$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: cmDIlghvDAR3s4QIzIYP9TwZSEyFfkfXfa4eF1WHLDg= Subject key identifier: E8:1D:4B:55:24:30:DB:7B:47:41:BE:6F:B9:64:AF:4D:F6:C2:61:F4 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 01CA Signing time: Sun 05 Apr 2026 03:14:08 +0000 Manifest this update: Sun 05 Apr 2026 03:14:07 +0000 Manifest next update: Sun 12 Apr 2026 03:14:07 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: PVHNbDuzQ5fq0ee6KVnvDc2Rx8eT2WRaZm/RbyrKLYU=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: zNUB+vibuX3nQWmpbN4PBwL7Sq5HwZSp7xD/bsaKx34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Apr 5 03:14:07 2026 GMT Not After : Apr 12 03:14:07 2026 GMT Subject: CN=69d1d380-c129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:02:27:2f:ea:cd:6b:10:f9:95:3e:e5:ce:89: d6:c0:c6:ef:15:da:3c:7f:0c:33:5a:33:8c:26:39: b3:ae:98:4a:77:ae:45:a9:04:0a:fc:0d:08:e9:47: 60:dd:65:94:f6:ac:8c:cb:f6:c1:67:30:71:76:73: a3:74:e7:77:d4:ab:a1:3a:49:9e:ba:ba:f5:ab:8d: 34:2b:f5:c5:58:14:a6:b0:b7:ef:a6:73:35:6b:e7: 07:f5:c7:58:91:44:dc:4f:23:29:1a:a9:c6:ef:c4: 7b:5e:97:89:41:18:01:74:09:53:31:1c:c7:6d:1d: ce:4b:c8:e1:79:e7:e7:4c:e5:af:2f:c6:85:34:4c: a9:08:21:19:19:cb:34:fa:00:da:91:26:c9:a0:87: f3:18:a0:a4:d3:b3:06:45:ec:23:b9:f7:25:dc:da: 19:a0:91:b8:c8:e3:4c:53:82:9b:34:20:98:6e:93: ba:f2:3e:5e:13:cb:3a:60:0a:35:0a:71:2e:da:c4: 22:38:97:2e:6e:50:57:66:1d:29:c0:55:70:76:98: 0e:f2:2b:69:3b:0f:ae:5b:d3:eb:c5:c6:c5:37:99: 75:6c:bd:59:fe:55:9d:1d:54:9d:17:f5:1a:78:e8: 89:6d:a1:01:d4:a3:67:1d:59:5a:3f:63:74:e0:d6: f0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1D:4B:55:24:30:DB:7B:47:41:BE:6F:B9:64:AF:4D:F6:C2:61:F4 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7d:63:2b:e8:7a:96:8e:18:01:83:3a:28:52:5e:ae:7a:b9: 33:c3:f2:ab:ff:f9:49:5d:3f:f2:3a:20:83:74:d0:0a:84:9c: ec:e5:00:2a:42:38:d9:16:7d:a3:71:b3:d3:73:b5:99:24:1a: 67:94:f7:83:4d:fe:33:e8:dd:1a:5f:e0:2d:ea:cc:96:43:c0: 13:03:f9:b4:dd:5a:f7:4b:93:83:f2:97:40:e8:14:bc:b9:e9: 02:a4:ab:de:4e:d7:4a:f4:24:5c:fa:9b:78:18:e8:ed:28:35: 23:c2:6a:b6:2f:3e:f9:b8:c6:aa:7a:70:f9:5f:b7:2d:83:4b: b8:2a:c0:97:5b:b7:25:a9:f2:e8:f4:e7:6a:16:64:0d:77:53: f0:08:e5:14:7f:50:52:ad:cc:50:b9:75:e5:db:89:e1:32:0c: cd:a5:2c:fa:c9:ed:fe:00:46:b4:e3:93:2f:95:77:1e:60:0f: d4:57:78:c4:67:5a:a3:c9:dc:0f:87:16:5a:32:16:59:f7:f5: 17:5d:e7:34:8a:0d:8a:40:0a:67:13:63:9d:62:30:cb:0d:33: 6b:e3:af:ff:04:d5:5d:02:89:99:89:f3:00:66:c5:a3:11:93: 4e:41:1a:a7:36:52:18:3a:00:ce:7d:50:d4:c2:fa:b8:86:db: 99:c8:96:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjYwNDA1MDMxNDA3WhcNMjYwNDEyMDMxNDA3WjAYMRYwFAYD VQQDEw02OWQxZDM4MC1jMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAInL+rNaxD5lT7lzonWwMbvFdo8fwwzWjOMJjmzrphKd65FqQQK/A0I6Udg 3WWU9qyMy/bBZzBxdnOjdOd31KuhOkmeurr1q400K/XFWBSmsLfvpnM1a+cH9cdY kUTcTyMpGqnG78R7XpeJQRgBdAlTMRzHbR3OS8jheefnTOWvL8aFNEypCCEZGcs0 +gDakSbJoIfzGKCk07MGRewjufcl3NoZoJG4yONMU4KbNCCYbpO68j5eE8s6YAo1 CnEu2sQiOJcublBXZh0pwFVwdpgO8itpOw+uW9PrxcbFN5l1bL1Z/lWdHVSdF/Ua eOiJbaEB1KNnHVlaP2N04Nbw4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOgdS1Uk MNt7R0G+b7lkr032wmH0MB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZX1jK+h6lo4YAYM6KFJernq5M8Pyq//5SV0/8jogg3TQCoSc7OUAKkI42RZ9 o3Gz03O1mSQaZ5T3g03+M+jdGl/gLerMlkPAEwP5tN1a90uTg/KXQOgUvLnpAqSr 3k7XSvQkXPqbeBjo7Sg1I8Jqti8++bjGqnpw+V+3LYNLuCrAl1u3Jany6PTnahZk DXdT8AjlFH9QUq3MULl15duJ4TIMzaUs+snt/gBGtOOTL5V3HmAP1Fd4xGdao8nc D4cWWjIWWff1F13nNIoNikAKZxNjnWIwyw0za+Ov/wTVXQKJmYnzAGbFoxGTTkEa pzZSGDoAzn1Q1ML6uIbbmciWzQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:26:12 2026 by rpki-client