$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: CH1CCOOYgrloHcQg0BBcS+o/7g9HpUO/N0EV2CIVyI8= Subject key identifier: 6E:01:6D:BC:44:30:54:EE:A3:14:32:BE:E1:58:0E:85:79:39:E2:94 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0DC9 Signing time: Mon 20 Apr 2026 17:49:32 +0000 Manifest this update: Mon 20 Apr 2026 17:49:31 +0000 Manifest next update: Mon 27 Apr 2026 17:49:31 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: hMaIlgmG6hWLgkdT6oA8/pd0b76uoMZsip0m9MFTL8o=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: FAOH2k3QSSS7t1HJ3yvrPUgVPiND+/x5TUDnE1klS5s=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: 2tWM8vEG9F+dRzyZM43QfG2NHqOSxdnWZ0mFUqy61lM=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: n+1VIRJou+nBlWU6Es4cxB80UK2IiCMsqRaa75g/YvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 17:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3554 (0xde2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Apr 20 17:49:31 2026 GMT Not After : Apr 27 17:49:31 2026 GMT Subject: CN=69e6672b-f680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:24:68:3b:d3:c3:fb:86:40:1c:9f:55:2f: 92:d5:91:f7:54:ce:f7:35:09:da:3d:bf:9e:9c:87: de:4d:30:9b:4d:25:12:87:44:22:ef:2d:67:d4:fa: 26:85:0e:36:65:01:c1:48:8f:7a:cf:05:26:47:75: 5c:4c:db:ae:a7:bb:15:59:3f:56:e8:fc:f5:6d:38: bb:88:82:a4:78:42:86:05:48:ab:ac:c0:8e:10:6e: 62:fe:fe:64:74:0b:93:25:6a:ba:fd:78:33:51:e6: f2:83:45:bf:bd:42:d7:a8:ae:4a:60:88:f4:c4:3d: e6:4c:9b:e4:b6:0c:8a:43:99:df:64:2d:a1:a3:95: 57:cb:23:d5:7d:98:b2:f4:a1:6b:c4:1d:1d:ad:57: 46:a8:25:4e:74:9c:39:0f:5c:dc:9b:83:0e:41:c9: b0:1c:46:1c:7e:80:58:0c:ad:0a:e2:0a:8f:c6:cf: e4:56:d2:7c:f9:12:63:8b:4b:d4:d9:4d:43:20:5f: 05:c9:68:8e:f6:91:36:dc:6c:b6:d8:ed:fc:83:80: 1a:d6:36:e2:d6:bd:4e:71:2a:25:62:15:2b:f6:4a: 72:85:a1:9f:61:c5:91:3f:00:61:72:c8:b9:7c:6f: 07:db:f3:25:c4:50:81:da:31:43:ba:a2:35:2d:9c: 61:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:01:6D:BC:44:30:54:EE:A3:14:32:BE:E1:58:0E:85:79:39:E2:94 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:57:de:da:6b:02:83:c2:f5:9b:15:eb:c2:1e:72:e1:56:49: 71:dc:b3:f0:88:2a:7a:64:90:cb:7f:cc:cf:19:a2:f2:72:a9: f4:1c:0b:33:84:60:cc:bd:39:ba:5d:d0:79:c0:13:1b:10:a6: 41:5a:8d:2c:56:8c:38:31:38:26:aa:c1:68:09:1c:0e:a4:e9: ff:d0:e8:b5:4d:cf:19:8d:d4:ea:1f:0e:26:f7:f9:2c:ef:69: 94:77:ae:ee:c5:24:8c:5f:a8:ab:f3:e8:a2:d9:33:9c:0c:20: 24:47:3c:d3:cd:6f:11:06:98:31:ea:c2:f0:fe:6a:60:98:47: 01:db:3a:c3:16:07:e8:60:9d:6a:a1:0d:f8:bb:fe:06:0a:a7: ff:9c:8b:eb:8b:aa:7c:dc:5c:41:c2:89:75:b9:61:e1:71:a5: 65:a6:98:7f:d4:01:87:5e:31:d0:a3:0b:33:71:ca:d8:d6:1e: d9:f4:50:6b:49:8b:20:57:65:a1:a7:36:b0:79:b7:a8:4c:d8: 01:fc:aa:66:10:4d:c3:56:b4:b9:e8:45:6a:dc:b1:22:70:01: 3e:fd:b7:84:db:2f:df:71:8e:3a:e6:47:96:4b:11:ea:b8:ec: 2c:03:17:1f:3c:6d:00:d4:ec:6d:30:f6:4f:85:28:e4:f6:27: a7:98:35:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjYwNDIwMTc0OTMxWhcNMjYwNDI3MTc0OTMxWjAYMRYwFAYD VQQDEw02OWU2NjcyYi1mNjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBwkaDvTw/uGQByfVS+S1ZH3VM73NQnaPb+enIfeTTCbTSUSh0Qi7y1n1Pom hQ42ZQHBSI96zwUmR3VcTNuup7sVWT9W6Pz1bTi7iIKkeEKGBUirrMCOEG5i/v5k dAuTJWq6/XgzUebyg0W/vULXqK5KYIj0xD3mTJvktgyKQ5nfZC2ho5VXyyPVfZiy 9KFrxB0drVdGqCVOdJw5D1zcm4MOQcmwHEYcfoBYDK0K4gqPxs/kVtJ8+RJji0vU 2U1DIF8FyWiO9pE23Gy22O38g4Aa1jbi1r1OcSolYhUr9kpyhaGfYcWRPwBhcsi5 fG8H2/MlxFCB2jFDuqI1LZxh9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG4BbbxE MFTuoxQyvuFYDoV5OeKUMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnlfe2msCg8L1mxXrwh5y4VZJcdyz8IgqemSQy3/Mzxmi8nKp9BwLM4RgzL05 ul3QecATGxCmQVqNLFaMODE4JqrBaAkcDqTp/9DotU3PGY3U6h8OJvf5LO9plHeu 7sUkjF+oq/PootkznAwgJEc8081vEQaYMerC8P5qYJhHAds6wxYH6GCdaqEN+Lv+ Bgqn/5yL64uqfNxcQcKJdblh4XGlZaaYf9QBh14x0KMLM3HK2NYe2fRQa0mLIFdl oac2sHm3qEzYAfyqZhBNw1a0uehFatyxInABPv23hNsv33GOOuZHlksR6rjsLAMX HzxtANTsbTD2T4Uo5PYnp5g1xQ== -----END CERTIFICATE-----Generated at Wed Apr 22 05:28:15 2026 by rpki-client