$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: Uw/B/tRkF4sWsKiYK3bJv4vuLagpHFX0WCGSamuWQ3I= Subject key identifier: E1:1E:0B:78:C1:78:D2:B9:A9:47:39:83:6C:2E:0A:20:4F:58:0C:93 Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 0475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 046B Signing time: Sat 04 Apr 2026 23:56:19 +0000 Manifest this update: Sat 04 Apr 2026 23:56:18 +0000 Manifest next update: Sat 11 Apr 2026 23:56:18 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: /3R+x6jf4jeTi3ZJHmDsqjyuDYums6yPDx2e+/OvTeA=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: fjG3+8ZC22UxCMS8177A/y6FTGhegxZaMx8Kk6yByAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1141 (0x475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Apr 4 23:56:18 2026 GMT Not After : Apr 11 23:56:18 2026 GMT Subject: CN=69d1a522-6a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:7b:7d:52:6f:22:13:ce:fd:c7:18:e3:9f: 91:28:54:ab:76:71:b2:b6:95:ec:f6:ed:cb:b5:68: c1:17:cd:9a:78:68:c4:2b:1e:4b:88:c3:54:78:c6: 36:6b:26:31:39:b3:1d:1d:87:61:5f:74:ee:b3:c6: 52:f3:83:b8:62:a9:60:c2:03:b4:38:fa:c6:6c:ad: 21:49:ae:28:89:fd:ee:54:0a:31:be:d2:38:af:24: 92:05:41:23:b7:65:19:6e:7f:a0:47:10:fb:76:1a: 6f:5d:c0:f3:6d:d7:68:d3:e4:ee:33:db:f8:ac:08: ec:e0:5b:54:d7:11:60:bd:be:f1:3e:4a:ea:a8:89: 4f:50:56:3f:ff:6b:9e:8e:e7:3f:51:df:30:3f:9f: c3:f5:47:0d:0b:a3:77:47:d7:d9:cd:f4:fd:11:bf: 63:de:16:21:34:3a:ad:2f:1e:fd:f9:33:91:55:73: 67:73:52:b5:39:15:19:bf:88:0f:c9:31:78:ec:c1: 05:0b:ae:31:7c:75:9b:da:2e:ce:db:e6:94:a1:be: e7:bc:f4:35:83:24:26:22:c3:44:e7:8d:9e:cf:b6: bd:6f:70:e3:1d:a2:10:16:e6:73:55:cf:4d:95:28: 34:58:04:fd:8a:25:b3:8c:37:19:d7:df:c4:ea:2a: 30:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1E:0B:78:C1:78:D2:B9:A9:47:39:83:6C:2E:0A:20:4F:58:0C:93 X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:7a:5d:53:ab:98:b7:63:89:52:dd:ff:1a:4f:5a:2d:20:23: b9:9b:e1:95:96:ce:13:3a:7b:c0:7f:41:42:88:9d:5b:27:43: 73:21:a8:8e:37:48:27:20:96:96:23:fa:2b:14:93:5e:a5:eb: ee:11:c2:97:be:89:8d:0b:2f:31:c0:94:72:2a:95:64:44:9d: 34:45:f4:c5:f0:76:5b:12:c0:f9:a3:e8:5a:69:9c:24:56:f7: a5:a4:9c:0c:b3:29:f7:dc:be:bc:51:54:1e:f0:bd:5c:e8:43: ae:4d:65:24:6b:20:ee:a2:8e:7d:a6:84:00:e7:2c:78:42:73: 2f:e0:3f:c4:8b:d8:af:32:eb:11:c7:27:95:c0:3b:7a:c2:29: 27:ed:39:1a:2a:68:2e:a7:16:2b:27:fb:d8:ea:6e:46:63:4b: d7:23:74:83:3d:65:65:51:a5:ee:64:dd:82:bf:a0:e0:6e:ce: b4:cb:7f:1f:a2:a5:67:94:59:bb:cf:f4:d1:06:66:18:f4:5d: 7f:d8:1c:4e:c1:45:39:91:73:89:84:61:20:2e:a6:30:8b:cf: 64:fb:8c:aa:24:4d:68:77:bb:4d:42:c5:c7:c6:6f:fa:61:e4: 1b:2e:65:2d:8b:e4:7f:90:10:51:9a:9e:d9:c2:b9:1d:27:c5: 3d:66:ce:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjYwNDA0MjM1NjE4WhcNMjYwNDExMjM1NjE4WjAYMRYwFAYD VQQDEw02OWQxYTUyMi02YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLN7fVJvIhPO/ccY45+RKFSrdnGytpXs9u3LtWjBF82aeGjEKx5LiMNUeMY2 ayYxObMdHYdhX3Tus8ZS84O4YqlgwgO0OPrGbK0hSa4oif3uVAoxvtI4rySSBUEj t2UZbn+gRxD7dhpvXcDzbddo0+TuM9v4rAjs4FtU1xFgvb7xPkrqqIlPUFY//2ue juc/Ud8wP5/D9UcNC6N3R9fZzfT9Eb9j3hYhNDqtLx79+TORVXNnc1K1ORUZv4gP yTF47MEFC64xfHWb2i7O2+aUob7nvPQ1gyQmIsNE542ez7a9b3DjHaIQFuZzVc9N lSg0WAT9iiWzjDcZ19/E6iow9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOEeC3jB eNK5qUc5g2wuCiBPWAyTMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWHpdU6uYt2OJUt3/Gk9aLSAjuZvhlZbOEzp7wH9BQoidWydDcyGojjdIJyCW liP6KxSTXqXr7hHCl76JjQsvMcCUciqVZESdNEX0xfB2WxLA+aPoWmmcJFb3paSc DLMp99y+vFFUHvC9XOhDrk1lJGsg7qKOfaaEAOcseEJzL+A/xIvYrzLrEccnlcA7 esIpJ+05GipoLqcWKyf72OpuRmNL1yN0gz1lZVGl7mTdgr+g4G7OtMt/H6KlZ5RZ u8/00QZmGPRdf9gcTsFFOZFziYRhIC6mMIvPZPuMqiRNaHe7TULFx8Zv+mHkGy5l LYvkf5AQUZqe2cK5HSfFPWbOgQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:50 2026 by rpki-client