$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft File: _D97sEVCVvMfJcoAhkvDpr11X5Y.mft (raw, json) Hash identifier: nODFZrdgDsGrxi1CT/ezC1atU+3tFwijB30+o61pLns= Subject key identifier: CD:DA:8F:FC:9E:E4:B2:1F:6B:D4:E2:14:D9:89:6A:6D:6E:A7:D3:49 Authority key identifier: FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 Certificate issuer: /CN=A91CE2DE/serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Certificate serial: 02B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft Manifest number: 02AD Signing time: Sun 05 Apr 2026 01:12:38 +0000 Manifest this update: Sun 05 Apr 2026 01:12:37 +0000 Manifest next update: Sun 12 Apr 2026 01:12:37 +0000 Files and hashes: 1: _D97sEVCVvMfJcoAhkvDpr11X5Y.crl (hash: EnDQtenb8QRqWEMCXV3O93pT2YgOxXFb7eL1WqD6cvc=) 2: 97B4F5603B3D11ED822BB46CC4F9AE02.roa (hash: qWq9FBfV0TlO+Nnhl0xmqfZ2SJgk0It8nQYA3EDnxXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE2DE, serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Validity Not Before: Apr 5 01:12:37 2026 GMT Not After : Apr 12 01:12:37 2026 GMT Subject: CN=69d1b705-7f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0e:2b:8c:22:a7:a3:32:dd:31:d8:b0:cc:ab: 30:b9:7d:bb:ea:9c:b8:8e:fe:e5:c9:1c:b7:93:d2: b7:27:89:35:6e:c3:d1:33:cf:7c:79:1d:fa:98:99: 07:1b:b4:dd:e8:ac:b6:91:1d:12:33:d2:b2:dc:d6: 71:15:b7:cb:09:f2:cd:54:b0:04:49:db:10:9b:86: 42:46:40:3b:72:91:ca:16:6b:e0:8a:03:36:7a:b5: da:d7:e2:2c:7e:14:e9:bb:47:9f:89:2b:a0:6e:95: 4e:5a:d3:c6:a7:80:ea:6f:43:25:21:8e:9d:e1:06: 0a:7c:e0:da:fb:14:88:94:69:3a:6d:16:ad:b6:db: cb:b2:f8:95:a9:c8:56:92:dc:89:c1:19:9b:de:c9: cd:91:d2:af:a1:3e:ed:0e:84:85:3d:c1:72:43:9c: b6:db:13:45:1c:77:54:57:5d:10:4c:50:14:19:33: ad:a7:6b:d5:5e:71:fa:38:86:54:aa:88:5f:be:68: 46:79:5e:1b:ef:22:8a:26:c6:c6:e8:b3:48:a7:7a: f8:d2:55:a2:db:f0:ac:e8:85:54:45:cf:18:89:8b: ad:6f:11:2c:fc:f6:be:af:7b:6d:1f:1b:de:6d:23: b8:2a:d6:54:b9:ad:d3:c5:a2:57:38:26:24:5c:cd: 50:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DA:8F:FC:9E:E4:B2:1F:6B:D4:E2:14:D9:89:6A:6D:6E:A7:D3:49 X509v3 Authority Key Identifier: keyid:FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:df:82:26:7f:99:95:a8:ff:f4:1f:f5:d5:a4:5d:e8:20:2a: 6b:3a:00:40:7a:b7:48:08:64:3e:26:08:17:ed:48:94:fc:20: 7c:a5:45:7e:92:ee:be:0b:dc:e8:a5:cb:24:74:8c:3b:44:ac: e9:6f:f9:c5:00:0c:5f:e7:dd:f2:11:90:89:f7:28:24:20:7b: d3:c2:45:33:bd:31:26:a2:a1:cb:57:fa:dc:7d:e3:d9:09:b5: f7:4d:d8:da:b2:de:9a:ac:0a:53:a7:15:51:36:6e:c0:db:83: 8e:90:0a:7d:73:5c:bd:e9:75:e4:bc:cc:9f:c2:e8:74:cc:ef: 85:a5:ba:8a:9c:81:29:18:da:37:44:a4:d7:07:03:51:e6:c0: ed:3e:af:a4:43:9a:65:43:b8:8e:3a:36:8a:c4:fe:7b:6b:52: 88:b3:6a:5e:af:93:ed:ef:96:54:fd:bb:1f:d7:9e:44:10:08: 7c:02:fa:a5:7b:5b:6e:9d:be:60:0d:ea:6c:4a:9f:e4:64:a7: 62:ae:1b:3f:e3:b3:59:48:17:41:4d:d7:1b:36:09:bf:39:35: f9:2e:38:99:f8:be:1b:41:9b:15:3c:54:d7:39:35:fa:55:60: c6:01:75:35:31:93:05:5f:c5:7c:87:a4:9e:d9:2e:91:15:00: dc:22:fd:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyREUxMTAvBgNVBAUTKEZDM0Y3QkIwNDU0MjU2RjMxRjI1Q0EwMDg2NEJDM0E2 QkQ3NTVGOTYwHhcNMjYwNDA1MDExMjM3WhcNMjYwNDEyMDExMjM3WjAYMRYwFAYD VQQDEw02OWQxYjcwNS03ZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw4rjCKnozLdMdiwzKswuX276py4jv7lyRy3k9K3J4k1bsPRM898eR36mJkH G7Td6Ky2kR0SM9Ky3NZxFbfLCfLNVLAESdsQm4ZCRkA7cpHKFmvgigM2erXa1+Is fhTpu0efiSugbpVOWtPGp4Dqb0MlIY6d4QYKfODa+xSIlGk6bRatttvLsviVqchW ktyJwRmb3snNkdKvoT7tDoSFPcFyQ5y22xNFHHdUV10QTFAUGTOtp2vVXnH6OIZU qohfvmhGeV4b7yKKJsbG6LNIp3r40lWi2/Cs6IVURc8YiYutbxEs/Pa+r3ttHxve bSO4KtZUua3TxaJXOCYkXM1QuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3aj/ye 5LIfa9TiFNmJam1up9NJMB8GA1UdIwQYMBaAFPw/e7BFQlbzHyXKAIZLw6a9dV+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTJERS9BQkRFRTg3QTM3 RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2TWZKY29BaGt2RHByMTFY NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EOTdzRVZDVnZNZkpjb0Foa3ZEcHIxMVg1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTJERS9BQkRFRTg3QTM3RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2 TWZKY29BaGt2RHByMTFYNVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF9+CJn+Zlaj/9B/11aRd6CAqazoAQHq3SAhkPiYIF+1IlPwgfKVFfpLuvgvc 6KXLJHSMO0Ss6W/5xQAMX+fd8hGQifcoJCB708JFM70xJqKhy1f63H3j2Qm1903Y 2rLemqwKU6cVUTZuwNuDjpAKfXNcvel15LzMn8LodMzvhaW6ipyBKRjaN0Sk1wcD UebA7T6vpEOaZUO4jjo2isT+e2tSiLNqXq+T7e+WVP27H9eeRBAIfAL6pXtbbp2+ YA3qbEqf5GSnYq4bP+OzWUgXQU3XGzYJvzk1+S44mfi+G0GbFTxU1zk1+lVgxgF1 NTGTBV/FfIekntkukRUA3CL9dw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:01:20 2026 by rpki-client