$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: ZaK+qm50BI01WuOTmzx6l7dLJop8tMmXTVmuAI6pvvM= Subject key identifier: 17:CB:8F:FA:66:D9:CF:2E:39:1A:7A:52:5D:2D:D2:8F:27:D7:2A:CB Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0277 Signing time: Sat 11 Apr 2026 01:57:20 +0000 Manifest this update: Sat 11 Apr 2026 01:57:20 +0000 Manifest next update: Sat 18 Apr 2026 01:57:20 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: K+5GhoYDIYQ9lgdj6CUEHpc14sfrOrfxRU2L8X55ivw=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 01:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Apr 11 01:57:20 2026 GMT Not After : Apr 18 01:57:20 2026 GMT Subject: CN=69d9aa80-6b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:33:57:c9:98:c9:ed:2d:b9:d7:11:63:f5:a6: 40:8f:fd:3a:c4:7f:ac:3b:4b:64:b3:d8:0e:ef:fa: 1c:7a:d7:ac:9c:66:eb:52:21:a6:0b:41:fb:e8:67: 58:47:29:8f:1c:c0:cd:b2:cd:1c:8a:02:79:ca:3e: 57:7c:67:52:4f:f3:bc:0b:6d:c0:db:fa:35:f6:c8: e3:97:42:ff:c6:6f:a6:9a:93:6d:30:81:df:ba:9e: a5:d2:81:53:e9:c3:0a:f5:bc:3a:d5:fd:2e:33:07: ac:bc:68:55:97:c7:5f:e4:16:dc:0f:31:06:c2:0b: 45:4d:64:ce:1c:24:44:a4:35:a3:15:60:c0:66:09: c4:4d:4a:f0:cf:90:6a:d7:5b:54:a3:a3:0e:90:ea: d6:d2:89:27:ca:bb:ec:aa:b2:de:4a:de:26:fe:a5: 52:82:a1:eb:e9:d5:e4:6b:8f:87:09:b7:42:f6:4d: c2:89:49:a0:b0:12:29:6c:c9:c1:85:4f:7f:9b:81: 80:f1:25:c2:f2:0f:ad:f4:5d:55:3e:04:19:d7:69: c6:0e:5b:63:0f:28:be:aa:08:c6:b0:ef:68:13:92: 20:54:7b:7d:eb:de:63:71:cb:67:de:66:37:61:db: 3b:10:dd:da:f4:0e:27:43:bb:62:05:af:3f:1c:98: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CB:8F:FA:66:D9:CF:2E:39:1A:7A:52:5D:2D:D2:8F:27:D7:2A:CB X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f8:df:78:ce:4e:05:c4:4a:d6:0f:2b:b1:56:ff:d8:c9:43: 96:7e:f4:91:cb:d7:5a:44:b2:be:55:d1:77:f3:fd:06:8a:3d: 70:d9:f7:e5:7d:88:cc:ee:d0:ab:bc:35:ef:ac:80:3e:4c:20: 22:6a:05:9b:0d:62:ae:af:a8:9f:f2:3e:bb:75:38:90:7a:b4: 5f:f3:11:24:e5:35:28:b4:30:da:c7:e9:06:90:13:21:d6:87: 10:65:14:93:93:b4:f6:ed:58:71:9f:03:05:a9:9c:97:02:4a: ca:b7:fa:06:82:07:95:af:04:e1:1c:6f:35:88:6d:d0:d9:f2: 50:18:d4:14:26:5f:9e:53:e5:e4:a4:88:11:62:d9:ba:c3:1e: 16:4a:38:8a:ac:f9:a3:ad:81:40:42:a9:ea:00:33:8d:f1:f0: 8d:84:6d:5f:9f:8f:af:73:61:79:d3:78:98:44:15:e2:37:69: 8d:03:68:96:26:ba:4e:46:f8:41:e5:96:08:09:bb:f4:f6:14: a7:6d:64:4c:6d:ba:1b:40:a0:1f:65:22:46:c6:e4:0a:d8:be: 55:59:64:7e:a9:62:94:74:7c:0c:2d:5b:05:e0:11:44:46:f6: 21:a7:34:8a:62:27:5a:05:93:bf:8c:f1:e4:40:b2:c4:11:ba: 0a:8e:39:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwNDExMDE1NzIwWhcNMjYwNDE4MDE1NzIwWjAYMRYwFAYD VQQDEw02OWQ5YWE4MC02YjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDNXyZjJ7S251xFj9aZAj/06xH+sO0tks9gO7/ocetesnGbrUiGmC0H76GdY RymPHMDNss0cigJ5yj5XfGdST/O8C23A2/o19sjjl0L/xm+mmpNtMIHfup6l0oFT 6cMK9bw61f0uMwesvGhVl8df5BbcDzEGwgtFTWTOHCREpDWjFWDAZgnETUrwz5Bq 11tUo6MOkOrW0oknyrvsqrLeSt4m/qVSgqHr6dXka4+HCbdC9k3CiUmgsBIpbMnB hU9/m4GA8SXC8g+t9F1VPgQZ12nGDltjDyi+qgjGsO9oE5IgVHt9695jcctn3mY3 Yds7EN3a9A4nQ7tiBa8/HJjatQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBfLj/pm 2c8uORp6Ul0t0o8n1yrLMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXfjfeM5OBcRK1g8rsVb/2MlDln70kcvXWkSyvlXRd/P9Boo9cNn35X2IzO7Q q7w176yAPkwgImoFmw1irq+on/I+u3U4kHq0X/MRJOU1KLQw2sfpBpATIdaHEGUU k5O09u1YcZ8DBamclwJKyrf6BoIHla8E4RxvNYht0NnyUBjUFCZfnlPl5KSIEWLZ usMeFko4iqz5o62BQEKp6gAzjfHwjYRtX5+Pr3NhedN4mEQV4jdpjQNolia6Tkb4 QeWWCAm79PYUp21kTG26G0CgH2UiRsbkCti+VVlkfqlilHR8DC1bBeARREb2Iac0 imInWgWTv4zx5ECyxBG6Co45Dg== -----END CERTIFICATE-----Generated at Sun Apr 12 02:42:46 2026 by rpki-client