$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: L65BUO+MqAgSYOMJoBBBEsVkJIuiAgYllOQoyscBl2A= Subject key identifier: 1D:CE:EA:36:A6:57:CB:CF:69:3D:E2:EC:16:16:1B:E3:A8:5C:76:56 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 056B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 0564 Signing time: Sat 04 Apr 2026 23:08:20 +0000 Manifest this update: Sat 04 Apr 2026 23:08:19 +0000 Manifest next update: Sat 11 Apr 2026 23:08:19 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: g+De5VOGcJvW0d8oTbZao4CU/j4gYVSbTB34aB2gRtY=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: nCKVMdvYXIdspAc77iuSnxMdgz1R5Tl8t85tUkNQu3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Apr 4 23:08:19 2026 GMT Not After : Apr 11 23:08:19 2026 GMT Subject: CN=69d199e4-5d85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:5c:b3:7e:44:ae:80:33:7b:7a:b9:17:e1: 5b:46:ee:8b:43:df:11:64:b8:9d:1a:39:84:5e:00: dd:e9:57:24:ce:19:05:48:d8:5e:fe:e7:eb:70:f1: 09:62:cc:04:70:50:fa:57:df:e4:62:9f:9c:ed:5d: 59:63:1b:a2:c7:1a:a1:e0:06:b8:c0:9b:c0:20:1c: 17:81:52:59:45:b9:0e:ad:2a:ce:19:99:6e:04:3e: 72:80:fd:7d:6d:8b:bf:14:e5:1b:8f:d0:58:00:86: 27:8e:a0:c7:57:63:74:47:ba:4d:04:74:72:b3:73: 29:27:39:55:01:41:fa:29:eb:ce:dd:85:a9:1c:bb: c3:49:7c:0a:81:e3:e9:5a:92:01:46:ec:80:fb:c3: b8:e8:4b:59:87:ef:dd:85:66:ae:5b:01:d6:99:56: 2b:a5:46:1d:c2:65:68:f7:4b:3e:eb:02:d5:f2:c6: 23:4e:a4:3f:4d:e0:42:43:6f:a6:18:fb:4b:c5:6e: 3e:92:f7:a2:53:86:6e:4f:27:9b:eb:8d:24:e6:47: 9f:d1:04:b6:bc:18:40:5c:a4:96:70:38:cc:77:9c: 66:8c:f6:0e:fd:b7:4c:20:69:fb:11:0c:b5:a8:fa: 7d:b5:3b:99:b6:28:38:56:d8:2e:72:34:6f:ec:a9: e4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:CE:EA:36:A6:57:CB:CF:69:3D:E2:EC:16:16:1B:E3:A8:5C:76:56 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:50:4a:0b:44:cf:fe:54:ff:d5:df:55:6f:86:5e:4b:41:4d: e1:1b:37:74:49:7b:c6:be:b4:3e:61:c0:da:9f:e1:05:4f:ad: 90:f2:02:72:9b:85:91:77:48:b6:b2:ed:e1:71:b4:53:32:5a: 42:b8:9c:37:1a:96:2d:f0:d1:ae:86:db:f7:25:c7:16:ce:d4: 31:4e:df:78:ac:86:49:2a:54:f5:37:8b:e5:89:01:02:aa:eb: 3b:aa:22:e1:c6:54:a3:9c:78:ab:a3:24:87:8e:c5:4d:4e:64: 0f:25:7d:09:30:3b:ae:8f:87:af:f9:5f:61:4e:65:6c:50:60: 07:5a:4c:b2:df:b9:12:b1:c4:8f:0a:1b:d3:05:13:dd:b5:33: 48:b5:7f:9a:b8:b7:2c:7d:33:91:c4:3a:04:d0:2c:fb:d2:5b: 89:c1:45:db:56:c3:48:13:1b:7c:c7:f9:da:64:77:bd:4d:dc: 9e:2f:31:13:64:f4:7c:03:a2:c4:64:cf:3d:70:6a:17:bc:4e: 45:34:47:64:ce:25:c2:fe:8d:82:d0:eb:fe:6d:ea:32:a5:3f: 41:1d:83:76:0d:54:48:ca:c7:75:ad:fc:cb:12:a0:db:43:de: 93:ff:92:47:ee:06:88:8b:48:7b:66:1e:a1:50:10:3f:08:38: 97:b4:b5:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjYwNDA0MjMwODE5WhcNMjYwNDExMjMwODE5WjAYMRYwFAYD VQQDEw02OWQxOTllNC01ZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW1cs35EroAze3q5F+FbRu6LQ98RZLidGjmEXgDd6VckzhkFSNhe/ufrcPEJ YswEcFD6V9/kYp+c7V1ZYxuixxqh4Aa4wJvAIBwXgVJZRbkOrSrOGZluBD5ygP19 bYu/FOUbj9BYAIYnjqDHV2N0R7pNBHRys3MpJzlVAUH6KevO3YWpHLvDSXwKgePp WpIBRuyA+8O46EtZh+/dhWauWwHWmVYrpUYdwmVo90s+6wLV8sYjTqQ/TeBCQ2+m GPtLxW4+kveiU4ZuTyeb640k5kef0QS2vBhAXKSWcDjMd5xmjPYO/bdMIGn7EQy1 qPp9tTuZtig4VtgucjRv7Knk7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB3O6jam V8vPaT3i7BYWG+OoXHZWMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhlBKC0TP/lT/1d9Vb4ZeS0FN4Rs3dEl7xr60PmHA2p/hBU+tkPICcpuFkXdI trLt4XG0UzJaQricNxqWLfDRrobb9yXHFs7UMU7feKyGSSpU9TeL5YkBAqrrO6oi 4cZUo5x4q6Mkh47FTU5kDyV9CTA7ro+Hr/lfYU5lbFBgB1pMst+5ErHEjwob0wUT 3bUzSLV/mri3LH0zkcQ6BNAs+9JbicFF21bDSBMbfMf52mR3vU3cni8xE2T0fAOi xGTPPXBqF7xORTRHZM4lwv6NgtDr/m3qMqU/QR2Ddg1USMrHda38yxKg20Pek/+S R+4GiItIe2YeoVAQPwg4l7S1Ng== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:33 2026 by rpki-client