$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: o0XlzJ1Dpz+vvMQ6reHFCLIvseEdbfGffJwInrmHhfI= Subject key identifier: 21:CA:AE:23:EC:65:8B:14:88:AC:8B:8D:91:4F:42:98:A6:85:3B:62 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: 0144 Signing time: Sun 05 Apr 2026 04:44:25 +0000 Manifest this update: Sun 05 Apr 2026 04:44:25 +0000 Manifest next update: Sun 12 Apr 2026 04:44:25 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: sQVCCLZpv/U3yQ/aEefz1ffTUUI7xgBf6rpwCJisFlg=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: K4s4bQ+AZEMbINRSOhh8kAqaJQUKtCHKATxaJcI+fSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Apr 5 04:44:25 2026 GMT Not After : Apr 12 04:44:25 2026 GMT Subject: CN=69d1e8a9-3ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0c:7a:ce:ba:48:aa:7a:02:99:a8:42:19:91: a3:9b:75:d7:2e:dc:3e:ec:1a:f0:21:25:c5:d2:8e: 16:25:65:c4:91:e0:ef:0e:61:61:6e:83:25:ea:de: 52:ac:fc:e2:ed:aa:17:19:2e:cc:f4:77:31:9d:f6: ff:22:0c:c5:97:c1:54:74:ea:2f:cf:e2:aa:0d:44: 15:7c:9e:73:44:23:d9:8c:7a:ad:94:08:77:6a:ef: 7b:85:85:2e:b6:3f:a8:a1:3e:39:8e:06:bb:94:5b: 1f:f1:98:a4:1a:42:57:22:d2:3a:0a:9b:d4:fc:89: ba:58:61:68:5f:78:56:12:13:bf:c8:b7:00:69:4f: 17:5e:24:78:08:58:53:c2:57:f3:ec:b5:63:01:b7: 97:a2:25:30:47:7a:31:32:1c:b3:7b:95:fa:c2:02: b9:3d:d3:43:db:0c:6a:fd:58:47:4a:ba:fe:f1:fa: 17:d1:cb:6a:1c:94:cd:73:de:9e:d8:b7:0f:bc:68: f9:29:7a:ea:14:a1:3b:70:81:0e:07:3c:32:be:da: f8:a4:86:84:dc:9e:3c:8c:94:7c:fc:d4:df:3f:e3: b9:2c:e8:32:6e:22:21:57:a6:a5:05:77:fc:f3:d8: 1c:00:ac:ab:71:39:ee:91:2b:5c:08:6b:07:5f:17: f2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CA:AE:23:EC:65:8B:14:88:AC:8B:8D:91:4F:42:98:A6:85:3B:62 X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:1e:56:2e:3d:9c:a2:9c:96:c2:db:9f:6b:bb:ff:40:bb:d0: e3:f6:39:e9:04:93:d3:75:ff:30:c9:69:cb:91:09:11:ff:08: 70:97:f8:a2:bf:91:84:33:bd:e6:01:16:e8:9e:53:0a:81:d3: a6:6e:b5:6f:b9:ee:7a:58:c7:93:4f:3d:68:39:ae:f4:97:96: c3:d2:9e:3f:9a:e3:6d:ce:69:80:a5:80:b6:57:51:34:6a:d1: fc:dd:b3:d3:73:de:c3:cd:1e:37:49:72:22:24:ac:8e:31:32: ba:eb:d1:d0:08:4f:00:de:59:50:d9:e1:d6:7d:48:61:99:49: 33:e8:b5:cd:c0:02:a1:70:ca:c2:8a:03:81:ca:ea:29:91:15: b1:e9:2d:e1:98:8e:b6:4b:03:bb:38:01:dd:c5:cc:01:83:2f: 95:2e:a2:5c:94:a4:e9:7b:b6:86:7d:39:5a:fc:39:6e:79:8a: fb:eb:a0:ee:1e:98:7f:c6:72:8b:51:d9:3f:58:3e:54:3b:7f: aa:69:a6:ea:7b:5f:30:58:da:2c:85:0b:c5:6d:a3:75:f5:54: 8b:3e:6e:53:1f:74:8f:e5:e3:ad:7b:62:64:e0:19:cd:19:98: 5e:94:b1:6c:25:ec:bb:6f:84:70:40:94:24:ba:85:48:1a:e3: e1:02:12:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjYwNDA1MDQ0NDI1WhcNMjYwNDEyMDQ0NDI1WjAYMRYwFAYD VQQDEw02OWQxZThhOS0zZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgx6zrpIqnoCmahCGZGjm3XXLtw+7BrwISXF0o4WJWXEkeDvDmFhboMl6t5S rPzi7aoXGS7M9Hcxnfb/IgzFl8FUdOovz+KqDUQVfJ5zRCPZjHqtlAh3au97hYUu tj+ooT45jga7lFsf8ZikGkJXItI6CpvU/Im6WGFoX3hWEhO/yLcAaU8XXiR4CFhT wlfz7LVjAbeXoiUwR3oxMhyze5X6wgK5PdND2wxq/VhHSrr+8foX0ctqHJTNc96e 2LcPvGj5KXrqFKE7cIEOBzwyvtr4pIaE3J48jJR8/NTfP+O5LOgybiIhV6alBXf8 89gcAKyrcTnukStcCGsHXxfyuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCHKriPs ZYsUiKyLjZFPQpimhTtiMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEx5WLj2copyWwtufa7v/QLvQ4/Y56QST03X/MMlpy5EJEf8IcJf4or+RhDO9 5gEW6J5TCoHTpm61b7nueljHk089aDmu9JeWw9KeP5rjbc5pgKWAtldRNGrR/N2z 03Pew80eN0lyIiSsjjEyuuvR0AhPAN5ZUNnh1n1IYZlJM+i1zcACoXDKwooDgcrq KZEVsekt4ZiOtksDuzgB3cXMAYMvlS6iXJSk6Xu2hn05Wvw5bnmK++ug7h6Yf8Zy i1HZP1g+VDt/qmmm6ntfMFjaLIULxW2jdfVUiz5uUx90j+XjrXtiZOAZzRmYXpSx bCXsu2+EcECUJLqFSBrj4QIS8A== -----END CERTIFICATE-----Generated at Mon Apr 6 16:35:47 2026 by rpki-client