$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: O/h4EVxbQ5KZn9HD4SemT63CwGyOeVvoX4EMDBK3+Gs= Subject key identifier: 22:DE:90:90:60:FD:EB:1F:F7:F9:23:3D:07:FB:CD:7A:83:CB:9A:A0 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 0235 Signing time: Sun 05 Apr 2026 02:09:37 +0000 Manifest this update: Sun 05 Apr 2026 02:09:36 +0000 Manifest next update: Sun 12 Apr 2026 02:09:36 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: gpXu8lP5Rt1f5zlA4ueKHSBytoecnJ3nO55xTxliPxM=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: 6U++pNkeW+MPTCwzdV8Vs83jpXrL1CTpZqHD9JNg/bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:09:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Apr 5 02:09:36 2026 GMT Not After : Apr 12 02:09:36 2026 GMT Subject: CN=69d1c460-acd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e7:c7:9d:09:e7:43:08:c1:c0:0f:2d:90:ce: 92:d1:c2:d8:6e:4d:3c:62:13:03:5d:4e:fc:5b:b6: d1:12:c7:62:69:ba:b7:ce:1c:4a:d8:d6:c7:37:90: f8:95:96:73:4d:d3:73:46:1c:ff:f5:7d:cf:80:8c: d8:2c:c3:5c:6d:9f:3e:f6:9c:01:82:18:80:cc:a1: 69:10:70:07:f0:a1:ad:e5:48:2d:9a:08:47:b7:8e: 9f:d7:c4:7a:49:2c:9d:dc:c2:af:58:60:d0:4f:19: 93:56:f7:80:92:72:03:90:63:61:11:ed:aa:76:40: 7e:c3:a8:86:9b:46:20:c5:f0:0f:4e:ae:c8:2c:86: 4d:97:f5:e6:a0:51:40:51:86:5e:d4:5e:ea:73:e6: c5:49:d9:a1:e6:9a:f3:b2:93:af:16:bd:78:e7:d9: 22:6c:0a:aa:2f:79:3b:e5:9c:c3:13:40:a9:13:c6: c3:2b:ad:c8:51:22:9e:ed:c6:40:de:4d:09:ae:d0: bd:cb:c4:70:69:2c:cf:8a:eb:75:ea:3f:f0:b3:26: 85:f3:54:58:b2:ef:7a:ef:36:26:1c:0d:4b:a0:20: 30:43:20:d0:6c:9c:ae:7a:dc:5f:37:3e:19:e7:c1: be:1f:9a:69:8d:a6:a3:b9:d9:2d:d3:a0:cb:84:bc: 28:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:DE:90:90:60:FD:EB:1F:F7:F9:23:3D:07:FB:CD:7A:83:CB:9A:A0 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:cd:3b:b4:b2:2c:c3:75:47:db:f7:15:67:dd:58:81:1b:3b: e1:7c:03:8a:20:23:c1:b8:53:ad:cf:e7:19:91:20:9c:72:42: 05:f5:6b:19:8e:2f:cf:0f:c1:b5:fe:94:53:38:a5:7e:41:2a: c5:0b:d0:20:d9:b1:a6:a2:7d:7d:be:ae:af:74:3e:7e:72:f1: 72:a3:9e:ac:2c:ad:7d:25:56:78:bf:fb:eb:4f:57:58:58:9d: e1:44:c3:63:4e:0d:32:d0:67:df:a7:bb:7d:75:e2:bd:4a:12: f0:03:d1:c6:74:90:a2:a3:02:ff:48:74:de:eb:13:9b:9d:01: 29:f6:a6:fe:45:69:6e:27:27:a2:82:57:48:16:70:50:92:07: 72:01:11:bd:a5:15:c0:0b:cc:ff:11:b4:ee:ce:9a:1a:80:cf: 5c:3a:8e:58:d3:31:2f:ce:0f:23:29:0b:bf:20:90:e4:23:57: 86:f1:26:68:0f:62:04:46:85:98:b7:b9:c7:9d:0f:e0:8e:cd: b6:2f:ab:d2:52:d0:e9:93:e1:e9:7c:a4:36:fe:41:19:73:08: 78:76:1a:62:9a:66:15:68:32:18:8d:1f:8b:29:58:48:0f:bd: 65:cd:76:18:49:8f:e6:cc:c2:d3:a2:9d:fe:35:db:eb:35:1c: aa:61:94:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjYwNDA1MDIwOTM2WhcNMjYwNDEyMDIwOTM2WjAYMRYwFAYD VQQDEw02OWQxYzQ2MC1hY2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+fHnQnnQwjBwA8tkM6S0cLYbk08YhMDXU78W7bREsdiabq3zhxK2NbHN5D4 lZZzTdNzRhz/9X3PgIzYLMNcbZ8+9pwBghiAzKFpEHAH8KGt5UgtmghHt46f18R6 SSyd3MKvWGDQTxmTVveAknIDkGNhEe2qdkB+w6iGm0YgxfAPTq7ILIZNl/XmoFFA UYZe1F7qc+bFSdmh5przspOvFr1459kibAqqL3k75ZzDE0CpE8bDK63IUSKe7cZA 3k0JrtC9y8RwaSzPiut16j/wsyaF81RYsu967zYmHA1LoCAwQyDQbJyuetxfNz4Z 58G+H5ppjaajudkt06DLhLwoxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCLekJBg /esf9/kjPQf7zXqDy5qgMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeM07tLIsw3VH2/cVZ91YgRs74XwDiiAjwbhTrc/nGZEgnHJCBfVrGY4vzw/B tf6UUzilfkEqxQvQINmxpqJ9fb6ur3Q+fnLxcqOerCytfSVWeL/7609XWFid4UTD Y04NMtBn36e7fXXivUoS8APRxnSQoqMC/0h03usTm50BKfam/kVpbicnooJXSBZw UJIHcgERvaUVwAvM/xG07s6aGoDPXDqOWNMxL84PIykLvyCQ5CNXhvEmaA9iBEaF mLe5x50P4I7Nti+r0lLQ6ZPh6XykNv5BGXMIeHYaYppmFWgyGI0fiylYSA+9Zc12 GEmP5szC06Kd/jXb6zUcqmGUwQ== -----END CERTIFICATE-----Generated at Mon Apr 6 13:56:16 2026 by rpki-client