$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft File: h25oE78sGBHNEd6ZKBrNRL7A3nM.mft (raw, json) Hash identifier: q7aO/1kFVNd190T9IUaoDe7uvb6S6S43pUzeEoV4LaA= Subject key identifier: D4:C7:AF:52:1E:EA:8D:E2:AF:AB:49:35:B4:93:69:15:AA:9A:31:8F Authority key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 Certificate issuer: /CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft Manifest number: 0189 Signing time: Tue 07 Apr 2026 04:22:41 +0000 Manifest this update: Tue 07 Apr 2026 04:22:40 +0000 Manifest next update: Tue 14 Apr 2026 04:22:40 +0000 Files and hashes: 1: h25oE78sGBHNEd6ZKBrNRL7A3nM.crl (hash: 0/4YA2+sPPCQgBnhmW2z5NnZRPViyy2ARurkwSmoMUQ=) 2: 0B5DBB081C0311EF8B8AB54DC4F9AE02.roa (hash: WQwwG0p66GxjEWNcaSKndoSIUakwMJP7WJLK7nMnWQI=) 3: EEC42F86232311EFAF815012C4F9AE02.roa (hash: o8afSdgZmX58QcVUZe75xNDu09+q2TPxGPAeyh/MOEM=) 4: 2EFBFF901C0611EF883D807CC4F9AE02.roa (hash: uc4RYqpjqZuGmSUCE9a97wEXjfj0RfCgzqbAD8ekhMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4FB0, serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Validity Not Before: Apr 7 04:22:40 2026 GMT Not After : Apr 14 04:22:40 2026 GMT Subject: CN=69d48691-3bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:82:b7:5d:ba:9b:8d:83:11:7f:5f:7f:e7:9e: 6d:1e:56:4c:3f:91:4a:f1:5d:9f:b6:2f:60:30:40: c2:eb:25:a6:fa:09:c7:e2:5d:f4:0e:de:d8:ee:b5: 8a:9e:ea:28:bd:cb:f4:36:30:16:a8:01:0b:f4:45: 81:6e:35:4f:eb:ec:45:ce:81:d1:02:02:45:11:9b: 40:61:27:bf:12:37:cd:0a:39:c3:ba:ef:48:6b:4c: 79:bc:00:51:02:77:9a:e8:ca:ab:58:bb:73:0d:d1: 0c:27:6b:2c:8a:4d:4f:9c:54:4c:e9:11:44:d8:e5: 33:87:1a:56:6b:ff:60:39:8d:6a:4d:fa:e7:85:ad: b0:82:72:41:72:4f:c1:d4:66:c1:e6:b2:63:6d:f5: ca:22:c7:75:25:f1:b1:77:6c:dc:b0:9a:f6:ba:dc: 93:d1:60:3d:2c:f5:d3:a4:48:1c:ca:3c:f6:4e:a8: 42:56:b0:d4:ef:de:48:1f:c1:2b:6a:17:c9:77:12: 71:89:39:0c:44:ed:43:6c:65:26:b5:00:a4:8c:7e: 23:0f:24:bd:dd:a8:8c:11:0d:05:d9:4c:b7:f9:98: a2:4c:56:ca:90:9b:41:99:6a:34:d9:c6:d8:7d:fe: 31:0a:50:42:3d:e3:8a:cc:0c:1f:53:31:15:d8:14: 20:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C7:AF:52:1E:EA:8D:E2:AF:AB:49:35:B4:93:69:15:AA:9A:31:8F X509v3 Authority Key Identifier: keyid:87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:94:23:4a:3b:3a:a2:c4:e9:d5:31:14:cf:a9:fc:ba:80:c5: c8:aa:5c:79:e5:6e:9a:d9:67:c0:d6:da:39:2b:e7:20:0b:c0: 7f:4f:e8:7c:73:fa:63:f0:7f:f8:50:52:d6:66:bb:94:44:d7: 6e:2a:48:32:01:cc:f5:f7:d1:5a:a1:d5:19:3d:33:a7:07:d7: b3:57:55:d1:7c:b0:67:d5:1a:0b:c2:75:a9:a2:85:0e:30:90: 54:ad:0f:dd:db:cc:f0:cd:a6:f8:37:6b:6c:2a:b6:19:22:e8: 3f:ad:40:59:90:40:97:67:65:ab:74:45:32:ba:76:28:b9:aa: ad:88:4f:5a:bc:85:c4:bc:d5:c6:e6:d8:b3:dd:bd:2f:2e:f7: 66:36:8c:54:df:40:1f:f2:b5:32:b6:c7:20:e5:b6:27:2c:4e: 13:4a:24:bd:77:5b:dc:dd:44:4b:25:47:95:a5:63:87:c6:91: c9:1c:9f:f7:08:91:12:3d:88:ed:92:da:64:25:b2:00:af:b2: 3d:01:c4:8a:0a:40:de:4d:c4:6e:5f:3c:4e:fb:da:46:aa:e4: 97:fe:de:a4:79:2a:cc:42:c2:79:cc:13:bd:be:24:4b:7b:7f: 4e:15:50:92:05:c2:7e:ac:1b:88:ca:f8:af:5c:d2:50:aa:49: ef:1c:ac:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGQjAxMTAvBgNVBAUTKDg3NkU2ODEzQkYyQzE4MTFDRDExREU5OTI4MUFDRDQ0 QkVDMERFNzMwHhcNMjYwNDA3MDQyMjQwWhcNMjYwNDE0MDQyMjQwWjAYMRYwFAYD VQQDEw02OWQ0ODY5MS0zYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoK3XbqbjYMRf19/555tHlZMP5FK8V2fti9gMEDC6yWm+gnH4l30Dt7Y7rWK nuoovcv0NjAWqAEL9EWBbjVP6+xFzoHRAgJFEZtAYSe/EjfNCjnDuu9Ia0x5vABR Anea6MqrWLtzDdEMJ2ssik1PnFRM6RFE2OUzhxpWa/9gOY1qTfrnha2wgnJBck/B 1GbB5rJjbfXKIsd1JfGxd2zcsJr2utyT0WA9LPXTpEgcyjz2TqhCVrDU795IH8Er ahfJdxJxiTkMRO1DbGUmtQCkjH4jDyS93aiMEQ0F2Uy3+ZiiTFbKkJtBmWo02cbY ff4xClBCPeOKzAwfUzEV2BQgIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNTHr1Ie 6o3ir6tJNbSTaRWqmjGPMB8GA1UdIwQYMBaAFIduaBO/LBgRzRHemSgazUS+wN5z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEZCMC8wNThDRUMxNDE5 QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dCSE5FZDZaS0JyTlJMN0Ez bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyNW9FNzhzR0JITkVkNlpLQnJOUkw3QTNuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEZCMC8wNThDRUMxNDE5QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dC SE5FZDZaS0JyTlJMN0Ezbk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcZQjSjs6osTp1TEUz6n8uoDFyKpceeVumtlnwNbaOSvnIAvAf0/ofHP6Y/B/ +FBS1ma7lETXbipIMgHM9ffRWqHVGT0zpwfXs1dV0XywZ9UaC8J1qaKFDjCQVK0P 3dvM8M2m+DdrbCq2GSLoP61AWZBAl2dlq3RFMrp2KLmqrYhPWryFxLzVxubYs929 Ly73ZjaMVN9AH/K1MrbHIOW2JyxOE0okvXdb3N1ESyVHlaVjh8aRyRyf9wiREj2I 7ZLaZCWyAK+yPQHEigpA3k3Ebl88TvvaRqrkl/7epHkqzELCecwTvb4kS3t/ThVQ kgXCfqwbiMr4r1zSUKpJ7xysAQ== -----END CERTIFICATE-----Generated at Tue Apr 7 12:09:16 2026 by rpki-client