$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft File: iX261kcCN4pu4YYw4Yv3Whcpgmk.mft (raw, json) Hash identifier: 43p+IVmKN3aZYKmoEm8EJsXlN4DIR4/X00y0UfdLpKE= Subject key identifier: 25:3D:CA:62:61:24:D8:5D:DF:E7:DF:35:38:58:EE:94:A0:F4:42:3C Authority key identifier: 89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 Certificate issuer: /CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft Manifest number: 01A3 Signing time: Sun 05 Apr 2026 03:43:58 +0000 Manifest this update: Sun 05 Apr 2026 03:43:58 +0000 Manifest next update: Sun 12 Apr 2026 03:43:58 +0000 Files and hashes: 1: iX261kcCN4pu4YYw4Yv3Whcpgmk.crl (hash: oYrbKoi+AOlWm4gkb4ufRY/eGP4s+dtUEGfjoK7fLdw=) 2: D442A7A0BE2E11EEAFAF1934C4F9AE02.roa (hash: RzTaCvSWMhcAn1QVwJbuqA3HBhTH7/SoovljwgVLgeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8117, serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Validity Not Before: Apr 5 03:43:58 2026 GMT Not After : Apr 12 03:43:58 2026 GMT Subject: CN=69d1da7e-653a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:ac:2d:78:f4:d6:7e:cf:69:3b:0d:3c:ed: 10:6d:5a:65:58:8c:50:a3:69:20:14:25:9d:79:b1: a6:08:cf:ee:99:b2:2a:11:3b:c2:11:f0:31:f7:42: 96:04:e4:cb:5f:89:4b:6d:46:3f:a6:76:84:a3:18: 1c:c8:5a:32:81:47:94:18:ce:66:f6:78:c4:3a:f9: 1d:16:6b:c6:09:1e:fe:06:50:c5:0d:98:43:84:a7: cc:10:96:57:50:0e:76:98:db:ba:74:94:38:69:91: 3f:1c:15:38:34:6a:35:b6:7b:01:5d:5c:40:92:ae: 58:5d:fa:40:3d:e1:61:e1:06:9a:3b:24:9b:db:bd: e8:d4:05:67:a0:86:68:f0:e0:0f:cb:a4:9b:48:9c: 14:77:bf:af:42:dc:a8:c9:03:aa:19:d5:ba:af:ec: 01:a4:2e:b2:fd:66:95:dd:9c:f9:71:1c:39:a4:ef: 9a:64:69:b3:c5:19:27:f5:25:c3:10:52:23:b3:5b: 93:2b:92:86:ed:44:2a:76:4a:b8:ce:07:e1:9e:04: 08:36:28:17:b1:34:02:2f:e9:18:90:5a:91:b3:a5: 95:4c:d1:9f:85:98:eb:9d:18:86:8e:50:52:fb:49: db:94:73:bc:b1:8b:22:fb:a1:83:ce:e2:7d:82:ac: 74:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3D:CA:62:61:24:D8:5D:DF:E7:DF:35:38:58:EE:94:A0:F4:42:3C X509v3 Authority Key Identifier: keyid:89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:65:3a:21:98:b7:7e:52:fd:3b:ca:28:73:8f:99:ac:a9:a7: e7:07:d2:08:e9:41:ee:76:c9:d6:4e:f6:30:a1:f7:0e:cb:d2: c9:00:93:d9:3d:f9:94:68:67:7f:b5:2c:6b:4d:c5:93:bd:f1: 6f:cd:d3:d9:dc:93:f9:4d:0e:6f:63:11:9f:9e:74:9b:69:76: 8f:e6:e2:89:7a:2f:a4:a9:f6:7e:e7:2d:e1:7c:42:09:61:95: 51:db:d4:ef:7e:77:a7:c0:ab:38:82:39:1a:64:da:03:02:54: 90:5c:06:4b:86:6f:b7:76:b9:06:3e:ef:25:2f:2d:59:4f:64: 5e:f2:70:20:cd:bc:d2:bb:20:13:f6:68:e6:e8:bf:ba:c3:bc: b0:74:18:24:98:58:cf:8a:09:0f:33:32:2f:bd:a2:88:d9:65: 83:8f:bd:31:99:50:75:78:e6:45:6c:cb:33:d1:82:0d:df:6b: 74:38:6a:3e:83:d1:9f:a5:7c:a5:b9:4d:41:bc:05:99:9b:65: ab:ef:af:01:06:3c:2f:40:26:d4:cf:2c:36:4d:1c:d1:c8:c0: 5d:c6:26:fe:13:4c:ef:0a:48:bc:7b:3d:52:a9:d5:ca:a4:4f: b4:48:d1:5a:64:a8:fd:cc:d6:00:6b:ae:32:3a:c4:74:0b:d1: 00:f0:76:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMTcxMTAvBgNVBAUTKDg5N0RCQUQ2NDcwMjM3OEE2RUUxODYzMEUxOEJGNzVB MTcyOTgyNjkwHhcNMjYwNDA1MDM0MzU4WhcNMjYwNDEyMDM0MzU4WjAYMRYwFAYD VQQDEw02OWQxZGE3ZS02NTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz02sLXj01n7PaTsNPO0QbVplWIxQo2kgFCWdebGmCM/umbIqETvCEfAx90KW BOTLX4lLbUY/pnaEoxgcyFoygUeUGM5m9njEOvkdFmvGCR7+BlDFDZhDhKfMEJZX UA52mNu6dJQ4aZE/HBU4NGo1tnsBXVxAkq5YXfpAPeFh4QaaOySb273o1AVnoIZo 8OAPy6SbSJwUd7+vQtyoyQOqGdW6r+wBpC6y/WaV3Zz5cRw5pO+aZGmzxRkn9SXD EFIjs1uTK5KG7UQqdkq4zgfhngQINigXsTQCL+kYkFqRs6WVTNGfhZjrnRiGjlBS +0nblHO8sYsi+6GDzuJ9gqx0QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCU9ymJh JNhd3+ffNThY7pSg9EI8MB8GA1UdIwQYMBaAFIl9utZHAjeKbuGGMOGL91oXKYJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODExNy84RTI4RTc5NEJF MkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040cHU0WVl3NFl2M1doY3Bn bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYMjYxa2NDTjRwdTRZWXc0WXYzV2hjcGdtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODExNy84RTI4RTc5NEJFMkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040 cHU0WVl3NFl2M1doY3BnbWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW2U6IZi3flL9O8ooc4+ZrKmn5wfSCOlB7nbJ1k72MKH3DsvSyQCT2T35lGhn f7Usa03Fk73xb83T2dyT+U0Ob2MRn550m2l2j+biiXovpKn2fuct4XxCCWGVUdvU 7353p8CrOII5GmTaAwJUkFwGS4Zvt3a5Bj7vJS8tWU9kXvJwIM280rsgE/Zo5ui/ usO8sHQYJJhYz4oJDzMyL72iiNllg4+9MZlQdXjmRWzLM9GCDd9rdDhqPoPRn6V8 pblNQbwFmZtlq++vAQY8L0Am1M8sNk0c0cjAXcYm/hNM7wpIvHs9UqnVyqRPtEjR WmSo/czWAGuuMjrEdAvRAPB2gA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:29 2026 by rpki-client