$ rpki-client -vvf rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft File: x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft (raw, json) Hash identifier: 1h29HdYMReCiXrXVgw+Zqz1sfYAyvADpyX5pakccwXc= Subject key identifier: E6:25:C3:BD:F9:CF:1A:BF:D9:79:F8:BA:B1:3F:81:66:F2:6B:75:A3 Authority key identifier: C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 Certificate issuer: /CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Certificate serial: 124F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft Manifest number: 1237 Signing time: Sat 04 Apr 2026 17:00:40 +0000 Manifest this update: Sat 04 Apr 2026 17:00:39 +0000 Manifest next update: Sat 11 Apr 2026 17:00:39 +0000 Files and hashes: 1: x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl (hash: +FrQxF98Un1OawmxmpXinAK6tIOTkfbBUVFEHZ2dsxY=) 2: 8446564EF96611E8BE431B17C4F9AE02.roa (hash: yX06bXibRyqYQ53QWArbh3lavUZOOzpp/mZPOnVc/hA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4687 (0x124f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C85E9, serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Validity Not Before: Apr 4 17:00:39 2026 GMT Not After : Apr 11 17:00:39 2026 GMT Subject: CN=69d143b8-1484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c7:f6:4d:a8:85:ee:91:6f:bc:8b:80:a0:38: e0:0e:4f:0c:fe:ec:08:e4:20:f0:a5:de:35:da:f1: c1:e7:34:af:27:fb:8e:dd:20:de:d4:a3:c9:2b:a6: 56:94:97:b0:b8:ae:d5:4b:0d:50:62:16:f3:a0:86: fe:dc:f0:da:bf:3a:12:8c:1a:29:78:aa:f4:1a:aa: 87:5d:ac:68:ee:65:0b:6e:3e:70:0c:ab:d0:82:e6: 27:71:b0:8c:c1:d2:82:13:0c:1b:7e:93:cf:4a:93: 04:2e:e0:e9:e2:7f:ec:e6:6d:11:fa:b9:d6:a5:a3: 0d:d7:4d:f6:17:3b:da:ed:bf:a5:48:68:24:44:75: 5e:30:d6:10:b7:54:45:2b:4d:92:59:c1:a3:d5:76: 08:0f:7b:4b:5e:1a:a6:22:13:34:20:26:d7:fc:f6: 89:b4:a1:81:93:1c:e0:50:f5:a2:18:a6:59:33:9d: be:56:8c:2a:82:c3:f7:9f:4e:37:aa:5f:60:24:a6: 13:bf:64:72:99:b7:9e:77:af:65:8e:79:96:10:a4: 7e:35:36:ab:93:3c:a9:60:07:78:6b:30:b3:53:37: 66:c2:04:ee:db:50:84:33:73:c7:0e:f0:91:08:30: f1:79:7d:19:47:a6:ef:f3:59:fd:4b:e5:0e:d0:5b: b9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:25:C3:BD:F9:CF:1A:BF:D9:79:F8:BA:B1:3F:81:66:F2:6B:75:A3 X509v3 Authority Key Identifier: keyid:C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:79:35:3f:93:e5:5e:ea:d7:20:fa:fe:84:5e:43:8d:8e:8c: 43:d0:1c:3a:1c:5e:39:2e:39:0a:c5:58:f1:be:d7:84:4b:c1: 00:7e:1b:ef:72:aa:6c:e3:46:db:eb:55:fe:17:f4:c9:e6:11: f0:43:cf:af:04:7f:fe:08:88:38:2f:fc:86:d1:c7:5b:94:31: 75:53:f5:72:ce:c9:8f:30:e5:21:d5:b6:4c:3c:ee:9e:cf:b1: 55:55:bb:74:8a:f8:9f:e5:72:25:59:ad:a2:a1:ea:9e:3f:97: fc:be:06:20:ec:c6:9c:77:b0:d9:c1:97:d7:54:09:89:d7:bf: 47:a9:34:48:a9:60:b5:62:eb:9a:3e:06:a3:22:2e:14:2c:e4: b2:68:af:3b:69:5b:d0:b6:ee:0d:ac:8c:b1:25:94:94:3c:eb: 22:33:eb:17:ff:e2:0c:58:85:8c:50:95:3e:c9:08:a0:f2:ba: 34:a1:24:da:4c:02:1d:17:a2:e6:2e:62:61:e0:6d:fa:fd:de: ba:31:1a:59:ab:e8:ac:ad:b2:89:65:e5:3b:5f:ad:03:d5:d4: a2:4f:ab:33:be:5c:d3:28:ef:fb:84:79:04:d9:f5:14:00:da: e4:07:68:90:b0:45:6b:18:57:7c:e1:bf:54:c0:74:65:c7:6b: da:a8:69:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1RTkxMTAvBgNVBAUTKEM3Q0Y5NDNFM0E3NjRGMzdDMDAzQ0Q0MzVBMkI4NTQz QkNFNDc2MDkwHhcNMjYwNDA0MTcwMDM5WhcNMjYwNDExMTcwMDM5WjAYMRYwFAYD VQQDEw02OWQxNDNiOC0xNDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMf2TaiF7pFvvIuAoDjgDk8M/uwI5CDwpd412vHB5zSvJ/uO3SDe1KPJK6ZW lJewuK7VSw1QYhbzoIb+3PDavzoSjBopeKr0GqqHXaxo7mULbj5wDKvQguYncbCM wdKCEwwbfpPPSpMELuDp4n/s5m0R+rnWpaMN1032Fzva7b+lSGgkRHVeMNYQt1RF K02SWcGj1XYID3tLXhqmIhM0ICbX/PaJtKGBkxzgUPWiGKZZM52+VowqgsP3n043 ql9gJKYTv2Rymbeed69ljnmWEKR+NTarkzypYAd4azCzUzdmwgTu21CEM3PHDvCR CDDxeX0ZR6bv81n9S+UO0Fu5DQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOYlw735 zxq/2Xn4urE/gWbya3WjMB8GA1UdIwQYMBaAFMfPlD46dk83wAPNQ1orhUO85HYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODVFOS8wODI1MzhFQ0Y5 NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6ZkFBODFEV2l1RlE3emtk Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4LVVQanAyVHpmQUE4MURXaXVGUTd6a2Rnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODVFOS8wODI1MzhFQ0Y5NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6 ZkFBODFEV2l1RlE3emtkZ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiHk1P5PlXurXIPr+hF5DjY6MQ9AcOhxeOS45CsVY8b7XhEvBAH4b73KqbONG 2+tV/hf0yeYR8EPPrwR//giIOC/8htHHW5QxdVP1cs7JjzDlIdW2TDzuns+xVVW7 dIr4n+VyJVmtoqHqnj+X/L4GIOzGnHew2cGX11QJide/R6k0SKlgtWLrmj4GoyIu FCzksmivO2lb0LbuDayMsSWUlDzrIjPrF//iDFiFjFCVPskIoPK6NKEk2kwCHRei 5i5iYeBt+v3eujEaWavorK2yiWXlO1+tA9XUok+rM75c0yjv+4R5BNn1FADa5Ado kLBFaxhXfOG/VMB0Zcdr2qhpag== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:51 2026 by rpki-client