$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: qqBPwX1OnFLtxWscE/ETulO89p5GlprpjHdJRPhCkDc= Subject key identifier: D1:DF:7A:22:55:60:54:9B:D8:38:22:7F:3A:0E:75:99:C1:E3:94:8B Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0CB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C9B Signing time: Sat 04 Apr 2026 18:25:32 +0000 Manifest this update: Sat 04 Apr 2026 18:25:31 +0000 Manifest next update: Sat 11 Apr 2026 18:25:31 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: oWb3AS1NTOttruqsKmHOGmqP3pL/2RRqijF9q66JB+U=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: rh5kanvG5QXPAMOrNiNLJLVHnbyU12f7aHXUzCF2hMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3254 (0xcb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Apr 4 18:25:31 2026 GMT Not After : Apr 11 18:25:31 2026 GMT Subject: CN=69d1579c-026a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:10:d1:be:71:7f:c1:45:96:52:2c:fa:75:9f: 92:d5:73:27:18:f6:4a:ac:bf:c7:11:d3:53:62:ae: c9:db:98:fe:f5:cf:20:81:ed:5c:3d:c3:b5:00:e6: b9:9b:88:6e:5a:13:ac:77:65:15:76:fd:f0:d1:95: c2:76:6c:85:ff:99:0c:35:a3:5d:88:ad:9d:41:6b: 1b:8c:3c:9c:a9:0c:82:e2:62:54:57:f6:fd:2f:63: b2:27:56:be:51:d0:ba:9a:58:62:a4:32:36:1c:21: db:e0:38:42:80:65:85:44:c8:19:85:51:60:d5:a1: f1:c8:57:52:c8:e0:c9:bb:7a:e6:cc:c8:a3:0b:a1: 26:e5:4c:c1:c5:70:af:4c:a9:2f:37:44:2f:99:87: 00:81:e6:ed:3a:a8:f3:ce:64:34:b7:c6:5d:0d:ab: aa:56:2c:6f:78:07:62:85:89:75:6c:c9:31:df:74: 45:a4:a9:1e:3c:ae:5a:af:76:fa:21:44:10:4f:64: d5:0c:53:ed:d9:58:2f:48:ce:68:dd:ca:57:d6:0b: d4:7d:b6:4f:62:bc:f1:ba:f4:ab:b2:f9:08:4f:02: 87:6c:e2:64:ec:05:2f:f4:1e:e9:bf:6b:9c:62:f9: 9e:67:97:d3:d7:03:c0:ab:df:7c:fc:fc:cc:20:62: 93:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:DF:7A:22:55:60:54:9B:D8:38:22:7F:3A:0E:75:99:C1:E3:94:8B X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:cb:b9:8d:aa:4a:5b:08:99:09:b1:bc:b0:b6:81:b8:4e:d9: ca:91:eb:ac:6a:a2:c0:31:f6:64:3e:03:75:4d:c6:a0:69:67: a5:d7:38:0d:f4:5a:e2:47:eb:1e:60:22:ae:2e:05:4f:31:eb: 9b:0c:ff:aa:e5:64:3c:ee:c6:b1:f9:bc:73:57:61:26:36:33: a9:bc:fe:40:23:df:85:06:f8:01:93:fe:25:19:1b:f7:7f:62: 6b:a3:33:38:ff:e2:47:e8:dd:8a:49:2d:69:79:e4:bf:bf:a7: 91:ee:a6:63:3a:c2:e6:fe:fb:30:5e:98:63:22:d8:54:25:d5: 7f:eb:87:17:09:ce:d7:94:f0:4a:70:af:bb:e8:fa:8b:09:8e: 92:c1:2b:bc:da:83:d0:ab:e8:12:d8:c2:56:dc:68:9d:fd:ba: 1e:9c:2a:7a:16:26:97:b3:7e:ba:76:c6:35:97:95:84:8b:f5: e0:a0:1d:12:eb:cf:4e:31:b7:4a:22:30:da:17:87:ab:0c:f1: 1d:e6:6d:66:73:7e:6a:5c:f3:f5:da:9d:27:3b:68:97:8c:07: d9:a7:2a:26:1d:00:3f:8f:6a:98:a5:8f:04:f9:81:38:50:78: f3:06:e8:f2:db:b3:79:10:55:3e:2c:c5:3d:4f:84:bd:8f:ad: 16:f9:53:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjYwNDA0MTgyNTMxWhcNMjYwNDExMTgyNTMxWjAYMRYwFAYD VQQDEw02OWQxNTc5Yy0wMjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBDRvnF/wUWWUiz6dZ+S1XMnGPZKrL/HEdNTYq7J25j+9c8gge1cPcO1AOa5 m4huWhOsd2UVdv3w0ZXCdmyF/5kMNaNdiK2dQWsbjDycqQyC4mJUV/b9L2OyJ1a+ UdC6mlhipDI2HCHb4DhCgGWFRMgZhVFg1aHxyFdSyODJu3rmzMijC6Em5UzBxXCv TKkvN0QvmYcAgebtOqjzzmQ0t8ZdDauqVixveAdihYl1bMkx33RFpKkePK5ar3b6 IUQQT2TVDFPt2VgvSM5o3cpX1gvUfbZPYrzxuvSrsvkITwKHbOJk7AUv9B7pv2uc YvmeZ5fT1wPAq998/PzMIGKThwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNHfeiJV YFSb2DgifzoOdZnB45SLMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg8u5japKWwiZCbG8sLaBuE7ZypHrrGqiwDH2ZD4DdU3GoGlnpdc4DfRa4kfr HmAiri4FTzHrmwz/quVkPO7Gsfm8c1dhJjYzqbz+QCPfhQb4AZP+JRkb939ia6Mz OP/iR+jdikktaXnkv7+nke6mYzrC5v77MF6YYyLYVCXVf+uHFwnO15TwSnCvu+j6 iwmOksErvNqD0KvoEtjCVtxonf26HpwqehYml7N+unbGNZeVhIv14KAdEuvPTjG3 SiIw2heHqwzxHeZtZnN+alzz9dqdJztol4wH2acqJh0AP49qmKWPBPmBOFB48wbo 8tuzeRBVPizFPU+EvY+tFvlTjg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:31 2026 by rpki-client