$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: qB1efhk/b4VnJquSfcEL+/vPhoB+6/CWvHuTcMLtVKg= Subject key identifier: 82:19:82:91:17:3D:04:30:45:D5:08:7A:4C:83:F1:D9:3A:24:5A:0F Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 0286 Signing time: Sun 05 Apr 2026 01:26:23 +0000 Manifest this update: Sun 05 Apr 2026 01:26:23 +0000 Manifest next update: Sun 12 Apr 2026 01:26:23 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: eMPdGMW4zB+m/3NJxxPzsPknvyvHandG6y+j0C/R4xo=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: eqDK5JxYlPrD2YI5tre8evg6C6tiJ/GL+g0KzbaQtNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44, serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: Apr 5 01:26:23 2026 GMT Not After : Apr 12 01:26:23 2026 GMT Subject: CN=69d1ba3f-0473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cc:51:b8:d3:68:3e:74:fb:06:cd:d4:0b:08: 20:9f:dd:6a:79:d8:7f:42:5b:31:ae:37:38:c7:bf: 3f:b0:a4:48:bd:60:22:4f:d7:c6:3a:89:a6:e5:95: 95:55:36:5b:8a:83:6f:ee:f9:d5:d4:2c:97:3e:44: ad:32:b6:ac:55:b4:05:7b:e0:fa:2c:67:ae:1a:15: 9d:6c:22:8f:69:78:c3:c2:17:58:75:4c:f2:1a:5c: 0f:1c:35:2c:86:a1:36:19:f4:51:29:da:b8:81:86: bf:a4:db:e4:f1:8f:6d:a1:0e:04:ad:14:f3:42:11: ec:9f:b6:5b:e4:f1:3e:14:b0:36:d1:f5:10:1f:ba: 1a:c2:4b:43:74:91:47:ec:42:8a:7e:f7:08:d5:c4: 7c:3e:ba:bc:a9:d3:8b:d1:e5:69:c7:a7:25:ff:e9: 7a:f4:67:76:0b:ff:00:3a:0f:48:5b:28:71:ad:24: 52:dd:d1:da:25:11:00:c3:5d:c4:c5:8c:93:43:65: 79:ec:bd:df:7c:fa:09:6e:df:d7:60:3e:e4:9c:c5: 2e:3a:7e:39:a4:20:ed:f0:b7:3c:3d:51:4b:db:6c: c0:92:e1:1f:2d:4d:65:d1:83:2c:c7:b9:50:dd:3f: d7:6a:c9:f4:d8:d4:b9:bd:8f:8e:71:a7:02:c8:4a: 96:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:19:82:91:17:3D:04:30:45:D5:08:7A:4C:83:F1:D9:3A:24:5A:0F X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:1a:c1:41:80:16:4a:4a:1c:b5:d3:c0:0d:c0:32:a7:a7:5d: 5a:eb:24:9c:50:a7:b8:36:31:98:4e:0f:d1:26:ff:f5:78:cb: 20:64:13:74:89:bb:13:ff:f1:f0:a9:0d:e5:50:d6:5a:81:32: 22:85:e1:98:d2:47:de:66:db:74:54:76:4d:34:b5:c1:d1:af: 45:6a:11:9d:19:61:b0:57:a6:00:ad:c7:bd:d5:ea:e0:4c:41: a0:d3:1c:8b:cd:19:9d:68:e7:42:14:80:54:a5:5e:d2:4c:8c: e5:09:53:28:c0:50:46:52:51:09:aa:08:f5:94:a6:3d:a5:3c: 7e:5c:37:b5:b8:62:b0:f8:24:f0:46:bd:00:82:3f:0b:4d:00: 82:83:20:c7:aa:50:fd:48:e6:71:2f:65:eb:73:c7:ca:70:2c: 38:57:bf:e1:2d:31:e3:17:a7:28:2f:c0:c7:30:fb:ba:1e:b6: 37:13:d0:24:c8:41:e5:c4:27:74:db:b6:2c:42:97:f4:30:b8: 2f:26:b5:ba:36:a9:c2:8b:3d:c8:20:8e:62:37:d7:b5:22:a2: 31:04:00:91:fb:75:9d:3a:f1:d2:d1:4f:96:35:c2:86:71:df: aa:60:e3:0a:28:0e:55:ac:7b:cf:38:ef:3b:80:38:cb:bf:9b: b2:42:08:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjYwNDA1MDEyNjIzWhcNMjYwNDEyMDEyNjIzWjAYMRYwFAYD VQQDEw02OWQxYmEzZi0wNDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsxRuNNoPnT7Bs3UCwggn91qedh/Qlsxrjc4x78/sKRIvWAiT9fGOomm5ZWV VTZbioNv7vnV1CyXPkStMrasVbQFe+D6LGeuGhWdbCKPaXjDwhdYdUzyGlwPHDUs hqE2GfRRKdq4gYa/pNvk8Y9toQ4ErRTzQhHsn7Zb5PE+FLA20fUQH7oawktDdJFH 7EKKfvcI1cR8Prq8qdOL0eVpx6cl/+l69Gd2C/8AOg9IWyhxrSRS3dHaJREAw13E xYyTQ2V57L3ffPoJbt/XYD7knMUuOn45pCDt8Lc8PVFL22zAkuEfLU1l0YMsx7lQ 3T/Xasn02NS5vY+OcacCyEqWdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIIZgpEX PQQwRdUIekyD8dk6JFoPMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgRrBQYAWSkoctdPADcAyp6ddWusknFCnuDYxmE4P0Sb/9XjLIGQTdIm7E//x 8KkN5VDWWoEyIoXhmNJH3mbbdFR2TTS1wdGvRWoRnRlhsFemAK3HvdXq4ExBoNMc i80ZnWjnQhSAVKVe0kyM5QlTKMBQRlJRCaoI9ZSmPaU8flw3tbhisPgk8Ea9AII/ C00AgoMgx6pQ/UjmcS9l63PHynAsOFe/4S0x4xenKC/AxzD7uh62NxPQJMhB5cQn dNu2LEKX9DC4Lya1ujapwos9yCCOYjfXtSKiMQQAkft1nTrx0tFPljXChnHfqmDj CigOVax7zzjvO4A4y7+bskII/A== -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:22 2026 by rpki-client