$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: 7cub9gFHx61QRb+zi9lMJMac0o3PJJr4MNm2SZAO3wc= Subject key identifier: 20:F0:BA:10:64:93:E3:32:B5:AA:F6:4A:A6:EE:F2:4E:8A:E2:9C:CC Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 0A10 Signing time: Thu 02 Apr 2026 19:45:34 +0000 Manifest this update: Thu 02 Apr 2026 19:45:33 +0000 Manifest next update: Thu 09 Apr 2026 19:45:33 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: Npox/qLcFUGbIRIVs5L7ni0U6YxN1ukcznZjuKVz//M=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: pxNuh5srbtMxxnoUXoogGH47f0VhHR+2FLeTjpcucQE=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: KU74ZbX8QctQD6oWhNP2ZPDiRV7nlnVfxskUU58FW+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 Apr 2026 19:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Apr 2 19:45:33 2026 GMT Not After : Apr 9 19:45:33 2026 GMT Subject: CN=69cec75e-56ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:27:4b:84:cc:d9:bc:27:68:45:fe:6f:91:7f: 4e:25:14:ce:7e:6e:77:e0:1f:0b:22:9b:3b:92:82: 26:73:1c:9e:3e:e1:50:5b:61:3a:bb:f5:c3:1d:9a: 44:91:89:86:c2:e0:52:21:0b:d6:4d:14:f1:32:f5: 26:1e:65:ec:9b:5d:c0:d8:47:cf:75:16:37:00:18: bb:f4:19:6d:ef:71:bf:1a:77:4f:2a:76:54:17:04: 3e:49:8f:a2:10:de:14:f5:13:68:64:36:5e:7f:0a: 55:58:4e:89:e3:7b:db:3e:a2:27:69:bb:49:83:ef: ef:a8:f4:a1:5f:7d:5a:21:7a:b7:77:26:e5:aa:d6: 2b:d9:81:c4:91:b2:d4:11:af:a0:69:ad:14:b9:41: 72:40:c8:9b:ad:67:71:d3:18:ca:b0:98:6b:c2:34: a3:b1:b4:90:68:27:79:4f:db:99:68:aa:d5:da:31: 34:29:28:bc:6c:cc:bd:5b:49:d7:3f:70:55:05:26: 7a:13:9a:55:31:37:36:9c:24:f9:f6:fd:4c:a0:8b: 0f:a4:c8:c9:50:7f:d5:3f:36:02:79:42:f9:a2:78: c1:82:a8:20:34:8e:62:76:a7:9b:2b:a6:fe:d1:71: 57:e5:84:16:69:e7:c4:97:54:82:45:27:e9:b8:ed: 9f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F0:BA:10:64:93:E3:32:B5:AA:F6:4A:A6:EE:F2:4E:8A:E2:9C:CC X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:c2:1f:cc:07:ab:c3:ad:d5:8a:86:65:56:cb:c9:b9:e9:a1: 47:24:e8:32:a7:b9:1a:9c:c1:87:57:85:14:4a:56:17:ac:14: f6:f6:1d:84:ca:81:da:62:49:30:ca:14:1e:f5:4c:86:19:92: 21:68:93:80:8e:39:8e:7d:cd:00:5d:a9:93:f5:32:f5:80:8a: f4:e8:8b:e7:73:ef:24:98:cf:dc:e4:98:e9:6f:cf:67:83:86: cd:88:c8:a7:1b:2c:1b:5d:4e:5f:35:a8:42:dc:97:47:81:53: 0e:79:82:fd:17:26:3f:db:d0:8f:dc:60:8c:e1:21:72:e2:55: 02:8a:27:7e:db:7f:9f:c7:11:2f:4a:f2:13:e9:f3:d8:fe:0f: 10:4e:9f:05:ad:28:6c:4f:be:8c:2b:83:16:21:09:a7:c7:34: 1f:29:31:86:62:30:4d:f1:1c:da:a4:4b:12:45:40:d7:70:bd: a3:fd:e4:52:44:05:4f:41:c8:9b:71:cb:36:de:7e:00:8d:9f: 6c:8a:c3:97:41:8f:a8:13:92:c4:22:33:39:c8:49:57:e9:6a: 4b:2e:94:83:57:a8:2b:49:64:99:10:5c:16:6e:8e:5b:0c:94: aa:9c:1f:61:55:07:83:04:47:fb:f5:74:82:6a:a2:26:33:a6: 93:8c:74:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjYwNDAyMTk0NTMzWhcNMjYwNDA5MTk0NTMzWjAYMRYwFAYD VQQDEw02OWNlYzc1ZS01NmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuidLhMzZvCdoRf5vkX9OJRTOfm534B8LIps7koImcxyePuFQW2E6u/XDHZpE kYmGwuBSIQvWTRTxMvUmHmXsm13A2EfPdRY3ABi79Blt73G/GndPKnZUFwQ+SY+i EN4U9RNoZDZefwpVWE6J43vbPqInabtJg+/vqPShX31aIXq3dyblqtYr2YHEkbLU Ea+gaa0UuUFyQMibrWdx0xjKsJhrwjSjsbSQaCd5T9uZaKrV2jE0KSi8bMy9W0nX P3BVBSZ6E5pVMTc2nCT59v1MoIsPpMjJUH/VPzYCeUL5onjBgqggNI5idqebK6b+ 0XFX5YQWaefEl1SCRSfpuO2fYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCDwuhBk k+Mytar2Sqbu8k6K4pzMMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOcIfzAerw63VioZlVsvJuemhRyToMqe5GpzBh1eFFEpWF6wU9vYdhMqB2mJJ MMoUHvVMhhmSIWiTgI45jn3NAF2pk/Uy9YCK9OiL53PvJJjP3OSY6W/PZ4OGzYjI pxssG11OXzWoQtyXR4FTDnmC/RcmP9vQj9xgjOEhcuJVAoonftt/n8cRL0ryE+nz 2P4PEE6fBa0obE++jCuDFiEJp8c0HykxhmIwTfEc2qRLEkVA13C9o/3kUkQFT0HI m3HLNt5+AI2fbIrDl0GPqBOSxCIzOchJV+lqSy6Ug1eoK0lkmRBcFm6OWwyUqpwf YVUHgwRH+/V0gmqiJjOmk4x0ZQ== -----END CERTIFICATE-----Generated at Fri Apr 3 03:22:51 2026 by rpki-client