$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: MYk43UkqKesHFZ2PVG7KxND8op/mJQKnrYLPygEQlkg= Subject key identifier: FF:48:29:15:F6:EA:F0:30:E3:F8:39:BC:7A:2D:70:3C:74:CC:65:63 Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0B38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2C8E Signing time: Sat 04 Apr 2026 15:51:14 +0000 Manifest this update: Sat 04 Apr 2026 15:51:13 +0000 Manifest next update: Sat 11 Apr 2026 15:51:13 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: /B2mH+h69Oks+5AhXAYg8sgjzrVEnJgkrgMxhsDniWg=) 2: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (hash: 57YOScYyW25SbkRe4gLEfeAEyJokYAolQdn+dblWiFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2872 (0xb38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Apr 4 15:51:13 2026 GMT Not After : Apr 11 15:51:13 2026 GMT Subject: CN=69d13371-5e02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8f:fc:99:05:56:c6:2b:3e:65:eb:5f:15:e9: f9:e5:21:2f:d6:b7:74:dc:3d:d8:4f:bf:f0:a8:8b: 38:b0:2c:ad:93:e7:7d:ba:48:56:97:b4:c6:99:37: b0:6d:70:68:89:95:ae:ff:0d:81:6c:de:a8:24:58: db:15:df:0a:b2:2a:56:0a:3d:bd:55:72:e4:14:47: da:f2:d6:ad:39:e6:78:90:79:52:32:0a:81:60:24: 49:7a:9c:f0:9c:9e:9d:b1:4b:cb:86:50:c4:9d:89: ac:fe:4e:9a:99:2d:cc:0d:ee:b3:17:83:ee:81:02: d6:52:11:c2:ab:34:80:59:47:be:71:9f:13:5b:cf: f5:2c:9e:0a:0f:2f:29:48:e6:07:9e:1c:da:6e:9a: 12:5e:87:03:f1:bc:cc:ba:8e:f9:41:88:02:79:d4: 0f:b3:fe:50:6f:85:8a:32:16:a6:e7:19:ff:13:e3: c1:22:3c:ba:11:6d:5e:5c:fd:84:f3:5a:e7:b8:98: fb:b7:d2:1d:ad:40:d9:25:12:8b:01:13:b1:94:71: 64:85:71:59:2d:5b:f2:3b:d8:91:68:a5:1e:56:e4: 6e:f0:a4:e3:18:30:a9:19:0c:08:bf:f2:0a:ca:e7: e2:91:ef:34:d2:16:89:2f:b6:28:e3:fc:db:62:1a: e8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:48:29:15:F6:EA:F0:30:E3:F8:39:BC:7A:2D:70:3C:74:CC:65:63 X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:84:ee:82:80:03:c5:78:9a:d5:48:30:fa:ff:98:3d:63:f8: 71:98:24:42:6e:9c:d6:fb:c4:5a:40:97:25:98:8d:5a:e7:e6: 5a:21:24:43:6c:3a:15:1f:34:8d:d4:e0:c1:d8:11:ae:af:a9: d9:76:c6:e2:ee:98:63:83:5a:3e:f1:3d:e0:a6:90:06:ff:c7: 89:a3:2a:b3:75:7d:2e:4b:0e:8d:63:cb:dd:9d:60:83:06:5b: 97:fe:86:fb:11:d2:9c:e9:1a:b8:18:8e:84:07:6e:5d:de:58: f0:10:45:79:98:71:4e:36:e8:db:78:2b:4d:80:04:3d:77:6e: 97:c7:75:33:83:0f:f1:0c:25:7a:6e:a7:15:9d:12:83:fd:71: 1d:64:73:00:5d:76:51:45:9d:32:bf:c4:83:e4:4d:10:44:12: 06:61:b6:3a:a6:69:18:0f:ee:92:72:d2:e7:7e:66:94:ac:bc: d3:95:5c:8d:e0:2a:5b:7b:79:ea:6b:d6:19:d9:49:bb:ff:14: 40:6e:6c:af:67:8c:5e:8d:aa:17:13:89:05:1d:a2:f4:a9:40: c7:e8:c2:ed:cf:79:50:9c:25:5a:87:fe:53:04:fe:a0:ea:87: 96:c8:19:a5:8c:71:eb:23:3f:1f:b4:b7:fe:66:5e:e4:60:98: b6:61:e8:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjYwNDA0MTU1MTEzWhcNMjYwNDExMTU1MTEzWjAYMRYwFAYD VQQDEw02OWQxMzM3MS01ZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI/8mQVWxis+ZetfFen55SEv1rd03D3YT7/wqIs4sCytk+d9ukhWl7TGmTew bXBoiZWu/w2BbN6oJFjbFd8KsipWCj29VXLkFEfa8tatOeZ4kHlSMgqBYCRJepzw nJ6dsUvLhlDEnYms/k6amS3MDe6zF4PugQLWUhHCqzSAWUe+cZ8TW8/1LJ4KDy8p SOYHnhzabpoSXocD8bzMuo75QYgCedQPs/5Qb4WKMham5xn/E+PBIjy6EW1eXP2E 81rnuJj7t9IdrUDZJRKLAROxlHFkhXFZLVvyO9iRaKUeVuRu8KTjGDCpGQwIv/IK yufike800haJL7Yo4/zbYhroswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9IKRX2 6vAw4/g5vHotcDx0zGVjMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARITugoADxXia1Ugw+v+YPWP4cZgkQm6c1vvEWkCXJZiNWufmWiEkQ2w6FR80 jdTgwdgRrq+p2XbG4u6YY4NaPvE94KaQBv/HiaMqs3V9LksOjWPL3Z1ggwZbl/6G +xHSnOkauBiOhAduXd5Y8BBFeZhxTjbo23grTYAEPXdul8d1M4MP8Qwlem6nFZ0S g/1xHWRzAF12UUWdMr/Eg+RNEEQSBmG2OqZpGA/uknLS535mlKy805VcjeAqW3t5 6mvWGdlJu/8UQG5sr2eMXo2qFxOJBR2i9KlAx+jC7c95UJwlWof+UwT+oOqHlsgZ pYxx6yM/H7S3/mZe5GCYtmHoXA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:00 2026 by rpki-client