$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: bgX/7Gd8UeD1Hus81A27ArLA5lxsh2RnE4sZqeUUFGE= Subject key identifier: 9D:86:94:50:25:3B:25:CF:BD:8A:73:82:4D:C8:0E:BA:15:6F:23:35 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 027C Signing time: Tue 21 Apr 2026 01:47:51 +0000 Manifest this update: Tue 21 Apr 2026 01:47:50 +0000 Manifest next update: Tue 28 Apr 2026 01:47:50 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: VcMpXpfQUYipHIEc7w2Af162Ygg/y503d0Kdbot6rB4=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 01:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Apr 21 01:47:50 2026 GMT Not After : Apr 28 01:47:50 2026 GMT Subject: CN=69e6d747-abf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1e:f8:20:12:15:f1:83:e3:26:35:a1:cc:ed: b5:b2:ff:7e:b7:e1:e7:8d:8b:6d:11:02:db:13:37: de:7a:8a:de:99:7f:fa:b0:d2:c9:72:5d:eb:be:f4: 68:b5:70:3b:cd:04:a6:85:81:d6:29:9b:ea:38:3c: b7:16:69:17:5f:4f:95:8c:82:f9:f6:4a:66:15:6f: 4f:93:bd:2d:67:71:5d:0f:0f:4a:28:85:02:c6:b1: 8b:91:3c:5f:60:19:91:1c:83:25:d0:12:6f:56:1f: 5e:e8:d6:7a:c2:c2:54:57:e2:1f:76:f8:e9:66:2e: 4e:c9:51:26:12:d8:95:12:bf:72:fc:db:c2:d9:d1: 65:a9:42:ab:9e:d9:87:51:81:bb:7c:32:8c:3a:e7: 20:08:d1:71:aa:c5:fc:b7:90:17:6d:9f:21:fa:19: f8:7f:1e:f8:5d:0b:71:3d:12:7c:4f:58:72:be:78: 56:87:d0:84:96:38:c8:5f:cd:c9:5b:d4:34:ee:15: 69:46:4c:ce:8f:5e:36:1c:4e:2f:9c:a7:86:26:f5: 01:ad:c3:c3:79:ac:d5:45:25:e8:b5:32:97:eb:2a: 5c:a0:76:54:03:c8:7d:d1:78:13:01:2a:29:86:cf: 15:b0:57:b6:8e:ea:48:69:65:74:61:3b:5f:fb:78: b2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:86:94:50:25:3B:25:CF:BD:8A:73:82:4D:C8:0E:BA:15:6F:23:35 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:89:12:ac:8a:82:07:da:0c:b6:89:a4:ec:53:15:f9:cf:68: d3:a5:6d:92:b6:a3:d2:f1:1b:df:8e:70:53:44:df:e8:1d:89: af:73:8f:46:87:6f:c0:4d:a3:2f:28:6b:2e:a0:33:e4:92:aa: 21:96:cd:fa:f1:a3:9e:44:17:1f:f6:1b:5a:5b:df:e8:e4:f9: 08:79:e3:e2:8c:69:e4:f5:cb:56:15:25:a4:bf:23:6f:f8:3e: 88:38:f1:81:85:77:99:96:d1:65:31:fb:45:ff:cb:7c:67:29: 79:ee:63:6c:10:20:0e:d6:80:13:e0:0a:09:73:08:39:51:c4: b0:d1:3a:02:ad:7b:fb:fc:18:de:ad:94:d5:99:b0:2c:69:9b: c1:93:2b:41:98:78:c7:ad:56:49:b2:ec:e8:30:48:fe:53:e7: aa:b0:6b:40:d9:76:ac:ba:0a:df:92:c2:5b:a5:c4:a5:4e:1b: 23:38:ef:67:08:4e:5f:75:02:2e:7c:24:4c:a9:76:38:93:fc: 22:62:20:47:c9:f3:a7:80:6c:24:25:5c:c6:6b:66:f4:e6:13: 06:f2:95:e2:02:84:d0:3b:f6:a9:2d:34:4e:f4:ae:dd:4a:52: f9:58:e7:4e:ad:a1:53:73:71:fd:ca:f3:11:46:29:19:62:09: 51:c4:27:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwNDIxMDE0NzUwWhcNMjYwNDI4MDE0NzUwWjAYMRYwFAYD VQQDEw02OWU2ZDc0Ny1hYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtx74IBIV8YPjJjWhzO21sv9+t+HnjYttEQLbEzfeeoremX/6sNLJcl3rvvRo tXA7zQSmhYHWKZvqODy3FmkXX0+VjIL59kpmFW9Pk70tZ3FdDw9KKIUCxrGLkTxf YBmRHIMl0BJvVh9e6NZ6wsJUV+IfdvjpZi5OyVEmEtiVEr9y/NvC2dFlqUKrntmH UYG7fDKMOucgCNFxqsX8t5AXbZ8h+hn4fx74XQtxPRJ8T1hyvnhWh9CEljjIX83J W9Q07hVpRkzOj142HE4vnKeGJvUBrcPDeazVRSXotTKX6ypcoHZUA8h90XgTASop hs8VsFe2jupIaWV0YTtf+3iytQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ2GlFAl OyXPvYpzgk3IDroVbyM1MB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIIkSrIqCB9oMtomk7FMV+c9o06Vtkraj0vEb345wU0Tf6B2Jr3OPRodvwE2j LyhrLqAz5JKqIZbN+vGjnkQXH/YbWlvf6OT5CHnj4oxp5PXLVhUlpL8jb/g+iDjx gYV3mZbRZTH7Rf/LfGcpee5jbBAgDtaAE+AKCXMIOVHEsNE6Aq17+/wY3q2U1Zmw LGmbwZMrQZh4x61WSbLs6DBI/lPnqrBrQNl2rLoK35LCW6XEpU4bIzjvZwhOX3UC LnwkTKl2OJP8ImIgR8nzp4BsJCVcxmtm9OYTBvKV4gKE0Dv2qS00TvSu3UpS+Vjn Tq2hU3Nx/crzEUYpGWIJUcQnig== -----END CERTIFICATE-----Generated at Wed Apr 22 07:00:21 2026 by rpki-client