$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft File: g4L2GIxKbdZpVNVxij2cz5uL-JU.mft (raw, json) Hash identifier: ZXRz/m8+RFevDa/UrX8Ci1LkIon3ghs7Y4rAkm8DXsQ= Subject key identifier: B5:DF:D3:41:B9:97:09:F7:92:1A:E4:9C:A0:02:29:D9:5C:1D:C5:0E Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 0896 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft Manifest number: 0889 Signing time: Mon 20 Apr 2026 20:03:31 +0000 Manifest this update: Mon 20 Apr 2026 20:03:31 +0000 Manifest next update: Mon 27 Apr 2026 20:03:31 +0000 Files and hashes: 1: g4L2GIxKbdZpVNVxij2cz5uL-JU.crl (hash: K+DLcxnqaw1rAJXSj7lkESYAxlB7KRJQwkNjfFyWfU0=) 2: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (hash: i37T+miB19JllsQUkIFRFN9qItWKSwoaTSynWV3QKsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 20:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2198 (0x896) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: Apr 20 20:03:31 2026 GMT Not After : Apr 27 20:03:31 2026 GMT Subject: CN=69e68693-a062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f4:2e:89:12:34:ea:b1:d3:af:c4:8e:fa:1b: 7b:1f:db:6d:4d:ba:fa:9d:33:2d:e1:77:54:95:c7: f1:46:4a:69:8f:f3:6f:c4:26:5a:8a:e8:c8:c0:e5: 12:72:64:26:1a:9e:62:29:4a:95:01:91:7c:9a:50: 09:e2:79:a9:08:d3:e7:c8:41:0f:0c:bb:d7:f1:00: c8:4b:1d:c5:9d:ce:68:4a:96:31:a0:4f:8a:eb:cb: f5:27:4a:dc:21:b4:b2:e2:51:4d:83:e6:1f:08:82: 48:a0:77:5f:9f:70:5e:01:e2:80:9c:49:d3:99:63: b0:45:18:55:12:1d:94:70:eb:49:72:eb:4e:04:a3: 1b:d0:3a:83:5c:d5:b6:83:ad:05:ec:f6:7b:89:b1: f1:53:c9:ed:50:82:3b:9a:f9:01:c5:0b:d2:fa:4a: d3:15:a7:cd:79:88:12:03:05:15:1e:d6:22:dc:c8: 18:dc:38:b2:08:88:01:89:24:bf:ca:2b:78:eb:8a: 97:38:8b:92:a0:e7:36:b5:7c:de:76:d3:5b:be:5f: 1f:66:63:27:e7:1b:93:f5:39:f8:21:86:9b:35:d6: 41:35:d5:ae:dd:31:9e:88:14:86:8b:25:83:ea:aa: 30:80:bf:82:b0:54:50:78:16:54:ba:96:f4:89:7a: 65:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DF:D3:41:B9:97:09:F7:92:1A:E4:9C:A0:02:29:D9:5C:1D:C5:0E X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:3b:59:02:09:37:35:ba:95:8c:71:55:90:c6:5a:1c:c8:b4: 8d:3d:26:a0:f0:b5:c1:7b:20:db:56:df:c4:3e:13:e1:96:70: 65:ec:f0:fc:19:d7:81:3d:bc:79:c6:ae:ea:96:f0:b9:a0:77: b0:06:03:c6:18:67:7d:fe:8d:af:2d:b0:a1:96:22:31:3c:83: 3a:a8:cc:b2:11:c2:76:1d:c6:f2:6c:1c:70:5a:40:07:f1:f4: 4f:8b:e7:5f:ca:8a:70:ed:45:17:83:db:c0:fd:a3:1a:d5:3b: 0b:74:9a:eb:51:8e:5c:65:78:19:7c:4e:29:9d:00:65:15:bd: 34:b7:1a:20:ab:7b:49:fb:8f:1c:a5:62:43:4c:27:89:aa:0c: 2e:a3:e2:5a:dc:0d:84:87:74:24:30:d7:1f:fc:2c:09:f2:8b: 11:be:4f:01:73:21:1d:a2:6e:06:db:ea:c8:31:6e:60:59:ae: 90:52:fc:21:4b:12:45:c6:a4:69:d4:3c:7a:db:d3:14:ff:d7: 9a:1b:53:f9:ad:56:7d:08:ba:5d:9d:cd:98:a8:8d:13:e9:56: 17:d7:e6:17:9d:00:12:f4:f7:41:b8:d0:fa:f9:bb:bb:4b:1a: 47:7a:9e:bf:6c:59:c0:70:7c:86:8a:9b:1e:94:b0:35:e1:25: df:b9:ce:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjYwNDIwMjAwMzMxWhcNMjYwNDI3MjAwMzMxWjAYMRYwFAYD VQQDEw02OWU2ODY5My1hMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi/QuiRI06rHTr8SO+ht7H9ttTbr6nTMt4XdUlcfxRkppj/NvxCZaiujIwOUS cmQmGp5iKUqVAZF8mlAJ4nmpCNPnyEEPDLvX8QDISx3Fnc5oSpYxoE+K68v1J0rc IbSy4lFNg+YfCIJIoHdfn3BeAeKAnEnTmWOwRRhVEh2UcOtJcutOBKMb0DqDXNW2 g60F7PZ7ibHxU8ntUII7mvkBxQvS+krTFafNeYgSAwUVHtYi3MgY3DiyCIgBiSS/ yit464qXOIuSoOc2tXzedtNbvl8fZmMn5xuT9Tn4IYabNdZBNdWu3TGeiBSGiyWD 6qowgL+CsFRQeBZUupb0iXpl2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLXf00G5 lwn3khrknKACKdlcHcUOMB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yNTEwQjRFNkYwRkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2Jk WnBWTlZ4aWoyY3o1dUwtSlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfTtZAgk3NbqVjHFVkMZaHMi0jT0moPC1wXsg21bfxD4T4ZZwZezw/BnXgT28 ecau6pbwuaB3sAYDxhhnff6Nry2woZYiMTyDOqjMshHCdh3G8mwccFpAB/H0T4vn X8qKcO1FF4PbwP2jGtU7C3Sa61GOXGV4GXxOKZ0AZRW9NLcaIKt7SfuPHKViQ0wn iaoMLqPiWtwNhId0JDDXH/wsCfKLEb5PAXMhHaJuBtvqyDFuYFmukFL8IUsSRcak adQ8etvTFP/XmhtT+a1WfQi6XZ3NmKiNE+lWF9fmF50AEvT3QbjQ+vm7u0saR3qe v2xZwHB8hoqbHpSwNeEl37nOYQ== -----END CERTIFICATE-----Generated at Tue Apr 21 19:04:07 2026 by rpki-client