$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: aNvLofkkfW/JoMfO5a2Q24dHvKG8m6J+MdPmaWQmlOc= Subject key identifier: F1:1E:18:D9:8E:97:F2:FD:24:B6:D3:7C:E9:07:30:C9:FB:F1:E4:9D Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 0290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 0289 Signing time: Sun 05 Apr 2026 01:21:17 +0000 Manifest this update: Sun 05 Apr 2026 01:21:17 +0000 Manifest next update: Sun 12 Apr 2026 01:21:17 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: vQbLpGar44Ton2tikLNZxQSnUwSZS/WGcpPZOsP7Xb8=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: Px3OKRnbjIZ1iy6FbmsZnaMGY5apJ6himL6niD0r3kI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Apr 5 01:21:17 2026 GMT Not After : Apr 12 01:21:17 2026 GMT Subject: CN=69d1b90d-5a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a5:57:6b:cf:25:6e:00:a0:30:e2:da:30:83: 95:78:31:bc:eb:88:7f:ca:8d:72:d2:4c:67:39:4e: da:4a:87:30:af:51:cc:43:7b:cd:a1:34:98:ad:ec: fa:91:83:bb:b6:af:93:94:35:38:19:78:e3:aa:02: ae:a8:f2:e5:90:90:97:56:f8:ea:16:c1:9f:88:9e: ec:6d:ff:96:4a:a4:9e:ea:53:d7:c6:ab:fc:99:35: b6:00:42:f8:a5:a4:65:4e:81:9e:63:44:23:99:2c: 21:ed:82:ae:94:20:2d:d7:2e:6a:f6:cf:c8:4e:b2: de:20:e0:24:41:ff:03:37:0a:6b:87:b4:9c:10:b2: b0:ee:5e:77:f9:fb:96:f3:f7:5e:de:e2:29:c9:1b: eb:eb:8c:e8:52:06:5b:4d:01:53:86:83:e1:c8:ff: 61:dd:f9:9c:87:ef:5e:7d:8b:91:21:56:68:f4:39: a1:d8:38:eb:42:84:76:36:df:b3:f7:8a:63:0b:da: 7d:02:89:1f:84:66:b5:c7:87:28:64:90:2e:99:af: f0:a1:d4:00:cb:a7:14:dc:03:fe:80:8a:4f:92:c9: 7a:71:73:ca:8d:16:9a:04:b3:fb:d7:6c:c3:57:34: d7:fc:9c:a9:c9:b5:e7:c1:57:4c:5b:9b:f2:bb:92: c4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1E:18:D9:8E:97:F2:FD:24:B6:D3:7C:E9:07:30:C9:FB:F1:E4:9D X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ff:6c:63:3a:81:6e:44:1c:d4:66:af:02:1f:07:44:15:d5: 00:03:b7:57:da:3f:1f:ff:b2:96:61:c9:8a:30:fb:4f:b1:09: b3:a4:c0:6e:90:00:1f:f6:8e:e2:ea:f9:20:de:45:da:2c:c4: 87:e3:44:4a:fa:87:8c:83:a9:c8:80:46:70:58:38:b2:ed:04: a3:ea:60:80:c7:1a:50:26:10:4f:63:eb:50:8c:a6:7a:f1:bf: 60:a7:0b:02:fb:bb:21:c4:41:83:b9:ed:82:5d:55:f7:02:f4: 08:59:a7:b7:5c:38:55:9a:bb:19:cc:5b:d8:ce:c3:8b:57:85: 53:0f:6a:c6:7f:a1:f3:a6:b0:19:5c:e5:13:71:d6:fd:f2:e0: 8a:ce:7e:70:18:83:26:d3:1e:2f:60:ee:a3:6c:6f:3d:82:45: 4b:57:4a:17:32:24:65:b7:57:0d:3e:91:9a:ba:f4:31:61:3d: 66:f6:72:3d:92:5b:a7:12:8e:ae:92:98:35:0a:93:08:9c:c4: c4:ba:03:71:eb:87:0d:3f:48:d7:4d:c9:8e:b5:f9:a7:02:dc: a0:d3:56:d3:d6:45:e2:46:13:6f:44:b5:a9:6b:5b:ab:df:39: 6c:33:d8:96:c0:45:61:1b:e6:34:92:03:2d:94:d2:fa:11:dd: 24:c5:53:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjYwNDA1MDEyMTE3WhcNMjYwNDEyMDEyMTE3WjAYMRYwFAYD VQQDEw02OWQxYjkwZC01YTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaVXa88lbgCgMOLaMIOVeDG864h/yo1y0kxnOU7aSocwr1HMQ3vNoTSYrez6 kYO7tq+TlDU4GXjjqgKuqPLlkJCXVvjqFsGfiJ7sbf+WSqSe6lPXxqv8mTW2AEL4 paRlToGeY0QjmSwh7YKulCAt1y5q9s/ITrLeIOAkQf8DNwprh7ScELKw7l53+fuW 8/de3uIpyRvr64zoUgZbTQFThoPhyP9h3fmch+9efYuRIVZo9Dmh2DjrQoR2Nt+z 94pjC9p9AokfhGa1x4coZJAuma/wodQAy6cU3AP+gIpPksl6cXPKjRaaBLP712zD VzTX/JypybXnwVdMW5vyu5LEWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPEeGNmO l/L9JLbTfOkHMMn78eSdMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgf9sYzqBbkQc1GavAh8HRBXVAAO3V9o/H/+ylmHJijD7T7EJs6TAbpAAH/aO 4ur5IN5F2izEh+NESvqHjIOpyIBGcFg4su0Eo+pggMcaUCYQT2PrUIymevG/YKcL Avu7IcRBg7ntgl1V9wL0CFmnt1w4VZq7Gcxb2M7Di1eFUw9qxn+h86awGVzlE3HW /fLgis5+cBiDJtMeL2Duo2xvPYJFS1dKFzIkZbdXDT6Rmrr0MWE9ZvZyPZJbpxKO rpKYNQqTCJzExLoDceuHDT9I103JjrX5pwLcoNNW09ZF4kYTb0S1qWtbq985bDPY lsBFYRvmNJIDLZTS+hHdJMVTfg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:25 2026 by rpki-client