$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft File: SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft (raw, json) Hash identifier: rn5uswW2lUK9/lPaUbfa3Z4UcxSRIAbjaAurJv1ZvLY= Subject key identifier: 6D:C4:03:6A:8D:DD:C4:EA:7E:1E:CC:DB:62:B7:3B:51:31:11:3C:CC Authority key identifier: 4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 Certificate issuer: /CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Certificate serial: 09D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft Manifest number: 09CD Signing time: Sat 04 Apr 2026 19:42:25 +0000 Manifest this update: Sat 04 Apr 2026 19:42:25 +0000 Manifest next update: Sat 11 Apr 2026 19:42:25 +0000 Files and hashes: 1: SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl (hash: exwLugZDgJXqRP2wMXFDfO70t9i3VphTKGbluRw6Y78=) 2: 1DEAACDA9F8511EABAA10F3BC4F9AE02.roa (hash: XourWZvjWeRYuoG4eJzATWITu2fMjkfcMaCSGMduRx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2518 (0x9d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF364, serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Validity Not Before: Apr 4 19:42:25 2026 GMT Not After : Apr 11 19:42:25 2026 GMT Subject: CN=69d169a1-c512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3d:18:10:67:28:cf:f2:88:2b:5c:5a:2b:7f: b5:15:aa:a5:b3:39:7b:4e:2c:8f:ff:3a:18:7b:25: 22:26:4b:d7:5e:c1:09:53:c2:67:f8:e9:7e:a9:2c: e6:63:60:5c:c1:c8:e1:ac:7c:ce:e6:a0:cd:71:f5: f2:1e:ce:e9:07:45:16:39:72:5b:16:d9:83:04:5d: 66:a4:81:66:2b:e5:b8:66:5f:64:b6:87:90:89:2e: 82:34:ca:d8:48:2e:41:89:cb:b3:43:8a:ae:60:22: fb:f5:36:71:51:58:85:e1:65:de:fc:61:16:80:76: ad:3f:2f:c6:c7:3f:22:01:3f:7f:a5:68:0c:53:ed: 1a:4c:33:eb:0c:9d:08:57:c4:9c:73:97:e0:69:39: 4b:2b:b9:f9:db:30:87:84:14:a6:77:b8:2f:f2:1f: 03:47:8c:11:4f:b7:9d:a3:74:cc:57:69:82:a5:fd: 07:e8:19:48:5b:b2:de:a7:aa:5a:14:02:a9:93:a8: 93:5a:6d:96:82:2c:5c:cc:cc:ad:ef:06:3a:bf:57: 40:1f:6d:bf:99:87:62:24:a0:4b:28:f4:e6:70:a4: 6c:40:71:a3:c1:bf:e4:17:13:f9:de:cf:8f:dc:0f: cb:b0:69:c3:36:1c:e7:63:80:8e:6e:c5:29:37:b4: 5e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C4:03:6A:8D:DD:C4:EA:7E:1E:CC:DB:62:B7:3B:51:31:11:3C:CC X509v3 Authority Key Identifier: keyid:4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:66:e1:9e:7b:f2:8e:14:ca:3d:8a:27:e0:a7:e9:17:2e:7a: ce:c2:6d:48:a6:a3:fc:cb:17:1b:27:29:00:58:c9:29:de:c6: 12:15:7b:44:3b:29:15:eb:49:2c:98:fd:6c:00:22:33:1f:58: 89:f9:5b:94:f6:e7:09:1b:7d:d4:e4:fe:db:73:e4:23:b2:d8: 73:65:75:fd:2f:a3:61:92:d2:0d:9c:73:24:c1:6f:8b:1e:9b: 28:6a:2e:99:b2:db:20:66:6f:18:fb:bf:84:b7:a7:aa:e1:f8: cc:1a:9a:90:6a:a9:12:3e:19:bd:15:9c:21:47:0a:e4:dd:48: 2d:b9:e2:61:a2:61:94:63:9e:1a:b0:15:f4:c6:80:a0:08:c3: 17:d7:34:5d:88:59:4e:08:54:81:55:84:16:9e:f9:3b:3f:ca: c1:25:23:fb:29:76:25:fe:ee:cf:9e:54:1a:b1:c8:e5:45:fd: 51:dd:56:35:9c:9c:84:cc:bc:5d:a8:64:92:89:a6:d3:ed:5c: f9:0a:15:2c:71:2e:b3:81:bd:24:e4:a5:17:53:60:f5:db:e6: aa:53:1d:0c:db:36:9d:ba:22:ef:c6:01:1d:43:6b:51:ba:00: b4:4b:a4:73:44:1b:03:3c:c9:23:af:03:6e:ae:6a:9f:1b:3a: 6b:60:c0:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YzNjQxMTAvBgNVBAUTKDRBNzNCMTZEMkVFOUU5Q0Q0QzNGQzBCRDYxMDkxQzQ4 OTA1M0Q0MzYwHhcNMjYwNDA0MTk0MjI1WhcNMjYwNDExMTk0MjI1WjAYMRYwFAYD VQQDEw02OWQxNjlhMS1jNTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxj0YEGcoz/KIK1xaK3+1Faqlszl7TiyP/zoYeyUiJkvXXsEJU8Jn+Ol+qSzm Y2BcwcjhrHzO5qDNcfXyHs7pB0UWOXJbFtmDBF1mpIFmK+W4Zl9ktoeQiS6CNMrY SC5BicuzQ4quYCL79TZxUViF4WXe/GEWgHatPy/Gxz8iAT9/pWgMU+0aTDPrDJ0I V8Scc5fgaTlLK7n52zCHhBSmd7gv8h8DR4wRT7edo3TMV2mCpf0H6BlIW7Lep6pa FAKpk6iTWm2WgixczMyt7wY6v1dAH22/mYdiJKBLKPTmcKRsQHGjwb/kFxP53s+P 3A/LsGnDNhznY4CObsUpN7ReXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG3EA2qN 3cTqfh7M22K3O1ExETzMMB8GA1UdIwQYMBaAFEpzsW0u6enNTD/AvWEJHEiQU9Q2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjM2NC83MTZBNTlBQzlG ODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZjMU1QOEM5WVFrY1NKQlQx RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuT3hiUzdwNmMxTVA4QzlZUWtjU0pCVDFEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjM2NC83MTZBNTlBQzlGODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZj MU1QOEM5WVFrY1NKQlQxRFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc2bhnnvyjhTKPYon4KfpFy56zsJtSKaj/MsXGycpAFjJKd7GEhV7RDspFetJ LJj9bAAiMx9YiflblPbnCRt91OT+23PkI7LYc2V1/S+jYZLSDZxzJMFvix6bKGou mbLbIGZvGPu/hLenquH4zBqakGqpEj4ZvRWcIUcK5N1ILbniYaJhlGOeGrAV9MaA oAjDF9c0XYhZTghUgVWEFp75Oz/KwSUj+yl2Jf7uz55UGrHI5UX9Ud1WNZychMy8 Xahkkomm0+1c+QoVLHEus4G9JOSlF1Ng9dvmqlMdDNs2nboi78YBHUNrUboAtEuk c0QbAzzJI68Dbq5qnxs6a2DAhw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:52 2026 by rpki-client