$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: nS34r4k20sGN1Tas3+E4opJoW5xGg/FaJxqGejkEFpA= Subject key identifier: 8B:16:8C:A2:BD:88:18:DF:D5:CB:04:56:97:13:AF:6E:34:AD:30:95 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3839 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 3734 Signing time: Mon 20 Apr 2026 14:33:21 +0000 Manifest this update: Mon 20 Apr 2026 14:33:21 +0000 Manifest next update: Mon 27 Apr 2026 14:33:21 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: NGJJjL+R6b07/zdMAxb62oWKuDoVKoL4CFEBH5Cz0ik=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: Zntrf+XRFU/LUFPqt460t/df6T24vxpmkd5azGcAX5E=) 3: F24EEED208C011F19DFF611F213D8C67.roa (hash: j8mZP70/+lxFmxKK+gaXtA4vlgcSiykk11UZrhv9x1I=) 4: 15B06ACE01B211F1A8498BCA6C6F56BC.roa (hash: 5xNdDoLkpm/cKB7fxSHaoDjqTsi17ChXNYz70KIoKrA=) 5: 0F0E88A6192F11F183D9B1FC303D8C67.roa (hash: 5aKDuZwd3Wn+m9JFqN35rRMwxZf4PwI1YL49pBMgje4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 14:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14393 (0x3839) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Apr 20 14:33:21 2026 GMT Not After : Apr 27 14:33:21 2026 GMT Subject: CN=69e63931-853a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:82:8d:c8:cd:bf:ec:bc:c9:dd:c2:61:c8:7c: c4:b1:78:bf:94:9b:42:f1:48:e2:cb:07:04:85:3e: 09:f0:95:01:53:38:9d:f3:a3:f7:ee:1f:85:34:70: 1f:98:fe:fe:4b:cd:b7:fe:42:5c:62:9a:7d:e1:ee: 6f:e8:6b:c9:68:92:c1:0f:1c:62:ad:66:d4:ee:7a: b0:0a:8a:59:0a:f4:59:ee:e5:02:65:9c:09:09:36: 0e:70:90:af:9d:52:cb:6e:d7:86:a1:74:d9:78:0b: cf:1f:98:15:a0:3f:00:25:1b:c5:83:2e:96:34:6c: a8:bf:2c:8e:4d:34:b3:37:81:e3:f1:27:07:1c:3e: 72:4b:af:6f:29:24:39:e2:ab:1c:78:9d:2d:90:79: a0:9e:e7:f9:55:64:01:14:94:86:2a:21:56:e3:1e: 76:91:fb:e9:3a:4f:02:3b:6d:63:23:de:4d:72:64: cd:06:34:c2:f8:85:f2:fc:1d:7f:90:73:62:93:de: 3e:e8:47:95:81:dc:cf:3f:b3:9c:a2:6c:1c:91:72: 1a:f9:39:07:54:45:91:74:ed:d5:76:9e:1e:7a:58: 5b:d7:75:21:67:e0:37:f1:04:fd:68:5c:f5:c0:2e: 61:ba:2e:a3:c6:58:a5:18:40:2d:97:8d:a9:82:fa: 00:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:16:8C:A2:BD:88:18:DF:D5:CB:04:56:97:13:AF:6E:34:AD:30:95 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:6a:31:8e:eb:8c:f8:b0:2f:9d:4d:83:00:66:35:6b:77:ab: 44:7b:65:82:fd:b7:4b:9c:ed:1f:e5:67:59:53:d4:f9:db:67: 87:c5:fc:a5:f1:c2:c9:52:2f:84:fe:0e:1c:5b:86:83:2f:3e: d2:54:e3:ef:da:ee:2c:e4:bb:b9:e5:b8:74:95:96:52:5b:22: fc:55:29:3c:bd:4e:fe:8d:3a:b6:84:24:64:d6:c1:be:d2:e6: b5:44:1a:39:6a:18:05:bd:e7:a6:6b:10:b3:9d:00:cc:c9:d5: 76:94:5a:9e:bd:65:bc:7e:21:99:0e:ba:7a:e5:ff:ec:ba:48: 9f:db:ff:e9:e4:6c:6a:37:fa:9b:fc:12:ba:94:79:9e:b1:1b: d2:43:5d:d2:26:f3:dd:63:c0:19:08:ca:a4:60:dd:e2:fc:67: 9d:2c:2b:f2:f2:0a:55:02:76:11:77:ce:31:0a:8f:e2:61:53: e0:37:ac:80:19:0f:1a:af:d7:09:b0:89:32:e0:7e:61:b7:50: 66:b1:97:fb:df:1f:16:8a:9c:61:d0:ab:b7:ad:e5:80:59:59: 9d:7b:45:fd:2d:c0:ed:8c:11:9b:b8:fb:f8:21:b7:5b:4a:8b: 50:dd:d0:3e:95:1f:99:f5:68:20:ac:d9:7d:41:18:d9:04:9f: b1:d0:2f:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICODkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwNDIwMTQzMzIxWhcNMjYwNDI3MTQzMzIxWjAYMRYwFAYD VQQDEw02OWU2MzkzMS04NTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoKNyM2/7LzJ3cJhyHzEsXi/lJtC8UjiywcEhT4J8JUBUzid86P37h+FNHAf mP7+S823/kJcYpp94e5v6GvJaJLBDxxirWbU7nqwCopZCvRZ7uUCZZwJCTYOcJCv nVLLbteGoXTZeAvPH5gVoD8AJRvFgy6WNGyovyyOTTSzN4Hj8ScHHD5yS69vKSQ5 4qsceJ0tkHmgnuf5VWQBFJSGKiFW4x52kfvpOk8CO21jI95NcmTNBjTC+IXy/B1/ kHNik94+6EeVgdzPP7OcomwckXIa+TkHVEWRdO3Vdp4eelhb13UhZ+A38QT9aFz1 wC5hui6jxlilGEAtl42pgvoAkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIsWjKK9 iBjf1csEVpcTr240rTCVMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACWoxjuuM+LAvnU2DAGY1a3erRHtlgv23S5ztH+VnWVPU+dtnh8X8pfHCyVIv hP4OHFuGgy8+0lTj79ruLOS7ueW4dJWWUlsi/FUpPL1O/o06toQkZNbBvtLmtUQa OWoYBb3npmsQs50AzMnVdpRanr1lvH4hmQ66euX/7LpIn9v/6eRsajf6m/wSupR5 nrEb0kNd0ibz3WPAGQjKpGDd4vxnnSwr8vIKVQJ2EXfOMQqP4mFT4DesgBkPGq/X CbCJMuB+YbdQZrGX+98fFoqcYdCrt63lgFlZnXtF/S3A7YwRm7j7+CG3W0qLUN3Q PpUfmfVoIKzZfUEY2QSfsdAvWg== -----END CERTIFICATE-----Generated at Tue Apr 21 21:34:55 2026 by rpki-client