$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft File: pkvkSssA5L2uRJGw-gzXCZ0scnw.mft (raw, json) Hash identifier: ssm1Ri7XGNSyauOqs02TQrhx38byjUbnFrSv9zipBBM= Subject key identifier: D6:78:84:2E:19:E9:04:64:94:2B:0D:85:E6:0C:B7:1E:77:A5:EE:BF Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C Certificate issuer: /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft Manifest number: 0101 Signing time: Sat 04 Apr 2026 18:50:54 +0000 Manifest this update: Sat 04 Apr 2026 18:50:53 +0000 Manifest next update: Sat 11 Apr 2026 18:50:53 +0000 Files and hashes: 1: pkvkSssA5L2uRJGw-gzXCZ0scnw.crl (hash: XS+q1cGEP/vJBqvG0tbFYgbzD4t6cY8MsJW+eAy3KPU=) 2: 8D431594FFDF11EF8DF72930C4F9AE02.roa (hash: pkoy3XTlYyZ8zRpQAksJG/nCLkfVOV6ccFZKSXm/Z5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Validity Not Before: Apr 4 18:50:53 2026 GMT Not After : Apr 11 18:50:53 2026 GMT Subject: CN=69d15d8d-10a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:65:db:15:a5:d9:a9:07:96:4f:18:31:38:64: f6:91:6b:73:81:b0:a7:8e:50:23:13:97:13:c1:45: d8:03:26:48:b4:5a:65:d1:c6:43:a3:f2:cf:cc:9b: 5f:ff:1e:0d:64:fa:e8:c6:9e:63:d1:8d:23:9d:90: 31:45:73:dc:da:d7:7e:e7:5c:05:c7:8f:70:37:9c: 36:eb:15:6b:03:c9:2a:ad:78:bf:e9:a7:5c:7a:b6: ae:d6:51:bf:93:a4:c4:82:c8:3d:48:68:ef:70:bd: 83:54:cf:9a:1c:2e:d5:65:74:69:d5:28:38:f3:76: 6a:29:e8:62:fc:bd:9d:e5:62:e3:77:1c:80:12:5f: 81:d4:06:0f:33:c4:af:82:9b:d4:2f:92:ac:f2:67: 1f:1a:c9:f5:93:42:e5:e7:26:37:9c:c3:1f:57:32: 83:8f:3d:92:ec:98:b0:5c:39:e3:8c:3e:d8:c7:48: 50:4e:df:d7:dc:6c:ae:85:ba:04:b2:39:ff:1a:01: ca:fb:18:1e:28:e2:4c:71:9d:4b:f2:b0:c8:94:8b: af:72:ab:6e:28:0f:6d:a5:df:43:ca:a4:25:36:9e: 39:08:ae:a4:fa:19:48:d7:92:b6:d9:42:6a:75:85: 35:02:ce:e3:d2:b3:ea:18:70:87:05:80:a0:b1:10: 79:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:78:84:2E:19:E9:04:64:94:2B:0D:85:E6:0C:B7:1E:77:A5:EE:BF X509v3 Authority Key Identifier: keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:28:2b:93:94:13:fb:02:db:f6:dd:c9:78:02:30:09:2c:80: 7b:c2:98:e8:60:bc:c5:a7:47:5d:34:89:1d:2f:c1:ad:6e:b1: be:45:7f:35:71:07:ff:e0:a1:82:35:84:1f:23:da:89:e4:1a: 80:b7:5f:33:c2:64:4a:f3:d5:12:47:f7:c3:e6:6f:84:72:b4: 2c:d8:2c:4b:89:13:23:fd:41:df:56:6d:30:46:45:ce:8c:76: 73:d9:fa:9f:2b:d3:6f:97:c8:f5:36:4b:fb:39:09:29:27:57: e1:9a:b9:ef:24:39:c8:f3:ef:33:0c:0e:cc:df:b1:7b:96:d4: 64:bd:3f:f4:df:3b:d2:e5:2c:60:5f:81:49:4a:b5:da:06:ec: 7d:5c:af:43:1e:ed:a8:ac:a3:58:f6:bd:e1:c1:21:e3:3d:47: 30:15:29:75:bf:d2:69:19:66:02:68:0b:c1:68:0a:6e:92:d3: 1d:49:94:19:13:5d:de:00:96:04:d3:74:39:63:23:fb:8e:a9: b0:ed:3e:af:db:b6:bd:b9:1b:54:b3:cd:a6:68:f6:d7:a6:86: 12:a5:20:f3:97:fb:ad:a0:1f:ce:40:59:97:b0:74:5a:1c:6a: 98:18:7d:0b:87:d5:08:da:77:b5:26:ff:b0:2d:39:0a:01:6b: f8:48:9d:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKEE2NEJFNDRBQ0IwMEU0QkRBRTQ0OTFCMEZBMENENzA5 OUQyQzcyN0MwHhcNMjYwNDA0MTg1MDUzWhcNMjYwNDExMTg1MDUzWjAYMRYwFAYD VQQDEw02OWQxNWQ4ZC0xMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mXbFaXZqQeWTxgxOGT2kWtzgbCnjlAjE5cTwUXYAyZItFpl0cZDo/LPzJtf /x4NZProxp5j0Y0jnZAxRXPc2td+51wFx49wN5w26xVrA8kqrXi/6adcerau1lG/ k6TEgsg9SGjvcL2DVM+aHC7VZXRp1Sg483ZqKehi/L2d5WLjdxyAEl+B1AYPM8Sv gpvUL5Ks8mcfGsn1k0Ll5yY3nMMfVzKDjz2S7JiwXDnjjD7Yx0hQTt/X3GyuhboE sjn/GgHK+xgeKOJMcZ1L8rDIlIuvcqtuKA9tpd9DyqQlNp45CK6k+hlI15K22UJq dYU1As7j0rPqGHCHBYCgsRB5ewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNZ4hC4Z 6QRklCsNheYMtx53pe6/MB8GA1UdIwQYMBaAFKZL5ErLAOS9rkSRsPoM1wmdLHJ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9GODNFM0ZDRUFE QkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVMMnVSSkd3LWd6WENaMHNj bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BrdmtTc3NBNUwydVJKR3ctZ3pYQ1owc2Nudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9GODNFM0ZDRUFEQkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVM MnVSSkd3LWd6WENaMHNjbncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXCgrk5QT+wLb9t3JeAIwCSyAe8KY6GC8xadHXTSJHS/BrW6xvkV/NXEH/+Ch gjWEHyPaieQagLdfM8JkSvPVEkf3w+ZvhHK0LNgsS4kTI/1B31ZtMEZFzox2c9n6 nyvTb5fI9TZL+zkJKSdX4Zq57yQ5yPPvMwwOzN+xe5bUZL0/9N870uUsYF+BSUq1 2gbsfVyvQx7tqKyjWPa94cEh4z1HMBUpdb/SaRlmAmgLwWgKbpLTHUmUGRNd3gCW BNN0OWMj+46psO0+r9u2vbkbVLPNpmj216aGEqUg85f7raAfzkBZl7B0WhxqmBh9 C4fVCNp3tSb/sC05CgFr+EidRw== -----END CERTIFICATE-----Generated at Mon Apr 6 13:37:03 2026 by rpki-client