$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: Iw77BWYA9Ufa2fxB5OZ6K4pCQFrr+h2P5mXDmE0WRcw= Subject key identifier: D0:24:97:EA:C2:7C:33:BF:52:90:C8:0E:A4:7F:62:A9:55:E3:66:02 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0288 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 027F Signing time: Mon 27 Apr 2026 01:48:54 +0000 Manifest this update: Mon 27 Apr 2026 01:48:54 +0000 Manifest next update: Mon 04 May 2026 01:48:54 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: J62j7xg08qqq625gvDpJgS5ZFaHtxQbySVxPTzoJxsQ=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Apr 27 01:48:54 2026 GMT Not After : May 4 01:48:54 2026 GMT Subject: CN=69eec086-76c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6b:0b:08:4f:31:3f:8e:4a:f9:5f:44:49:ad: 02:bb:f1:0c:22:d2:43:a6:00:b9:88:82:5a:71:36: 6e:c8:77:f0:92:53:71:3e:81:22:3c:7f:88:c6:10: 82:5f:eb:cc:c7:d1:46:8a:2b:f8:da:31:7e:16:c6: 49:fc:57:08:c2:8c:bf:ae:04:08:6c:6f:a6:4f:1d: e9:08:36:1b:00:26:c2:05:c2:7d:60:85:0a:b3:4c: 4b:9a:b4:df:20:f6:80:55:3e:39:c9:17:ce:a9:cc: 84:cf:7b:8f:d7:b6:69:79:ed:03:84:c2:3f:31:c4: 9e:29:e3:32:9a:12:60:ce:bb:8f:7c:8d:a5:b0:19: a7:18:3f:9f:1e:5e:3c:6f:76:c1:18:e4:f5:8c:8f: 56:d2:a6:26:16:d8:3a:38:90:13:bb:bf:f7:38:eb: 13:cb:0c:58:6c:10:65:78:dd:ff:bc:85:bc:29:55: 4a:52:e8:46:ba:c0:09:58:f4:24:a8:06:be:ff:dd: 33:c9:98:45:e8:08:1f:49:fb:36:d6:11:5e:ed:14: aa:87:d8:ee:dd:9f:e1:f4:37:54:6e:61:8b:47:48: b8:22:0f:50:bb:0f:c6:6d:f2:aa:d6:21:4f:32:26: 1e:76:0d:80:97:96:07:a0:6b:be:42:d5:cb:8f:e4: 3a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:24:97:EA:C2:7C:33:BF:52:90:C8:0E:A4:7F:62:A9:55:E3:66:02 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b3:db:44:07:c8:c0:82:8f:e1:a2:9a:dc:74:76:dc:d3:7e: 20:91:fc:bb:24:53:a3:8d:f4:e4:4d:57:0b:df:e9:4b:4b:73: 7a:be:29:d3:3c:0a:d7:1e:6a:cd:94:fc:cd:0b:85:f1:e9:24: a9:70:17:64:a3:8a:33:56:a8:3a:9a:86:f9:22:ba:1b:9b:e3: 61:ea:31:c2:f7:43:02:b9:eb:f4:c7:67:bc:7d:75:83:03:62: 64:d4:47:fb:d4:d6:73:52:1e:c2:92:fb:f7:64:41:7d:29:2c: 92:c1:d3:4e:4f:76:6e:ee:01:9e:6e:9b:67:25:1e:43:7e:92: d3:4b:f5:50:f6:66:ba:42:a6:35:8d:b3:4f:74:92:04:20:4b: 94:6d:f2:55:97:b8:0b:db:bc:ae:20:79:18:be:88:64:70:4f: 8f:04:8d:a7:f6:ef:73:04:ec:b5:4a:79:06:05:10:a1:9a:db: 42:45:38:35:23:ab:bf:81:d2:d9:d1:a6:64:57:f5:0a:82:cb: 59:a9:d3:d7:79:5e:de:c3:ac:e8:ec:3b:9a:9e:0c:df:b3:51: 26:11:7c:a2:37:ae:cf:62:67:80:92:c3:6f:5e:8a:cb:58:3c: 55:da:18:bc:ea:24:31:e9:0b:70:b7:68:1f:2c:3b:a4:95:8d: eb:d6:5d:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjYwNDI3MDE0ODU0WhcNMjYwNTA0MDE0ODU0WjAYMRYwFAYD VQQDEw02OWVlYzA4Ni03NmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGsLCE8xP45K+V9ESa0Cu/EMItJDpgC5iIJacTZuyHfwklNxPoEiPH+IxhCC X+vMx9FGiiv42jF+FsZJ/FcIwoy/rgQIbG+mTx3pCDYbACbCBcJ9YIUKs0xLmrTf IPaAVT45yRfOqcyEz3uP17Zpee0DhMI/McSeKeMymhJgzruPfI2lsBmnGD+fHl48 b3bBGOT1jI9W0qYmFtg6OJATu7/3OOsTywxYbBBleN3/vIW8KVVKUuhGusAJWPQk qAa+/90zyZhF6AgfSfs21hFe7RSqh9ju3Z/h9DdUbmGLR0i4Ig9Quw/GbfKq1iFP MiYedg2Al5YHoGu+QtXLj+Q6SQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNAkl+rC fDO/UpDIDqR/YqlV42YCMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPLPbRAfIwIKP4aKa3HR23NN+IJH8uyRTo4305E1XC9/pS0tzer4p0zwK1x5q zZT8zQuF8ekkqXAXZKOKM1aoOpqG+SK6G5vjYeoxwvdDArnr9MdnvH11gwNiZNRH +9TWc1IewpL792RBfSksksHTTk92bu4Bnm6bZyUeQ36S00v1UPZmukKmNY2zT3SS BCBLlG3yVZe4C9u8riB5GL6IZHBPjwSNp/bvcwTstUp5BgUQoZrbQkU4NSOrv4HS 2dGmZFf1CoLLWanT13le3sOs6Ow7mp4M37NRJhF8ojeuz2JngJLDb16Ky1g8VdoY vOokMekLcLdoHyw7pJWN69Zd7Q== -----END CERTIFICATE-----Generated at Tue Apr 28 08:23:32 2026 by rpki-client