$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: FsgtDhiQYqini9qagEYStfmNwi21F1Ro2/QwDMRA6Y0= Subject key identifier: 68:EB:05:3A:09:81:E8:B3:D3:F9:B0:2A:15:D0:56:17:33:08:83:52 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 35CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 3574 Signing time: Sun 26 Apr 2026 14:17:30 +0000 Manifest this update: Sun 26 Apr 2026 14:17:29 +0000 Manifest next update: Sun 03 May 2026 14:17:29 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: Ay7lmsha8m2SHcIy7T/XRX/foBAb4UREdtgaolaPe+U=) 2: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: aqVmmYIJQaHpLvDdH8MbBjTUJnEk1fL6///wI+ixCg4=) 3: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: BUp0zcWa4HIudpk64mEylcMBmmGpd1vuqwNaBAsC6O8=) 4: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: 8krrPxGdC1AJXLst0L0sKBcp7J4vtNMSaCyCJqfKloU=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: VG82nm7UqU5w2sJlNK4SDxqINYJwoA6/oxLrBlm8JIE=) 6: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: yReVTcL58773Jpuyzjun19aGFuK7z9XDGu28zTvah3k=) 7: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: GnJt59bMAjeqlYPa4lin7QYgA2KcGbUA51eIDiT69YA=) 8: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: tHVxf9Q3vQhMutTNU0Up1wvh8aZLr2ux0lvTei/d9kc=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: S5MQHQKHGoySn52561lN0xrvmjrDRJUvv1CviMHuNKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 14:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13774 (0x35ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Apr 26 14:17:29 2026 GMT Not After : May 3 14:17:29 2026 GMT Subject: CN=69ee1e7a-8848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:83:b1:d6:4a:ac:6f:07:da:3d:b5:68:53:20: aa:42:a2:fc:e3:c2:54:0f:79:b1:82:04:57:89:cc: 83:e0:09:dd:4c:26:60:88:53:7a:c4:06:c3:09:b2: c8:64:36:ad:4f:c4:a6:12:21:4b:69:f2:2b:fb:d1: bd:62:bb:f9:4a:50:9e:b2:00:9b:ef:ca:bd:ad:9a: a4:49:0c:50:90:78:8d:df:8b:e4:7b:5a:aa:99:22: d0:06:96:19:e9:34:73:70:a9:bf:1d:57:04:4f:5b: e5:e5:fa:02:29:9b:e1:7e:6a:70:d0:61:fe:8c:a8: d6:7e:a4:d2:41:77:1c:7c:88:b1:a9:86:dc:0d:fe: cc:2b:64:b9:09:e0:c4:de:b7:0d:9f:33:ab:13:0e: d5:57:d1:14:75:df:0b:0f:39:d5:7f:57:58:c6:0e: 15:2d:47:ac:ba:4e:d3:fa:de:3b:42:a9:9d:f1:19: 47:7e:37:63:37:25:b7:16:e3:ef:3a:92:b0:28:f5: 52:f4:9e:ac:52:79:c8:01:42:fa:29:4a:ac:ee:b9: 7d:cf:ba:35:d1:49:14:da:ed:76:b5:a4:a1:08:59: d2:57:b0:41:82:52:ec:0b:cb:20:dd:6a:6d:55:f9: f1:bf:75:b6:f2:33:80:1e:6f:95:ec:ab:c1:77:80: 26:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:EB:05:3A:09:81:E8:B3:D3:F9:B0:2A:15:D0:56:17:33:08:83:52 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:00:56:83:6b:7f:9d:b3:0d:bc:a7:c7:0b:7c:d6:01:e1:1b: c5:6d:13:81:a4:53:f1:0c:f0:f9:a7:f6:34:79:6b:2e:e8:8f: fd:67:6b:fb:11:50:9f:13:60:16:fd:96:7f:95:53:38:c0:b6: 1e:2a:3b:d5:54:a6:2e:36:d5:23:11:95:f4:c6:bb:06:c4:c4: 97:1e:fd:6e:fc:94:18:3e:27:99:cd:c1:9d:70:b7:29:57:fe: b1:cd:f0:d7:e3:ce:0c:15:cd:e4:f5:18:1f:8f:b3:91:ce:17: ec:cf:cf:50:1d:ef:35:d2:04:28:5c:57:83:9c:41:45:a2:d1: ce:27:14:48:4b:9c:5c:97:95:33:30:2a:3d:0f:31:f3:58:60: 55:7e:5d:b9:32:44:bb:c7:e5:56:68:d3:57:4e:50:50:27:e8: 34:eb:b1:85:a0:35:01:58:bc:70:00:27:da:1f:e4:4e:d0:0c: 96:51:aa:00:5a:60:d8:14:08:d1:e5:23:4c:f9:20:c2:36:a5: 57:32:40:35:80:03:c7:2b:5b:ab:f4:d5:b8:10:02:0f:a2:17: 69:ec:ee:73:26:90:5f:ba:9c:3e:5a:97:10:55:35:74:fe:12: a6:7a:f9:f7:ef:a2:58:1b:8b:b3:58:88:40:2e:40:13:5d:ed: 7b:86:25:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjYwNDI2MTQxNzI5WhcNMjYwNTAzMTQxNzI5WjAYMRYwFAYD VQQDEw02OWVlMWU3YS04ODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IOx1kqsbwfaPbVoUyCqQqL848JUD3mxggRXicyD4AndTCZgiFN6xAbDCbLI ZDatT8SmEiFLafIr+9G9Yrv5SlCesgCb78q9rZqkSQxQkHiN34vke1qqmSLQBpYZ 6TRzcKm/HVcET1vl5foCKZvhfmpw0GH+jKjWfqTSQXccfIixqYbcDf7MK2S5CeDE 3rcNnzOrEw7VV9EUdd8LDznVf1dYxg4VLUesuk7T+t47Qqmd8RlHfjdjNyW3FuPv OpKwKPVS9J6sUnnIAUL6KUqs7rl9z7o10UkU2u12taShCFnSV7BBglLsC8sg3Wpt Vfnxv3W28jOAHm+V7KvBd4AmuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjrBToJ geiz0/mwKhXQVhczCINSMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqABWg2t/nbMNvKfHC3zWAeEbxW0TgaRT8Qzw+af2NHlrLuiP/Wdr+xFQnxNg Fv2Wf5VTOMC2Hio71VSmLjbVIxGV9Ma7BsTElx79bvyUGD4nmc3BnXC3KVf+sc3w 1+PODBXN5PUYH4+zkc4X7M/PUB3vNdIEKFxXg5xBRaLRzicUSEucXJeVMzAqPQ8x 81hgVX5duTJEu8flVmjTV05QUCfoNOuxhaA1AVi8cAAn2h/kTtAMllGqAFpg2BQI 0eUjTPkgwjalVzJANYADxytbq/TVuBACD6IXaezucyaQX7qcPlqXEFU1dP4Spnr5 9++iWBuLs1iIQC5AE13te4Yltg== -----END CERTIFICATE-----Generated at Tue Apr 28 04:09:18 2026 by rpki-client