$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft File: df43qD7agAphAmCFh-30CJ2CQOA.mft (raw, json) Hash identifier: u9OSXsiKlbZLQDFX8DbctU+Vabs+22flpcsvk8hHgww= Subject key identifier: 68:FF:A3:59:0C:B3:BC:8F:38:0C:A2:9D:E4:E7:C5:4C:83:D3:39:19 Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft Manifest number: B4 Signing time: Sun 05 Apr 2026 06:32:24 +0000 Manifest this update: Sun 05 Apr 2026 06:32:23 +0000 Manifest next update: Sun 12 Apr 2026 06:32:23 +0000 Files and hashes: 1: df43qD7agAphAmCFh-30CJ2CQOA.crl (hash: uKl05/sGwpVfZkqx+j7wYVRnKJBcuaRbD1z2FWumZWw=) 2: A7C7EF962A8911F09526D35BC4F9AE02.roa (hash: HcYhHFFcvCKuaGxFRTIVt3Z+Wah4d0SujZ+rvqoNWCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:32:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Apr 5 06:32:23 2026 GMT Not After : Apr 12 06:32:23 2026 GMT Subject: CN=69d201f8-8fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:73:60:bb:a6:b8:56:10:7d:82:0f:94:a0:9c: 41:41:8b:17:ca:e9:a0:55:ee:4c:f0:b5:6a:b9:90: 1a:bb:f3:f6:9a:0c:d9:de:4b:d8:2b:fb:59:3c:43: ff:46:96:86:39:d8:b4:27:bb:41:81:59:cf:53:1a: de:5a:c2:91:c9:4e:b0:70:d6:0b:35:e5:d0:1c:61: d6:c9:e9:32:38:5d:aa:61:96:c2:46:82:85:6b:0e: 88:04:a9:01:7f:d3:94:61:7c:f8:4a:01:ce:39:71: 33:ce:2d:52:6f:28:12:d9:0a:b1:20:80:96:f8:f5: 60:93:f6:b6:13:d0:dc:82:97:7d:e5:db:52:15:ab: 18:cd:f2:d0:ae:c6:6d:72:18:a3:6f:90:18:75:06: 12:5a:44:36:54:99:d0:a6:53:17:21:21:a9:91:b1: d5:cc:ab:4d:0d:d5:e4:23:8f:ee:6c:92:08:e7:2d: 94:28:c4:86:ab:23:76:f8:ec:10:fd:fb:a1:ff:6d: a0:a4:60:66:b0:ca:1d:c3:86:41:c5:b0:e8:00:7c: 16:26:67:27:f5:da:de:4a:0d:f1:09:72:2f:34:a6: 81:10:6f:59:3b:01:0d:92:ba:c5:6c:d0:a4:83:ad: e6:02:d1:d9:7f:2d:b9:c8:2c:7c:4d:6d:34:f4:23: 4a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FF:A3:59:0C:B3:BC:8F:38:0C:A2:9D:E4:E7:C5:4C:83:D3:39:19 X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:7a:38:7f:c4:a2:66:46:23:cd:5c:07:a9:a4:07:8c:ef:3d: 51:3a:1d:fe:5e:94:d7:de:76:b8:40:c7:31:5e:c9:9e:5d:a1: d6:8a:82:5f:5c:be:4e:dc:66:f3:6d:bc:8a:26:01:d0:7e:83: b2:e6:e2:69:68:6f:6b:ab:a9:5d:7f:9d:bc:31:3b:a4:68:26: f1:23:c1:02:b0:ea:5d:9d:f3:bc:49:a5:c5:c6:8e:37:ac:9e: 3d:5b:3b:34:8b:d5:2f:cc:6f:d9:07:ae:9b:af:fc:18:69:82: 36:e6:80:2f:ec:a2:5d:70:cc:60:64:15:35:39:56:c3:b4:6e: dc:2e:05:43:7c:fb:38:53:d1:3f:a6:6e:8c:c6:3e:3f:4c:82: d3:70:a7:6b:e5:ce:c1:3f:70:b4:e1:66:3b:d7:26:3e:67:23: dc:3b:30:80:73:d2:50:c2:6c:1a:41:07:52:4c:b2:85:16:58: 74:c5:9c:75:49:15:c4:7c:52:ca:94:94:e1:bf:76:b0:17:62: 1d:92:3f:0b:c9:de:97:54:29:ff:5e:5c:9e:55:23:b6:1c:b2: bd:15:8a:9e:95:de:7b:31:9a:db:b7:0a:a5:a5:9c:5d:d6:d7: 13:1c:e8:00:0f:f6:b5:32:9c:a2:a8:80:9b:e7:a9:8d:66:7b: 86:65:b2:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM3QUExMTAvBgNVBAUTKDc1RkUzN0E4M0VEQTgwMEE2MTAyNjA4NTg3RURGNDA4 OUQ4MjQwRTAwHhcNMjYwNDA1MDYzMjIzWhcNMjYwNDEyMDYzMjIzWjAYMRYwFAYD VQQDEw02OWQyMDFmOC04ZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHNgu6a4VhB9gg+UoJxBQYsXyumgVe5M8LVquZAau/P2mgzZ3kvYK/tZPEP/ RpaGOdi0J7tBgVnPUxreWsKRyU6wcNYLNeXQHGHWyekyOF2qYZbCRoKFaw6IBKkB f9OUYXz4SgHOOXEzzi1SbygS2QqxIICW+PVgk/a2E9Dcgpd95dtSFasYzfLQrsZt chijb5AYdQYSWkQ2VJnQplMXISGpkbHVzKtNDdXkI4/ubJII5y2UKMSGqyN2+OwQ /fuh/22gpGBmsModw4ZBxbDoAHwWJmcn9dreSg3xCXIvNKaBEG9ZOwENkrrFbNCk g63mAtHZfy25yCx8TW009CNKpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGj/o1kM s7yPOAyineTnxUyD0zkZMB8GA1UdIwQYMBaAFHX+N6g+2oAKYQJghYft9AidgkDg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzdBQS9EMjJFREEzNDJB ODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9kZjQzcUQ3YWdBcGhBbUNGaC0zMENKMkNR T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzdBQS9EMjJFREEzNDJBODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9kZjQzcUQ3YWdB cGhBbUNGaC0zMENKMkNRT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApXo4f8SiZkYjzVwHqaQHjO89UTod/l6U1952uEDHMV7Jnl2h1oqCX1y+Ttxm 8228iiYB0H6DsubiaWhva6upXX+dvDE7pGgm8SPBArDqXZ3zvEmlxcaON6yePVs7 NIvVL8xv2Qeum6/8GGmCNuaAL+yiXXDMYGQVNTlWw7Ru3C4FQ3z7OFPRP6ZujMY+ P0yC03Cna+XOwT9wtOFmO9cmPmcj3DswgHPSUMJsGkEHUkyyhRZYdMWcdUkVxHxS ypSU4b92sBdiHZI/C8nel1Qp/15cnlUjthyyvRWKnpXeezGa27cKpaWcXdbXExzo AA/2tTKcoqiAm+epjWZ7hmWyGQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:40:09 2026 by rpki-client