$ rpki-client -vvf rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft File: xGIlbhG2PuqR1z02Q867tRojUK8.mft (raw, json) Hash identifier: GqTC3xKN1KgkajyhZBlgwrY9TAyUqc5dhqMpB/OB6P8= Subject key identifier: DC:E5:30:23:B8:19:5F:BE:2C:D2:8E:30:7D:BD:B2:B0:FA:43:5A:84 Authority key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF Certificate issuer: /CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Certificate serial: 1103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft Manifest number: 10F5 Signing time: Mon 20 Apr 2026 17:14:22 +0000 Manifest this update: Mon 20 Apr 2026 17:14:22 +0000 Manifest next update: Mon 27 Apr 2026 17:14:22 +0000 Files and hashes: 1: xGIlbhG2PuqR1z02Q867tRojUK8.crl (hash: erf4hz2Z1WSyI8gVs/mPdfEfREmW8P265gbOHvAqI1s=) 2: 691023063A8311E99AF5572DC4F9AE02.roa (hash: 2eE+CDRlSHY5Ior8e4vYqF46aXCqPlrmKLCnk7wj7fQ=) 3: 797BF786FB2C11EFA405F334C4F9AE02.roa (hash: HFvIVd/rWVPzXXKKiOWON2cvnwjOeJoH4rrOAqA8YGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 17:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4355 (0x1103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A210A, serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Validity Not Before: Apr 20 17:14:22 2026 GMT Not After : Apr 27 17:14:22 2026 GMT Subject: CN=69e65eee-2a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dc:1b:d5:8f:09:a0:6e:c8:74:60:67:d0:ae: ed:10:f9:6e:19:ec:07:7c:2c:0f:4f:32:72:2a:e1: 14:cc:0b:46:23:8e:e8:67:d8:a7:63:44:c2:b9:49: d2:33:f8:03:64:a7:ce:f8:ee:89:82:2b:8c:a2:e9: ff:41:11:62:57:bb:b4:e8:bd:6f:8b:13:68:f3:26: a3:95:73:15:ca:35:32:22:a4:5b:17:46:0b:eb:f1: 84:06:ca:f5:35:bf:34:14:59:17:63:32:e2:23:91: 14:9f:ed:b0:a4:53:98:31:23:3c:3e:fd:da:51:45: a7:06:d3:f2:d8:af:6a:a1:63:6f:54:7c:30:7a:4d: f5:51:60:d5:34:eb:6f:51:d4:3e:c4:87:8c:73:8d: ed:3f:8f:29:c3:c7:06:bc:9d:80:f2:cc:b7:17:5b: 8c:23:fb:44:c9:8e:13:ea:73:36:dc:8f:83:50:de: 78:dc:20:82:20:17:b0:74:3e:33:3c:87:8e:af:b0: b0:70:6b:66:a9:90:98:08:ce:b0:2d:61:8d:8c:17: a7:12:41:34:78:75:45:cd:5b:7e:1b:90:ba:c9:a4: 06:8a:63:4e:c5:87:dd:12:18:85:f2:9b:c2:48:20: 03:13:54:5d:1e:e9:c6:19:33:10:60:80:58:68:83: a8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E5:30:23:B8:19:5F:BE:2C:D2:8E:30:7D:BD:B2:B0:FA:43:5A:84 X509v3 Authority Key Identifier: keyid:C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:87:9d:01:29:88:5f:f7:69:6e:90:a7:0e:8c:00:f3:cd:22: 82:1b:40:57:00:25:68:19:a1:ab:56:95:19:c4:ed:11:d8:f5: b2:05:e1:f0:b7:93:0e:cf:35:e2:28:b9:cd:4c:2a:a2:4d:9e: 9f:87:83:0b:e3:1b:83:d2:91:58:2d:cf:8f:bb:c6:1d:9e:77: a9:42:6e:d2:e2:ba:98:bc:d3:9b:d7:97:3e:1b:da:20:0a:fd: 59:cb:1b:a7:fd:4a:67:6a:6d:cf:c9:a7:d2:2d:dd:16:9b:ed: dc:61:74:6d:5d:c0:1a:1b:ff:f4:c9:61:e4:b1:01:cb:01:27: b0:e1:7c:b7:13:7e:93:c5:94:fc:7a:af:4c:a7:71:59:7e:6d: dd:e0:f9:32:51:44:b4:8a:7f:ed:5f:72:82:64:88:e8:fd:9d: c2:98:9b:30:9c:96:7f:a6:7c:8d:51:2a:c5:1c:78:38:26:51: c1:90:88:79:e2:03:b4:d3:74:48:99:f1:72:a9:ca:8d:c2:b8: a5:70:77:6e:c0:a1:c5:db:b5:a0:21:f6:46:f8:45:23:33:96: f3:93:75:0b:a2:2c:d5:1c:f4:4a:c4:77:30:b3:e0:ef:e7:d6: b7:71:41:2d:0d:63:ca:a0:d6:72:7c:1d:ea:ef:5b:a3:68:67: f5:e1:85:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIxMEExMTAvBgNVBAUTKEM0NjIyNTZFMTFCNjNFRUE5MUQ3M0QzNjQzQ0VCQkI1 MUEyMzUwQUYwHhcNMjYwNDIwMTcxNDIyWhcNMjYwNDI3MTcxNDIyWjAYMRYwFAYD VQQDEw02OWU2NWVlZS0yYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNwb1Y8JoG7IdGBn0K7tEPluGewHfCwPTzJyKuEUzAtGI47oZ9inY0TCuUnS M/gDZKfO+O6JgiuMoun/QRFiV7u06L1vixNo8yajlXMVyjUyIqRbF0YL6/GEBsr1 Nb80FFkXYzLiI5EUn+2wpFOYMSM8Pv3aUUWnBtPy2K9qoWNvVHwwek31UWDVNOtv UdQ+xIeMc43tP48pw8cGvJ2A8sy3F1uMI/tEyY4T6nM23I+DUN543CCCIBewdD4z PIeOr7CwcGtmqZCYCM6wLWGNjBenEkE0eHVFzVt+G5C6yaQGimNOxYfdEhiF8pvC SCADE1RdHunGGTMQYIBYaIOoDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNzlMCO4 GV++LNKOMH29srD6Q1qEMB8GA1UdIwQYMBaAFMRiJW4Rtj7qkdc9NkPOu7UaI1Cv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjEwQS9BNTM4QURCODNB ODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1cVIxejAyUTg2N3RSb2pV SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHSWxiaEcyUHVxUjF6MDJRODY3dFJvalVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjEwQS9BNTM4QURCODNBODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1 cVIxejAyUTg2N3RSb2pVSzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX4edASmIX/dpbpCnDowA880ightAVwAlaBmhq1aVGcTtEdj1sgXh8LeTDs81 4ii5zUwqok2en4eDC+Mbg9KRWC3Pj7vGHZ53qUJu0uK6mLzTm9eXPhvaIAr9Wcsb p/1KZ2ptz8mn0i3dFpvt3GF0bV3AGhv/9Mlh5LEBywEnsOF8txN+k8WU/HqvTKdx WX5t3eD5MlFEtIp/7V9ygmSI6P2dwpibMJyWf6Z8jVEqxRx4OCZRwZCIeeIDtNN0 SJnxcqnKjcK4pXB3bsChxdu1oCH2RvhFIzOW85N1C6Is1Rz0SsR3MLPg7+fWt3FB LQ1jyqDWcnwd6u9bo2hn9eGFkA== -----END CERTIFICATE-----Generated at Wed Apr 22 10:28:00 2026 by rpki-client