$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: iF4b4Jsk3DfkmQHfBAfnIFYNpPJaxAmJdBOlUTi1T2s= Subject key identifier: B3:19:0A:EB:D0:25:DD:51:84:B9:09:19:8E:94:DB:C5:E0:96:8E:B3 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 0979 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 094E Signing time: Sat 18 Apr 2026 20:00:26 +0000 Manifest this update: Sat 18 Apr 2026 20:00:25 +0000 Manifest next update: Sat 25 Apr 2026 20:00:25 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: fWs3b5r5nbBLceDGK6bmF2lhit/0V8SftGlmVaya+ww=) 2: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: lMhUzM6SrZqnaSb3sq+PG5FZ88KlD5XwOD16PSgtpr8=) 3: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: 32WeveE7dnAV5izIj802rGBUdP9CIosFzoeZQ6CO6QU=) 4: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: k0ZucBj+etuvwgMyyarMxzRHSJzy5ua857nN2Fqt8Kw=) 5: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: 9iL3rgMf4vh9lsgcWbb8FKQC+wyReC1nKI6xvJ+GiO0=) 6: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: lOAwTW5XkFCPCUk/gWDqiJqpMlb51sjQCmzCQhzil4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 20:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2425 (0x979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Apr 18 20:00:25 2026 GMT Not After : Apr 25 20:00:25 2026 GMT Subject: CN=69e3e2da-4498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:29:b6:f8:73:33:0e:fa:0b:3c:13:9c:28:14: cc:09:64:bd:f5:76:7f:3b:e0:b8:d9:93:0c:34:38: 8e:07:61:21:f5:9f:1f:ce:e7:ee:29:0a:52:95:57: 19:19:92:ce:2d:0c:47:39:65:f3:a4:07:07:f2:82: 14:1e:56:55:eb:1d:78:6e:6f:23:aa:a8:e1:fe:74: 89:0b:08:b2:af:00:df:f1:8c:5f:46:f5:dd:ca:3c: 59:fe:24:7d:d3:59:7b:ec:e5:21:dc:52:4e:b6:3f: 5b:3a:20:8e:a4:7d:20:be:25:13:d1:0d:e2:12:02: ff:32:ff:17:d6:ad:1b:9b:05:09:41:6a:e6:ba:4f: 33:f2:a9:40:89:f7:00:e9:01:a9:d8:d0:9a:fc:5b: ed:1a:3c:a9:a9:91:43:e5:08:c9:a7:49:0f:22:71: b9:37:61:c8:a2:90:66:e2:aa:b9:ce:ca:a8:45:d1: d1:80:b8:89:1c:a9:b2:0a:58:e0:59:d5:62:2d:2a: 99:fc:b9:4d:de:9b:d7:70:2f:a8:29:3a:2f:7e:47: 58:4d:b3:ad:dd:82:42:45:0e:40:69:53:6f:99:15: 42:2c:35:fc:d2:ae:23:27:a0:37:80:f5:38:2d:f6: 99:6c:99:95:71:d1:20:1d:08:d4:d6:35:ba:d5:e5: 41:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:19:0A:EB:D0:25:DD:51:84:B9:09:19:8E:94:DB:C5:E0:96:8E:B3 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:89:57:a1:12:0d:b0:4f:8d:f2:f4:0c:a5:5e:86:77:6b:5d: f1:5a:e5:81:0b:7b:99:ff:b0:63:fe:4a:0a:1c:31:6d:fd:42: 53:0d:a9:6a:e5:cd:64:f9:a7:33:b9:fc:b7:e9:fa:42:b7:af: 7e:7a:70:82:d3:11:aa:ac:bd:47:1b:84:eb:1e:59:37:3f:64: 01:fb:6c:64:59:4b:74:57:b3:56:4d:92:b7:c4:a7:c1:9f:51: 43:e7:45:4e:e0:89:bd:cd:92:5a:f9:8f:a8:8b:ff:a8:95:cd: 50:cd:8a:44:61:be:45:0c:cf:bb:3d:43:ba:e8:14:95:f3:99: cf:7f:bd:d1:58:72:ae:14:b2:4b:cd:9f:b4:45:45:78:6c:45: aa:a1:9b:6f:d8:23:a7:e7:f3:8d:ba:31:86:5d:de:03:61:84: e3:f9:b2:3d:2e:30:7e:94:c1:88:f6:df:26:e1:c4:41:32:39: 83:ff:96:6c:6a:e9:7c:24:5d:ce:21:33:86:c5:dd:ed:12:78: 6d:91:5e:23:fa:71:1e:c9:a7:03:bb:23:5f:62:a6:3a:8d:dd: 03:8a:c0:b8:61:6e:68:04:e8:85:13:35:ce:a9:8d:67:ea:e4: f5:d2:22:dc:87:a2:9a:f8:10:19:97:57:34:37:48:e1:88:9a: d8:6c:51:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjYwNDE4MjAwMDI1WhcNMjYwNDI1MjAwMDI1WjAYMRYwFAYD VQQDEw02OWUzZTJkYS00NDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7im2+HMzDvoLPBOcKBTMCWS99XZ/O+C42ZMMNDiOB2Eh9Z8fzufuKQpSlVcZ GZLOLQxHOWXzpAcH8oIUHlZV6x14bm8jqqjh/nSJCwiyrwDf8YxfRvXdyjxZ/iR9 01l77OUh3FJOtj9bOiCOpH0gviUT0Q3iEgL/Mv8X1q0bmwUJQWrmuk8z8qlAifcA 6QGp2NCa/FvtGjypqZFD5QjJp0kPInG5N2HIopBm4qq5zsqoRdHRgLiJHKmyCljg WdViLSqZ/LlN3pvXcC+oKTovfkdYTbOt3YJCRQ5AaVNvmRVCLDX80q4jJ6A3gPU4 LfaZbJmVcdEgHQjU1jW61eVBuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMZCuvQ Jd1RhLkJGY6U28Xglo6zMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc4lXoRINsE+N8vQMpV6Gd2td8VrlgQt7mf+wY/5KChwxbf1CUw2pauXNZPmn M7n8t+n6QrevfnpwgtMRqqy9RxuE6x5ZNz9kAftsZFlLdFezVk2St8SnwZ9RQ+dF TuCJvc2SWvmPqIv/qJXNUM2KRGG+RQzPuz1DuugUlfOZz3+90VhyrhSyS82ftEVF eGxFqqGbb9gjp+fzjboxhl3eA2GE4/myPS4wfpTBiPbfJuHEQTI5g/+WbGrpfCRd ziEzhsXd7RJ4bZFeI/pxHsmnA7sjX2KmOo3dA4rAuGFuaATohRM1zqmNZ+rk9dIi 3IeimvgQGZdXNDdI4Yia2GxR+g== -----END CERTIFICATE-----Generated at Mon Apr 20 08:41:15 2026 by rpki-client