$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: wn8i2xw2DXc0DjHGgQXrf74cFbza/dogJyxESHUTxSY= Subject key identifier: 97:27:75:02:86:39:74:3B:71:34:5B:B9:7F:75:65:A0:25:32:FF:6C Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 0352 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 034B Signing time: Sun 05 Apr 2026 00:43:44 +0000 Manifest this update: Sun 05 Apr 2026 00:43:44 +0000 Manifest next update: Sun 12 Apr 2026 00:43:44 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: fOfWmuewoRsrvFwZrccJODiu7SnbBzSPCvcqBJbBTRo=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QRtlstVkdBXEszVrg/iIFuaNaUBnHazamE53eJaDdno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 850 (0x352) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Apr 5 00:43:44 2026 GMT Not After : Apr 12 00:43:44 2026 GMT Subject: CN=69d1b040-8d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f9:6b:20:cb:86:84:60:a9:26:26:64:12:14: c1:00:62:35:07:57:41:1e:b6:2d:09:27:b9:f0:03: c2:5e:ea:a2:65:ac:36:10:39:14:75:f7:65:61:7e: 6e:81:3a:43:b1:72:db:4e:7e:ef:1f:a8:b9:2c:e8: 98:33:91:45:07:f4:2f:ea:bb:c5:29:78:29:ba:90: fc:21:1e:e5:71:6c:b3:3f:44:03:a1:7b:75:94:25: 31:89:4b:66:75:8b:b9:55:4a:08:5f:09:80:53:71: 57:f8:1e:cf:2d:39:72:a4:bb:91:f2:f5:9d:df:03: 2f:e5:ed:ee:b6:11:3d:21:0d:48:bf:4f:57:f2:f0: 15:8c:a8:18:24:58:fd:2d:be:34:5a:72:c2:2a:bc: d9:15:8e:ad:15:9d:6a:fa:0c:63:12:4c:ce:57:2f: 6b:aa:fa:82:8e:8c:34:56:91:3c:37:35:75:27:bb: 79:90:4d:73:e5:e7:c3:5f:8b:3b:7f:6c:81:1c:ae: be:33:f1:6c:45:7b:60:f7:0c:ad:25:94:6c:cf:95: 74:e1:76:81:4d:7d:b1:30:ad:5b:37:63:de:43:48: 52:89:44:be:a7:65:d6:1d:d1:29:0b:25:03:46:2e: 52:be:9a:44:4e:87:e3:93:9f:1e:fc:f2:13:cb:99: 87:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:27:75:02:86:39:74:3B:71:34:5B:B9:7F:75:65:A0:25:32:FF:6C X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1f:5f:fb:cd:06:50:ed:57:60:1f:3c:f4:17:3a:d7:99:2f: 20:cb:ad:59:d7:d0:4b:07:7b:4b:65:57:38:5c:d0:25:72:f4: c0:82:7e:a0:25:6f:c0:ce:06:29:e6:a9:1e:7f:24:bd:b2:9e: 9c:9a:07:9c:c6:90:63:70:45:d2:55:68:cc:21:15:95:5f:1f: 18:22:39:fb:e5:93:9c:1b:0b:a6:f8:fa:49:57:62:8f:d3:d9: 59:af:1d:47:a8:63:79:1b:62:6d:a0:1e:45:d3:2a:a9:97:85: 12:10:af:93:16:4a:04:7e:8d:57:68:72:ae:b3:ec:08:31:f3: 2f:b2:0d:7f:0d:f7:15:74:8f:b8:cd:bf:a1:13:57:55:8d:69: e6:e2:7e:07:7a:9c:c1:e9:9a:64:20:c3:90:3e:06:8e:44:ab: 00:6c:af:d1:83:19:ee:39:9e:3b:99:ff:bc:f1:e3:be:e2:7c: d8:36:c2:36:9b:11:0c:d8:86:ea:ab:24:26:32:0a:50:97:aa: 26:f1:92:5b:f5:54:1b:b0:01:53:f8:63:48:91:fe:76:00:05: 4a:e0:14:cc:c1:c0:6a:8b:97:f6:6a:13:c4:be:c8:7a:03:e7: 0b:28:6d:99:38:5b:5d:f4:58:d7:a3:f2:b7:a5:ba:4c:53:fe: e1:82:32:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjYwNDA1MDA0MzQ0WhcNMjYwNDEyMDA0MzQ0WjAYMRYwFAYD VQQDEw02OWQxYjA0MC04ZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzflrIMuGhGCpJiZkEhTBAGI1B1dBHrYtCSe58APCXuqiZaw2EDkUdfdlYX5u gTpDsXLbTn7vH6i5LOiYM5FFB/Qv6rvFKXgpupD8IR7lcWyzP0QDoXt1lCUxiUtm dYu5VUoIXwmAU3FX+B7PLTlypLuR8vWd3wMv5e3uthE9IQ1Iv09X8vAVjKgYJFj9 Lb40WnLCKrzZFY6tFZ1q+gxjEkzOVy9rqvqCjow0VpE8NzV1J7t5kE1z5efDX4s7 f2yBHK6+M/FsRXtg9wytJZRsz5V04XaBTX2xMK1bN2PeQ0hSiUS+p2XWHdEpCyUD Ri5SvppETofjk58e/PITy5mHuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJcndQKG OXQ7cTRbuX91ZaAlMv9sMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhR9f+80GUO1XYB889Bc615kvIMutWdfQSwd7S2VXOFzQJXL0wIJ+oCVvwM4G KeapHn8kvbKenJoHnMaQY3BF0lVozCEVlV8fGCI5++WTnBsLpvj6SVdij9PZWa8d R6hjeRtibaAeRdMqqZeFEhCvkxZKBH6NV2hyrrPsCDHzL7INfw33FXSPuM2/oRNX VY1p5uJ+B3qcwemaZCDDkD4GjkSrAGyv0YMZ7jmeO5n/vPHjvuJ82DbCNpsRDNiG 6qskJjIKUJeqJvGSW/VUG7ABU/hjSJH+dgAFSuAUzMHAaouX9moTxL7IegPnCyht mThbXfRY16Pyt6W6TFP+4YIysQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:32 2026 by rpki-client