$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: gk0o/WPg9lRIvK6BlRnKuCXQ6clNKbRu2YwFZVt/DXs= Subject key identifier: D6:BD:9F:03:0E:F3:D1:AD:81:EE:C2:3E:FC:79:88:F7:D0:BD:42:BA Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 0207 Signing time: Sun 05 Apr 2026 02:33:42 +0000 Manifest this update: Sun 05 Apr 2026 02:33:42 +0000 Manifest next update: Sun 12 Apr 2026 02:33:42 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: KliCkUKrxm/+JVkYpX0dbVob3D3ZAA2drC6H0Vr8ulE=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: LOVQf/LdRjlXMFrzIgrgv8KlqIFzre3Qe7jhRSJb4JQ=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: xb0+uYgRF2Qsu64pqIvTIsaUIoIoJYA9r/GFBorr/Cw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Apr 5 02:33:42 2026 GMT Not After : Apr 12 02:33:42 2026 GMT Subject: CN=69d1ca06-76b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:87:25:33:ea:f9:e8:f9:63:56:cd:56:fa:e5: 10:bc:b1:8b:a2:66:b1:11:4d:38:b2:8d:50:9c:67: 2a:8a:ae:27:ea:8f:60:12:94:46:ac:8b:13:37:e0: ad:62:fa:dc:75:73:0e:95:c2:22:bc:48:94:3a:7d: a3:a8:b0:9b:87:02:5e:51:b2:32:f9:fc:2c:9c:ee: d1:8e:73:7b:d7:db:c4:dd:70:70:2a:a6:52:3e:fb: 4b:e7:83:10:1e:a7:fd:56:05:0b:55:83:e3:31:9d: cd:dc:ce:6f:ab:98:9b:ba:cd:5a:7e:01:7c:0c:1e: 33:0c:fb:6d:60:3f:22:d7:41:b9:f5:52:08:dd:61: ab:a2:cf:4e:12:fd:b9:ec:e9:d3:33:dd:48:f9:6c: 04:d2:86:80:f4:a6:7e:73:42:19:b1:bd:84:6e:a8: 02:56:4c:52:34:05:e7:e9:ca:99:b2:80:94:e3:42: 06:e6:b1:5f:28:1d:0f:14:23:b9:56:39:36:a2:61: 6e:20:f1:8a:e5:52:e0:5e:69:7f:3e:fc:c2:7d:a0: b1:56:3b:6b:b4:0c:d1:92:bc:2a:ed:4c:6c:bb:10: 3a:93:3c:fc:ac:e0:cd:e5:2d:98:86:31:6b:9d:49: 5e:a3:ae:88:16:26:56:43:c9:e0:10:57:74:d8:1d: ea:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BD:9F:03:0E:F3:D1:AD:81:EE:C2:3E:FC:79:88:F7:D0:BD:42:BA X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:d2:88:5a:58:a5:61:22:a8:a8:63:e7:df:c1:96:ad:1e:17: 7e:83:fa:43:eb:02:c5:17:b7:fc:74:57:d2:f6:90:0c:0e:bf: 28:08:81:ea:02:0d:d1:38:b5:e1:2e:40:04:d5:a4:75:f3:b4: fc:a4:3c:0e:cd:18:ff:d8:e1:33:b2:09:c1:11:9a:36:96:7f: 29:3f:75:95:b5:c6:9d:ac:09:42:00:17:ed:98:17:ae:69:93: b3:6b:29:c3:8d:7e:55:31:e6:e5:04:17:8b:5e:fe:94:41:eb: 99:17:ba:11:8d:6d:49:c7:f7:c0:61:39:67:d5:cf:3a:87:e8: f9:f0:90:a8:ed:7f:52:ad:bb:19:dd:ef:34:ce:40:8f:60:58: 33:1a:aa:b5:8a:24:e2:36:38:9b:2b:ca:f9:52:69:1c:59:2e: 24:6e:3e:92:0c:3c:08:06:d2:7f:a6:49:5c:68:d4:a7:17:fc: ac:fa:bd:d9:4b:8f:c6:40:cd:fe:bc:b9:5b:94:ef:c3:e1:22: 5f:9a:2a:82:cb:44:48:73:3a:bd:44:67:e1:e2:6e:22:c8:37: ef:07:07:26:3c:00:34:69:7c:a5:28:00:ae:ec:84:91:c4:f5: 3b:91:9e:6a:5f:ff:38:46:2f:cd:80:cc:0d:5c:7d:70:69:32: 11:e5:fb:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjYwNDA1MDIzMzQyWhcNMjYwNDEyMDIzMzQyWjAYMRYwFAYD VQQDEw02OWQxY2EwNi03NmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIclM+r56PljVs1W+uUQvLGLomaxEU04so1QnGcqiq4n6o9gEpRGrIsTN+Ct YvrcdXMOlcIivEiUOn2jqLCbhwJeUbIy+fwsnO7RjnN719vE3XBwKqZSPvtL54MQ Hqf9VgULVYPjMZ3N3M5vq5ibus1afgF8DB4zDPttYD8i10G59VII3WGros9OEv25 7OnTM91I+WwE0oaA9KZ+c0IZsb2EbqgCVkxSNAXn6cqZsoCU40IG5rFfKB0PFCO5 Vjk2omFuIPGK5VLgXml/PvzCfaCxVjtrtAzRkrwq7UxsuxA6kzz8rODN5S2YhjFr nUleo66IFiZWQ8ngEFd02B3q6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNa9nwMO 89Gtge7CPvx5iPfQvUK6MB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKdKIWlilYSKoqGPn38GWrR4XfoP6Q+sCxRe3/HRX0vaQDA6/KAiB6gIN0Ti1 4S5ABNWkdfO0/KQ8Ds0Y/9jhM7IJwRGaNpZ/KT91lbXGnawJQgAX7ZgXrmmTs2sp w41+VTHm5QQXi17+lEHrmRe6EY1tScf3wGE5Z9XPOofo+fCQqO1/Uq27Gd3vNM5A j2BYMxqqtYok4jY4myvK+VJpHFkuJG4+kgw8CAbSf6ZJXGjUpxf8rPq92UuPxkDN /ry5W5Tvw+EiX5oqgstESHM6vURn4eJuIsg37wcHJjwANGl8pSgAruyEkcT1O5Ge al//OEYvzYDMDVx9cGkyEeX7SQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:49 2026 by rpki-client