$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: XW91X3gkz1r/TZB1xY0O/a+Apb4ZaiHKtk+oTRVI8KM= Subject key identifier: 91:8A:FD:4B:CB:D5:23:82:5C:C8:36:77:68:71:AC:5C:E2:27:F7:EC Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 073E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 0724 Signing time: Sat 04 Apr 2026 21:39:26 +0000 Manifest this update: Sat 04 Apr 2026 21:39:25 +0000 Manifest next update: Sat 11 Apr 2026 21:39:25 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: uyAUZmidfiltv3F+FZDUOGjFGDINs6/IO303+IFTFwo=) 2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: W7HbZgiurIous/dkOII7Zs+KL83NW7eUE5Qjtxcpxno=) 3: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: QKYaxLpX/SQs5/c2F5OMS0OrA2VZBlIsKBf0LDbK85o=) 4: A0A96F80AD8511F08B0A1857C4F9AE02.roa (hash: E4mvIp0TY49n7Ku16oPaGsPeRK5kr/jdVq6qAjBUp9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1854 (0x73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Apr 4 21:39:25 2026 GMT Not After : Apr 11 21:39:25 2026 GMT Subject: CN=69d1850e-0b6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9c:e5:ea:26:97:2e:01:9c:79:f3:4b:2f:35: c4:a7:76:b4:1f:22:0d:2e:f4:c7:c3:87:ba:c1:1b: b2:06:88:55:06:8a:97:a9:df:5d:2e:a6:d5:18:e1: 3e:db:bd:d0:cc:99:db:92:c5:99:34:b7:69:fc:ef: 98:b8:e9:03:b9:9b:9c:20:fa:6d:97:23:ee:1b:d6: d0:75:37:d9:ef:d7:74:95:e7:d8:5e:98:4d:de:57: 8b:57:7a:b0:45:1a:5e:f8:9c:3a:77:0a:78:90:c2: f9:c6:54:9e:c4:88:2c:d0:8d:c3:63:2e:7a:5a:59: 45:c6:e0:f1:52:28:46:5e:6e:a1:b2:6d:46:dd:aa: b4:56:65:b3:7e:7f:86:9a:bb:9d:58:9b:78:19:dd: 11:de:a5:1d:04:5a:cb:83:82:7b:12:c6:c8:af:2a: 6b:26:9b:dc:a3:3d:f2:dd:d9:74:1b:9e:41:96:c8: 38:8d:76:b6:bd:3a:84:71:03:00:6c:06:47:d8:7a: 8e:91:40:ed:55:ac:3b:c2:95:22:38:60:6d:ee:64: 71:13:29:df:e0:5a:3b:af:61:41:ca:61:d0:7d:75: 88:18:ce:73:7c:e6:19:09:27:95:6c:45:b1:6e:c7: 83:7e:86:39:f9:82:89:1f:9a:66:d1:5b:1c:00:17: c7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:8A:FD:4B:CB:D5:23:82:5C:C8:36:77:68:71:AC:5C:E2:27:F7:EC X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:71:32:e1:a8:6a:81:ad:5f:85:78:e3:0a:d4:1b:cf:91:5d: 88:6e:b4:40:fa:4e:18:5a:73:de:d4:f0:ae:90:7a:18:22:1c: 5f:c9:e2:8a:81:ef:c8:6e:5b:87:07:9e:ef:dc:c6:42:65:0a: 11:3b:43:40:fe:02:ab:57:68:a0:3d:7e:48:ed:63:ae:e3:dc: 7e:15:91:be:a0:7f:2f:a6:ae:cd:52:18:6f:53:10:9b:d1:15: 90:64:b9:7d:6c:fd:41:cf:b8:9c:8d:55:e8:8b:a5:47:35:43: f6:00:fe:31:1a:ff:8c:c6:58:3c:99:00:d5:24:67:58:5c:c5: 31:ea:5d:35:06:8f:c4:47:eb:7e:c6:56:55:20:36:8c:a1:4b: c9:90:c7:e2:f0:4d:23:07:af:1c:d9:e3:03:9e:88:a5:00:78: f3:c5:45:15:3d:ae:bd:91:8d:f2:1a:39:4c:99:81:8f:f9:38: 9c:08:bd:23:7f:4d:7f:5c:1d:15:a7:85:d0:ec:fa:a9:7e:02: a1:5e:5c:28:dc:f1:b3:92:bb:0c:d7:69:f4:83:d9:b4:b6:18: a8:0b:c6:79:9b:8f:6e:04:63:56:4b:54:37:1a:25:6c:10:16: 1b:39:ac:ec:82:59:41:2d:e9:c4:05:3d:ad:4c:9d:92:9e:12: 63:ff:79:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjYwNDA0MjEzOTI1WhcNMjYwNDExMjEzOTI1WjAYMRYwFAYD VQQDEw02OWQxODUwZS0wYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Zzl6iaXLgGcefNLLzXEp3a0HyINLvTHw4e6wRuyBohVBoqXqd9dLqbVGOE+ 273QzJnbksWZNLdp/O+YuOkDuZucIPptlyPuG9bQdTfZ79d0lefYXphN3leLV3qw RRpe+Jw6dwp4kML5xlSexIgs0I3DYy56WllFxuDxUihGXm6hsm1G3aq0VmWzfn+G mrudWJt4Gd0R3qUdBFrLg4J7EsbIryprJpvcoz3y3dl0G55Blsg4jXa2vTqEcQMA bAZH2HqOkUDtVaw7wpUiOGBt7mRxEynf4Fo7r2FBymHQfXWIGM5zfOYZCSeVbEWx bseDfoY5+YKJH5pm0VscABfHsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJGK/UvL 1SOCXMg2d2hxrFziJ/fsMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjHEy4ahqga1fhXjjCtQbz5FdiG60QPpOGFpz3tTwrpB6GCIcX8niioHvyG5b hwee79zGQmUKETtDQP4Cq1dooD1+SO1jruPcfhWRvqB/L6auzVIYb1MQm9EVkGS5 fWz9Qc+4nI1V6IulRzVD9gD+MRr/jMZYPJkA1SRnWFzFMepdNQaPxEfrfsZWVSA2 jKFLyZDH4vBNIwevHNnjA56IpQB488VFFT2uvZGN8ho5TJmBj/k4nAi9I39Nf1wd FaeF0Oz6qX4CoV5cKNzxs5K7DNdp9IPZtLYYqAvGeZuPbgRjVktUNxolbBAWGzms 7IJZQS3pxAU9rUydkp4SY/955Q== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:04 2026 by rpki-client