$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft File: a1P4D46IGzcxlyZjuhiXt0qS1E0.mft (raw, json) Hash identifier: 7Qfd5MEe55vE3byRwq9opA0R7SOQ0Zq2SO6+591k3lA= Subject key identifier: E6:48:AE:4A:21:68:60:77:55:6B:0D:79:F6:18:CC:76:C5:3D:58:46 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 02B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft Manifest number: 028B Signing time: Mon 27 Apr 2026 01:52:58 +0000 Manifest this update: Mon 27 Apr 2026 01:52:58 +0000 Manifest next update: Mon 04 May 2026 01:52:58 +0000 Files and hashes: 1: a1P4D46IGzcxlyZjuhiXt0qS1E0.crl (hash: yQusWoqLcQtR4ut/yfiMvYNp/PbGsSO24s5nrGuy9U8=) 2: A216EC4E3C7911F0B25C0585C4F9AE02.roa (hash: PzMKVF5RWKMCBBz+uMcp/BJxucoQAleKAMkhu2SsbNI=) 3: 026537E8861E11F0BC465F85C4F9AE02.roa (hash: jND/P0to+up6kdOpyJDFygxyQBhs5JfYLpar96q+qQI=) 4: 8361CB4E5AE611F0963E5C62C4F9AE02.roa (hash: jj9Anb+YltSNZ7XXzklotQBXr3n/2KBa9WPb7jR7Hmc=) 5: B856D46C3B9611F0B2363C74C4F9AE02.roa (hash: bXMhRP5t5yXxZ38+U5zANdmRNyogxO2UTQiQkXvbZD8=) 6: FA9BD5C2C5DC11F0A5504261C4F9AE02.roa (hash: iXf9KuDSIbIFYMh4V2pQ7flo3c0UEktI37Pu46KLsLQ=) 7: 6709E1D0D0FB11F08508FE58C4F9AE02.roa (hash: yB3ol9rUcdCMd9JnZM0DHqWp/9+cmY3NhYZPNGTCgSk=) 8: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (hash: D3QE+K/fDpz/3eSAi1rPfAFHFlOdI3dak+hzzYghHZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 690 (0x2b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Apr 27 01:52:58 2026 GMT Not After : May 4 01:52:58 2026 GMT Subject: CN=69eec17a-48bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:8e:b6:d4:a6:96:30:1c:3a:f7:e9:8a:b0: 05:81:9a:ed:f9:a4:7f:6a:12:7c:45:eb:3b:a3:bf: d0:cf:02:b2:3d:e7:5c:d1:96:65:7c:b5:16:2e:42: 67:fd:16:6e:77:49:e1:68:8a:a9:61:22:42:d3:10: 43:1d:9c:d5:e0:58:ce:0f:36:1d:ac:e5:21:d1:ab: 84:f0:7a:18:d5:96:56:47:a7:fd:3a:4e:97:3b:50: 68:0a:90:fd:29:eb:2e:9f:bc:e2:64:0f:73:67:e7: 08:dd:5a:58:9f:5a:c3:ae:74:fc:33:98:21:e6:33: 77:db:49:41:9e:f7:df:93:9b:f1:93:36:6c:39:27: 5c:d4:d3:3e:da:7d:df:37:7b:c3:74:5c:f4:8e:32: eb:64:50:9d:62:f9:0a:a3:d9:48:25:e4:dd:24:ef: c4:91:8b:f3:b5:2b:03:1d:01:2f:8e:33:08:30:9f: 22:ad:e0:6b:fc:48:97:58:dc:bd:87:40:f3:e5:2e: 35:38:fc:b9:4e:40:d7:02:17:e0:4a:50:50:a6:fa: c4:ef:54:23:71:c0:aa:0c:81:13:1d:ad:e7:04:53: 22:f1:4f:2d:8f:3e:5d:f3:07:b0:b3:de:b9:bf:c4: b3:fd:46:fa:ba:32:96:22:a4:02:fa:42:e9:6c:cb: e1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:48:AE:4A:21:68:60:77:55:6B:0D:79:F6:18:CC:76:C5:3D:58:46 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:b7:e4:80:65:f8:7f:6d:c0:6a:83:ec:60:f1:a9:1c:d5:aa: 3d:1c:ae:bf:45:16:2e:4f:55:6c:3c:79:d4:7e:63:af:e1:0b: 72:c6:61:02:f5:d1:d4:75:10:fc:9c:3d:49:71:70:8c:39:a9: 02:e3:76:68:96:58:75:69:a0:2c:4f:4f:9e:3b:a1:d6:64:8d: 05:6d:77:9c:46:39:b4:45:f6:af:74:54:ce:c0:38:56:51:ff: a6:d1:83:8b:99:73:64:84:b8:29:fa:c5:28:7e:e1:b6:a5:15: 94:cf:50:c4:07:db:7c:e1:83:3b:c6:68:83:2e:f5:22:8a:a0: ca:f4:54:12:3e:95:9f:3e:a8:a6:6a:df:ff:8f:3f:2f:cf:eb: 85:e3:7d:0d:29:d9:dc:6f:0e:83:22:4b:d6:ca:16:af:2e:48: b6:6a:61:5f:53:e2:f3:27:62:3e:39:03:8f:0e:20:d6:8b:e9: 03:bd:55:c5:92:f6:e7:15:30:da:6b:1c:26:76:87:65:d5:39: 05:9c:2c:ee:34:0f:3f:05:6e:95:69:93:d6:24:eb:7d:31:a9: eb:51:90:f9:58:d2:62:9f:93:80:0a:37:58:d9:65:60:79:d1: 13:2e:44:2b:8d:42:f4:66:11:4f:45:ed:fc:ec:23:f8:5a:5d: 06:00:aa:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjYwNDI3MDE1MjU4WhcNMjYwNTA0MDE1MjU4WjAYMRYwFAYD VQQDEw02OWVlYzE3YS00OGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU6OttSmljAcOvfpirAFgZrt+aR/ahJ8Res7o7/QzwKyPedc0ZZlfLUWLkJn /RZud0nhaIqpYSJC0xBDHZzV4FjODzYdrOUh0auE8HoY1ZZWR6f9Ok6XO1BoCpD9 Kesun7ziZA9zZ+cI3VpYn1rDrnT8M5gh5jN320lBnvffk5vxkzZsOSdc1NM+2n3f N3vDdFz0jjLrZFCdYvkKo9lIJeTdJO/EkYvztSsDHQEvjjMIMJ8ireBr/EiXWNy9 h0Dz5S41OPy5TkDXAhfgSlBQpvrE71QjccCqDIETHa3nBFMi8U8tjz5d8wews965 v8Sz/Ub6ujKWIqQC+kLpbMvh4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOZIrkoh aGB3VWsNefYYzHbFPVhGMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy81RkEzNkUzNDg5MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6 Y3hseVpqdWhpWHQwcVMxRTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtbfkgGX4f23AaoPsYPGpHNWqPRyuv0UWLk9VbDx51H5jr+ELcsZhAvXR1HUQ /Jw9SXFwjDmpAuN2aJZYdWmgLE9Pnjuh1mSNBW13nEY5tEX2r3RUzsA4VlH/ptGD i5lzZIS4KfrFKH7htqUVlM9QxAfbfOGDO8Zogy71IoqgyvRUEj6Vnz6opmrf/48/ L8/rheN9DSnZ3G8OgyJL1soWry5ItmphX1Pi8ydiPjkDjw4g1ovpA71VxZL25xUw 2mscJnaHZdU5BZws7jQPPwVulWmT1iTrfTGp61GQ+VjSYp+TgAo3WNllYHnREy5E K41C9GYRT0Xt/Owj+FpdBgCq+g== -----END CERTIFICATE-----Generated at Mon Apr 27 09:17:28 2026 by rpki-client