$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: RJVNSUZMA+fjN2nn5bu5XP+gXkCCwS1umCj9LraHvZo= Subject key identifier: AE:18:23:B1:63:13:D7:AE:9F:2F:4B:14:DE:3C:2A:10:55:00:B2:91 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 046E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 0457 Signing time: Mon 27 Apr 2026 00:09:20 +0000 Manifest this update: Mon 27 Apr 2026 00:09:19 +0000 Manifest next update: Mon 04 May 2026 00:09:19 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: 2pDRTnmMSkKpKdwXxYEgzltEiFerg3R4xGqyq4jKEK0=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: qwlX5vNKgphi0cDeLb8b9XuSIhNZMIjTsz9ccOAsGxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 00:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Apr 27 00:09:19 2026 GMT Not After : May 4 00:09:19 2026 GMT Subject: CN=69eea930-1cb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:64:da:f3:5d:36:2d:46:ea:dc:cc:0d:4e:7d: 1d:bd:5a:eb:c3:ed:fa:83:32:31:3d:d2:f2:b0:a2: 86:8b:a7:52:88:e8:dd:df:78:64:54:02:78:05:f1: a9:f6:4a:47:d9:0c:69:d7:99:0b:c2:58:99:93:cf: 55:9f:2e:cc:4e:3e:0b:d6:f4:89:24:e0:94:10:47: 97:c2:c8:cd:03:1f:23:6b:a5:b7:3f:a4:ca:cc:77: 9c:bb:64:d5:39:4d:e8:48:0e:99:90:e7:27:ae:fc: b4:d7:50:5e:23:78:b9:b4:b5:da:e3:3b:8f:0a:5f: 2e:c4:00:d9:e0:e2:23:7f:c0:de:e7:fc:73:e5:5a: 5c:f5:53:de:e7:d2:dc:2d:a6:7e:ac:c0:30:ec:79: 08:cf:0d:c3:e3:b4:5d:21:8d:18:bc:2c:4f:a9:ae: 3d:ba:59:7a:d1:d4:ce:a5:01:1e:9b:b6:bb:6d:0c: fb:cc:8b:0b:f5:ae:db:12:ff:47:3e:c7:2d:62:95: b5:cc:08:21:59:77:a5:93:25:79:bb:2e:f1:16:e3: 61:5a:8e:ea:35:2f:65:38:9e:3c:b2:82:c2:b0:2c: 0c:71:70:4d:c3:3c:12:44:f3:9a:cf:d8:fb:d0:14: 53:78:3b:28:96:84:29:68:ff:e0:95:86:f2:92:00: 1e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:18:23:B1:63:13:D7:AE:9F:2F:4B:14:DE:3C:2A:10:55:00:B2:91 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:fd:9b:26:96:aa:fc:b9:5d:67:f0:7c:9c:ee:13:20:f1:79: 73:c3:d1:d5:44:e2:d2:54:11:58:21:1b:c4:c0:5a:cc:9d:1c: 9f:9d:f2:db:e6:66:25:dc:e0:b2:2f:30:b6:ed:da:32:0b:0f: f0:bd:1a:dc:ab:9a:d0:39:84:49:cd:ab:d1:f4:67:70:2b:30: 0a:0b:9d:5f:db:ec:6f:84:ce:25:c5:be:43:b5:df:31:61:52: 1d:87:3b:0d:c0:63:00:59:7b:d7:90:4f:78:a9:6b:83:82:da: 1f:43:f1:75:2f:84:12:30:9b:da:82:34:43:59:8c:bc:c3:44: 4d:03:0c:32:1b:a1:bb:08:7e:2a:1c:07:07:99:50:c6:2e:76: f3:43:b6:0f:dd:93:19:72:c1:56:8c:a3:84:4d:70:39:11:d1: 86:29:37:fc:32:04:8b:5e:41:0e:14:2b:f9:5d:c9:22:aa:14: ea:cd:6a:05:e6:be:c3:c3:b8:0b:1c:a0:45:fe:63:b1:01:20: f1:90:c9:a2:14:4b:09:5e:0d:00:68:39:cf:aa:26:c7:cc:73: 37:38:a1:39:fd:73:0d:b7:7f:56:b9:6f:db:98:38:6b:ff:b7: ba:b3:53:f3:38:eb:c2:f5:12:dc:92:18:d1:d7:09:e8:66:e0: b4:93:ab:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjYwNDI3MDAwOTE5WhcNMjYwNTA0MDAwOTE5WjAYMRYwFAYD VQQDEw02OWVlYTkzMC0xY2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGTa8102LUbq3MwNTn0dvVrrw+36gzIxPdLysKKGi6dSiOjd33hkVAJ4BfGp 9kpH2Qxp15kLwliZk89Vny7MTj4L1vSJJOCUEEeXwsjNAx8ja6W3P6TKzHecu2TV OU3oSA6ZkOcnrvy011BeI3i5tLXa4zuPCl8uxADZ4OIjf8De5/xz5Vpc9VPe59Lc LaZ+rMAw7HkIzw3D47RdIY0YvCxPqa49ull60dTOpQEem7a7bQz7zIsL9a7bEv9H PsctYpW1zAghWXelkyV5uy7xFuNhWo7qNS9lOJ48soLCsCwMcXBNwzwSRPOaz9j7 0BRTeDsoloQpaP/glYbykgAe8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK4YI7Fj E9euny9LFN48KhBVALKRMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMv2bJpaq/LldZ/B8nO4TIPF5c8PR1UTi0lQRWCEbxMBazJ0cn53y2+ZmJdzg si8wtu3aMgsP8L0a3Kua0DmESc2r0fRncCswCgudX9vsb4TOJcW+Q7XfMWFSHYc7 DcBjAFl715BPeKlrg4LaH0PxdS+EEjCb2oI0Q1mMvMNETQMMMhuhuwh+KhwHB5lQ xi5280O2D92TGXLBVoyjhE1wORHRhik3/DIEi15BDhQr+V3JIqoU6s1qBea+w8O4 CxygRf5jsQEg8ZDJohRLCV4NAGg5z6omx8xzNzihOf1zDbd/Vrlv25g4a/+3urNT 8zjrwvUS3JIY0dcJ6GbgtJOrfw== -----END CERTIFICATE-----Generated at Mon Apr 27 17:28:17 2026 by rpki-client