$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft File: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft (raw, json) Hash identifier: TYOABW5iJVp88hWSvlktEUVJUh5D5Bzquw1qDnl03H0= Subject key identifier: 21:7F:8F:4F:9A:79:2F:E2:AA:29:3B:80:2F:82:AB:0E:3D:BC:E3:42 Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0AB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft Manifest number: 0A94 Signing time: Sat 04 Apr 2026 19:21:57 +0000 Manifest this update: Sat 04 Apr 2026 19:21:56 +0000 Manifest next update: Sat 11 Apr 2026 19:21:56 +0000 Files and hashes: 1: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl (hash: /dYN7zbtsHgYxFidptlJTj6a/NCnjxNxfYjaWW7Apak=) 2: 02BA60CCDADF11F08398647877D3641D.roa (hash: 1tpNHg5V2m7AJT6KzHxfBy6gB5PqDPo6eAkyeJw5XNY=) 3: 0166B48CDADF11F08398647877D3641D.roa (hash: ZJV2dmhu0JE10nRhjUYBdcTdypFTIKq4KfcDe8/doJQ=) 4: 722D43AC7A5A11EABD77E486C4F9AE02.roa (hash: 4cAcI5ocqsy1hZe8HsYZTbIwmQxRPKHWv8/zl5w8ZJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2738 (0xab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Apr 4 19:21:56 2026 GMT Not After : Apr 11 19:21:56 2026 GMT Subject: CN=69d164d5-3b03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fb:53:b7:46:57:3f:54:74:68:b3:60:9a:79: e7:8e:b1:94:5a:8a:04:95:6c:73:21:f0:0b:c5:0b: bf:7e:ee:92:6b:e5:4e:ca:4c:ee:55:b2:2d:b6:16: f5:b7:a7:83:9f:a8:01:b5:6b:5b:96:31:86:9f:35: 19:74:21:2e:b5:14:aa:8a:92:2b:e8:f3:94:15:cc: 23:ca:53:3f:ee:21:8d:47:48:69:7c:6a:b3:3e:28: f6:27:8c:af:cb:7e:ce:a9:1a:e0:e3:71:c1:21:2c: f2:e8:e7:d3:20:d2:23:c6:14:33:56:f1:6d:f4:58: c5:58:a0:7c:f2:3a:2d:11:93:53:ad:8d:f6:c8:5d: 29:26:1a:b2:69:45:d9:11:6b:90:bb:28:4b:5b:39: 12:4f:48:58:23:b6:b8:c6:4c:30:de:ad:84:38:e9: b3:d0:f7:5c:95:5b:24:ec:3c:e6:a8:d6:cd:3f:df: ce:f9:b0:ab:da:4b:79:73:b3:a4:3d:15:e5:1a:68: f7:15:43:9a:53:a0:a8:d2:7c:01:87:37:02:87:24: c1:b5:5b:79:87:e1:13:ac:fe:cf:c3:04:53:7b:ca: 4d:98:0d:b4:08:dc:cd:d8:53:1c:65:1a:9d:f1:9b: c8:c0:d5:5c:36:e7:ef:a1:6c:0b:88:2e:a9:39:83: 53:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7F:8F:4F:9A:79:2F:E2:AA:29:3B:80:2F:82:AB:0E:3D:BC:E3:42 X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f5:db:00:e2:e8:85:f0:ba:73:93:f0:b2:cc:e1:1e:5c:f0: 76:6e:9a:59:c3:f1:48:79:e6:4f:2a:62:bd:6b:b6:a5:6b:5c: 26:27:34:1b:49:6d:f6:50:43:0d:d5:3f:e3:2c:9e:6a:bb:53: 88:9b:7a:71:21:59:06:f7:ea:62:b8:66:a1:3c:86:b9:4d:88: 0d:09:c9:af:a1:15:35:5b:ce:36:d4:9b:09:1b:bd:b0:02:a9: 5e:a7:4e:32:39:14:12:63:c2:f1:14:aa:9f:5a:39:da:9e:c6: 02:6b:2d:5a:79:0d:c4:d8:d7:43:e0:11:05:f1:d4:9d:54:38: 64:16:a3:2a:39:99:00:72:9e:82:36:e2:e9:5d:69:48:e8:40: de:8d:33:7b:03:98:f0:5b:e8:69:82:8a:99:22:5f:db:c2:2c: 1f:24:95:bb:a6:f6:ce:87:d6:21:5a:97:31:2c:01:f5:d8:b9: 42:38:15:0a:5e:42:b8:d9:19:42:0c:53:07:b8:cb:f6:a7:19: 3d:b0:cf:e0:eb:ee:1b:85:63:ff:01:2a:60:2c:10:8c:0f:f1: 20:b1:4d:90:8e:a3:53:36:80:0e:69:4e:9b:92:2b:31:bd:83: 3f:6d:48:3c:e6:86:a5:69:64:07:e3:6c:1e:f3:e7:53:b9:35: 5f:71:4b:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjYwNDA0MTkyMTU2WhcNMjYwNDExMTkyMTU2WjAYMRYwFAYD VQQDEw02OWQxNjRkNS0zYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPtTt0ZXP1R0aLNgmnnnjrGUWooElWxzIfALxQu/fu6Sa+VOykzuVbItthb1 t6eDn6gBtWtbljGGnzUZdCEutRSqipIr6POUFcwjylM/7iGNR0hpfGqzPij2J4yv y37OqRrg43HBISzy6OfTINIjxhQzVvFt9FjFWKB88jotEZNTrY32yF0pJhqyaUXZ EWuQuyhLWzkST0hYI7a4xkww3q2EOOmz0PdclVsk7DzmqNbNP9/O+bCr2kt5c7Ok PRXlGmj3FUOaU6Co0nwBhzcChyTBtVt5h+ETrP7PwwRTe8pNmA20CNzN2FMcZRqd 8ZvIwNVcNufvoWwLiC6pOYNTDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCF/j0+a eS/iqik7gC+Cqw49vONCMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlENi85RTY2RjUxMjdBNTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3 YnM1Y3MxVzR4MWNjeVd1blEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYPXbAOLohfC6c5PwsszhHlzwdm6aWcPxSHnmTypivWu2pWtcJic0G0lt9lBD DdU/4yyeartTiJt6cSFZBvfqYrhmoTyGuU2IDQnJr6EVNVvONtSbCRu9sAKpXqdO MjkUEmPC8RSqn1o52p7GAmstWnkNxNjXQ+ARBfHUnVQ4ZBajKjmZAHKegjbi6V1p SOhA3o0zewOY8FvoaYKKmSJf28IsHySVu6b2zofWIVqXMSwB9di5QjgVCl5CuNkZ QgxTB7jL9qcZPbDP4OvuG4Vj/wEqYCwQjA/xILFNkI6jUzaADmlOm5IrMb2DP21I POaGpWlkB+NsHvPnU7k1X3FLgQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:02 2026 by rpki-client