$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: QQ2JUJKhisWeTFqMJwQqqkiy8h5EQq7sgUW5JcobHHg= Subject key identifier: 6B:30:07:6E:D9:0F:EC:13:2C:24:64:2A:21:D3:B1:9A:DF:8B:17:4E Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 01CC Signing time: Sun 05 Apr 2026 03:13:21 +0000 Manifest this update: Sun 05 Apr 2026 03:13:21 +0000 Manifest next update: Sun 12 Apr 2026 03:13:21 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: wkXLLfvahDv9CH5w2ItVx5gHcOLPXf1ltFpMni2ZL38=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: vSlu+TQyxpav2ADnDaaL7eQcjqlvG5DFjhy5XTFprbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921, serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: Apr 5 03:13:21 2026 GMT Not After : Apr 12 03:13:21 2026 GMT Subject: CN=69d1d351-019b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b5:c0:59:ee:e5:8b:ac:e4:cc:5e:27:5a:15: a3:61:bd:ff:50:46:17:0c:a9:f6:8b:fd:ce:81:3a: c8:a6:c6:ed:e5:c2:f4:b7:7c:ea:20:91:b5:ef:ca: 64:9f:bf:7b:89:5f:5f:a3:75:0b:67:4c:0e:23:81: f1:d2:57:92:2b:bb:20:bf:49:50:74:5f:c8:3f:c6: 26:29:ea:f0:86:25:19:2e:4f:3d:87:20:00:18:6e: 3d:6f:1e:a9:f0:15:8a:f5:99:e7:a0:5b:7d:1d:9a: 99:da:e8:55:da:37:0d:ae:1b:7b:c3:a7:d0:24:f7: 50:4b:5d:94:45:55:2c:cf:ce:f8:bd:93:6e:2e:f2: 1c:0c:c7:b5:ce:12:33:66:9e:c2:4a:b1:9c:1d:c2: 5b:00:4a:97:0f:d2:fd:ee:7a:13:89:ef:c1:a7:c0: ba:bd:9c:92:4f:ad:3f:3b:7d:bf:d5:8c:a1:b0:36: db:5b:e5:93:4b:a9:c8:75:33:bd:a6:6b:cb:b0:ff: c2:5b:85:71:8c:48:bd:62:2c:0b:82:25:7a:1c:da: c6:fe:c6:67:ee:92:4c:61:17:d3:97:6f:f6:81:54: 14:89:4c:d9:59:df:93:c6:20:50:f4:54:80:76:b8: 6c:59:04:8e:2a:10:22:03:34:d5:10:63:fb:2c:d1: 01:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:30:07:6E:D9:0F:EC:13:2C:24:64:2A:21:D3:B1:9A:DF:8B:17:4E X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:6f:02:ab:26:d7:6b:56:1c:8a:35:80:86:1b:b1:d1:20:98: 77:c2:06:ff:7c:6f:27:b2:ca:26:bd:dc:39:67:21:4b:66:66: 5b:34:34:3a:09:fd:3d:8c:7f:14:f6:40:20:01:36:6f:42:28: f7:53:df:1a:56:60:02:c6:a7:a3:0b:9f:a4:cc:b8:c7:ec:f2: a4:eb:1c:03:2b:11:4c:83:95:f0:13:a2:90:3f:8c:be:3f:e0: 71:5e:5c:ae:7c:68:ba:14:a5:75:be:db:53:1a:b9:50:4f:f6: 31:5a:be:f5:ae:2e:af:3f:fb:7d:f3:8a:81:3a:2a:92:a4:bd: 77:e6:8a:b3:c6:dc:76:b3:fb:2f:76:6f:01:51:ec:60:26:ed: 13:a2:cb:2c:8c:a6:56:40:ae:1a:5d:86:15:6a:8f:68:5d:e4: 68:66:f1:ad:76:fa:40:74:11:56:79:74:ea:1e:61:b5:b1:5c: d5:77:cd:81:12:e4:d6:d9:05:fd:21:50:3c:45:18:4e:ed:27: 27:8e:17:a4:bc:f1:00:22:bd:17:aa:0b:cd:e3:6a:28:c5:17: 5d:cb:02:82:f6:0b:f4:1b:85:2e:30:a3:61:fe:7b:43:76:e8: 8f:6f:59:78:06:bb:97:28:9d:9c:e8:10:2a:5f:47:af:77:f4: fc:92:20:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjYwNDA1MDMxMzIxWhcNMjYwNDEyMDMxMzIxWjAYMRYwFAYD VQQDEw02OWQxZDM1MS0wMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbXAWe7li6zkzF4nWhWjYb3/UEYXDKn2i/3OgTrIpsbt5cL0t3zqIJG178pk n797iV9fo3ULZ0wOI4Hx0leSK7sgv0lQdF/IP8YmKerwhiUZLk89hyAAGG49bx6p 8BWK9ZnnoFt9HZqZ2uhV2jcNrht7w6fQJPdQS12URVUsz874vZNuLvIcDMe1zhIz Zp7CSrGcHcJbAEqXD9L97noTie/Bp8C6vZyST60/O32/1YyhsDbbW+WTS6nIdTO9 pmvLsP/CW4VxjEi9YiwLgiV6HNrG/sZn7pJMYRfTl2/2gVQUiUzZWd+TxiBQ9FSA drhsWQSOKhAiAzTVEGP7LNEBTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGswB27Z D+wTLCRkKiHTsZrfixdOMB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP28CqybXa1YcijWAhhux0SCYd8IG/3xvJ7LKJr3cOWchS2ZmWzQ0Ogn9PYx/ FPZAIAE2b0Io91PfGlZgAsanowufpMy4x+zypOscAysRTIOV8BOikD+Mvj/gcV5c rnxouhSldb7bUxq5UE/2MVq+9a4urz/7ffOKgToqkqS9d+aKs8bcdrP7L3ZvAVHs YCbtE6LLLIymVkCuGl2GFWqPaF3kaGbxrXb6QHQRVnl06h5htbFc1XfNgRLk1tkF /SFQPEUYTu0nJ44XpLzxACK9F6oLzeNqKMUXXcsCgvYL9BuFLjCjYf57Q3boj29Z eAa7lyidnOgQKl9Hr3f0/JIgvQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:33 2026 by rpki-client