$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft File: vTfx1AdHvmxfXGujMH32Vgq2gaM.mft (raw, json) Hash identifier: ls7CfcFDzlJJfXSFcGVlbqkJFpqdbo5IueYXPCI4zqY= Subject key identifier: CA:5D:CA:8D:DA:E5:DD:F4:E5:A0:08:37:41:E3:83:0A:D3:5F:4E:67 Authority key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 Certificate issuer: /CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft Manifest number: 0C25 Signing time: Sat 04 Apr 2026 19:54:02 +0000 Manifest this update: Sat 04 Apr 2026 19:54:02 +0000 Manifest next update: Sat 11 Apr 2026 19:54:02 +0000 Files and hashes: 1: vTfx1AdHvmxfXGujMH32Vgq2gaM.crl (hash: pivMG33l0peYBH5rhlY4WUqsmcth+iYQGFiwnVq1TkQ=) 2: 28C454FCB41211EF8D2EC946C4F9AE02.roa (hash: QB5ktFkmasLbkBlP1SMErkyzO+uRKfcfUdHGElXJLuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6, serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Validity Not Before: Apr 4 19:54:02 2026 GMT Not After : Apr 11 19:54:02 2026 GMT Subject: CN=69d16c5a-f317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:69:02:4f:b7:bd:be:c8:ba:e8:ad:c3:36:28: a3:77:d1:8c:97:c6:06:45:82:70:98:35:25:8a:60: b7:b7:a4:9f:33:66:b4:1b:a3:43:90:b5:a1:b6:81: e0:31:3d:49:3b:27:27:3e:5b:23:f4:6d:bf:25:9f: 8c:a4:ff:72:c3:21:41:4e:fc:35:dc:2f:f9:0f:ae: 33:99:17:6d:de:89:e0:8a:46:75:20:5c:2e:64:b4: eb:51:ef:b3:a5:26:23:ab:24:c9:49:45:54:91:80: 7b:85:bb:bb:8b:3a:8c:20:1b:21:73:e3:1d:d0:b7: b6:ad:d8:85:87:14:02:0b:c1:a2:b5:4f:fb:d8:7a: 93:f0:9c:c2:39:c7:c2:cb:0e:ed:7d:68:80:a7:b3: 6d:54:0e:6c:3a:03:78:97:0f:8f:62:e9:84:ce:6f: b5:ad:ff:dc:80:5c:08:e2:20:9d:44:a6:7c:d8:d1: 43:60:62:da:d4:67:76:a9:7d:b7:69:02:45:38:a8: be:ef:be:b1:d7:8f:9c:00:0c:42:5c:d5:39:f6:a5: bf:bc:4f:67:e4:4a:e7:9f:76:9c:ee:67:ca:e8:8c: 8e:14:f9:bb:15:30:97:74:e7:32:5f:ee:bb:c7:e7: 24:da:6d:51:1c:49:b8:24:1e:ab:e8:13:c8:2b:4e: 67:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5D:CA:8D:DA:E5:DD:F4:E5:A0:08:37:41:E3:83:0A:D3:5F:4E:67 X509v3 Authority Key Identifier: keyid:BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:a5:8d:83:14:fe:e0:30:90:25:69:22:d4:e8:a7:52:d6:05: 81:68:2e:93:4b:80:0c:52:95:ea:be:c4:7e:04:af:b9:4e:df: 41:80:38:c2:6f:fc:50:32:15:84:b9:7a:27:0d:94:40:0c:31: f0:f2:10:00:60:c3:51:1a:c2:d8:7b:e1:a0:7c:2f:e0:f9:45: dc:4b:b9:3a:4b:18:3b:8d:aa:b1:76:e5:ed:b2:09:97:11:e5: ca:d1:b3:75:8d:1b:aa:d5:5a:cb:d5:f3:5d:34:06:78:10:7d: 3d:e5:ae:ee:ad:e6:7c:0c:31:f8:12:a3:23:f1:ee:58:91:44: 60:80:ba:2f:12:a6:bd:58:da:2a:cd:2f:47:ab:75:b7:3a:03: 7f:a0:54:50:d7:5a:bd:a9:a3:e5:de:23:e2:87:18:2a:7d:48: 76:64:e6:6f:4e:57:63:e7:71:13:aa:8a:98:52:3a:d3:ee:5b: f0:e7:13:4d:fd:cf:8f:92:56:3d:6f:41:8c:ed:4a:a3:c4:ce: 5f:e3:2f:f9:0f:3b:32:db:e0:9b:ca:f9:9b:b3:fd:e1:55:a6: 18:51:32:34:6f:22:c0:08:9d:41:b9:5f:db:af:bd:33:0e:a3: f0:b4:bd:16:a8:59:55:4d:ab:32:3d:8e:75:dc:56:4d:6e:3e: 0d:8f:73:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE3RTYxMTAvBgNVBAUTKEJEMzdGMUQ0MDc0N0JFNkM1RjVDNkJBMzMwN0RGNjU2 MEFCNjgxQTMwHhcNMjYwNDA0MTk1NDAyWhcNMjYwNDExMTk1NDAyWjAYMRYwFAYD VQQDEw02OWQxNmM1YS1mMzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGkCT7e9vsi66K3DNiijd9GMl8YGRYJwmDUlimC3t6SfM2a0G6NDkLWhtoHg MT1JOycnPlsj9G2/JZ+MpP9ywyFBTvw13C/5D64zmRdt3ongikZ1IFwuZLTrUe+z pSYjqyTJSUVUkYB7hbu7izqMIBshc+Md0Le2rdiFhxQCC8GitU/72HqT8JzCOcfC yw7tfWiAp7NtVA5sOgN4lw+PYumEzm+1rf/cgFwI4iCdRKZ82NFDYGLa1Gd2qX23 aQJFOKi+776x14+cAAxCXNU59qW/vE9n5Ernn3ac7mfK6IyOFPm7FTCXdOcyX+67 x+ck2m1RHEm4JB6r6BPIK05nWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMpdyo3a 5d305aAIN0HjgwrTX05nMB8GA1UdIwQYMBaAFL038dQHR75sX1xrozB99lYKtoGj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTdFNi81NTc0MEU3MEIz QjMxMUVBQjE5OENFMERDNEY5QUUwMi92VGZ4MUFkSHZteGZYR3VqTUgzMlZncTJn YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZUZngxQWRIdm14ZlhHdWpNSDMyVmdxMmdhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTdFNi81NTc0MEU3MEIzQjMxMUVBQjE5OENFMERDNEY5QUUwMi92VGZ4MUFkSHZt eGZYR3VqTUgzMlZncTJnYU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlqWNgxT+4DCQJWki1OinUtYFgWguk0uADFKV6r7EfgSvuU7fQYA4wm/8UDIV hLl6Jw2UQAwx8PIQAGDDURrC2HvhoHwv4PlF3Eu5OksYO42qsXbl7bIJlxHlytGz dY0bqtVay9XzXTQGeBB9PeWu7q3mfAwx+BKjI/HuWJFEYIC6LxKmvVjaKs0vR6t1 tzoDf6BUUNdavamj5d4j4ocYKn1IdmTmb05XY+dxE6qKmFI60+5b8OcTTf3Pj5JW PW9BjO1Ko8TOX+Mv+Q87Mtvgm8r5m7P94VWmGFEyNG8iwAidQblf26+9Mw6j8LS9 FqhZVU2rMj2OddxWTW4+DY9zwA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:03 2026 by rpki-client