$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft File: WOkI0McaSfSCp8fZVSozVZyuJkM.mft (raw, json) Hash identifier: /ur9HGZxIoLwSFWh2eX9BbbkNzz2CBFCEZaeBgfdXuc= Subject key identifier: B9:FA:C7:DB:6E:F0:E9:E4:BB:59:0F:CD:2C:1F:DD:E0:8D:5B:98:3C Authority key identifier: 58:E9:08:D0:C7:1A:49:F4:82:A7:C7:D9:55:2A:33:55:9C:AE:26:43 Certificate issuer: /CN=A91FB5CE/serialNumber=58E908D0C71A49F482A7C7D9552A33559CAE2643 Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft Manifest number: 0657 Signing time: Sat 04 Apr 2026 22:27:11 +0000 Manifest this update: Sat 04 Apr 2026 22:27:10 +0000 Manifest next update: Sat 11 Apr 2026 22:27:10 +0000 Files and hashes: 1: WOkI0McaSfSCp8fZVSozVZyuJkM.crl (hash: kZHMpI/349u33BU25nRTT/BwHcVt7x6OMXIZ3exS4L0=) 2: F189CB86C81D11EBA4C0E321C4F9AE02.roa (hash: Vhxsq5oGsGnJdnu9k72YuMt3LNz1ibjMmsc3t9zhgQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.crl rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB5CE, serialNumber=58E908D0C71A49F482A7C7D9552A33559CAE2643 Validity Not Before: Apr 4 22:27:10 2026 GMT Not After : Apr 11 22:27:10 2026 GMT Subject: CN=69d1903f-71ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:13:83:41:4e:30:c4:a2:43:3b:05:29:22:49: dd:c1:08:84:b3:69:c5:af:72:48:a6:74:2c:eb:fc: 24:b4:bb:2a:ca:84:4a:7d:a2:47:2c:f8:9f:69:05: 3b:71:4f:b6:e8:6e:1b:c6:8f:53:16:3d:49:eb:d5: ac:f4:45:8f:59:f5:50:78:f3:c1:6f:c4:c3:3b:2a: a5:72:29:45:80:ad:91:e3:e5:53:57:e9:91:c5:ef: 8d:82:e1:b2:f2:ae:64:c3:22:91:4e:88:a4:ee:89: 30:08:c2:4e:80:6e:fb:04:98:56:c1:92:94:30:76: f3:8d:d2:d6:1a:fa:6f:3b:9b:a5:c6:53:7b:89:b5: af:c2:15:63:e2:6d:fe:66:bc:05:b5:57:ac:f2:8e: 3b:f3:4b:e3:1a:9a:ae:2f:04:1c:f3:92:9b:36:17: e3:eb:33:01:ef:9d:ec:3c:06:8b:54:c8:d5:34:17: e0:a9:a2:4b:07:2b:ba:50:6b:8a:c5:8f:3f:0b:e6: c8:be:98:bb:41:c5:92:60:58:f4:57:3e:c3:97:f4: 6e:f1:69:3d:f0:b4:3f:68:e3:c0:89:5d:2e:8b:03: c9:c1:0d:74:69:0a:e8:23:35:c2:48:48:a2:66:2a: df:33:ec:11:4b:a0:1a:af:f7:6e:6a:13:60:33:66: 33:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:FA:C7:DB:6E:F0:E9:E4:BB:59:0F:CD:2C:1F:DD:E0:8D:5B:98:3C X509v3 Authority Key Identifier: keyid:58:E9:08:D0:C7:1A:49:F4:82:A7:C7:D9:55:2A:33:55:9C:AE:26:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WOkI0McaSfSCp8fZVSozVZyuJkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB5CE/B096C500C81A11EBB125A73EC4F9AE02/WOkI0McaSfSCp8fZVSozVZyuJkM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ab:e5:00:0d:81:61:5f:28:1e:88:71:c6:47:65:95:a6:7e: 75:9d:07:0e:57:98:2a:a3:46:1b:da:93:e9:64:37:6c:6d:75: 0c:4a:46:20:42:72:e2:83:b0:eb:3d:58:63:c7:57:13:e6:2c: c1:fc:5b:a6:0e:3e:e4:2e:65:b9:b0:ca:b6:a5:0c:bb:e7:d0: 2b:2d:ae:4f:8e:af:ca:e6:a3:11:5b:8e:06:42:4d:6d:af:93: 4b:b6:74:23:ef:1a:3c:51:0a:02:c4:81:af:cf:66:fc:02:6d: ad:9f:0e:4f:4d:6a:16:43:a7:40:b1:c3:05:6d:e4:49:10:3a: eb:83:96:fe:56:f2:31:62:4a:d0:20:ce:d6:73:1a:52:6a:67: f8:e0:c3:bb:7d:be:4a:6b:a1:5b:00:98:64:c3:ab:c3:76:82: de:8e:4e:11:c3:eb:ea:ef:fd:ac:9b:25:64:8f:93:5b:42:fc: aa:8f:6a:13:75:38:63:3e:dd:f9:66:c1:78:fe:7e:d2:33:ad: e9:d8:4c:ed:a1:0b:0b:68:c1:d3:0a:a5:12:bc:50:c1:5e:78: 88:da:e0:89:46:c9:7a:fe:ab:d7:61:6e:78:46:cc:24:28:d1: 75:26:3e:f3:02:4d:39:b2:46:dd:51:53:11:c7:92:7b:5b:12: 4d:71:9b:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI1Q0UxMTAvBgNVBAUTKDU4RTkwOEQwQzcxQTQ5RjQ4MkE3QzdEOTU1MkEzMzU1 OUNBRTI2NDMwHhcNMjYwNDA0MjIyNzEwWhcNMjYwNDExMjIyNzEwWjAYMRYwFAYD VQQDEw02OWQxOTAzZi03MWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBODQU4wxKJDOwUpIkndwQiEs2nFr3JIpnQs6/wktLsqyoRKfaJHLPifaQU7 cU+26G4bxo9TFj1J69Ws9EWPWfVQePPBb8TDOyqlcilFgK2R4+VTV+mRxe+NguGy 8q5kwyKRToik7okwCMJOgG77BJhWwZKUMHbzjdLWGvpvO5ulxlN7ibWvwhVj4m3+ ZrwFtVes8o4780vjGpquLwQc85KbNhfj6zMB753sPAaLVMjVNBfgqaJLByu6UGuK xY8/C+bIvpi7QcWSYFj0Vz7Dl/Ru8Wk98LQ/aOPAiV0uiwPJwQ10aQroIzXCSEii ZirfM+wRS6Aar/duahNgM2YzdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLn6x9tu 8Onku1kPzSwf3eCNW5g8MB8GA1UdIwQYMBaAFFjpCNDHGkn0gqfH2VUqM1WcriZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjVDRS9CMDk2QzUwMEM4 MUExMUVCQjEyNUE3M0VDNEY5QUUwMi9XT2tJME1jYVNmU0NwOGZaVlNvelZaeXVK a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dPa0kwTWNhU2ZTQ3A4ZlpWU296Vlp5dUprTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjVDRS9CMDk2QzUwMEM4MUExMUVCQjEyNUE3M0VDNEY5QUUwMi9XT2tJME1jYVNm U0NwOGZaVlNvelZaeXVKa00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHavlAA2BYV8oHohxxkdllaZ+dZ0HDleYKqNGG9qT6WQ3bG11DEpGIEJy4oOw 6z1YY8dXE+Yswfxbpg4+5C5lubDKtqUMu+fQKy2uT46vyuajEVuOBkJNba+TS7Z0 I+8aPFEKAsSBr89m/AJtrZ8OT01qFkOnQLHDBW3kSRA664OW/lbyMWJK0CDO1nMa Umpn+ODDu32+SmuhWwCYZMOrw3aC3o5OEcPr6u/9rJslZI+TW0L8qo9qE3U4Yz7d +WbBeP5+0jOt6dhM7aELC2jB0wqlErxQwV54iNrgiUbJev6r12FueEbMJCjRdSY+ 8wJNObJG3VFTEceSe1sSTXGbBg== -----END CERTIFICATE-----Generated at Sun Apr 5 20:57:58 2026 by rpki-client