$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: ld1pkKhbNJJY/42KiYtB5aBA1BJ/FDgccPubaYp+w6k= Subject key identifier: F2:95:4A:47:3A:EB:5F:2F:E2:32:1E:20:B1:5F:59:A1:3B:74:D2:F8 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 10DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 10C2 Signing time: Sat 18 Apr 2026 14:24:55 +0000 Manifest this update: Sat 18 Apr 2026 14:24:54 +0000 Manifest next update: Sat 25 Apr 2026 14:24:54 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: S1GJSQ8OPH+irQkkg5fMp8ecVsHvU112dXfINmiHEm0=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: FcrkIqa4XDgVdyeOamaFQqlLus8d1JT70DNswdpetnU=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: QAfeG31AUJ9ysS7/jFhyhx6FaI+gxOiP1E4c7gwnNZ4=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: dZjVpX0OHFb95lVF9Cf+7jCMCOq6ryMRIoLMcRSlevM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4316 (0x10dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Apr 18 14:24:54 2026 GMT Not After : Apr 25 14:24:54 2026 GMT Subject: CN=69e39437-074a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ad:37:4e:9f:82:3f:b6:91:c2:fb:19:af:8b: 7b:8b:15:80:69:57:18:c3:5d:b5:b2:2c:44:cc:e3: 53:40:1c:a0:17:cf:96:75:bd:2f:92:8a:44:66:01: ab:61:24:66:da:25:ed:2b:4e:68:16:f4:d1:38:21: 57:09:24:76:73:72:25:f9:80:2e:4f:53:1a:39:b7: 76:e5:15:0b:7d:00:cd:57:d8:14:f1:5f:66:6a:68: 57:17:ff:89:b3:a6:af:2a:fb:5c:47:b9:1b:1f:1c: 20:84:67:66:46:ab:2b:54:ff:86:ca:29:1b:48:6d: bf:22:51:ca:cc:d2:e2:1d:64:3d:4f:ce:40:4b:bf: 93:78:d7:34:70:d3:b3:4e:69:63:61:20:38:ed:4b: 7e:4e:2e:bd:49:f5:f7:15:84:1b:69:49:93:13:d4: d1:1d:99:2e:96:e3:4a:89:54:59:79:04:1a:1f:e1: f1:8b:b8:ce:cb:c0:d6:a1:01:be:28:ba:b3:0b:51: b3:5f:bd:31:0d:d1:ca:0f:6c:72:6a:9b:d3:36:00: fe:b7:83:da:62:8d:44:5f:b3:d7:7a:ca:1f:e4:e7: 62:3f:6a:29:c5:f5:81:9e:b5:af:38:21:15:ab:99: 75:8c:0f:c9:ba:d6:52:5d:ea:ec:90:3b:23:4e:b4: 63:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:95:4A:47:3A:EB:5F:2F:E2:32:1E:20:B1:5F:59:A1:3B:74:D2:F8 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:33:12:bf:a4:5a:2f:6a:0a:60:1e:e9:66:95:27:47:f2:b9: 59:12:af:35:11:e9:ab:b2:92:7e:42:29:0d:ce:37:5e:89:a6: 61:56:b3:5d:b8:de:14:8b:ee:dd:47:99:ab:f1:fc:f9:fc:8e: a5:34:99:0a:0a:94:db:85:56:91:76:f9:25:ed:76:ac:10:de: 1a:98:6f:6c:b7:bb:62:72:b5:17:65:17:e5:82:25:4d:d7:d1: d9:38:be:07:ae:5a:24:32:05:ea:07:30:d1:43:17:29:e6:6b: 4e:62:0a:9c:3e:f0:a8:84:3d:b3:00:6b:11:c9:48:02:cc:a2: dd:cb:3f:e4:3f:a7:d5:5b:b6:18:fd:1e:70:21:75:56:40:ce: 75:bc:0b:14:1e:a8:72:03:a9:ee:6d:13:fb:bc:b5:2a:c9:3a: ad:88:b2:8a:b1:54:e1:b6:6b:dc:99:66:a7:63:dd:16:0b:dc: c6:43:4b:97:8e:78:5b:89:b3:ca:08:67:ac:f7:bc:13:cd:1d: 78:07:30:cf:ca:52:51:73:b5:f8:55:15:4e:0b:3d:69:20:32: ed:ff:d0:a8:2a:4a:57:ef:4b:ce:a9:04:0a:5a:d8:4d:e9:17: 10:e2:01:74:c9:86:ac:20:f7:57:17:34:2b:d7:75:69:5d:6f: 59:1a:ef:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICENwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjYwNDE4MTQyNDU0WhcNMjYwNDI1MTQyNDU0WjAYMRYwFAYD VQQDEw02OWUzOTQzNy0wNzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa03Tp+CP7aRwvsZr4t7ixWAaVcYw121sixEzONTQBygF8+Wdb0vkopEZgGr YSRm2iXtK05oFvTROCFXCSR2c3Il+YAuT1MaObd25RULfQDNV9gU8V9mamhXF/+J s6avKvtcR7kbHxwghGdmRqsrVP+GyikbSG2/IlHKzNLiHWQ9T85AS7+TeNc0cNOz TmljYSA47Ut+Ti69SfX3FYQbaUmTE9TRHZkuluNKiVRZeQQaH+Hxi7jOy8DWoQG+ KLqzC1GzX70xDdHKD2xyapvTNgD+t4PaYo1EX7PXesof5OdiP2opxfWBnrWvOCEV q5l1jA/JutZSXerskDsjTrRjDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPKVSkc6 618v4jIeILFfWaE7dNL4MB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdDMSv6RaL2oKYB7pZpUnR/K5WRKvNRHpq7KSfkIpDc43XommYVazXbjeFIvu 3UeZq/H8+fyOpTSZCgqU24VWkXb5Je12rBDeGphvbLe7YnK1F2UX5YIlTdfR2Ti+ B65aJDIF6gcw0UMXKeZrTmIKnD7wqIQ9swBrEclIAsyi3cs/5D+n1Vu2GP0ecCF1 VkDOdbwLFB6ocgOp7m0T+7y1Ksk6rYiyirFU4bZr3Jlmp2PdFgvcxkNLl454W4mz yghnrPe8E80deAcwz8pSUXO1+FUVTgs9aSAy7f/QqCpKV+9LzqkEClrYTekXEOIB dMmGrCD3Vxc0K9d1aV1vWRrvYQ== -----END CERTIFICATE-----Generated at Sat Apr 18 21:07:35 2026 by rpki-client