$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: Au+A0b/0MLEurM7+8Net4XO03YYVelaQUx4O21Ds22k= Subject key identifier: B5:BF:7E:37:81:18:CA:D9:37:73:CE:6A:F7:AE:6C:02:B0:6A:05:C1 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 0917 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 090F Signing time: Tue 14 Apr 2026 20:10:23 +0000 Manifest this update: Tue 14 Apr 2026 20:10:23 +0000 Manifest next update: Tue 21 Apr 2026 20:10:23 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: 4m+2UCZUgFdHi3XsUAy4iVTiMztzHEchPCDkDbgIs3U=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: z8K9NFfgSR+lYBTmglUzfygULgy/XVJpR7AJN5E7qvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Apr 14 20:10:23 2026 GMT Not After : Apr 21 20:10:23 2026 GMT Subject: CN=69de9f2f-14ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ef:f6:5d:49:77:c9:e5:2a:63:d0:18:83:ab: 4b:9f:04:49:03:ee:5e:b5:d7:ab:48:bb:61:00:34: 8c:a5:1e:44:4f:d0:d0:55:b2:03:a5:4b:e2:96:ac: a2:4d:b9:92:b0:0b:e5:e0:54:75:2b:b3:97:8d:80: 7c:ed:19:10:3b:33:2f:ce:f3:83:b3:36:30:a5:54: 60:76:98:9c:22:57:4f:91:03:92:86:ed:79:ff:ca: 54:a5:24:61:f5:81:b6:6b:9d:42:0d:8a:be:81:1e: e3:86:74:fb:9f:c6:96:55:2f:57:d8:89:2f:54:30: 38:c4:68:e9:88:86:ea:15:3c:f0:ce:46:0f:a2:92: 01:f7:af:5e:34:47:71:6b:69:02:97:65:38:9e:3e: a5:99:f9:92:11:0c:6a:59:89:e2:14:83:b7:4b:00: 85:84:c8:a6:a4:35:a2:52:b2:49:3e:04:1f:82:a0: b9:93:32:02:a1:e4:1a:bb:28:e1:e5:3d:ff:3f:b4: 8b:6c:12:cd:06:a7:d9:c2:1c:ec:e0:7f:87:de:39: ea:ec:c8:0e:74:2d:23:f2:2d:27:5e:c7:6d:8b:e2: 52:80:54:2c:3d:02:eb:37:b8:39:54:1f:f4:d1:1c: 0a:c0:48:fd:68:6f:16:e4:57:34:78:28:96:1e:59: d5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BF:7E:37:81:18:CA:D9:37:73:CE:6A:F7:AE:6C:02:B0:6A:05:C1 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:2d:38:85:b1:fd:0d:2b:fc:aa:e4:0c:ec:41:c6:8c:6d:5f: ef:36:05:18:7c:f6:2b:13:df:4d:63:83:91:fe:dc:7f:7e:cc: 27:e7:10:91:38:78:61:fc:60:31:06:79:50:ea:03:8e:0e:70: dc:c8:60:ef:6d:f4:c6:7a:c9:63:c1:70:35:55:ac:f2:97:9b: 7c:31:e9:8d:68:b6:9a:90:06:92:ff:51:2c:4e:ee:34:e6:29: bc:1d:50:72:10:90:ea:f8:aa:75:84:e4:b8:63:20:82:1c:2a: 61:90:fe:ea:a1:65:b2:df:67:45:80:f4:c6:46:2e:ba:ca:f6: 0f:19:f6:0e:fb:a6:72:52:70:3c:f2:5f:f8:75:49:f9:f6:b1: b9:37:6d:16:1f:f8:86:10:37:62:d3:73:81:10:da:a4:e0:85: 38:1b:1b:43:a0:c7:7c:f6:8f:de:5b:25:48:1a:7e:76:12:59: ee:1b:54:ec:5c:99:cf:fc:54:bd:20:49:55:53:f2:1b:11:5d: 38:e0:bd:da:46:dd:51:5b:b7:66:38:33:d8:40:f3:6a:fb:fa: a2:09:69:ed:e4:6f:76:8a:82:c4:20:36:26:07:bb:0b:9f:36: 6d:b8:5c:2d:b8:ae:62:7f:aa:96:ca:cb:13:98:95:2c:22:cd: 7a:96:80:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjYwNDE0MjAxMDIzWhcNMjYwNDIxMjAxMDIzWjAYMRYwFAYD VQQDEw02OWRlOWYyZi0xNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlO/2XUl3yeUqY9AYg6tLnwRJA+5etderSLthADSMpR5ET9DQVbIDpUvilqyi TbmSsAvl4FR1K7OXjYB87RkQOzMvzvODszYwpVRgdpicIldPkQOShu15/8pUpSRh 9YG2a51CDYq+gR7jhnT7n8aWVS9X2IkvVDA4xGjpiIbqFTzwzkYPopIB969eNEdx a2kCl2U4nj6lmfmSEQxqWYniFIO3SwCFhMimpDWiUrJJPgQfgqC5kzICoeQauyjh 5T3/P7SLbBLNBqfZwhzs4H+H3jnq7MgOdC0j8i0nXsdti+JSgFQsPQLrN7g5VB/0 0RwKwEj9aG8W5Fc0eCiWHlnV6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLW/fjeB GMrZN3POaveubAKwagXBMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIi04hbH9DSv8quQM7EHGjG1f7zYFGHz2KxPfTWODkf7cf37MJ+cQkTh4Yfxg MQZ5UOoDjg5w3Mhg7230xnrJY8FwNVWs8pebfDHpjWi2mpAGkv9RLE7uNOYpvB1Q chCQ6viqdYTkuGMgghwqYZD+6qFlst9nRYD0xkYuusr2Dxn2DvumclJwPPJf+HVJ +faxuTdtFh/4hhA3YtNzgRDapOCFOBsbQ6DHfPaP3lslSBp+dhJZ7htU7FyZz/xU vSBJVVPyGxFdOOC92kbdUVu3Zjgz2EDzavv6oglp7eRvdoqCxCA2Jge7C582bbhc LbiuYn+qlsrLE5iVLCLNepaANQ== -----END CERTIFICATE-----Generated at Wed Apr 15 21:06:59 2026 by rpki-client