV3anPVDf/fuFdBHU3kf/BxxN2UP5WckEeDu6pCtv212twH2/F2cRGq RLGM+m88FrO0uCsoc7lioVlsPX7UFcuC9zpCsPm4scPoZFXZIpYrHQvs74DoCpgE uAUc4jd34J4QsyFZfChdaVNVvA== -----END CERTIFICATE-----Generated at Sun Apr 5 20:01:02 2026 by rpki-client