$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: wtd42upLY1X1KX6Z2rWwGsrM0HafgVAxvZ/hWfhv9Q0= Subject key identifier: 0C:40:A8:43:23:7A:03:36:BA:15:AE:5B:57:19:97:DA:77:7D:3D:48 Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: 0156 Signing time: Sun 05 Apr 2026 04:28:12 +0000 Manifest this update: Sun 05 Apr 2026 04:28:12 +0000 Manifest next update: Sun 12 Apr 2026 04:28:12 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: zxFXeNtmPgD9SjYKMVP35+o5w8aA3VfhI86wRW1fDSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85, serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Validity Not Before: Apr 5 04:28:12 2026 GMT Not After : Apr 12 04:28:12 2026 GMT Subject: CN=69d1e4dc-4275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:70:81:cf:c3:34:7d:f8:c3:65:9e:40:3a:61: c7:d4:5d:d8:db:39:92:ad:6b:00:ae:e4:ee:08:b2: 9a:fa:8f:83:8f:d0:cb:2d:51:a7:5c:cf:2e:f0:38: bd:80:70:17:a6:43:75:3b:9c:32:57:cd:f5:5f:28: 14:0d:53:18:7a:2b:22:98:7c:7e:53:38:10:52:44: 66:0a:30:7a:fc:77:63:fb:64:41:23:d3:85:ee:6b: be:96:82:87:df:7a:50:9b:e2:67:f1:77:89:34:f0: fa:8b:94:e5:08:b8:cc:f9:dd:e3:20:00:01:1a:3e: b0:08:98:6d:98:80:2f:25:cb:cb:a1:d6:98:4c:41: 95:93:9e:ae:9a:31:13:11:6c:7d:7a:a9:47:79:7f: 6c:f8:4c:21:e7:23:57:f0:e6:b0:e5:29:81:03:79: db:9c:f8:4e:cb:cc:34:04:a5:fc:0b:ab:d4:72:84: 95:0a:c9:ae:c8:9d:58:97:c0:f2:8b:82:f2:38:1c: ed:87:66:59:94:e7:a0:50:39:a8:5d:e6:82:cd:2e: 2a:43:fa:7b:24:dd:6b:b7:ba:f4:cb:29:97:c0:f3: c0:b4:44:7c:03:83:d4:b3:58:63:50:06:1b:2c:83: 6c:68:fe:5b:d0:3a:35:29:ff:84:b1:0b:c1:74:08: a8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:40:A8:43:23:7A:03:36:BA:15:AE:5B:57:19:97:DA:77:7D:3D:48 X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b6:bd:86:b1:e9:16:c4:ae:31:cc:7e:8b:ac:a0:cf:bf:e7: ca:92:38:03:4f:c3:2a:7b:42:16:99:9b:7a:09:38:3e:1f:18: f7:b2:f4:17:36:8f:f8:e9:dd:05:5a:22:54:ee:48:1d:39:57: 75:06:14:18:61:df:37:23:9c:04:51:7e:13:e8:22:80:dd:08: 7a:ef:b3:df:07:3b:7a:fd:69:83:5f:43:df:a9:53:3f:8e:65: 2b:42:e3:c8:6e:08:a6:4c:d2:20:59:fd:3d:db:8a:14:0d:69: 25:0f:58:c6:44:c1:ba:f5:e9:c2:6b:b1:9a:54:4c:f3:2e:44: 20:f5:b2:15:27:72:4a:d7:82:b4:ca:a6:c2:21:10:2d:c0:17: f3:fb:98:5c:15:1a:8b:a1:d3:e1:e0:90:17:60:67:18:9a:c4: 78:a9:3f:77:c2:30:b6:ca:93:2a:a7:b4:a8:fc:18:cc:d7:d5: b4:16:7e:48:a1:08:7b:e5:3f:ce:03:05:91:d2:b5:c4:61:77: 17:dc:a5:0c:84:db:b9:34:c5:ec:a2:29:78:51:8c:c2:a9:75: 84:2c:c3:ca:51:15:16:eb:99:aa:ca:24:6d:e4:cd:21:63:a4: 4f:aa:10:b9:1c:98:06:0d:3d:a4:c4:63:bb:aa:3f:d1:e7:c4: 6d:a4:10:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDODUxMTAvBgNVBAUTKEVEMzE2MDg0N0RDNEFFRDkyRDhDNTlEMTk4NDY1QjFD QkVGMkRGMjIwHhcNMjYwNDA1MDQyODEyWhcNMjYwNDEyMDQyODEyWjAYMRYwFAYD VQQDEw02OWQxZTRkYy00Mjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnCBz8M0ffjDZZ5AOmHH1F3Y2zmSrWsAruTuCLKa+o+Dj9DLLVGnXM8u8Di9 gHAXpkN1O5wyV831XygUDVMYeisimHx+UzgQUkRmCjB6/Hdj+2RBI9OF7mu+loKH 33pQm+Jn8XeJNPD6i5TlCLjM+d3jIAABGj6wCJhtmIAvJcvLodaYTEGVk56umjET EWx9eqlHeX9s+Ewh5yNX8Oaw5SmBA3nbnPhOy8w0BKX8C6vUcoSVCsmuyJ1Yl8Dy i4LyOBzth2ZZlOegUDmoXeaCzS4qQ/p7JN1rt7r0yymXwPPAtER8A4PUs1hjUAYb LINsaP5b0Do1Kf+EsQvBdAionwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAxAqEMj egM2uhWuW1cZl9p3fT1IMB8GA1UdIwQYMBaAFO0xYIR9xK7ZLYxZ0ZhGWxy+8t8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkM4NS8yODcwN0NCRTI4 ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0a3RqRm5SbUVaYkhMN3kz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkM4NS8yODcwN0NCRTI4ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0 a3RqRm5SbUVaYkhMN3kzeUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAELa9hrHpFsSuMcx+i6ygz7/nypI4A0/DKntCFpmbegk4Ph8Y97L0FzaP+Ond BVoiVO5IHTlXdQYUGGHfNyOcBFF+E+gigN0Ieu+z3wc7ev1pg19D36lTP45lK0Lj yG4IpkzSIFn9PduKFA1pJQ9YxkTBuvXpwmuxmlRM8y5EIPWyFSdySteCtMqmwiEQ LcAX8/uYXBUai6HT4eCQF2BnGJrEeKk/d8IwtsqTKqe0qPwYzNfVtBZ+SKEIe+U/ zgMFkdK1xGF3F9ylDITbuTTF7KIpeFGMwql1hCzDylEVFuuZqsokbeTNIWOkT6oQ uRyYBg09pMRju6o/0efEbaQQNQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:53:46 2026 by rpki-client