$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: X89WCNyhgDXiFlu40ILQpgT1krl3Sd8CtTlyzsr2R4k= Subject key identifier: 8D:69:42:C6:FC:32:03:D2:1E:90:5F:2B:E6:69:2E:76:F4:21:CB:FC Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 0884 Signing time: Sat 04 Apr 2026 20:26:23 +0000 Manifest this update: Sat 04 Apr 2026 20:26:22 +0000 Manifest next update: Sat 11 Apr 2026 20:26:22 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: C/E2FcV/XS734W2uoPC+qIjq0ED4XBwK2zBtqr/UOto=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: GJUGEPZQBd+of4IF8rrVMeNhftE2HSnPOO2CkzhhVYM=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: Agm1iHBSDHpN64vkTSxuS0Cc6JpxKn9+gu3qk14vA4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Apr 4 20:26:22 2026 GMT Not After : Apr 11 20:26:22 2026 GMT Subject: CN=69d173ef-cb57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ac:8e:d0:ac:46:9a:f3:1c:3d:ce:54:84:89: 5d:70:16:8d:84:39:11:3d:d0:43:eb:51:a8:19:c1: 5f:3f:28:ec:b1:d6:60:28:ad:d4:47:d5:95:a2:61: 75:1b:7f:89:36:4f:32:84:c8:11:e6:1d:c8:f4:26: f6:43:92:ad:6c:c9:c8:24:60:67:cd:7f:40:e3:39: f4:f9:7a:f8:95:9a:c4:14:a6:e1:0e:ba:f2:a4:e9: fc:48:65:62:5b:96:2e:ff:e7:f1:ea:78:ac:9c:bd: 8c:f7:2c:0a:ab:66:02:2d:eb:07:e6:09:9e:f6:06: d8:69:82:2e:bf:dd:97:83:43:f5:25:8d:f5:d4:9e: c3:66:fa:e5:69:f2:5c:7c:3e:35:37:4c:61:58:36: bb:16:53:db:66:fa:49:21:da:b6:25:0d:23:a4:41: bc:a6:88:fe:2d:9a:26:37:f7:b3:b7:2c:96:84:18: 2a:c9:af:89:a0:2f:b8:74:1f:ad:63:a5:20:9a:07: 74:d5:45:f4:ab:e4:c3:11:b6:71:be:6a:a9:19:2a: e9:aa:e1:d6:71:b1:52:df:76:e4:18:8f:e8:14:0d: 95:1b:7f:5d:87:19:18:49:bc:16:d0:ac:aa:0b:b5: f4:6e:85:bd:4b:6c:f3:7c:46:86:bf:63:4a:1c:6a: fb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:69:42:C6:FC:32:03:D2:1E:90:5F:2B:E6:69:2E:76:F4:21:CB:FC X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:94:88:7a:41:06:14:16:d1:73:84:2b:b6:ea:54:10:a0:41: 82:b1:59:d1:8d:56:a8:84:ce:91:6a:d3:a0:61:74:ae:97:c8: b4:25:23:ea:69:6b:a6:5b:52:8d:89:86:d3:07:91:71:aa:62: 12:e7:c7:05:bc:a6:ab:b0:a9:88:fd:8b:8c:a2:3f:8e:54:a3: ab:ca:13:7a:55:fa:73:61:e7:f9:c9:ec:d0:3c:e1:93:d5:32: cc:2b:10:cc:eb:b5:f7:8e:96:ba:7f:7b:9d:83:ae:df:7c:f1: 3b:98:f0:b6:ed:49:32:ef:b9:f5:69:be:98:d9:17:21:10:b9: cd:be:66:87:77:76:55:d8:34:8a:e0:e5:c9:66:52:88:0d:54: e8:f8:c5:8e:f7:95:c1:0d:07:a8:66:6c:6c:5c:c4:ee:35:54: 45:1b:27:57:9b:39:80:b5:7a:98:e0:a7:63:e8:15:94:e1:ea: 0e:63:6b:0b:a2:6a:17:ed:ff:28:b1:48:fe:86:2f:0d:27:ce: 78:fc:09:48:47:60:1d:13:af:14:75:0f:68:58:d7:35:d3:f1: 60:86:b8:50:e9:9e:09:bf:1c:2c:e5:f9:ba:7b:9f:79:56:b6: 99:f3:71:ea:b8:5b:85:ef:ac:14:32:3a:af:e6:60:d3:b3:7f: 78:39:b9:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjYwNDA0MjAyNjIyWhcNMjYwNDExMjAyNjIyWjAYMRYwFAYD VQQDEw02OWQxNzNlZi1jYjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlayO0KxGmvMcPc5UhIldcBaNhDkRPdBD61GoGcFfPyjssdZgKK3UR9WVomF1 G3+JNk8yhMgR5h3I9Cb2Q5KtbMnIJGBnzX9A4zn0+Xr4lZrEFKbhDrrypOn8SGVi W5Yu/+fx6nisnL2M9ywKq2YCLesH5gme9gbYaYIuv92Xg0P1JY311J7DZvrlafJc fD41N0xhWDa7FlPbZvpJIdq2JQ0jpEG8poj+LZomN/eztyyWhBgqya+JoC+4dB+t Y6Ugmgd01UX0q+TDEbZxvmqpGSrpquHWcbFS33bkGI/oFA2VG39dhxkYSbwW0Kyq C7X0boW9S2zzfEaGv2NKHGr7vQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI1pQsb8 MgPSHpBfK+ZpLnb0Icv8MB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtJSIekEGFBbRc4QrtupUEKBBgrFZ0Y1WqITOkWrToGF0rpfItCUj6mlrpltS jYmG0weRcapiEufHBbymq7CpiP2LjKI/jlSjq8oTelX6c2Hn+cns0Dzhk9UyzCsQ zOu1946Wun97nYOu33zxO5jwtu1JMu+59Wm+mNkXIRC5zb5mh3d2Vdg0iuDlyWZS iA1U6PjFjveVwQ0HqGZsbFzE7jVURRsnV5s5gLV6mOCnY+gVlOHqDmNrC6JqF+3/ KLFI/oYvDSfOePwJSEdgHROvFHUPaFjXNdPxYIa4UOmeCb8cLOX5unufeVa2mfNx 6rhbhe+sFDI6r+Zg07N/eDm5aQ== -----END CERTIFICATE-----Generated at Mon Apr 6 13:55:26 2026 by rpki-client