$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft File: Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft (raw, json) Hash identifier: Ml84t41srwcPYHeLo0M0C9wi2+RnWNhFwHoDW+jH208= Subject key identifier: 77:4A:F5:F2:E0:33:C4:CB:01:73:19:E6:2C:AF:E9:EC:09:35:4B:9B Authority key identifier: 0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F Certificate issuer: /CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft Manifest number: 066D Signing time: Mon 20 Apr 2026 22:33:17 +0000 Manifest this update: Mon 20 Apr 2026 22:33:17 +0000 Manifest next update: Mon 27 Apr 2026 22:33:17 +0000 Files and hashes: 1: Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl (hash: RBnEKeZRIzOV7njbmoNi9dYjfAiJLrHe9gzGPh9KnQk=) 2: 4D38774A86E611EF9D6F5581C4F9AE02.roa (hash: nnDH6rvORkwCmJUa2SHMfnPNgo7zw9YFjWX6Zaktv3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 22:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF5F7, serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Validity Not Before: Apr 20 22:33:17 2026 GMT Not After : Apr 27 22:33:17 2026 GMT Subject: CN=69e6a9ad-2c48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:69:7c:65:14:ae:72:d1:7c:ed:93:ae:09:60: ab:65:7a:eb:d4:76:89:44:d6:1d:91:1f:27:e3:d0: 97:04:60:60:62:6e:b8:2c:d5:f3:08:aa:46:91:f2: 5c:0f:80:67:91:72:7f:69:a3:ec:7a:3a:ad:cf:df: 45:6a:6b:b0:40:92:21:58:a4:68:eb:88:29:ee:a5: 3a:36:4d:7e:5f:1d:81:b7:b2:5d:a0:6d:59:b2:79: d6:01:39:63:16:bb:0d:59:d5:58:05:a8:97:ba:54: 90:f8:05:ec:f6:ec:19:55:bc:be:02:c9:07:d0:06: d4:07:f6:ba:fa:ae:7d:f8:fa:97:e8:76:31:1e:e8: 52:95:84:cd:3b:cc:3b:ea:7a:45:eb:01:dc:62:ef: aa:fa:a9:7f:9e:ef:d0:09:ab:78:d6:7d:49:91:30: 18:38:9a:58:28:73:ca:dd:54:4a:10:71:9d:73:55: f2:d3:4b:6d:6d:5a:ae:17:03:e8:9e:a5:a5:32:c8: 7d:2d:8e:1e:1e:65:44:36:9c:5e:c3:bf:de:1f:24: 34:9b:e5:a5:18:e2:50:d1:d5:25:0f:98:d4:b7:85: a1:de:75:51:58:0c:9b:15:e0:45:e2:75:c0:12:57: bd:d8:86:d4:56:e8:46:2f:86:a3:8a:5d:98:54:a4: bc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4A:F5:F2:E0:33:C4:CB:01:73:19:E6:2C:AF:E9:EC:09:35:4B:9B X509v3 Authority Key Identifier: keyid:0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:0c:30:a3:15:bc:0e:bd:a0:f1:d7:67:5b:24:a2:02:b4:12: 85:19:81:09:f7:79:7f:39:5b:a3:23:ba:f1:b8:b1:6f:da:58: 4d:90:27:2e:ec:75:61:24:1a:d8:00:61:68:0d:b2:2b:e8:05: 6a:ff:b9:c8:d7:d5:10:0d:47:0e:97:ba:f9:ac:e7:d4:50:ec: 9c:d6:b7:11:e5:db:d8:3b:3a:62:f6:90:ea:1e:fe:2e:f4:e8: d9:19:96:3d:17:9f:a6:37:ec:e3:61:c6:1f:6c:43:df:49:87: b4:31:a7:f2:29:44:2c:cd:51:f8:33:a1:69:07:b3:92:5c:d9: 9d:ef:09:d6:d3:49:36:c0:ec:34:bb:f4:74:fd:b9:ac:36:ff: 52:ac:8d:2c:5a:03:bb:f0:b9:dd:b5:9e:75:94:23:61:13:b2: f9:c1:eb:0d:26:a5:d8:da:31:c0:1f:5e:c3:0e:68:76:98:71: 06:db:f3:b0:5a:8a:05:78:7a:20:54:f4:46:51:31:10:d9:70: 37:e4:6f:6b:1f:52:6e:43:28:e5:1b:24:7b:97:14:05:a5:8f: c4:c4:69:27:69:eb:af:d4:05:ce:fe:47:a1:2f:ad:94:77:1d: fa:37:7d:8d:88:61:f3:9e:12:af:e2:f2:d1:bf:40:85:ed:73: f5:25:7e:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY1RjcxMTAvBgNVBAUTKDBBMjc3RDI2QTlDMjQwMkI4QTFDRDQ1Nzc5MzVFNEYz QzI1OUMxOUYwHhcNMjYwNDIwMjIzMzE3WhcNMjYwNDI3MjIzMzE3WjAYMRYwFAYD VQQDEw02OWU2YTlhZC0yYzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWl8ZRSuctF87ZOuCWCrZXrr1HaJRNYdkR8n49CXBGBgYm64LNXzCKpGkfJc D4BnkXJ/aaPsejqtz99FamuwQJIhWKRo64gp7qU6Nk1+Xx2Bt7JdoG1ZsnnWATlj FrsNWdVYBaiXulSQ+AXs9uwZVby+AskH0AbUB/a6+q59+PqX6HYxHuhSlYTNO8w7 6npF6wHcYu+q+ql/nu/QCat41n1JkTAYOJpYKHPK3VRKEHGdc1Xy00ttbVquFwPo nqWlMsh9LY4eHmVENpxew7/eHyQ0m+WlGOJQ0dUlD5jUt4Wh3nVRWAybFeBF4nXA Ele92IbUVuhGL4ajil2YVKS8cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHdK9fLg M8TLAXMZ5iyv6ewJNUubMB8GA1UdIwQYMBaAFAonfSapwkArihzUV3k15PPCWcGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjVGNy80NEZDRTU2OEM3 ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FDdUtITlJYZVRYazg4Slp3 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpZDlKcW5DUUN1S0hOUlhlVFhrODhKWndaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjVGNy80NEZDRTU2OEM3ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FD dUtITlJYZVRYazg4Slp3WjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaAwwoxW8Dr2g8ddnWySiArQShRmBCfd5fzlboyO68bixb9pYTZAnLux1YSQa 2ABhaA2yK+gFav+5yNfVEA1HDpe6+azn1FDsnNa3EeXb2Ds6YvaQ6h7+LvTo2RmW PRefpjfs42HGH2xD30mHtDGn8ilELM1R+DOhaQezklzZne8J1tNJNsDsNLv0dP25 rDb/UqyNLFoDu/C53bWedZQjYROy+cHrDSal2NoxwB9eww5odphxBtvzsFqKBXh6 IFT0RlExENlwN+Rvax9SbkMo5Rske5cUBaWPxMRpJ2nrr9QFzv5HoS+tlHcd+jd9 jYhh854Sr+Ly0b9Ahe1z9SV+Fw== -----END CERTIFICATE-----Generated at Wed Apr 22 02:58:48 2026 by rpki-client