$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: 8Z2jIcj9R2nMqIr72sob7ALzhxo3d3tpMG7pGpIXvsU= Subject key identifier: 33:DB:5A:C4:C8:01:AE:E1:7D:5C:91:57:CA:50:76:72:32:5E:5F:85 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: 0231 Signing time: Sun 05 Apr 2026 02:13:29 +0000 Manifest this update: Sun 05 Apr 2026 02:13:28 +0000 Manifest next update: Sun 12 Apr 2026 02:13:28 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: +4qLZJ19XMr8t57IQ9Car/li2GbOsbZ3IvwR0ei+H5U=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: 1MNwMcMX/YIxSKpmegVgnjdToRlQxDirMalIhcpKaow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128, serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: Apr 5 02:13:28 2026 GMT Not After : Apr 12 02:13:28 2026 GMT Subject: CN=69d1c548-409e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:29:3e:b7:ae:6e:a2:92:40:b5:cf:d6:be:66: 1b:cb:26:34:a9:f6:53:10:0f:b9:79:f9:15:a1:97: ff:a7:ff:ea:5c:87:a1:69:cf:6a:32:49:cc:3a:12: 9a:7f:1f:02:e4:81:4a:d6:55:8e:60:22:26:40:1a: 7f:99:63:ac:10:8f:30:42:0f:be:fb:7d:e9:c2:0d: 21:16:cb:22:f8:38:d5:46:38:17:7f:e4:a4:ff:d6: 28:6f:cc:f8:6f:70:da:59:28:8e:0c:7d:92:9b:a5: 71:79:33:62:3a:a0:39:ac:ac:67:04:25:77:4c:ad: 29:5d:d5:7d:7e:de:09:d9:56:1c:42:16:40:c5:09: a8:2c:2c:cb:b3:2f:41:82:78:f8:75:a8:64:ed:23: ab:27:6a:a8:46:b6:40:ee:06:11:e2:7d:a8:b8:2e: 9c:4d:76:d3:57:9e:b7:81:45:f6:0e:06:95:30:ae: ad:89:a0:3e:6c:ff:34:38:3b:7d:df:2d:c4:d0:f4: 5c:ea:23:87:a6:ca:70:77:38:f2:7d:4a:98:7a:e7: 4b:58:78:7d:1f:88:84:6f:55:e3:91:70:96:ad:29: 8a:75:a2:d4:b0:2f:fd:03:bb:b1:3b:c0:cd:4c:72: 53:81:6b:24:32:d6:7b:d0:c4:ad:00:2f:be:2c:f3: 05:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:DB:5A:C4:C8:01:AE:E1:7D:5C:91:57:CA:50:76:72:32:5E:5F:85 X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:4b:9b:2a:23:11:ce:57:30:b9:29:d3:85:72:8e:5f:d7:4f: 90:0b:d7:83:38:20:56:2c:69:f8:10:2f:76:ec:cf:06:bd:56: 01:00:af:48:e2:a1:f3:62:79:17:f0:3d:76:3a:12:2f:8d:f8: 9d:89:3f:86:90:33:ef:a6:7e:90:b9:ee:05:2f:fc:dd:61:0a: 36:82:db:26:45:0f:36:c6:1b:d3:13:ec:2f:a9:ee:bf:d5:b9: f4:87:77:7d:04:a5:36:46:2f:5f:1e:5c:5f:b4:5c:2e:e8:b6: a9:97:af:6d:d0:25:ec:27:3e:a7:b0:0d:27:96:eb:4d:b6:11: 3d:1f:d2:cf:40:87:dd:0e:1a:ee:4d:c6:55:0b:7c:cf:f9:34: 4c:b9:76:5c:17:f3:b1:04:b0:57:37:53:49:b1:fa:93:55:e1: 51:70:05:59:89:69:f1:20:85:3e:00:4a:22:cd:3b:6c:7d:d5: c2:a5:3a:13:98:c8:b8:4d:a6:74:63:37:3e:af:54:95:7c:9a: b9:d1:b9:eb:80:4d:6c:1f:42:7d:1c:9e:f4:67:bc:6c:d0:2f: bd:64:d5:4a:94:9f:01:80:87:7c:df:22:5a:58:25:b2:c4:36: dd:e0:c8:c8:48:b7:12:52:96:cd:e6:3b:69:4f:44:be:51:f3: d7:57:c8:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjYwNDA1MDIxMzI4WhcNMjYwNDEyMDIxMzI4WjAYMRYwFAYD VQQDEw02OWQxYzU0OC00MDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yk+t65uopJAtc/WvmYbyyY0qfZTEA+5efkVoZf/p//qXIehac9qMknMOhKa fx8C5IFK1lWOYCImQBp/mWOsEI8wQg+++33pwg0hFssi+DjVRjgXf+Sk/9Yob8z4 b3DaWSiODH2Sm6VxeTNiOqA5rKxnBCV3TK0pXdV9ft4J2VYcQhZAxQmoLCzLsy9B gnj4dahk7SOrJ2qoRrZA7gYR4n2ouC6cTXbTV563gUX2DgaVMK6tiaA+bP80ODt9 3y3E0PRc6iOHpspwdzjyfUqYeudLWHh9H4iEb1XjkXCWrSmKdaLUsC/9A7uxO8DN THJTgWskMtZ70MStAC++LPMFawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDPbWsTI Aa7hfVyRV8pQdnIyXl+FMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKEubKiMRzlcwuSnThXKOX9dPkAvXgzggVixp+BAvduzPBr1WAQCvSOKh82J5 F/A9djoSL434nYk/hpAz76Z+kLnuBS/83WEKNoLbJkUPNsYb0xPsL6nuv9W59Id3 fQSlNkYvXx5cX7RcLui2qZevbdAl7Cc+p7ANJ5brTbYRPR/Sz0CH3Q4a7k3GVQt8 z/k0TLl2XBfzsQSwVzdTSbH6k1XhUXAFWYlp8SCFPgBKIs07bH3VwqU6E5jIuE2m dGM3Pq9UlXyaudG564BNbB9CfRye9Ge8bNAvvWTVSpSfAYCHfN8iWlglssQ23eDI yEi3ElKWzeY7aU9EvlHz11fIHA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:30 2026 by rpki-client