$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: i7MgfiwRvyvj4IBGTToUKiH1KC6f3yGpm5G0Zfi7fN0= Subject key identifier: 3B:5C:83:5B:EA:C1:77:5E:19:2B:B9:A0:47:EA:E1:E3:71:A8:34:0A Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 0585 Signing time: Sat 04 Apr 2026 23:02:56 +0000 Manifest this update: Sat 04 Apr 2026 23:02:55 +0000 Manifest next update: Sat 11 Apr 2026 23:02:55 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: Mfej9Ig17QamHWZH5aSP9DZE5U3ooE2mGoYKBFpKsOg=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: mFoBkWfLh0LGrOinTzXA38KoXXGaCtnMvz2q3N7gfu8=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 6Zu4L1ezgqlBaAtZaZeJDXKxjpiSp79xQrfuVaBXNZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1432 (0x598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Apr 4 23:02:55 2026 GMT Not After : Apr 11 23:02:55 2026 GMT Subject: CN=69d1989f-14f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:90:ac:02:c9:b1:ad:0d:95:13:c5:43:a5:63: 34:39:87:b9:80:7c:e2:5c:be:68:ed:49:97:6f:2d: f8:df:1c:ea:25:fb:6c:22:60:69:87:f4:4b:40:d8: 6c:8e:8c:08:22:56:f6:97:d5:10:22:4f:7f:a2:ab: 3e:e5:52:c9:0a:fa:1e:83:b8:c0:59:a1:0a:92:58: d5:3c:6c:05:95:92:b1:b1:4b:99:2e:83:b9:bb:f7: 87:8e:c6:5c:f3:9a:4a:70:be:26:76:43:d0:26:4c: 4b:dd:05:e7:b9:c9:ef:25:ba:dd:d7:b1:9e:37:f5: 6d:15:53:72:ce:43:7e:0c:82:21:f7:d9:2b:64:9b: 86:ce:0c:e5:6e:45:41:8f:fe:53:a2:20:7b:da:f3: 97:06:4a:2e:6a:b0:5d:e5:1a:d5:3f:03:d4:e4:d1: 19:b7:53:b3:4b:fc:ba:f0:30:91:29:b8:b7:90:70: 2c:44:b8:1e:a4:68:4c:c2:9e:fd:4d:65:f2:ce:cb: ab:86:c4:56:9c:77:12:03:3b:ba:05:7d:26:31:78: af:34:2c:08:83:d8:46:40:59:cd:42:15:7d:ea:c6: f2:dd:53:cd:cb:03:07:fe:75:16:0a:08:19:a1:f7: 36:f7:ee:df:db:85:d8:ad:71:92:da:b9:f1:5b:77: b6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5C:83:5B:EA:C1:77:5E:19:2B:B9:A0:47:EA:E1:E3:71:A8:34:0A X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d8:71:98:27:96:20:ea:87:42:46:51:9b:46:a2:66:d1:d6: 6b:9f:8d:29:8f:f9:cc:6f:f3:8f:71:54:b5:64:31:ce:7d:9e: 5e:a0:7c:9e:d3:00:2d:f5:22:11:e2:62:e2:d0:1b:1a:0b:6a: 0e:72:4f:a0:f3:f3:eb:00:e0:6b:92:31:23:ff:49:54:3b:36: fc:e1:02:4c:ed:d5:31:64:70:13:2c:47:fb:35:ab:35:f0:a2: ab:fa:3f:9f:a8:08:f1:02:a3:88:1c:95:49:93:36:69:66:47: 3a:8a:7f:95:d0:d2:4a:54:39:c7:7d:f2:4b:84:41:eb:b5:be: b8:79:ae:03:c0:6f:cd:07:8c:43:18:d1:42:94:e8:ce:4a:2d: 83:d5:52:86:fe:56:a0:bb:c6:c1:f1:2f:ef:73:a6:6e:d8:ca: 0c:56:48:b0:41:22:dd:0a:14:7e:79:f3:3e:b0:e1:83:47:f7: 72:b6:3b:c3:e4:bb:6b:09:fb:1e:1b:1e:a4:29:e1:74:0b:e0: d5:fe:37:d6:fe:6c:ea:d8:5e:b3:37:56:94:d7:fb:57:1c:89: b6:04:23:b5:65:e2:fb:6e:74:b7:7a:2b:70:d0:b5:2d:5c:8a: 7f:f7:89:cd:68:3c:28:9d:a2:7a:53:47:b4:98:d5:b5:f2:27: c6:e8:dc:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjYwNDA0MjMwMjU1WhcNMjYwNDExMjMwMjU1WjAYMRYwFAYD VQQDEw02OWQxOTg5Zi0xNGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpCsAsmxrQ2VE8VDpWM0OYe5gHziXL5o7UmXby343xzqJftsImBph/RLQNhs jowIIlb2l9UQIk9/oqs+5VLJCvoeg7jAWaEKkljVPGwFlZKxsUuZLoO5u/eHjsZc 85pKcL4mdkPQJkxL3QXnucnvJbrd17GeN/VtFVNyzkN+DIIh99krZJuGzgzlbkVB j/5ToiB72vOXBkouarBd5RrVPwPU5NEZt1OzS/y68DCRKbi3kHAsRLgepGhMwp79 TWXyzsurhsRWnHcSAzu6BX0mMXivNCwIg9hGQFnNQhV96sby3VPNywMH/nUWCggZ ofc29+7f24XYrXGS2rnxW3e2PQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDtcg1vq wXdeGSu5oEfq4eNxqDQKMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkthxmCeWIOqHQkZRm0aiZtHWa5+NKY/5zG/zj3FUtWQxzn2eXqB8ntMALfUi EeJi4tAbGgtqDnJPoPPz6wDga5IxI/9JVDs2/OECTO3VMWRwEyxH+zWrNfCiq/o/ n6gI8QKjiByVSZM2aWZHOop/ldDSSlQ5x33yS4RB67W+uHmuA8BvzQeMQxjRQpTo zkotg9VShv5WoLvGwfEv73OmbtjKDFZIsEEi3QoUfnnzPrDhg0f3crY7w+S7awn7 HhsepCnhdAvg1f431v5s6theszdWlNf7VxyJtgQjtWXi+250t3orcNC1LVyKf/eJ zWg8KJ2ielNHtJjVtfInxujcTw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:23 2026 by rpki-client