$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: Vik9v8EwHFX5xMVShc86xoEr4zvYEhrOmj8HF7BCZQE= Subject key identifier: B9:1F:E7:D8:73:0E:1E:06:55:1A:68:95:9F:05:43:27:CC:83:6A:14 Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 0999 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 098F Signing time: Sat 04 Apr 2026 19:49:17 +0000 Manifest this update: Sat 04 Apr 2026 19:49:16 +0000 Manifest next update: Sat 11 Apr 2026 19:49:16 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: NZ3k3ZroDaEhbES2sVUyNvPdybeHwK3Y5HaHBE6qyFA=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: 5NKCQJLuqvr9nbUC17fmFGMoTVPmZp3opZKxATu37k8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2457 (0x999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77, serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: Apr 4 19:49:16 2026 GMT Not After : Apr 11 19:49:16 2026 GMT Subject: CN=69d16b3d-1144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:88:17:20:f0:5b:c6:d9:be:f7:2d:ea:b4:6a: 57:bf:de:8a:9b:b3:a6:f4:d6:52:18:5f:ee:63:80: d9:1a:9a:ca:91:d3:7c:46:fb:d1:c0:20:18:4a:9a: a3:b0:92:61:d5:7b:50:06:39:de:e4:a3:c5:b1:f9: 53:6e:62:3d:1a:53:97:6c:b5:7b:7b:06:c2:b9:c4: 21:3f:2a:81:34:0c:53:5c:d0:57:cd:f4:ce:20:3a: 70:27:f5:91:01:4c:aa:ec:e1:04:60:81:9a:b8:02: ca:8a:2c:64:22:82:7d:2f:02:4d:59:77:7d:eb:42: 4d:d2:e8:7c:5b:b7:6f:6d:78:17:17:4d:b4:ea:fa: f5:10:d7:f3:44:82:31:73:c8:21:54:f9:19:e0:a9: dd:88:9d:f8:87:fd:a4:29:ec:be:6c:b0:97:93:e1: f6:6a:36:71:09:40:3b:e1:e2:17:8e:8f:54:9b:c0: b4:86:e5:0f:8e:1a:53:19:14:0a:a8:3b:95:88:68: bc:e7:65:15:57:10:83:49:0c:73:d7:91:15:8a:77: 81:ca:08:52:13:7d:7c:03:10:f2:33:9e:c2:0e:32: f3:70:4e:2d:4c:c6:5e:e8:e8:d9:65:d5:9e:7e:e3: 3e:4c:71:3c:a6:fc:6d:09:b1:7a:64:75:68:5e:11: 0a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1F:E7:D8:73:0E:1E:06:55:1A:68:95:9F:05:43:27:CC:83:6A:14 X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f3:f2:3a:5f:a6:4f:01:11:00:1c:83:f0:e4:8a:e7:5e:43: 1f:0f:10:37:ac:60:34:b1:20:1d:54:3d:89:ca:2d:13:b8:ae: 75:1a:0c:7e:7f:f6:d5:3e:9b:0d:ec:d2:55:a0:ad:90:b8:4e: f2:1c:a3:05:ee:1f:a9:74:89:ac:fb:ed:e6:4e:90:b1:54:c2: 4c:c6:92:83:7a:63:34:4d:9a:33:36:78:03:4c:54:ad:6f:2a: 84:f8:39:fd:ad:ee:36:9a:6c:46:8b:eb:a5:15:14:6a:33:eb: ad:b2:00:2c:ce:99:cc:97:06:da:fb:96:78:1f:7c:d7:ad:c0: 41:6f:9c:d9:c9:f9:62:06:8f:da:06:61:83:df:b3:a0:a5:0a: a0:27:3b:c4:fd:16:7f:de:3c:11:db:e3:95:d4:9c:3a:0b:ac: 17:0b:04:4d:46:07:18:b0:08:da:03:b1:43:ec:6b:db:58:29: 00:96:11:9f:b1:a6:6c:22:88:78:36:48:0d:45:ff:c4:97:11: c8:c0:a9:4b:e6:d9:f2:f5:df:a9:d5:d0:a7:95:0d:25:aa:a0: b7:e1:55:d7:1f:f6:d8:1f:f1:bd:ba:4a:61:75:66:13:a1:22: df:e9:28:cb:da:f7:58:60:17:ff:17:1a:67:b5:b1:a7:cc:6f: b0:34:8b:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjYwNDA0MTk0OTE2WhcNMjYwNDExMTk0OTE2WjAYMRYwFAYD VQQDEw02OWQxNmIzZC0xMTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44gXIPBbxtm+9y3qtGpXv96Km7Om9NZSGF/uY4DZGprKkdN8RvvRwCAYSpqj sJJh1XtQBjne5KPFsflTbmI9GlOXbLV7ewbCucQhPyqBNAxTXNBXzfTOIDpwJ/WR AUyq7OEEYIGauALKiixkIoJ9LwJNWXd960JN0uh8W7dvbXgXF0206vr1ENfzRIIx c8ghVPkZ4KndiJ34h/2kKey+bLCXk+H2ajZxCUA74eIXjo9Um8C0huUPjhpTGRQK qDuViGi852UVVxCDSQxz15EVineByghSE318AxDyM57CDjLzcE4tTMZe6OjZZdWe fuM+THE8pvxtCbF6ZHVoXhEKHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLkf59hz Dh4GVRpolZ8FQyfMg2oUMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ/PyOl+mTwERAByD8OSK515DHw8QN6xgNLEgHVQ9icotE7iudRoMfn/21T6b DezSVaCtkLhO8hyjBe4fqXSJrPvt5k6QsVTCTMaSg3pjNE2aMzZ4A0xUrW8qhPg5 /a3uNppsRovrpRUUajPrrbIALM6ZzJcG2vuWeB98163AQW+c2cn5YgaP2gZhg9+z oKUKoCc7xP0Wf948EdvjldScOgusFwsETUYHGLAI2gOxQ+xr21gpAJYRn7GmbCKI eDZIDUX/xJcRyMCpS+bZ8vXfqdXQp5UNJaqgt+FV1x/22B/xvbpKYXVmE6Ei3+ko y9r3WGAX/xcaZ7Wxp8xvsDSL5g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:03 2026 by rpki-client