$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: vf131o+sjnhFsxZEFJ9/0VebdQF3eXO17rtTf457pOI= Subject key identifier: FF:59:8A:FE:37:28:E0:C8:0D:38:30:A2:4B:F7:88:1E:96:8F:2C:23 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 17B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 2192 Signing time: Sat 04 Apr 2026 16:28:13 +0000 Manifest this update: Sat 04 Apr 2026 16:28:13 +0000 Manifest next update: Sat 11 Apr 2026 16:28:13 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: ZGLX/oCiypyxljz39zmuLbfkaJj9otqlYDt3iGiyFoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6067 (0x17b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Apr 4 16:28:13 2026 GMT Not After : Apr 11 16:28:13 2026 GMT Subject: CN=69d13c1d-b468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:64:4e:e3:af:23:3d:ca:ed:8f:f0:c6:16:ac: f6:3b:01:99:b9:12:ed:b9:37:41:0a:4f:35:32:6d: 4e:00:4a:f2:82:ef:06:e5:87:cf:d3:89:04:e1:de: f9:af:d4:54:60:c4:45:91:b4:bd:06:27:c5:c4:21: 9d:9f:0a:a0:61:e0:2f:a1:2b:7a:14:86:5b:65:d7: 5b:a4:43:ba:50:75:74:aa:74:a8:7d:08:8a:31:1c: 91:12:8e:68:3c:be:65:73:05:bb:b5:be:0c:ad:96: 83:1b:b7:64:7a:19:35:b4:c7:70:a7:9a:2d:af:cb: 53:1a:21:5c:4d:12:5f:f1:72:a5:20:7c:6b:18:13: fb:db:76:be:84:48:e4:77:5a:fc:3f:94:dd:86:39: d6:8f:15:dd:50:de:b3:03:79:0f:9e:af:f4:83:16: 9a:a7:34:11:1c:f5:c0:56:98:4f:87:ff:f8:4a:f0: f6:c8:60:dd:9b:00:3c:df:b5:e0:f2:ca:a8:10:16: bf:5c:b5:0e:ea:f1:2b:ce:d0:f5:58:e3:55:6c:f1: 0e:96:b1:b8:8b:1e:31:e0:ac:5a:60:68:9b:8c:b1: 91:40:23:e3:7d:59:ea:65:6d:e7:22:86:3f:64:88: f8:4f:63:12:95:36:7f:fb:40:e3:4b:d5:22:f9:21: 51:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:59:8A:FE:37:28:E0:C8:0D:38:30:A2:4B:F7:88:1E:96:8F:2C:23 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:64:ef:47:c9:91:67:75:61:b3:c4:a4:6b:8e:46:df:cc:48: c2:b2:0a:b2:65:be:8b:7f:c3:35:38:ca:73:e2:96:93:7b:0c: 53:78:57:79:ed:3e:39:9d:ed:f2:f0:57:24:7d:d9:dc:27:3c: 33:8d:07:cc:ca:55:35:73:98:28:23:e1:03:d6:da:78:3c:02: b1:74:8b:18:62:af:3f:ec:ee:c9:9e:af:8b:df:b2:c0:fe:65: 5e:82:1d:5b:33:b0:23:66:e9:a4:61:6d:9f:ef:e5:6e:58:af: 23:5a:0e:82:6f:51:90:22:dd:e9:cc:df:a1:02:b7:05:4e:79: d2:71:5e:8b:6b:76:4f:7c:5f:47:fd:2c:39:c3:cc:38:fa:90: 8f:54:8f:b7:09:f4:54:b0:94:7f:f2:da:be:ee:04:7f:15:6a: 87:2d:14:b7:93:1e:3d:6b:fc:24:57:55:25:dc:49:e3:ef:5b: a4:ba:c0:b9:5f:0c:d1:31:d1:f6:ad:c4:a8:60:9c:ea:b1:f4: 19:0a:4b:18:30:f7:33:95:5f:e3:bd:ab:55:13:dc:5c:82:28: 82:97:4f:09:70:61:27:83:24:90:13:61:f0:50:0f:4d:b1:0b: a1:6c:f9:95:33:b6:a7:d9:34:33:04:e7:b5:ec:86:1c:f3:a5: dd:4a:f7:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjYwNDA0MTYyODEzWhcNMjYwNDExMTYyODEzWjAYMRYwFAYD VQQDEw02OWQxM2MxZC1iNDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWRO468jPcrtj/DGFqz2OwGZuRLtuTdBCk81Mm1OAErygu8G5YfP04kE4d75 r9RUYMRFkbS9BifFxCGdnwqgYeAvoSt6FIZbZddbpEO6UHV0qnSofQiKMRyREo5o PL5lcwW7tb4MrZaDG7dkehk1tMdwp5otr8tTGiFcTRJf8XKlIHxrGBP723a+hEjk d1r8P5TdhjnWjxXdUN6zA3kPnq/0gxaapzQRHPXAVphPh//4SvD2yGDdmwA837Xg 8sqoEBa/XLUO6vErztD1WONVbPEOlrG4ix4x4KxaYGibjLGRQCPjfVnqZW3nIoY/ ZIj4T2MSlTZ/+0DjS9Ui+SFR9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9Ziv43 KODIDTgwokv3iB6WjywjMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm2TvR8mRZ3Vhs8Ska45G38xIwrIKsmW+i3/DNTjKc+KWk3sMU3hXee0+OZ3t 8vBXJH3Z3Cc8M40HzMpVNXOYKCPhA9baeDwCsXSLGGKvP+zuyZ6vi9+ywP5lXoId WzOwI2bppGFtn+/lblivI1oOgm9RkCLd6czfoQK3BU550nFei2t2T3xfR/0sOcPM OPqQj1SPtwn0VLCUf/Lavu4EfxVqhy0Ut5MePWv8JFdVJdxJ4+9bpLrAuV8M0THR 9q3EqGCc6rH0GQpLGDD3M5Vf472rVRPcXIIogpdPCXBhJ4MkkBNh8FAPTbELoWz5 lTO2p9k0MwTnteyGHPOl3Ur3SQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:50:24 2026 by rpki-client