$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: LEni54xxpJPPgfwZpXiKgyuopmfifIh1b2FoEzg20W4= Subject key identifier: 17:7C:5F:AF:4E:61:75:61:DF:B4:78:A2:65:56:F6:9A:7C:24:0B:31 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 353A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 3532 Signing time: Sat 04 Apr 2026 15:03:09 +0000 Manifest this update: Sat 04 Apr 2026 15:03:08 +0000 Manifest next update: Sat 11 Apr 2026 15:03:08 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: prrWjX8Xr8cWdephqQFELduYsfw4pSGed6r5Ux9IuVk=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: grlNN+mm97djcRhLgczSf6yBI8MB1/S7/60D7ODVKSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13626 (0x353a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Apr 4 15:03:08 2026 GMT Not After : Apr 11 15:03:08 2026 GMT Subject: CN=69d1282c-0472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bd:a3:79:0e:f0:18:5e:60:d4:d3:3e:62:d3: 7e:63:06:f1:88:33:9b:91:7c:26:5d:ac:b2:a5:2c: 92:34:10:78:73:7f:c7:4d:79:a7:ac:73:b2:1e:3c: 83:92:56:af:ab:c1:77:85:37:23:e2:b3:6f:ad:c4: 35:8a:ba:44:81:83:66:70:17:56:b9:b1:0b:b6:79: 5b:bf:c8:4b:eb:5a:a4:e3:e6:c8:ef:f7:2c:c7:8b: ce:b2:d6:0d:ba:d3:c0:ba:db:d4:ec:87:a2:21:af: d4:21:cf:10:06:10:81:78:89:2d:30:41:99:7c:c4: 1e:c4:0b:b4:6a:20:64:a6:19:8e:9f:52:84:b5:55: 1d:7c:9a:e1:a5:1a:c0:7b:6c:52:a7:54:b4:d1:33: 25:0f:52:87:3f:63:41:56:53:dc:fd:35:66:00:b4: f9:eb:8b:34:15:a9:a4:80:e8:c6:c7:31:35:09:4f: c2:6b:b7:74:0a:7a:73:02:eb:9d:8f:43:39:9e:2f: 0e:12:99:5a:f1:94:96:65:7c:31:92:6f:ac:d1:5d: 59:f5:78:88:7a:97:9a:7a:97:c7:b1:ef:b2:66:5e: b8:8b:98:d0:c9:04:8b:a9:cb:b3:bd:47:4f:d4:1b: 75:58:6b:bf:0c:d0:ab:5b:d5:55:e6:61:6a:9f:11: 30:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:7C:5F:AF:4E:61:75:61:DF:B4:78:A2:65:56:F6:9A:7C:24:0B:31 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c8:ce:8f:03:ea:24:fc:d3:24:c1:08:66:32:13:b1:95:68: 79:b1:3b:d2:10:4d:38:62:24:97:c8:4d:6b:2c:fd:42:29:a7: f1:01:1a:a1:19:7d:f6:98:6e:e1:ac:d8:1f:34:94:b4:67:9a: b0:0b:c5:f0:fe:b1:2d:33:bd:5b:70:9d:d3:2f:ba:7f:0e:cb: 9d:c1:4b:c0:e4:58:2b:7b:88:9f:dc:27:e4:47:a9:2c:a0:7a: f1:7c:1a:53:6d:22:d3:a8:ca:59:26:18:3d:bd:51:c8:0a:43: 9b:fe:81:38:e7:bf:86:04:1d:f7:4d:0f:6b:53:46:15:b1:18: fb:bd:2a:b6:26:bf:e7:cc:26:c1:95:6f:29:7c:89:54:fd:bc: b2:36:3f:c2:70:67:bd:85:c9:3a:a6:e7:51:1f:30:5d:9c:e5: fb:d1:74:f7:80:9c:d2:32:fb:55:b0:ff:c7:3a:ac:ce:3d:78: e1:ba:fd:d5:67:eb:7e:d7:e1:df:db:f9:c9:ff:d3:4c:8b:06: 4f:76:f8:23:da:0c:6b:6d:bb:98:64:9b:86:67:4d:f0:18:6b: 57:54:43:fa:dc:43:00:c6:2a:79:50:68:54:a6:77:36:58:eb: f5:b7:ae:50:ea:ca:31:bb:29:e5:69:10:cb:76:f8:93:49:68: df:3f:5e:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjYwNDA0MTUwMzA4WhcNMjYwNDExMTUwMzA4WjAYMRYwFAYD VQQDEw02OWQxMjgyYy0wNDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlL2jeQ7wGF5g1NM+YtN+YwbxiDObkXwmXayypSySNBB4c3/HTXmnrHOyHjyD klavq8F3hTcj4rNvrcQ1irpEgYNmcBdWubELtnlbv8hL61qk4+bI7/csx4vOstYN utPAutvU7IeiIa/UIc8QBhCBeIktMEGZfMQexAu0aiBkphmOn1KEtVUdfJrhpRrA e2xSp1S00TMlD1KHP2NBVlPc/TVmALT564s0FamkgOjGxzE1CU/Ca7d0CnpzAuud j0M5ni8OEpla8ZSWZXwxkm+s0V1Z9XiIepeaepfHse+yZl64i5jQyQSLqcuzvUdP 1Bt1WGu/DNCrW9VV5mFqnxEwsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBd8X69O YXVh37R4omVW9pp8JAsxMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE8jOjwPqJPzTJMEIZjITsZVoebE70hBNOGIkl8hNayz9Qimn8QEaoRl99phu 4azYHzSUtGeasAvF8P6xLTO9W3Cd0y+6fw7LncFLwORYK3uIn9wn5EepLKB68Xwa U20i06jKWSYYPb1RyApDm/6BOOe/hgQd900Pa1NGFbEY+70qtia/58wmwZVvKXyJ VP28sjY/wnBnvYXJOqbnUR8wXZzl+9F094Cc0jL7VbD/xzqszj144br91Wfrftfh 39v5yf/TTIsGT3b4I9oMa227mGSbhmdN8BhrV1RD+txDAMYqeVBoVKZ3Nljr9beu UOrKMbsp5WkQy3b4k0lo3z9eqg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:27:45 2026 by rpki-client