$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft File: s8iROAA2kV3l6qhM8TOrOzWz6dM.mft (raw, json) Hash identifier: 1PZ12tItLYQB7QJ9PZB69su2Wv3t2OBGfTCTxJEqoH0= Subject key identifier: 2C:9A:31:B3:D3:0B:C4:D4:F9:7E:88:CD:0F:7C:68:B2:69:FF:96:BD Authority key identifier: B3:C8:91:38:00:36:91:5D:E5:EA:A8:4C:F1:33:AB:3B:35:B3:E9:D3 Certificate issuer: /CN=A91D891D/serialNumber=B3C891380036915DE5EAA84CF133AB3B35B3E9D3 Certificate serial: 080D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft Manifest number: 0D98 Signing time: Sat 04 Apr 2026 20:56:26 +0000 Manifest this update: Sat 04 Apr 2026 20:56:26 +0000 Manifest next update: Sat 11 Apr 2026 20:56:26 +0000 Files and hashes: 1: s8iROAA2kV3l6qhM8TOrOzWz6dM.crl (hash: A9X1N9bmeUdlukzDldrNXwYk3F5x4tITDnQelUi11Es=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2061 (0x80d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D, serialNumber=B3C891380036915DE5EAA84CF133AB3B35B3E9D3 Validity Not Before: Apr 4 20:56:26 2026 GMT Not After : Apr 11 20:56:26 2026 GMT Subject: CN=69d17afa-f9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:57:5b:86:63:3e:29:70:b9:44:1d:91:00:4d: 7d:3b:fb:c6:4e:83:4a:5c:38:42:5d:4e:ba:2c:a2: cf:4e:9c:fd:fa:6a:bc:56:41:f4:ed:13:d0:8c:28: 9c:d1:8c:12:00:a1:a4:61:c6:df:48:cd:c1:e8:54: 62:84:a4:eb:78:1e:a1:6e:e5:45:39:b4:7d:26:83: 2e:89:e2:14:55:ba:79:b2:be:76:5e:ad:ce:63:fe: a5:a9:4c:6f:3b:fc:44:b5:bf:89:d4:f3:6c:f7:ef: 16:37:b8:86:db:3e:23:02:dd:9e:d9:36:ba:87:53: 61:26:f7:d1:1d:c7:60:0a:3d:96:a4:e2:c7:0c:aa: fe:f3:76:d1:33:19:69:12:8e:55:82:2f:23:1d:e4: 79:07:fa:36:7b:00:9d:89:d8:b9:fb:9b:c9:b0:c6: b4:82:b5:e1:8f:a6:f5:d1:74:f6:9c:2b:72:f8:17: d5:4e:8a:5e:3b:87:f3:ae:12:be:2d:eb:9f:d6:47: f4:0a:98:f0:e2:06:cd:94:a6:32:bc:88:90:57:ef: 13:ae:da:62:39:31:ec:fe:0e:e5:bc:92:80:be:2d: b7:78:ce:5c:be:57:9a:52:ff:d5:1d:62:09:95:4f: 71:7b:4c:48:84:b3:2d:e9:de:04:8a:ff:b7:03:f6: 16:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9A:31:B3:D3:0B:C4:D4:F9:7E:88:CD:0F:7C:68:B2:69:FF:96:BD X509v3 Authority Key Identifier: keyid:B3:C8:91:38:00:36:91:5D:E5:EA:A8:4C:F1:33:AB:3B:35:B3:E9:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:28:bc:16:ed:c3:bc:83:4d:38:37:d3:aa:63:27:73:1a:01: cf:cc:c5:c7:70:eb:04:a3:dc:22:ed:01:d9:c6:89:97:0e:85: d0:20:9d:c6:30:c0:09:6e:bb:91:7c:14:a9:ef:5c:a5:d8:50: af:62:56:c6:86:80:db:44:82:c8:cb:96:f1:29:e5:d7:f8:54: 70:63:68:4e:fe:ea:e0:0d:b6:dd:1c:d7:f8:3b:cb:ff:56:7c: 51:af:92:62:8a:ae:91:64:21:98:f1:40:b9:cb:67:0f:c6:12: 8f:16:fb:09:ab:33:83:9e:f7:4b:a8:f4:ed:09:9a:bc:11:bc: f7:66:25:a6:17:8c:36:34:d4:d5:84:ab:e3:67:af:10:48:3c: a3:73:38:a3:8d:2a:63:80:ad:f1:c9:2b:4b:31:db:b8:10:34: c8:e9:65:10:a3:b1:86:cc:74:4c:db:03:64:32:90:e1:04:63: 0b:cd:92:8b:ec:38:12:d0:8a:89:ee:1a:56:91:c6:2c:5c:52: 62:b7:9b:46:02:5a:cf:95:c6:e4:9a:5a:2b:5e:ab:e4:90:10: b2:b4:95:70:57:53:e9:91:f5:a8:7e:4e:b8:d6:7a:bd:05:d2: f4:4d:65:75:9e:12:f7:11:eb:e5:1c:73:bc:ae:70:23:92:8b: 9f:fb:36:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKEIzQzg5MTM4MDAzNjkxNURFNUVBQTg0Q0YxMzNBQjNC MzVCM0U5RDMwHhcNMjYwNDA0MjA1NjI2WhcNMjYwNDExMjA1NjI2WjAYMRYwFAYD VQQDEw02OWQxN2FmYS1mOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ldbhmM+KXC5RB2RAE19O/vGToNKXDhCXU66LKLPTpz9+mq8VkH07RPQjCic 0YwSAKGkYcbfSM3B6FRihKTreB6hbuVFObR9JoMuieIUVbp5sr52Xq3OY/6lqUxv O/xEtb+J1PNs9+8WN7iG2z4jAt2e2Ta6h1NhJvfRHcdgCj2WpOLHDKr+83bRMxlp Eo5Vgi8jHeR5B/o2ewCdidi5+5vJsMa0grXhj6b10XT2nCty+BfVTopeO4fzrhK+ Leuf1kf0Cpjw4gbNlKYyvIiQV+8TrtpiOTHs/g7lvJKAvi23eM5cvleaUv/VHWIJ lU9xe0xIhLMt6d4Eiv+3A/YWxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCyaMbPT C8TU+X6IzQ98aLJp/5a9MB8GA1UdIwQYMBaAFLPIkTgANpFd5eqoTPEzqzs1s+nT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9zOGlST0FBMmtWM2w2cWhNOFRPck96V3o2 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4aVJPQUEya1YzbDZxaE04VE9yT3pXejZkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODkxRC8zODFBOEYyQTFDQzIxMUVCODJCNTcxNzhDNEY5QUUwMi9zOGlST0FBMmtW M2w2cWhNOFRPck96V3o2ZE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgSi8Fu3DvINNODfTqmMncxoBz8zFx3DrBKPcIu0B2caJlw6F0CCdxjDACW67 kXwUqe9cpdhQr2JWxoaA20SCyMuW8Snl1/hUcGNoTv7q4A223RzX+DvL/1Z8Ua+S YoqukWQhmPFAuctnD8YSjxb7Caszg573S6j07QmavBG892YlpheMNjTU1YSr42ev EEg8o3M4o40qY4Ct8ckrSzHbuBA0yOllEKOxhsx0TNsDZDKQ4QRjC82Si+w4EtCK ie4aVpHGLFxSYrebRgJaz5XG5JpaK16r5JAQsrSVcFdT6ZH1qH5OuNZ6vQXS9E1l dZ4S9xHr5RxzvK5wI5KLn/s2Zg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:51:47 2026 by rpki-client