$ rpki-client -vvf rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft File: 10XhyGsYGPfQVj-Q6LoSvosa43g.mft (raw, json) Hash identifier: +AC9rhk505kSyisRnVLGHxSxppqILorSlRUf2mEOvis= Subject key identifier: 68:16:C4:B7:5E:61:74:ED:3E:9D:B2:2B:CB:26:A1:8D:E5:E8:8F:2D Authority key identifier: D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 Certificate issuer: /CN=A91D97C4/serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft Manifest number: 01F4 Signing time: Sun 05 Apr 2026 02:48:01 +0000 Manifest this update: Sun 05 Apr 2026 02:48:01 +0000 Manifest next update: Sun 12 Apr 2026 02:48:01 +0000 Files and hashes: 1: 10XhyGsYGPfQVj-Q6LoSvosa43g.crl (hash: 5sz1/o2tLvSwaMhXOzHvJYT3UKwT2PRpNSmRu10HnYQ=) 2: 12DD779467A211EEA8239268C4F9AE02.roa (hash: HImP9VOFFXqJoFjOOctJYpYNAjV+ZRGn0lHyorjq5bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D97C4, serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Validity Not Before: Apr 5 02:48:01 2026 GMT Not After : Apr 12 02:48:01 2026 GMT Subject: CN=69d1cd61-b93b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:44:dd:4c:bd:c6:bc:11:39:83:98:ec:3e:33: 2d:3b:d5:25:4b:97:65:44:69:82:8c:f1:f3:59:24: 70:0b:86:e3:5e:9a:36:8d:4d:7d:61:97:f5:2f:de: 50:77:b6:1d:22:4b:ff:9f:dd:7f:bd:7f:ad:db:6d: 3a:ee:14:2f:95:07:ab:bb:29:21:7f:3d:3d:8b:96: 49:a6:53:1c:91:28:a3:05:94:37:58:5f:dd:5e:3d: a6:97:32:ad:92:73:c5:55:68:2e:ea:44:96:82:22: 58:e5:23:e9:26:ef:cb:c2:40:9e:d6:22:c8:24:3e: 97:d5:82:da:6c:36:7d:ff:8d:19:cf:0c:16:31:d6: ef:de:cd:36:29:40:6f:35:cb:6b:0b:22:92:ba:ff: 79:14:43:ce:ca:5b:56:b2:fb:b0:b3:b5:af:56:6a: bd:d4:f8:68:a7:c9:60:ae:e2:b3:c5:31:86:bc:b5: d6:f3:f9:3f:d5:56:f8:24:8b:8b:f8:c8:d9:51:a1: 78:d3:d3:c5:c4:a5:7e:01:40:68:06:2c:c0:9b:19: e2:15:e1:0a:01:54:f3:dd:6c:cb:7a:9b:da:e7:dd: 75:36:cc:92:0b:c8:51:db:c7:db:6f:84:15:4b:f0: 1b:14:4b:b9:6a:a6:f7:0b:3c:01:b7:8e:20:a8:55: 1f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:16:C4:B7:5E:61:74:ED:3E:9D:B2:2B:CB:26:A1:8D:E5:E8:8F:2D X509v3 Authority Key Identifier: keyid:D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:5b:1c:f6:09:18:d1:55:6f:08:fc:14:a6:0e:c1:6d:d2:54: 92:56:84:2e:5b:76:b0:17:82:aa:ea:2c:d1:63:cc:76:bc:bc: c0:c6:53:21:a8:1c:e9:71:23:c8:7d:37:44:a4:d5:4a:64:0f: ff:e5:f5:bb:95:7f:df:10:b7:7a:3d:bb:6d:3b:82:5f:8c:7a: b0:11:30:00:b9:41:cf:f6:f2:67:eb:50:53:79:ec:00:77:20: 7c:e7:78:9c:12:cb:06:9a:ca:32:a0:cd:9f:95:fa:a0:bb:c9: c0:f0:52:30:8c:05:26:44:31:b0:80:59:51:8c:5d:95:2c:9f: 89:b1:af:3b:da:83:e8:73:8e:db:3a:7a:c3:02:58:4c:e3:c3: 4a:72:7c:01:38:30:05:9f:a6:76:62:e7:a1:34:53:c4:30:52: 9f:a2:63:8f:d6:1e:be:c5:41:23:22:75:70:2c:de:34:12:11: d8:e9:c7:92:ec:20:10:95:e8:f9:e9:be:bc:5b:c9:83:fe:b6: 18:09:ef:d8:8e:b2:66:b3:99:97:fe:35:83:bd:53:8d:3b:ee: 09:a9:b7:0a:e5:2c:18:a0:51:52:f6:fa:16:88:91:78:7d:5b: ca:5a:b3:f9:e5:3f:78:e9:8b:1a:0f:4a:e2:82:98:47:10:67: a4:58:46:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk3QzQxMTAvBgNVBAUTKEQ3NDVFMUM4NkIxODE4RjdEMDU2M0Y5MEU4QkExMkJF OEIxQUUzNzgwHhcNMjYwNDA1MDI0ODAxWhcNMjYwNDEyMDI0ODAxWjAYMRYwFAYD VQQDEw02OWQxY2Q2MS1iOTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUTdTL3GvBE5g5jsPjMtO9UlS5dlRGmCjPHzWSRwC4bjXpo2jU19YZf1L95Q d7YdIkv/n91/vX+t22067hQvlQeruykhfz09i5ZJplMckSijBZQ3WF/dXj2mlzKt knPFVWgu6kSWgiJY5SPpJu/LwkCe1iLIJD6X1YLabDZ9/40ZzwwWMdbv3s02KUBv NctrCyKSuv95FEPOyltWsvuws7WvVmq91Phop8lgruKzxTGGvLXW8/k/1Vb4JIuL +MjZUaF409PFxKV+AUBoBizAmxniFeEKAVTz3WzLepva5911NsySC8hR28fbb4QV S/AbFEu5aqb3CzwBt44gqFUfAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGgWxLde YXTtPp2yK8smoY3l6I8tMB8GA1UdIwQYMBaAFNdF4chrGBj30FY/kOi6Er6LGuN4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTdDNC9DNjNERjIwMDND NjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQZlFWai1RNkxvU3Zvc2E0 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwWGh5R3NZR1BmUVZqLVE2TG9Tdm9zYTQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTdDNC9DNjNERjIwMDNDNjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQ ZlFWai1RNkxvU3Zvc2E0M2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApVsc9gkY0VVvCPwUpg7BbdJUklaELlt2sBeCquos0WPMdry8wMZTIagc6XEj yH03RKTVSmQP/+X1u5V/3xC3ej27bTuCX4x6sBEwALlBz/byZ+tQU3nsAHcgfOd4 nBLLBprKMqDNn5X6oLvJwPBSMIwFJkQxsIBZUYxdlSyfibGvO9qD6HOO2zp6wwJY TOPDSnJ8ATgwBZ+mdmLnoTRTxDBSn6Jjj9YevsVBIyJ1cCzeNBIR2OnHkuwgEJXo +em+vFvJg/62GAnv2I6yZrOZl/41g71TjTvuCam3CuUsGKBRUvb6FoiReH1bylqz +eU/eOmLGg9K4oKYRxBnpFhGbw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:12 2026 by rpki-client