$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: OlUovujm5+1S6BlrBCmSSlwM02w01nh4G3EwcsJNcRA= Subject key identifier: AB:F9:33:F5:99:43:98:9D:7A:5F:5E:6E:A4:9A:A3:DE:86:DF:F3:88 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E63 Signing time: Sat 04 Apr 2026 15:26:28 +0000 Manifest this update: Sat 04 Apr 2026 15:26:28 +0000 Manifest next update: Sat 11 Apr 2026 15:26:28 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: z8O722qt4d4tC6UU/HLX9nFe9M/9z4/mWYtWp41kYKk=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: 6f1TkFWNlMl/F/acGbghOLoUP+OqCJaMnvA5r+odhLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11906 (0x2e82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Apr 4 15:26:28 2026 GMT Not After : Apr 11 15:26:28 2026 GMT Subject: CN=69d12da4-11e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2d:5d:81:f8:78:61:22:1e:0c:04:24:38:f8: 7a:34:8f:d0:ad:6d:8b:70:3c:ec:70:da:c0:b9:03: cb:16:9d:22:a1:ad:83:ec:e9:c3:ef:dd:df:40:3f: e7:de:ac:8a:59:c1:4a:1f:59:d6:91:b8:41:00:45: 28:90:ed:a8:8a:b8:7d:c1:a4:9e:20:00:f6:35:6a: b6:b5:bd:15:71:bc:c9:81:98:c6:9a:cd:dc:82:43: 68:3c:a6:bc:97:17:80:46:6e:d8:a7:be:6b:3a:e4: 27:d4:52:19:61:d6:aa:91:f5:37:15:c8:ad:0a:b8: 16:5e:ff:fb:d0:4d:f2:bd:7e:9b:8c:2b:d2:2d:89: fa:11:cb:72:d5:a6:b7:64:f3:ce:3b:ea:1e:60:22: 5b:19:8a:b2:15:32:81:bd:6c:2a:8c:07:d7:07:f9: ec:28:98:b1:03:6a:4c:d0:2a:f7:a6:d8:f6:a5:ac: d9:9b:8d:67:85:76:72:41:14:ac:da:d2:9d:40:fe: b4:f1:c0:c5:f0:9a:6b:59:46:a9:be:21:07:aa:a0: 5a:4c:95:e3:f7:7f:cc:b6:e5:a6:4c:17:c0:5b:72: b7:f2:ab:d8:21:e1:3d:1f:a8:50:50:aa:ff:25:a7: 91:80:6b:0f:a6:64:42:b2:dc:8d:fc:a9:f6:89:15: e1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F9:33:F5:99:43:98:9D:7A:5F:5E:6E:A4:9A:A3:DE:86:DF:F3:88 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:a1:16:0d:b7:da:3b:fd:1f:a3:19:65:a8:21:e7:f8:f0:77: 78:40:55:ab:66:59:66:01:87:47:f7:84:df:69:e3:a6:50:4a: fe:f6:c2:fb:cd:b8:5d:d8:45:f6:4f:83:f4:15:a0:0e:6c:a4: 98:ac:7d:37:1b:2f:40:3d:e4:ce:58:74:62:7e:26:2d:0d:de: da:30:e2:7a:ac:62:e7:f1:f5:a7:14:8a:fa:a9:77:57:f3:3e: cb:db:b2:14:18:9b:68:55:24:3e:f5:aa:07:ea:b6:8a:55:f5: 41:f5:ee:ed:5f:58:02:90:1a:74:48:3c:80:9c:10:d9:60:eb: 63:16:06:a6:6a:a2:e4:4d:44:5f:87:86:96:11:cc:60:1a:a2: 7d:1a:b9:cc:31:fc:03:b1:1d:ee:c8:ea:03:97:35:ba:3d:18: e8:39:17:1d:35:21:f7:b9:40:87:34:ec:ff:a8:f7:d0:5e:4b: f0:c2:5d:2b:df:0a:f3:d4:41:86:c4:84:90:a7:38:7e:e6:3a: df:7e:9c:4b:54:9f:6a:58:dc:39:6c:3c:5b:69:07:73:dc:16: c0:ef:02:87:65:be:e0:e6:c2:e6:e5:58:61:9d:de:61:99:42: 2d:58:61:e2:b9:b5:0e:15:30:48:84:61:ad:1f:ef:17:52:88: fb:f2:6c:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjYwNDA0MTUyNjI4WhcNMjYwNDExMTUyNjI4WjAYMRYwFAYD VQQDEw02OWQxMmRhNC0xMWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzS1dgfh4YSIeDAQkOPh6NI/QrW2LcDzscNrAuQPLFp0ioa2D7OnD793fQD/n 3qyKWcFKH1nWkbhBAEUokO2oirh9waSeIAD2NWq2tb0VcbzJgZjGms3cgkNoPKa8 lxeARm7Yp75rOuQn1FIZYdaqkfU3FcitCrgWXv/70E3yvX6bjCvSLYn6Ecty1aa3 ZPPOO+oeYCJbGYqyFTKBvWwqjAfXB/nsKJixA2pM0Cr3ptj2pazZm41nhXZyQRSs 2tKdQP608cDF8JprWUapviEHqqBaTJXj93/MtuWmTBfAW3K38qvYIeE9H6hQUKr/ JaeRgGsPpmRCstyN/Kn2iRXhwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKv5M/WZ Q5idel9ebqSao96G3/OIMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvaEWDbfaO/0foxllqCHn+PB3eEBVq2ZZZgGHR/eE32njplBK/vbC+824XdhF 9k+D9BWgDmykmKx9NxsvQD3kzlh0Yn4mLQ3e2jDieqxi5/H1pxSK+ql3V/M+y9uy FBibaFUkPvWqB+q2ilX1QfXu7V9YApAadEg8gJwQ2WDrYxYGpmqi5E1EX4eGlhHM YBqifRq5zDH8A7Ed7sjqA5c1uj0Y6DkXHTUh97lAhzTs/6j30F5L8MJdK98K89RB hsSEkKc4fuY6336cS1SfaljcOWw8W2kHc9wWwO8Ch2W+4ObC5uVYYZ3eYZlCLVhh 4rm1DhUwSIRhrR/vF1KI+/JsfQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:00 2026 by rpki-client