$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft File: Ddq78x7saHZu9mmvlzUkDDiZNFk.mft (raw, json) Hash identifier: TnW2HyQNB2IKPSiAt+8YK4pFf0hs/SvPBnBsQUGJyL4= Subject key identifier: 62:64:E3:A2:C5:0B:97:7B:F5:30:A8:E0:BC:F8:50:C8:D3:1B:C4:C8 Authority key identifier: 0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 Certificate issuer: /CN=A91B3247/serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft Manifest number: 89 Signing time: Sun 05 Apr 2026 07:04:28 +0000 Manifest this update: Sun 05 Apr 2026 07:04:27 +0000 Manifest next update: Sun 12 Apr 2026 07:04:27 +0000 Files and hashes: 1: Ddq78x7saHZu9mmvlzUkDDiZNFk.crl (hash: upyNDktx9Jlcd/vddeerLJcYHraIY+U2wBNzmn5lsvE=) 2: 095B5200A5B111F09CCCE85FC4F9AE02.roa (hash: ZfwhMy+pX5aCJlJ8qOMcY95LqfN6RcWNdworol/4Bvs=) 3: 44C226F2A5B111F095806166C4F9AE02.roa (hash: yD8SkPkAKN5+VowUi+qJexOJ8oP+7GjQ59FL3/Sa598=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3247, serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Validity Not Before: Apr 5 07:04:27 2026 GMT Not After : Apr 12 07:04:27 2026 GMT Subject: CN=69d2097c-da01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8c:45:f4:26:e0:69:8c:cb:e9:eb:a7:04:29: 8b:69:00:94:7e:39:5f:82:53:9a:6f:4e:6f:d2:54: a8:ed:52:61:d8:9a:30:1e:06:6d:21:8d:56:ea:21: d3:81:c1:0c:56:55:39:4c:c1:72:74:02:3a:f0:30: bf:d3:a5:1c:c9:65:ef:82:3c:e2:09:df:16:5f:8a: f7:80:f0:cd:37:a2:b0:86:c8:71:07:dd:e7:01:1d: 14:63:2b:91:9e:7d:0a:f4:a5:55:65:18:9f:d6:d1: fa:5f:d8:ad:f2:ab:db:31:52:a1:61:c0:62:86:b6: 61:32:f4:63:16:cc:fc:44:af:08:50:63:d5:c9:42: 58:7d:67:2f:8e:a9:52:ba:49:7d:31:e1:ae:f1:91: f6:cd:18:ce:08:34:78:a3:ef:b5:01:c9:9d:f0:e0: e9:c8:68:39:a2:2f:77:c6:20:32:f0:25:a3:f6:f9: 1a:5f:ba:85:90:e5:d5:5c:e4:46:e8:10:28:0c:ff: f5:20:ce:98:0e:60:c2:09:56:2c:a0:f2:4a:e8:07: a9:76:0f:a6:d2:71:66:c1:61:7f:80:4a:85:16:b6: 74:d5:07:09:1f:76:4b:8a:34:97:80:4b:2b:71:33: 50:25:2a:31:95:4b:52:57:71:ad:35:e3:26:7d:6c: 1b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:64:E3:A2:C5:0B:97:7B:F5:30:A8:E0:BC:F8:50:C8:D3:1B:C4:C8 X509v3 Authority Key Identifier: keyid:0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:8a:76:ee:81:ea:8a:e4:97:43:81:6a:9d:fd:92:93:ec:ab: 10:a2:a6:d5:6c:d5:95:dd:60:3e:e7:40:f3:59:be:0c:be:f6: 55:fa:41:07:6c:3f:57:f3:50:24:1b:65:49:2b:ee:21:f0:fc: 89:ad:69:9e:ce:ca:01:39:c5:22:1f:7e:69:fa:47:77:a7:74: eb:e8:07:21:ab:3e:fa:3a:a4:5b:d0:1e:0b:64:9d:7a:bc:45: 64:e9:8a:e2:d8:15:ba:e2:bb:b6:d2:49:78:ac:e4:d9:0f:54: a2:dd:ad:f7:f4:5f:fc:7a:27:1b:cb:a7:af:b9:f8:59:95:dc: 04:00:98:3d:e3:1d:7a:a6:af:a2:f6:62:64:95:dd:09:f3:db: e5:b4:91:57:37:ff:ca:bc:91:11:98:7c:33:cf:2d:5b:14:d9: 55:e8:61:a4:30:aa:8f:88:23:16:67:5d:ee:bd:04:ac:ca:d0: ad:8f:ce:14:ce:60:a3:7c:be:89:a0:47:14:c6:46:8e:e5:2d: f9:0e:8e:c8:13:f4:cc:00:30:f3:7f:90:19:f3:6f:57:e2:97: 39:4a:0a:fc:0e:e5:c1:2f:2f:59:5d:f9:2d:8d:b9:32:42:a2: 66:ec:97:80:bb:52:bd:56:3b:c1:57:4c:89:dc:4c:4e:0b:da: 87:34:da:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMyNDcxMTAvBgNVBAUTKDBEREFCQkYzMUVFQzY4NzY2RUY2NjlBRjk3MzUyNDBD Mzg5OTM0NTkwHhcNMjYwNDA1MDcwNDI3WhcNMjYwNDEyMDcwNDI3WjAYMRYwFAYD VQQDEw02OWQyMDk3Yy1kYTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIxF9CbgaYzL6eunBCmLaQCUfjlfglOab05v0lSo7VJh2JowHgZtIY1W6iHT gcEMVlU5TMFydAI68DC/06UcyWXvgjziCd8WX4r3gPDNN6KwhshxB93nAR0UYyuR nn0K9KVVZRif1tH6X9it8qvbMVKhYcBihrZhMvRjFsz8RK8IUGPVyUJYfWcvjqlS ukl9MeGu8ZH2zRjOCDR4o++1Acmd8ODpyGg5oi93xiAy8CWj9vkaX7qFkOXVXORG 6BAoDP/1IM6YDmDCCVYsoPJK6Aepdg+m0nFmwWF/gEqFFrZ01QcJH3ZLijSXgEsr cTNQJSoxlUtSV3GtNeMmfWwb8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGJk46LF C5d79TCo4Lz4UMjTG8TIMB8GA1UdIwQYMBaAFA3au/Me7Gh2bvZpr5c1JAw4mTRZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzI0Ny8zMjA0NEJGRTcx RUUxMUYwOTNDMjJFMThDNEY5QUUwMi9EZHE3OHg3c2FIWnU5bW12bHpVa0REaVpO RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RkcTc4eDdzYUhadTltbXZselVrRERpWk5Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzI0Ny8zMjA0NEJGRTcxRUUxMUYwOTNDMjJFMThDNEY5QUUwMi9EZHE3OHg3c2FI WnU5bW12bHpVa0REaVpORmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIYp27oHqiuSXQ4Fqnf2Sk+yrEKKm1WzVld1gPudA81m+DL72VfpBB2w/V/NQ JBtlSSvuIfD8ia1pns7KATnFIh9+afpHd6d06+gHIas++jqkW9AeC2SderxFZOmK 4tgVuuK7ttJJeKzk2Q9Uot2t9/Rf/HonG8unr7n4WZXcBACYPeMdeqavovZiZJXd CfPb5bSRVzf/yryREZh8M88tWxTZVehhpDCqj4gjFmdd7r0ErMrQrY/OFM5go3y+ iaBHFMZGjuUt+Q6OyBP0zAAw83+QGfNvV+KXOUoK/A7lwS8vWV35LY25MkKiZuyX gLtSvVY7wVdMidxMTgvahzTa9w== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:15 2026 by rpki-client