$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json) Hash identifier: Rs2a164gkryCR7FzyCgbugH/feBjxKGKxPyv/pSag78= Subject key identifier: 00:01:98:15:FD:F7:5A:CF:C6:68:BB:52:7D:D9:A5:5B:21:A3:CE:03 Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft Manifest number: A7 Signing time: Fri 17 Apr 2026 06:59:16 +0000 Manifest this update: Fri 17 Apr 2026 06:59:15 +0000 Manifest next update: Fri 24 Apr 2026 06:59:15 +0000 Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: NdtGBDKBTgzEQcv23wallVoFxaqMzyAf/V576G6yxf4=) 2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: QEFTIDA+TJrcDI4/EvRQfRv5uCDm3GXgS8OiMfubAA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89 Validity Not Before: Apr 17 06:59:15 2026 GMT Not After : Apr 24 06:59:15 2026 GMT Subject: CN=69e1da43-1765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e3:4d:50:25:04:ae:c7:b3:e8:75:ff:44:43: a6:e1:80:66:f3:64:8b:8a:14:1b:7a:25:43:f9:43: 2c:a3:3d:d6:24:1e:08:42:81:ec:8a:78:07:21:b7: 6e:a9:a5:f3:12:30:08:72:da:1b:d0:0c:01:be:0c: e7:a9:7e:fc:c8:78:37:81:8d:06:58:bb:ad:e5:e4: 33:37:4b:f5:ed:f9:73:f3:0c:b7:a4:a7:a0:d0:0d: 70:7f:45:47:8b:a9:76:68:a9:52:0d:d9:5a:2d:e6: d1:74:72:7d:4a:34:9e:71:eb:c2:54:8e:2e:37:8d: 94:af:ec:82:96:33:d8:eb:16:7d:02:d2:59:05:10: 70:9f:23:9e:a2:7e:5e:20:46:86:22:2c:7f:28:6b: 1d:ed:0f:c4:b7:10:41:9f:38:56:55:18:e9:0f:c8: 83:f4:19:b2:15:b6:28:2c:fd:81:7b:f0:22:ba:56: d1:4f:81:82:30:44:22:30:ce:85:45:09:9f:71:0e: 1b:6a:2b:c9:40:38:f4:41:ec:85:65:68:ae:16:ad: 08:5b:05:3c:0b:28:ee:b2:fb:32:25:9c:4a:15:d1: 16:d0:4b:95:6f:2a:14:c9:ed:b0:14:29:28:24:3d: a8:61:ea:93:79:26:e8:e5:50:30:0d:32:aa:d1:15: 4e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:01:98:15:FD:F7:5A:CF:C6:68:BB:52:7D:D9:A5:5B:21:A3:CE:03 X509v3 Authority Key Identifier: keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:d0:b3:8b:31:62:ba:28:c5:d1:ce:51:bf:fe:30:ef:6a:4e: 8b:7b:58:8f:33:99:00:84:c7:bc:84:a8:9d:3e:20:8d:f7:c8: 31:d8:c3:0b:42:d6:f6:91:c8:0d:3c:3e:21:ee:48:03:c7:e2: 39:f9:73:96:7b:37:a7:e3:a8:4c:fc:95:c5:16:64:98:3b:f3: de:1d:7c:e8:94:91:29:9d:98:8c:10:91:dc:c6:1b:dc:7e:27: 5d:f7:49:87:e6:e8:ad:fe:1b:2f:d4:93:17:0c:14:51:4d:7b: a0:b4:e1:c3:1b:34:a8:25:24:3e:56:48:5c:4a:a8:05:08:88: 4e:a4:fa:58:a7:01:b8:1d:61:db:cb:36:43:69:7f:70:ce:7e: bd:c5:8d:12:63:a7:93:f8:6b:83:b6:59:f1:11:7c:a5:b7:18: 05:f2:42:1e:58:0a:f7:66:1e:ae:de:b6:3a:e5:80:d6:70:3e: 20:a0:25:39:af:d4:54:2c:23:f2:4e:a5:41:00:a4:27:51:91: df:33:49:25:76:c8:82:b8:ec:b7:a5:78:83:7f:89:2b:03:7f: b9:ef:18:26:4b:95:24:30:0c:ab:68:5f:ce:9f:88:7f:eb:ce: 8d:bf:da:ec:d2:a6:bd:8f:4d:1e:f8:7a:5a:da:9c:41:f8:d2: 37:5d:4c:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKDIyMjQyOTQ0MTZCODQ2NTcwNjU1NEI1MkNCQzU2RjQ0 OUJDNDZDODkwHhcNMjYwNDE3MDY1OTE1WhcNMjYwNDI0MDY1OTE1WjAYMRYwFAYD VQQDEw02OWUxZGE0My0xNzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuNNUCUErsez6HX/REOm4YBm82SLihQbeiVD+UMsoz3WJB4IQoHsingHIbdu qaXzEjAIctob0AwBvgznqX78yHg3gY0GWLut5eQzN0v17flz8wy3pKeg0A1wf0VH i6l2aKlSDdlaLebRdHJ9SjSecevCVI4uN42Ur+yCljPY6xZ9AtJZBRBwnyOeon5e IEaGIix/KGsd7Q/EtxBBnzhWVRjpD8iD9BmyFbYoLP2Be/AiulbRT4GCMEQiMM6F RQmfcQ4baivJQDj0QeyFZWiuFq0IWwU8CyjusvsyJZxKFdEW0EuVbyoUye2wFCko JD2oYeqTeSbo5VAwDTKq0RVOFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAABmBX9 91rPxmi7Un3ZpVsho84DMB8GA1UdIwQYMBaAFCIkKUQWuEZXBlVLUsvFb0SbxGyJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9FRDBGMTFGNDQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJsY0dWVXRTeThWdlJKdkVi SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lpUXBSQmE0UmxjR1ZVdFN5OFZ2Ukp2RWJJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZDQi9FRDBGMTFGNDQyMDUxMUYwQkY3QTg3MTFDNEY5QUUwMi9JaVFwUkJhNFJs Y0dWVXRTeThWdlJKdkViSWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADdCzizFiuijF0c5Rv/4w72pOi3tYjzOZAITHvISonT4gjffIMdjDC0LW9pHI DTw+Ie5IA8fiOflzlns3p+OoTPyVxRZkmDvz3h186JSRKZ2YjBCR3MYb3H4nXfdJ h+borf4bL9STFwwUUU17oLThwxs0qCUkPlZIXEqoBQiITqT6WKcBuB1h28s2Q2l/ cM5+vcWNEmOnk/hrg7ZZ8RF8pbcYBfJCHlgK92Yert62OuWA1nA+IKAlOa/UVCwj 8k6lQQCkJ1GR3zNJJXbIgrjst6V4g3+JKwN/ue8YJkuVJDAMq2hfzp+If+vOjb/a 7NKmvY9NHvh6WtqcQfjSN11Mag== -----END CERTIFICATE-----Generated at Sat Apr 18 21:04:43 2026 by rpki-client