$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft File: mMl-BS19mtU2CVm50-B22t126gE.mft (raw, json) Hash identifier: nE7n299xoIkgVr6QNH/W4tAS2o5UNf/0kiTi3p/iOxc= Subject key identifier: 63:89:C6:CC:6D:E5:D6:5D:F9:AD:6C:24:3B:2E:A6:12:42:DA:8A:49 Authority key identifier: 98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 Certificate issuer: /CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Certificate serial: 0783 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft Manifest number: 0772 Signing time: Mon 20 Apr 2026 21:33:17 +0000 Manifest this update: Mon 20 Apr 2026 21:33:17 +0000 Manifest next update: Mon 27 Apr 2026 21:33:17 +0000 Files and hashes: 1: mMl-BS19mtU2CVm50-B22t126gE.crl (hash: 00xNzTtzKh+uziqku50ydMcTQL7ELi40in42fkST8y8=) 2: F07A52005BEA11EB9863331EC4F9AE02.roa (hash: f7F6UHzDTrASali7JHnSCIgFltnmeNlt+tPm36SJfeM=) 3: F1541C9C5BEA11EB9863331EC4F9AE02.roa (hash: 5xNVHk4wIhIdCo+Ow4cjaHsYyMmygLTqKV9KNFswWUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 21:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1923 (0x783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB435, serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Validity Not Before: Apr 20 21:33:17 2026 GMT Not After : Apr 27 21:33:17 2026 GMT Subject: CN=69e69b9d-f012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:81:35:6e:d6:24:eb:af:74:b7:f5:91:f5:59: 98:dc:e9:0f:e2:06:53:58:21:82:cb:8c:13:44:b2: da:0d:e5:c5:c3:7c:62:0f:6e:3f:55:00:7e:de:71: 14:e5:58:1e:0e:c1:49:d2:c0:07:74:aa:9b:42:d0: 77:e9:10:be:d4:9d:05:12:79:74:eb:bf:4d:76:f0: e2:77:6d:5c:c9:8c:dc:4a:9b:2b:a0:c1:49:ea:92: 9f:ad:db:b9:b5:b7:77:6f:74:a6:9e:d4:24:f7:7a: eb:de:0d:24:51:79:d2:d7:17:4e:13:cd:45:b6:ee: 62:36:0d:06:72:b1:1c:37:25:b6:ce:e3:51:cb:70: cd:87:4d:25:d9:57:04:f4:f8:98:66:9c:4c:bc:dd: f3:b2:b5:76:40:88:6f:eb:2b:c8:50:d2:7c:30:31: 73:ac:ca:75:78:cd:2e:32:14:19:c6:39:73:8e:cb: db:74:0b:4f:bf:bc:7d:a9:01:96:2b:5c:a6:ff:7e: f7:be:f8:aa:ea:41:64:97:97:9a:d5:a7:13:3e:94: 4e:3e:89:20:cb:66:4b:6e:62:1d:bb:52:cd:2b:b3: bd:5b:ac:6d:b3:4e:35:fc:2a:0b:34:4e:ad:92:a4: 6b:1f:fe:0c:5b:92:79:31:3c:68:3e:75:59:d6:49: 48:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:89:C6:CC:6D:E5:D6:5D:F9:AD:6C:24:3B:2E:A6:12:42:DA:8A:49 X509v3 Authority Key Identifier: keyid:98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:e7:62:1f:5f:07:e9:89:07:89:fb:31:4a:2f:22:f5:43:39: 93:59:8b:47:88:0b:8f:fe:aa:48:b7:b8:80:9c:40:32:b6:df: 14:85:51:59:5a:20:32:cd:2f:de:d4:61:54:37:a2:17:63:69: 90:67:93:e9:12:49:f0:0e:e1:12:02:22:f7:8c:68:9e:35:5a: aa:f8:69:b0:1a:b9:eb:a5:5d:e2:99:82:23:f6:99:77:6a:54: f2:3f:74:d8:87:78:42:39:5d:53:05:68:89:67:9b:c6:a0:cc: 68:78:99:ea:e2:52:e8:ef:54:23:98:0b:71:cb:76:28:23:a3: 29:c4:c5:48:82:a0:b2:fc:d6:80:39:8b:73:db:87:bf:07:d7: 6b:1e:b7:c8:8e:2f:5c:d1:2c:f4:2d:ee:8c:2f:91:5e:e8:8d: 33:a2:c4:f5:77:36:ea:6c:60:6f:64:13:67:f9:9a:7f:3f:99: 47:00:b3:13:78:0f:3c:3e:d4:25:7b:c1:d6:f6:b6:42:96:05: 1a:01:39:14:93:95:6a:77:ea:e2:2d:e6:70:60:c9:90:36:28: b9:8a:fc:34:92:3c:98:30:b8:14:06:88:7f:6e:f6:af:c8:36: 6f:99:8b:1d:1f:ec:dc:ab:7f:6b:cc:e4:62:e9:b8:48:a2:06: 93:b5:f0:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I0MzUxMTAvBgNVBAUTKDk4Qzk3RTA1MkQ3RDlBRDUzNjA5NTlCOUQzRTA3NkRB REQ3NkVBMDEwHhcNMjYwNDIwMjEzMzE3WhcNMjYwNDI3MjEzMzE3WjAYMRYwFAYD VQQDEw02OWU2OWI5ZC1mMDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4E1btYk6690t/WR9VmY3OkP4gZTWCGCy4wTRLLaDeXFw3xiD24/VQB+3nEU 5VgeDsFJ0sAHdKqbQtB36RC+1J0FEnl0679NdvDid21cyYzcSpsroMFJ6pKfrdu5 tbd3b3SmntQk93rr3g0kUXnS1xdOE81Ftu5iNg0GcrEcNyW2zuNRy3DNh00l2VcE 9PiYZpxMvN3zsrV2QIhv6yvIUNJ8MDFzrMp1eM0uMhQZxjlzjsvbdAtPv7x9qQGW K1ym/373vviq6kFkl5ea1acTPpROPokgy2ZLbmIdu1LNK7O9W6xts041/CoLNE6t kqRrH/4MW5J5MTxoPnVZ1klIewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGOJxsxt 5dZd+a1sJDsuphJC2opJMB8GA1UdIwQYMBaAFJjJfgUtfZrVNglZudPgdtrdduoB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjQzNS9FQzA1OTA0NjVC RTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10VTJDVm01MC1CMjJ0MTI2 Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL21NbC1CUzE5bXRVMkNWbTUwLUIyMnQxMjZnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjQzNS9FQzA1OTA0NjVCRTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10 VTJDVm01MC1CMjJ0MTI2Z0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfediH18H6YkHifsxSi8i9UM5k1mLR4gLj/6qSLe4gJxAMrbfFIVRWVogMs0v 3tRhVDeiF2NpkGeT6RJJ8A7hEgIi94xonjVaqvhpsBq566Vd4pmCI/aZd2pU8j90 2Id4QjldUwVoiWebxqDMaHiZ6uJS6O9UI5gLcct2KCOjKcTFSIKgsvzWgDmLc9uH vwfXax63yI4vXNEs9C3ujC+RXuiNM6LE9Xc26mxgb2QTZ/mafz+ZRwCzE3gPPD7U JXvB1va2QpYFGgE5FJOVanfq4i3mcGDJkDYouYr8NJI8mDC4FAaIf272r8g2b5mL HR/s3Kt/a8zkYum4SKIGk7Xwew== -----END CERTIFICATE-----Generated at Wed Apr 22 00:08:33 2026 by rpki-client