$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json) Hash identifier: ZQYQP7Hnye2gDzvI1uiK6W8VoHm2mQjBul1NUxDIJVE= Subject key identifier: 38:C3:59:13:47:2E:EF:11:F8:63:42:5A:C4:7B:AB:82:24:96:64:A9 Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft Manifest number: 0208 Signing time: Tue 21 Apr 2026 02:58:24 +0000 Manifest this update: Tue 21 Apr 2026 02:58:23 +0000 Manifest next update: Tue 28 Apr 2026 02:58:23 +0000 Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: nECPhvwzjUibe/NYyre+NOKCZeFnQ2MLeKN+cx1M4pw=) 2: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: jqwk3bmRPDf7C3aKoz+TsrX90WbUHOfRvQL1M86whDk=) 3: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: bcg53TLs5nFR2EV4CBcEFe8zIM0whJbmabWS8ZS93/Q=) 4: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: 7QH1OiU8+y0kM0Xbew8STqzznYlr3akTS6fkDWFomuY=) 5: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: WlT7lqcgc4c8+rWeXt+Y5JcXRKuZvK0wiGPxDwUbSb0=) 6: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: Oxk9ItIFF7Cmn++8Qhf8B9/Jba23NXxEuE7o6lYsVNY=) 7: 511564A2ED2B11F08C401BDD456F56BC.roa (hash: /UOXs33KnAIdS9eZMavjXXvZDkm7O2iN3QjaCdMcSZo=) 8: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: L4NVil8pbyS/cOY/ej3K8v/jrMsLv9IfqmTy0v9YRG8=) 9: 9D6E545AA84B11F0B4DF3885C4F9AE02.roa (hash: f4OVUhW0bi1lo1n9ZSiR+RCv7DhSrpC0lFB7A/Kd8HU=) 10: E9874B2A16D011EF90793868C4F9AE02.roa (hash: RDszepU6uUEnaTneHbLYTo9ekedmlaHSehV5QBWdDbs=) 11: 7031BFB6ED2B11F083BC5EDE456F56BC.roa (hash: YUDn/ImHnu8Aga92avplp7MOrOxQVfmR+LNkM6xYKp8=) 12: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: XLyiIx6bH4MWL4cXY1N6tcvmekDJmpJls17+hd3FRlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 02:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94, serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Apr 21 02:58:23 2026 GMT Not After : Apr 28 02:58:23 2026 GMT Subject: CN=69e6e7d0-8a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f0:48:e5:05:53:31:3b:d9:5a:24:8e:a4:8a: ab:2c:c3:04:24:08:1a:cc:19:cd:0d:6b:25:f7:9b: 44:32:6f:0c:24:be:08:e5:21:20:a8:c0:a6:5e:d9: 7e:0b:6b:8a:4e:f9:be:4b:7d:11:2d:3f:c1:e6:9b: f8:1e:d5:7c:a5:f1:52:fc:8d:5e:1d:2b:ea:f1:66: 8a:bb:a6:a9:70:d9:12:d1:09:d0:8b:16:bd:ac:41: d1:0c:dc:3e:02:e4:dd:66:b1:80:e4:02:d4:d1:72: 70:99:d9:de:58:2f:58:70:79:72:67:33:d8:1c:4e: 7d:96:fd:d1:25:98:00:50:24:e0:76:c2:0a:d7:69: 9d:f6:83:42:87:e0:c6:e0:96:ee:75:2d:b9:0e:45: 86:98:6f:f4:52:16:3e:48:30:57:4e:43:87:6c:3f: 48:86:83:48:4a:95:bf:f0:2a:ca:2d:2a:ea:80:54: be:f4:c5:02:09:3c:1a:a0:81:ca:3b:54:48:4c:f4: ce:b2:bd:22:45:13:dd:17:0e:4e:1a:3b:16:22:d8: b9:39:ff:72:be:6b:13:66:2e:13:c8:7d:41:96:36: 42:99:21:03:f4:1f:9f:8e:84:d6:bf:56:3a:5e:f7: 7f:02:0c:9b:b2:0d:20:e7:3f:ef:53:ef:a0:90:78: af:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C3:59:13:47:2E:EF:11:F8:63:42:5A:C4:7B:AB:82:24:96:64:A9 X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:ea:00:86:50:36:5a:3d:af:96:a6:3a:db:43:f2:60:2d:44: 0d:70:fc:3f:b6:71:6b:d7:6a:26:89:9f:29:5e:6a:97:a2:d6: 55:94:89:70:34:14:05:42:41:04:89:4f:e2:e0:01:b5:36:81: e3:7b:90:c1:80:01:bb:cb:33:cb:ea:e1:91:4b:41:de:f3:b9: 66:ae:4f:58:ca:9a:0d:57:08:5f:5c:0d:fc:94:f6:5a:e5:39: 05:e5:a5:ab:da:fe:58:2b:2e:ab:25:8f:fb:43:9c:1c:d1:1d: ea:e3:43:b4:34:50:76:23:ad:f9:3a:d4:09:02:1b:44:7e:4f: 89:cd:00:27:7a:6d:16:88:11:87:d5:2d:f7:89:d3:07:24:ff: 36:17:a5:7d:3b:29:38:23:37:b8:9e:14:66:4b:16:4f:24:90: cf:22:94:d8:c7:f9:cb:ed:52:ed:76:20:50:ca:59:bf:92:75: 86:2a:a1:14:47:3c:dc:87:e9:a8:41:f4:4c:9d:31:32:96:8f: 7e:0a:69:c3:1e:0a:6e:41:61:ed:07:09:a5:8c:c2:ee:32:3f: bd:b2:0f:59:54:2e:02:6f:7b:c7:2c:59:6f:31:76:06:9e:03: 81:1a:05:81:43:00:51:a1:4c:c5:42:e6:2f:3e:02:82:62:ab: 31:99:60:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjYwNDIxMDI1ODIzWhcNMjYwNDI4MDI1ODIzWjAYMRYwFAYD VQQDEw02OWU2ZTdkMC04YTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfBI5QVTMTvZWiSOpIqrLMMEJAgazBnNDWsl95tEMm8MJL4I5SEgqMCmXtl+ C2uKTvm+S30RLT/B5pv4HtV8pfFS/I1eHSvq8WaKu6apcNkS0QnQixa9rEHRDNw+ AuTdZrGA5ALU0XJwmdneWC9YcHlyZzPYHE59lv3RJZgAUCTgdsIK12md9oNCh+DG 4JbudS25DkWGmG/0UhY+SDBXTkOHbD9IhoNISpW/8CrKLSrqgFS+9MUCCTwaoIHK O1RITPTOsr0iRRPdFw5OGjsWIti5Of9yvmsTZi4TyH1BljZCmSED9B+fjoTWv1Y6 Xvd/Agybsg0g5z/vU++gkHivMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDjDWRNH Lu8R+GNCWsR7q4IklmSpMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu V2drVVMyWjlPVFI5VGFxSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFuoAhlA2Wj2vlqY620PyYC1EDXD8P7Zxa9dqJomfKV5ql6LWVZSJcDQUBUJB BIlP4uABtTaB43uQwYABu8szy+rhkUtB3vO5Zq5PWMqaDVcIX1wN/JT2WuU5BeWl q9r+WCsuqyWP+0OcHNEd6uNDtDRQdiOt+TrUCQIbRH5Pic0AJ3ptFogRh9Ut94nT ByT/NhelfTspOCM3uJ4UZksWTySQzyKU2Mf5y+1S7XYgUMpZv5J1hiqhFEc83Ifp qEH0TJ0xMpaPfgppwx4KbkFh7QcJpYzC7jI/vbIPWVQuAm97xyxZbzF2Bp4DgRoF gUMAUaFMxULmLz4CgmKrMZlgDA== -----END CERTIFICATE-----Generated at Tue Apr 21 19:08:58 2026 by rpki-client