$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: 45AvEu164KJq4NjK5zvHdnXUJfaizKB1Jctjz5EBm8Y= Subject key identifier: EA:F2:7B:B9:88:78:6F:D6:7E:35:76:7D:69:0A:BA:53:8C:70:A9:B2 Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: D7 Signing time: Sun 05 Apr 2026 06:02:14 +0000 Manifest this update: Sun 05 Apr 2026 06:02:14 +0000 Manifest next update: Sun 12 Apr 2026 06:02:14 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: 6jO88vsaEjfQBS7YhC6hHXOmSJLuQEBfGcl8P9R5nKQ=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: VpW1ss/FISZUa4YxltnTH36k8qN9hgV+vDjB+vqrTUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Apr 5 06:02:14 2026 GMT Not After : Apr 12 06:02:14 2026 GMT Subject: CN=69d1fae6-303a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c3:0c:ad:eb:66:f2:22:fa:73:e8:49:e7:7e: ae:02:76:46:e4:e2:ae:60:2f:48:82:88:d3:af:fb: 0e:d6:c9:c9:92:28:0a:ae:a9:36:c1:46:62:36:0b: c0:4a:5e:cc:dc:ea:88:e4:25:69:09:c4:38:1f:1f: 67:34:bd:e3:c2:7e:6b:4d:44:ee:37:a0:48:6c:ec: 0e:35:10:2c:f6:2e:d2:83:5d:96:24:cf:95:2e:fd: d3:a9:10:0d:cc:91:9a:b0:07:5d:3b:86:53:31:d2: 59:5d:82:b7:39:79:6f:b3:49:f1:e0:22:c1:5b:c1: 3c:07:85:ae:7b:72:b6:f6:27:34:1c:9b:3c:df:c9: 0c:bd:86:be:6e:22:5f:21:6b:76:48:40:f8:9d:1e: 95:c2:05:2c:20:42:be:79:07:87:a7:4a:d1:1c:91: cd:29:76:91:04:1f:d8:5e:f8:72:bb:d9:32:be:ff: 88:63:2d:0f:07:45:a3:26:49:2f:b8:62:98:46:e8: 71:18:b4:d4:d9:2e:6d:ad:f5:c7:b4:25:10:85:c2: ca:15:36:5f:5c:e4:a4:40:24:05:e5:8d:1a:9f:95: ef:c4:52:14:a0:2e:b2:22:69:fc:3c:ce:a3:57:66: 6f:4b:78:73:6f:eb:6a:8f:4b:d5:4d:e5:e5:db:a1: 6f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F2:7B:B9:88:78:6F:D6:7E:35:76:7D:69:0A:BA:53:8C:70:A9:B2 X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8d:1f:9c:f6:d8:b7:44:31:1b:64:f3:83:63:10:f7:f8:86: c3:83:e6:6b:b3:8d:c9:2c:fd:c8:d7:96:71:e7:5e:2e:c7:c4: 87:0e:12:50:99:eb:07:51:a5:7c:5e:2c:3e:91:ae:12:c9:1e: 93:20:40:97:bd:c2:55:b2:0c:95:37:0c:84:7e:05:03:93:2b: df:62:51:1d:79:1d:8b:70:74:85:9c:20:66:af:92:6e:20:28: 53:44:a6:d8:c4:3b:d3:bd:00:7c:3d:d8:4f:f5:a9:51:b6:ad: 48:b7:0a:88:87:38:04:42:39:b4:9a:13:bd:d8:43:ac:f2:77: cb:02:0a:ac:55:3f:a7:b2:f2:12:1e:a5:7a:10:f3:35:81:de: 5e:62:9a:5e:c1:5e:7d:e3:84:66:f2:cd:f3:46:35:70:a2:dc: 6a:ec:eb:6a:e1:25:0b:12:36:c1:e8:30:8f:39:32:3e:fb:8d: 7a:61:4f:c6:aa:1d:e9:b4:d3:f3:12:e3:3b:03:7c:35:25:9f: 9a:a9:97:cc:bc:e9:e0:0a:51:ea:0f:bd:76:58:28:d0:e9:f9: de:9c:7c:73:b4:53:53:43:25:89:60:3e:d2:f7:9f:5a:bb:8c: 18:9d:77:21:44:16:14:24:05:b6:fb:f0:1c:4e:8b:ea:83:3e: 03:f6:a4:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGM0IxMTAvBgNVBAUTKEEzOEQ0ODdCRDVEOUE4QTg5NDgwMjc0RkU2RjdDMDYx QzYyNEJDQzAwHhcNMjYwNDA1MDYwMjE0WhcNMjYwNDEyMDYwMjE0WjAYMRYwFAYD VQQDEw02OWQxZmFlNi0zMDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssMMretm8iL6c+hJ536uAnZG5OKuYC9IgojTr/sO1snJkigKrqk2wUZiNgvA Sl7M3OqI5CVpCcQ4Hx9nNL3jwn5rTUTuN6BIbOwONRAs9i7Sg12WJM+VLv3TqRAN zJGasAddO4ZTMdJZXYK3OXlvs0nx4CLBW8E8B4Wue3K29ic0HJs838kMvYa+biJf IWt2SED4nR6VwgUsIEK+eQeHp0rRHJHNKXaRBB/YXvhyu9kyvv+IYy0PB0WjJkkv uGKYRuhxGLTU2S5trfXHtCUQhcLKFTZfXOSkQCQF5Y0an5XvxFIUoC6yImn8PM6j V2ZvS3hzb+tqj0vVTeXl26Fv2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOrye7mI eG/WfjV2fWkKulOMcKmyMB8GA1UdIwQYMBaAFKONSHvV2aiolIAnT+b3wGHGJLzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUYzQi9BQzc2MjIwMEU5 QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFLaVVnQ2RQNXZmQVljWWt2 TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUYzQi9BQzc2MjIwMEU5QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFL aVVnQ2RQNXZmQVljWWt2TUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI40fnPbYt0QxG2Tzg2MQ9/iGw4Pma7ONySz9yNeWcedeLsfEhw4SUJnrB1Gl fF4sPpGuEskekyBAl73CVbIMlTcMhH4FA5Mr32JRHXkdi3B0hZwgZq+SbiAoU0Sm 2MQ7070AfD3YT/WpUbatSLcKiIc4BEI5tJoTvdhDrPJ3ywIKrFU/p7LyEh6lehDz NYHeXmKaXsFefeOEZvLN80Y1cKLcauzrauElCxI2wegwjzkyPvuNemFPxqod6bTT 8xLjOwN8NSWfmqmXzLzp4ApR6g+9dlgo0On53px8c7RTU0MliWA+0vefWruMGJ13 IUQWFCQFtvvwHE6L6oM+A/akDg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:02 2026 by rpki-client