$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft File: iH554lttHTfvHzG8WgIy-OdlFUU.mft (raw, json) Hash identifier: zTsvMzMHdNYs9C1tReP5Nc7yrk4EF6M8dKWsO5TM1YE= Subject key identifier: 4A:08:6B:7D:9B:FD:02:AF:8C:A1:B2:4D:3E:85:45:67:4C:56:C1:0A Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft Manifest number: 08B0 Signing time: Sat 04 Apr 2026 20:48:21 +0000 Manifest this update: Sat 04 Apr 2026 20:48:21 +0000 Manifest next update: Sat 11 Apr 2026 20:48:21 +0000 Files and hashes: 1: iH554lttHTfvHzG8WgIy-OdlFUU.crl (hash: KKAsH13pqoY8SVgmprT/ymW4GZRIhvNQG3advLjArL8=) 2: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (hash: B8m2ePIUCgEMFkUqEdw865bj5KYfUZe6gW5FvbGFIPQ=) 3: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (hash: w4kX8b17fTC2s9BhESajxJlKj2QyQzvAORehV2EbPSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Apr 4 20:48:21 2026 GMT Not After : Apr 11 20:48:21 2026 GMT Subject: CN=69d17915-17d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:91:08:36:92:2c:42:e8:af:56:4a:39:3d: b4:df:de:58:2e:cc:0b:c7:d3:04:7b:be:52:3e:94: cb:fd:f7:4d:a2:11:ac:9b:46:56:5e:ae:1f:4f:57: 4a:20:54:52:e3:6a:aa:74:30:a6:b9:28:4f:7b:7e: 19:b8:50:d7:50:27:ba:5b:b0:89:ba:aa:46:4c:25: 83:c2:eb:6c:5b:df:d0:dd:6e:bb:d7:a8:7b:b5:ab: 7c:06:d2:d1:a0:15:ae:25:54:7d:43:b2:ab:1f:d7: e2:90:2b:7e:f4:2a:c2:76:db:b2:86:55:1c:60:5e: b9:fd:c0:f1:a6:fc:39:45:06:2c:5d:79:3d:2c:e2: 5d:b0:ad:21:ba:d5:f8:00:19:23:1a:90:21:29:2a: c8:a7:83:b0:a0:4c:ef:1a:ca:c5:95:d0:73:53:a2: 66:2d:a3:4c:65:2a:89:4c:31:fc:63:18:07:c3:a4: fb:f8:c3:1f:53:e1:29:d4:b6:b9:c1:ef:5d:81:19: 49:9c:d8:72:52:d1:28:69:7f:6e:f2:28:8a:d0:c3: 9f:63:a3:7f:78:b4:05:c0:5b:2d:80:3b:c6:9d:d4: 87:e7:5f:e9:31:50:e9:68:c6:41:9b:e9:50:38:3c: 91:3c:ca:6e:64:8d:a6:2c:f4:c1:20:5e:a9:81:95: c5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:08:6B:7D:9B:FD:02:AF:8C:A1:B2:4D:3E:85:45:67:4C:56:C1:0A X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:db:29:11:ab:a0:56:c9:3a:b2:90:aa:23:0a:2e:6c:c4:a5: 80:09:ea:27:86:0b:4f:2b:5f:9b:df:09:02:16:58:a4:19:70: fb:a7:68:29:17:49:81:45:8f:1a:74:8f:4c:e4:76:eb:85:91: 63:68:e9:a6:d3:ad:31:c8:da:9b:b3:7f:2c:d4:a5:c4:44:97: 43:c6:f6:89:35:dd:6f:19:54:99:a6:1d:7c:bd:f3:b0:e7:24: 3f:48:9c:07:3b:fe:7a:65:dc:de:eb:be:5f:ec:2e:15:da:8d: 37:8d:d1:78:9b:2e:85:32:10:3a:e9:06:12:b0:1f:db:73:01: 48:8a:7a:da:e4:96:98:5f:17:f5:6a:07:b7:d7:5f:d5:0c:75: 96:be:e8:ee:f0:17:24:67:7f:b3:df:d1:4a:9d:24:3b:25:84: 06:f4:2e:7b:64:81:58:18:e4:54:fd:50:60:25:09:df:cf:41: d7:cc:35:5f:d3:e4:8a:d3:37:8c:c7:b0:47:98:5b:f3:95:c8: e9:22:58:c6:01:0c:b5:bc:8c:d5:4c:a0:85:41:8f:02:2d:1f: 2f:f0:45:be:5e:92:f3:8b:98:b1:dd:0f:f7:12:4b:65:9c:e6: 7e:39:0a:d9:b0:67:77:d8:ae:49:8a:1a:6d:7a:be:d7:56:c1: 8f:ab:f9:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGNUExMTAvBgNVBAUTKDg4N0U3OUUyNUI2RDFEMzdFRjFGMzFCQzVBMDIzMkY4 RTc2NTE1NDUwHhcNMjYwNDA0MjA0ODIxWhcNMjYwNDExMjA0ODIxWjAYMRYwFAYD VQQDEw02OWQxNzkxNS0xN2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHORCDaSLELor1ZKOT20395YLswLx9MEe75SPpTL/fdNohGsm0ZWXq4fT1dK IFRS42qqdDCmuShPe34ZuFDXUCe6W7CJuqpGTCWDwutsW9/Q3W6716h7tat8BtLR oBWuJVR9Q7KrH9fikCt+9CrCdtuyhlUcYF65/cDxpvw5RQYsXXk9LOJdsK0hutX4 ABkjGpAhKSrIp4OwoEzvGsrFldBzU6JmLaNMZSqJTDH8YxgHw6T7+MMfU+Ep1La5 we9dgRlJnNhyUtEoaX9u8iiK0MOfY6N/eLQFwFstgDvGndSH51/pMVDpaMZBm+lQ ODyRPMpuZI2mLPTBIF6pgZXFJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEoIa32b /QKvjKGyTT6FRWdMVsEKMB8GA1UdIwQYMBaAFIh+eeJbbR037x8xvFoCMvjnZRVF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUY1QS8wODk4QjIzQTEx QkExMUVCQkMxQTU4NENDNEY5QUUwMi9pSDU1NGx0dEhUZnZIekc4V2dJeS1PZGxG VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUY1QS8wODk4QjIzQTExQkExMUVCQkMxQTU4NENDNEY5QUUwMi9pSDU1NGx0dEhU ZnZIekc4V2dJeS1PZGxGVVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjNspEaugVsk6spCqIwoubMSlgAnqJ4YLTytfm98JAhZYpBlw+6doKRdJgUWP GnSPTOR264WRY2jpptOtMcjam7N/LNSlxESXQ8b2iTXdbxlUmaYdfL3zsOckP0ic Bzv+emXc3uu+X+wuFdqNN43ReJsuhTIQOukGErAf23MBSIp62uSWmF8X9WoHt9df 1Qx1lr7o7vAXJGd/s9/RSp0kOyWEBvQue2SBWBjkVP1QYCUJ389B18w1X9PkitM3 jMewR5hb85XI6SJYxgEMtbyM1UyghUGPAi0fL/BFvl6S84uYsd0P9xJLZZzmfjkK 2bBnd9iuSYoabXq+11bBj6v5RQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:03 2026 by rpki-client