$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft File: 97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json) Hash identifier: U2TQrg5NRb2pO0gWKMKKKTgq9heb84A72uxW+ZanXi0= Subject key identifier: E3:5F:4C:09:82:3F:28:F4:90:F9:58:B0:6B:0A:EE:00:B0:09:06:1A Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE Certificate issuer: /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft Manifest number: 027A Signing time: Sun 05 Apr 2026 01:32:40 +0000 Manifest this update: Sun 05 Apr 2026 01:32:40 +0000 Manifest next update: Sun 12 Apr 2026 01:32:40 +0000 Files and hashes: 1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: RmISl7jyJLF8dHr34tLvshkaUopL1UeP8dyMePFuYM4=) 2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: PQz0xbKbyiBo1K+6lX1c97d5j/JyzQaM1t6G0/g1HBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Validity Not Before: Apr 5 01:32:40 2026 GMT Not After : Apr 12 01:32:40 2026 GMT Subject: CN=69d1bbb8-5159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a4:86:8e:f3:df:e5:16:32:36:ba:1f:86:8b: 99:bb:13:6e:c8:e9:e0:f2:9d:ef:77:41:94:1b:8b: 83:c7:1a:a0:55:07:23:b0:e1:44:64:7d:62:0e:75: a1:2d:43:bf:7f:16:6d:28:c4:a3:32:41:a7:86:0e: 83:d1:9f:b9:c2:9a:ab:07:f0:d3:3f:3f:8d:47:db: 9c:04:06:34:1b:73:c2:66:39:cb:d6:16:63:81:84: 3a:f4:e8:3a:e0:ac:76:cf:98:c2:13:07:e3:ab:25: b0:79:1f:98:9c:1c:91:74:c9:d4:2b:ec:80:10:4d: 61:d4:c0:91:d6:67:12:3b:82:9b:dd:f0:49:01:5f: ef:44:2d:9f:9c:f0:19:53:4b:c2:9e:eb:20:87:21: e6:af:11:74:4e:23:2b:10:d1:8b:66:05:3b:3e:80: 02:d4:db:93:9d:15:a9:ac:63:4e:52:15:7d:a2:8a: 5e:52:99:fd:e3:ac:03:da:41:b9:5a:9a:fa:e2:28: ac:7b:fe:1d:fe:43:4e:3e:4f:ac:c0:9e:ad:54:73: 6e:04:40:f5:0d:5b:45:2a:0f:59:83:92:00:db:03: 56:fc:be:7f:2f:9f:85:c7:a2:1e:0d:49:37:3b:61: d1:f6:0b:20:87:77:69:10:40:ae:bc:c5:c7:60:72: c4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5F:4C:09:82:3F:28:F4:90:F9:58:B0:6B:0A:EE:00:B0:09:06:1A X509v3 Authority Key Identifier: keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:d2:7f:0d:62:f4:5f:70:75:48:2b:64:0a:b5:ba:46:6e:ae: 62:e5:6a:59:fc:35:38:73:b3:d6:a8:a2:87:f4:50:21:cd:62: 63:ae:dc:90:fb:f2:a9:98:3c:48:64:ed:5b:ec:54:9a:00:3e: 0f:ee:5f:4f:84:fb:88:cf:7a:5a:c6:a2:a3:8f:2b:0e:34:d4: f1:7e:fb:2c:13:f3:a7:b9:ee:31:72:23:85:0b:74:68:0a:06: 8f:5c:7c:09:42:dd:3a:88:a7:5c:03:62:e8:16:5f:fc:88:1e: c8:94:ec:06:91:9d:86:c6:07:b1:02:7f:d3:43:13:fc:a1:a2: d3:5b:23:5c:8f:88:4e:bd:91:95:41:a3:ee:53:71:89:f7:f4: 49:a2:d2:eb:27:35:f3:6e:86:14:ea:c1:57:c4:67:29:e4:87: d1:33:e3:57:44:cb:36:86:15:2d:31:98:03:fc:74:4d:ee:a2: fb:c5:85:ce:66:0d:ed:b5:10:7d:df:4d:43:b6:25:8c:f1:b2: 4e:d9:35:e7:35:82:ea:60:6b:20:23:f0:94:46:00:7b:1a:9d: c6:c9:46:24:26:ca:a9:35:ff:5d:f3:cb:56:29:10:02:ff:63: 1d:a1:11:2d:73:7e:c8:f1:1f:23:a7:e8:d1:9b:c4:27:77:9c: 32:ab:ed:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VERDMxMTAvBgNVBAUTKEY3QkIxNzJGQ0FFQ0FGQkY5RUJFRjI1MDhBMTU0MjY0 MzNBRUM5REUwHhcNMjYwNDA1MDEzMjQwWhcNMjYwNDEyMDEzMjQwWjAYMRYwFAYD VQQDEw02OWQxYmJiOC01MTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKSGjvPf5RYyNrofhouZuxNuyOng8p3vd0GUG4uDxxqgVQcjsOFEZH1iDnWh LUO/fxZtKMSjMkGnhg6D0Z+5wpqrB/DTPz+NR9ucBAY0G3PCZjnL1hZjgYQ69Og6 4Kx2z5jCEwfjqyWweR+YnByRdMnUK+yAEE1h1MCR1mcSO4Kb3fBJAV/vRC2fnPAZ U0vCnusghyHmrxF0TiMrENGLZgU7PoAC1NuTnRWprGNOUhV9oopeUpn946wD2kG5 Wpr64iise/4d/kNOPk+swJ6tVHNuBED1DVtFKg9Zg5IA2wNW/L5/L5+Fx6IeDUk3 O2HR9gsgh3dpEECuvMXHYHLEkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONfTAmC Pyj0kPlYsGsK7gCwCQYaMB8GA1UdIwQYMBaAFPe7Fy/K7K+/nr7yUIoVQmQzrsne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUREMy9EMDY2MzMyODcw NUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3LWV2dkpRaWhWQ1pET3V5 ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk3c1hMOHJzcjctZXZ2SlFpaFZDWkRPdXlkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUREMy9EMDY2MzMyODcwNUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3 LWV2dkpRaWhWQ1pET3V5ZDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYdJ/DWL0X3B1SCtkCrW6Rm6uYuVqWfw1OHOz1qiih/RQIc1iY67ckPvyqZg8 SGTtW+xUmgA+D+5fT4T7iM96Wsaio48rDjTU8X77LBPzp7nuMXIjhQt0aAoGj1x8 CULdOoinXANi6BZf/IgeyJTsBpGdhsYHsQJ/00MT/KGi01sjXI+ITr2RlUGj7lNx iff0SaLS6yc1826GFOrBV8RnKeSH0TPjV0TLNoYVLTGYA/x0Te6i+8WFzmYN7bUQ fd9NQ7YljPGyTtk15zWC6mBrICPwlEYAexqdxslGJCbKqTX/XfPLVikQAv9jHaER LXN+yPEfI6fo0ZvEJ3ecMqvtXA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:48 2026 by rpki-client