$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: Yi08K+0NEAsjU4YNEGdIT0N8zgH6Gr+RCx43Ofonpvc= Subject key identifier: 2C:1D:49:08:09:4F:8E:56:B5:7D:8D:2F:B3:2D:E8:77:2B:05:E6:E8 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 066C Signing time: Sat 04 Apr 2026 22:23:25 +0000 Manifest this update: Sat 04 Apr 2026 22:23:25 +0000 Manifest next update: Sat 11 Apr 2026 22:23:25 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: fXW+lYRme+a3ML0JUaokmGT4ETW36BusUGu/tU1j/PM=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: K2XjwQUcwBjQz3JduuHoPDcdQU/IInU/L9zJSSzQVAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Apr 4 22:23:25 2026 GMT Not After : Apr 11 22:23:25 2026 GMT Subject: CN=69d18f5d-d0c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:66:fb:cb:eb:4f:54:69:65:4e:b7:e4:aa:a0: bb:68:a0:be:00:a7:9a:af:fc:7c:a0:6e:7d:31:2f: b2:be:ed:eb:9d:f5:10:4a:98:87:36:b2:21:dd:25: ae:17:e7:17:d7:16:6c:33:01:e1:60:91:79:ab:43: de:36:b0:30:21:5a:01:87:c4:47:86:a3:fa:76:2c: 35:31:a8:06:e4:67:a4:ad:88:6f:3b:14:cd:5c:27: cf:3a:9c:5f:f9:3c:b5:8b:0f:be:40:de:64:5d:41: 25:a4:06:74:13:55:53:5f:c7:81:cd:48:3a:9f:d9: e4:4f:72:7a:8f:2b:f5:09:d9:81:11:42:89:97:cf: b3:f3:06:6b:bd:78:2e:ea:0c:d1:49:91:ba:24:1a: b2:c9:08:98:b8:d4:24:91:c2:4f:c6:02:5b:e2:b1: 72:b6:25:1b:44:0d:65:7c:08:0d:a6:7f:8c:b9:be: 8c:29:63:e1:20:44:77:72:38:b2:9a:ab:b0:ab:ae: 83:80:f8:b5:5e:de:a2:73:58:67:9b:33:99:56:da: b0:d0:c9:52:6b:39:49:cd:37:60:09:2b:5e:c2:7b: 3c:e9:9d:a1:ea:d7:3f:37:f6:a3:3e:9e:4a:2c:21: 51:6f:91:fb:81:4b:7b:e9:e1:79:c8:77:d0:0a:d7: 6b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1D:49:08:09:4F:8E:56:B5:7D:8D:2F:B3:2D:E8:77:2B:05:E6:E8 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:7c:92:d2:fe:78:55:c7:35:11:73:f4:be:65:fb:1d:c8:eb: 9e:63:8d:c4:97:cf:82:fb:88:05:3a:50:ff:03:17:e9:da:cb: f5:0a:c8:9f:90:5c:84:1a:d5:cd:87:42:a0:63:0b:71:98:a4: 0d:82:3f:f6:ba:94:d7:ae:1b:e0:23:70:ef:96:4d:54:6c:b0: 8b:cb:6b:d5:a7:76:31:c3:26:76:dd:26:72:54:05:ac:f2:8b: 0e:90:04:78:a2:bf:86:0f:1e:4e:ef:1c:3a:4b:4f:2d:2a:3e: 0a:07:14:3a:1b:3d:41:74:1a:77:79:14:66:37:a7:22:c7:9a: 29:5e:86:21:85:c5:7a:f5:6d:ea:8a:3b:c2:0d:dc:f5:18:21: 56:05:34:96:4f:28:6f:e0:9b:e1:b9:35:8b:38:58:aa:02:ec: ea:28:86:c6:80:08:6a:9d:5e:9b:a2:df:00:38:3c:24:13:de: 6d:4a:2f:c2:5e:52:34:28:3b:9f:b9:b6:ad:61:6e:7e:14:1a: 7e:fc:18:9c:4e:34:67:4c:75:3d:fc:d3:57:1d:c8:e7:14:a2: 20:1f:a5:a4:bd:ee:e5:24:e2:e4:7a:7e:c6:83:31:9a:45:94: 75:1c:7e:f1:a0:99:68:15:f3:53:1b:b1:3c:c8:7d:7d:67:0a: bd:eb:f8:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjYwNDA0MjIyMzI1WhcNMjYwNDExMjIyMzI1WjAYMRYwFAYD VQQDEw02OWQxOGY1ZC1kMGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Wb7y+tPVGllTrfkqqC7aKC+AKear/x8oG59MS+yvu3rnfUQSpiHNrIh3SWu F+cX1xZsMwHhYJF5q0PeNrAwIVoBh8RHhqP6diw1MagG5GekrYhvOxTNXCfPOpxf +Ty1iw++QN5kXUElpAZ0E1VTX8eBzUg6n9nkT3J6jyv1CdmBEUKJl8+z8wZrvXgu 6gzRSZG6JBqyyQiYuNQkkcJPxgJb4rFytiUbRA1lfAgNpn+Mub6MKWPhIER3cjiy mquwq66DgPi1Xt6ic1hnmzOZVtqw0MlSazlJzTdgCStewns86Z2h6tc/N/ajPp5K LCFRb5H7gUt76eF5yHfQCtdrGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCwdSQgJ T45WtX2NL7Mt6HcrBeboMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMnyS0v54Vcc1EXP0vmX7HcjrnmONxJfPgvuIBTpQ/wMX6drL9QrIn5BchBrV zYdCoGMLcZikDYI/9rqU164b4CNw75ZNVGywi8tr1ad2McMmdt0mclQFrPKLDpAE eKK/hg8eTu8cOktPLSo+CgcUOhs9QXQad3kUZjenIseaKV6GIYXFevVt6oo7wg3c 9RghVgU0lk8ob+Cb4bk1izhYqgLs6iiGxoAIap1em6LfADg8JBPebUovwl5SNCg7 n7m2rWFufhQafvwYnE40Z0x1PfzTVx3I5xSiIB+lpL3u5STi5Hp+xoMxmkWUdRx+ 8aCZaBXzUxuxPMh9fWcKvev48A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:47:27 2026 by rpki-client