$ rpki-client -vvf rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft File: 23LIuvHa9pOYGFLuAyIwMF7ICRA.mft (raw, json) Hash identifier: 5CE5dNGtatl4WMt2q0ITwjwBzb5UUMpUsC7+OiFIk8s= Subject key identifier: 6B:04:51:32:1F:F2:12:EF:39:1B:A3:21:F0:DD:66:F6:BE:16:C4:BB Authority key identifier: DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 Certificate issuer: /CN=A91B289C/serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Certificate serial: 093F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft Manifest number: 0936 Signing time: Sat 04 Apr 2026 19:59:45 +0000 Manifest this update: Sat 04 Apr 2026 19:59:45 +0000 Manifest next update: Sat 11 Apr 2026 19:59:45 +0000 Files and hashes: 1: 23LIuvHa9pOYGFLuAyIwMF7ICRA.crl (hash: XZiOBMAuF/IoZVbePXaZDYEDzSuPPpdyev5jEJD2heA=) 2: E6F3687CBCE711EAACD6466CC4F9AE02.roa (hash: AJajG2Lmw5CKAEEdhqoEdtkkiOQieReMgo4pezqlWDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:59:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B289C, serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Validity Not Before: Apr 4 19:59:45 2026 GMT Not After : Apr 11 19:59:45 2026 GMT Subject: CN=69d16db1-0397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fe:b1:00:b4:44:ce:a2:b8:70:0a:95:33:38: b1:cd:0c:7e:fa:50:82:d3:c3:ad:82:f5:99:ee:11: d2:85:85:5c:49:94:f1:b9:7f:0a:ea:8c:86:da:59: 27:37:8b:88:88:6f:db:97:1c:61:7d:08:9e:e1:78: 96:59:4b:d3:b0:39:55:c5:43:a7:87:c7:d2:75:bb: 54:7b:33:0c:e4:6a:6c:ce:2a:25:d8:f1:0e:d5:43: df:b2:16:b4:9e:11:0c:27:48:7c:56:ec:fd:cd:10: 67:90:df:73:ac:c6:12:22:4d:ca:ba:b1:78:b9:9b: 7e:da:29:dd:5b:ed:a7:5a:8f:e4:0b:92:bb:8c:11: a1:15:de:2e:88:f3:f8:80:60:90:a0:c3:7b:d2:3f: d9:39:4c:6a:69:08:e9:ab:55:c0:d8:c7:01:3f:29: 7a:51:79:cc:33:30:45:58:09:f2:71:1f:3e:7f:90: a5:74:b1:4b:d3:39:35:94:24:4b:b6:24:af:79:27: 06:8f:ee:8a:49:3d:b4:ad:9e:06:92:53:79:4c:29: 1e:8b:b7:ed:88:f2:1a:35:e4:26:66:19:40:f4:6a: 1d:6f:35:d3:d4:7b:61:da:1d:f8:33:e8:2c:d6:30: 18:0a:99:9a:c2:df:ac:13:51:96:e1:e7:cb:9b:5f: a5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:04:51:32:1F:F2:12:EF:39:1B:A3:21:F0:DD:66:F6:BE:16:C4:BB X509v3 Authority Key Identifier: keyid:DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:07:b9:b7:91:10:f4:b9:43:8a:eb:81:a7:8e:85:1b:69:12: 46:eb:7d:6e:68:a1:10:f1:b8:3a:22:a1:e2:7d:63:49:42:58: 96:41:45:95:91:64:92:73:66:9f:87:6e:8c:6a:c5:d3:c6:86: 1e:a8:ee:ac:a9:f9:c7:3c:03:63:46:d8:6c:12:fe:e9:77:54: 2b:7a:b2:e0:d0:85:78:24:34:f7:e7:c5:c1:59:8f:08:ba:23: 6b:26:45:d3:df:a2:f1:d1:53:9e:ce:99:a0:fe:fa:76:19:ad: 3b:8d:b1:ee:8b:0c:37:8b:7e:e7:71:7d:49:f3:c4:20:3d:e3: 54:94:e3:50:27:19:25:ab:5d:b1:bb:21:24:2a:38:7f:40:f5: 7a:ba:df:43:37:f5:50:23:2f:f1:45:69:cf:61:8a:b9:c8:53: 17:9f:22:6c:36:54:1b:18:cd:d9:21:df:ec:f4:97:9e:c6:db: 5a:d2:7f:00:fa:93:3b:db:0b:f1:14:e3:aa:8d:d4:5e:75:2c: 15:d4:52:af:79:47:86:52:f3:25:68:b5:02:c2:f6:bd:8e:dd: 6a:e4:0e:5a:b2:2a:59:f7:b0:fb:c7:18:44:c7:64:a3:da:51: 2e:8b:31:04:a1:9c:c5:3a:89:48:b5:d3:1a:3d:28:1a:e2:2c: b1:cd:9d:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI4OUMxMTAvBgNVBAUTKERCNzJDOEJBRjFEQUY2OTM5ODE4NTJFRTAzMjIzMDMw NUVDODA5MTAwHhcNMjYwNDA0MTk1OTQ1WhcNMjYwNDExMTk1OTQ1WjAYMRYwFAYD VQQDEw02OWQxNmRiMS0wMzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/6xALREzqK4cAqVMzixzQx++lCC08OtgvWZ7hHShYVcSZTxuX8K6oyG2lkn N4uIiG/blxxhfQie4XiWWUvTsDlVxUOnh8fSdbtUezMM5Gpsziol2PEO1UPfsha0 nhEMJ0h8Vuz9zRBnkN9zrMYSIk3KurF4uZt+2indW+2nWo/kC5K7jBGhFd4uiPP4 gGCQoMN70j/ZOUxqaQjpq1XA2McBPyl6UXnMMzBFWAnycR8+f5CldLFL0zk1lCRL tiSveScGj+6KST20rZ4GklN5TCkei7ftiPIaNeQmZhlA9GodbzXT1Hth2h34M+gs 1jAYCpmawt+sE1GW4efLm1+lhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGsEUTIf 8hLvORujIfDdZva+FsS7MB8GA1UdIwQYMBaAFNtyyLrx2vaTmBhS7gMiMDBeyAkQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjg5Qy8zQUIxRTJEQ0JD RTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlwT1lHRkx1QXlJd01GN0lD UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzTEl1dkhhOXBPWUdGTHVBeUl3TUY3SUNSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mjg5Qy8zQUIxRTJEQ0JDRTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlw T1lHRkx1QXlJd01GN0lDUkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACwe5t5EQ9LlDiuuBp46FG2kSRut9bmihEPG4OiKh4n1jSUJYlkFFlZFkknNm n4dujGrF08aGHqjurKn5xzwDY0bYbBL+6XdUK3qy4NCFeCQ09+fFwVmPCLojayZF 09+i8dFTns6ZoP76dhmtO42x7osMN4t+53F9SfPEID3jVJTjUCcZJatdsbshJCo4 f0D1errfQzf1UCMv8UVpz2GKuchTF58ibDZUGxjN2SHf7PSXnsbbWtJ/APqTO9sL 8RTjqo3UXnUsFdRSr3lHhlLzJWi1AsL2vY7dauQOWrIqWfew+8cYRMdko9pRLosx BKGcxTqJSLXTGj0oGuIssc2dNA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:36 2026 by rpki-client