$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: IeUX8AKQM+3vcOvlxpDtMjMTOTdpjUamOhBRmUzbxdU= Subject key identifier: A8:B8:7B:41:CD:6F:EF:47:8D:05:BC:36:F1:D1:4D:24:E0:11:9E:F6 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 0235 Signing time: Sun 05 Apr 2026 02:10:32 +0000 Manifest this update: Sun 05 Apr 2026 02:10:31 +0000 Manifest next update: Sun 12 Apr 2026 02:10:31 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: kiQsNuQRFe3R0ywARbgrONtppYIZKDvhvgAMgUo/0HI=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: h5AorI3QkOoBAwObfVPrh+bfy5EutI9s6EKcaVcQGYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Apr 5 02:10:31 2026 GMT Not After : Apr 12 02:10:31 2026 GMT Subject: CN=69d1c497-2e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:05:a7:76:e2:8d:1a:db:f8:49:ec:cf:eb:7a: 29:48:60:ab:55:82:28:e3:04:a9:e5:c7:05:8e:fa: 0f:07:df:55:ba:fe:b4:32:a0:81:a6:69:26:72:c6: c9:18:51:89:1c:2c:71:fc:77:b5:08:18:e8:5f:97: 07:8c:09:fe:35:60:23:47:24:d3:e5:c3:a3:2c:26: a3:71:50:a8:ba:31:7c:ee:86:f4:e7:40:99:97:c8: f8:da:15:04:4d:8b:7e:58:1b:9b:cd:34:28:27:bf: 7c:2c:44:ac:1e:fa:d4:fe:d1:05:2e:69:98:af:4e: 71:9c:df:e9:37:f8:c6:b2:e0:cb:85:fc:b9:c8:a7: ca:fc:43:d1:36:ef:42:df:86:77:63:5b:0a:cd:ea: 7e:a1:d1:0e:21:f2:de:32:16:be:12:1f:c6:dd:d3: d0:0b:dc:76:85:57:56:8a:1e:de:0e:95:bb:c0:b6: 62:be:1d:9a:08:63:33:26:08:7d:96:e4:d3:3e:63: a4:7f:1f:4a:e3:69:3e:d8:b2:c8:c2:13:85:d1:30: 28:c7:ec:93:77:d4:b1:32:e2:c2:b3:47:41:7e:49: 4d:2f:0d:3b:50:87:dc:41:46:ca:c4:d0:a6:37:30: cd:00:90:7d:60:d4:84:25:87:db:ac:9b:b4:71:fd: 1b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B8:7B:41:CD:6F:EF:47:8D:05:BC:36:F1:D1:4D:24:E0:11:9E:F6 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:92:b3:0b:49:68:d2:4e:85:e2:ce:55:7c:ae:6a:1d:9c:55: 6f:5c:99:a2:95:73:18:98:b9:7d:b3:7c:32:99:9f:12:38:7c: bb:d5:56:3b:98:86:7c:ed:e3:19:93:b7:ed:da:d1:80:4b:cd: 70:62:37:c0:86:a5:70:37:8d:ad:31:bc:1a:e8:a5:38:ff:df: 49:c6:33:67:09:32:7c:3e:67:62:61:0d:93:43:72:13:6f:5e: d3:ca:8d:40:9e:2d:f6:4b:5e:17:b7:99:05:ea:f7:f4:65:3c: 3d:da:63:c7:9f:3e:b0:d4:aa:56:15:1f:31:0c:30:b9:d2:53: b9:8e:fd:d3:6d:e8:8c:07:4b:c4:23:5f:cc:c7:d4:fd:bb:de: d4:12:4c:4c:02:28:18:e7:24:72:d1:ae:8f:fc:e8:32:ad:68: 10:e6:fd:f7:de:65:cb:4f:60:ec:d3:1d:e4:d0:a2:4b:2b:58: a4:f7:5a:6e:38:66:95:b0:78:26:a7:15:ef:09:24:c7:e4:e7: b0:77:e4:63:0c:1d:50:14:a0:bd:e6:5b:3c:26:c4:65:ff:ee: a0:8a:7b:b6:99:1b:5d:d5:38:a4:7e:0b:c2:25:82:00:a9:cb: 64:bd:91:14:d6:f1:bc:21:c8:f6:56:f1:7e:a4:f2:01:3c:42: b8:d9:ef:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjYwNDA1MDIxMDMxWhcNMjYwNDEyMDIxMDMxWjAYMRYwFAYD VQQDEw02OWQxYzQ5Ny0yZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQWnduKNGtv4SezP63opSGCrVYIo4wSp5ccFjvoPB99Vuv60MqCBpmkmcsbJ GFGJHCxx/He1CBjoX5cHjAn+NWAjRyTT5cOjLCajcVCoujF87ob050CZl8j42hUE TYt+WBubzTQoJ798LESsHvrU/tEFLmmYr05xnN/pN/jGsuDLhfy5yKfK/EPRNu9C 34Z3Y1sKzep+odEOIfLeMha+Eh/G3dPQC9x2hVdWih7eDpW7wLZivh2aCGMzJgh9 luTTPmOkfx9K42k+2LLIwhOF0TAox+yTd9SxMuLCs0dBfklNLw07UIfcQUbKxNCm NzDNAJB9YNSEJYfbrJu0cf0biQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKi4e0HN b+9HjQW8NvHRTSTgEZ72MB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJJKzC0lo0k6F4s5VfK5qHZxVb1yZopVzGJi5fbN8MpmfEjh8u9VWO5iGfO3j GZO37drRgEvNcGI3wIalcDeNrTG8GuilOP/fScYzZwkyfD5nYmENk0NyE29e08qN QJ4t9kteF7eZBer39GU8Pdpjx58+sNSqVhUfMQwwudJTuY79023ojAdLxCNfzMfU /bve1BJMTAIoGOckctGuj/zoMq1oEOb9995ly09g7NMd5NCiSytYpPdabjhmlbB4 JqcV7wkkx+TnsHfkYwwdUBSgveZbPCbEZf/uoIp7tpkbXdU4pH4LwiWCAKnLZL2R FNbxvCHI9lbxfqTyATxCuNnvJA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:39:55 2026 by rpki-client