$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft File: MAeESqoZm6nIjWQEw9_oduHjn8Y.mft (raw, json) Hash identifier: BMyxCfWy5MKx8lx918rdo7wUYqRILehth8EhzyHWhNU= Subject key identifier: D2:F3:65:F6:3B:10:46:3D:9B:8F:75:F0:92:B8:DB:D9:4F:3E:1D:D8 Authority key identifier: 30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 Certificate issuer: /CN=A91E46B1/serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Certificate serial: 1536 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft Manifest number: 1520 Signing time: Sat 04 Apr 2026 16:43:10 +0000 Manifest this update: Sat 04 Apr 2026 16:43:09 +0000 Manifest next update: Sat 11 Apr 2026 16:43:09 +0000 Files and hashes: 1: MAeESqoZm6nIjWQEw9_oduHjn8Y.crl (hash: SOBrIvmmhKLW1hVgjeYK90FxU0YW3xFixtnbRD8966g=) 2: 391E6EDE679B11E886728650C4F9AE02.roa (hash: 0s446asxUq4TUjj3iz0ZGInEQ2S3Qugk+pBUyrJhQAI=) 3: D0D94718CB8111E89EDE697DC4F9AE02.roa (hash: cIxtJWgcXzpekN854h+Gn0iT4S0YYTFuZrY9rIh4a6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5430 (0x1536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46B1, serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Validity Not Before: Apr 4 16:43:09 2026 GMT Not After : Apr 11 16:43:09 2026 GMT Subject: CN=69d13f9e-f909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e7:9f:a9:28:39:9d:75:dc:22:0e:05:ea:55: 64:ce:52:b1:47:46:13:a5:91:12:4d:1e:b7:cf:e4: 9f:a1:4c:fa:f8:72:f4:d8:5b:84:1d:ea:e5:cd:46: 1c:fb:27:ef:52:26:59:34:73:a6:7a:ab:5a:3c:9a: c4:c0:95:16:96:77:4e:d5:d3:8c:66:dd:c2:e7:a1: 1a:c1:f1:75:d8:77:9e:aa:75:b5:89:a3:f1:8b:18: 17:63:3a:d0:cf:1e:78:92:6a:b3:8a:c0:14:09:3b: ab:35:c7:df:7e:15:8e:98:79:02:e7:40:46:7a:f2: 03:fa:9e:cc:1d:df:7e:a5:51:54:13:fa:8d:04:bc: 3c:bf:99:a6:dd:11:cb:4c:9a:ab:e3:5e:d8:f1:d7: ad:6c:e5:1a:85:c3:af:87:74:4a:5d:4c:d2:8b:cd: 36:3b:5d:34:c8:d9:0a:75:49:48:ed:3a:10:ad:0b: 92:cf:3e:59:32:a9:e2:dc:73:3e:7b:5a:0f:1b:65: 92:87:50:86:dd:13:e4:1a:c8:b4:a8:fe:45:42:5e: 51:23:9c:27:8c:50:21:20:e0:5c:10:aa:d2:cc:10: 12:89:f8:a7:6b:0c:d1:db:8d:61:5a:91:fe:30:35: c0:78:dd:c6:14:cd:dd:6a:82:cb:f1:47:96:b8:87: 69:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F3:65:F6:3B:10:46:3D:9B:8F:75:F0:92:B8:DB:D9:4F:3E:1D:D8 X509v3 Authority Key Identifier: keyid:30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:52:da:3e:09:f5:fd:f4:2b:6f:17:eb:7c:24:f1:0b:4d:22: 76:e0:04:9a:26:0b:e0:86:c9:d1:9b:78:07:9e:68:52:1c:ed: d8:0d:cf:02:53:ce:ef:3a:65:f7:6d:2a:05:19:50:44:5b:41: 24:29:35:3a:ad:5b:fa:eb:0f:59:9d:6f:08:56:93:78:1d:66: 8c:a6:70:2c:d2:2c:1e:a7:f3:e2:4c:21:eb:ae:a4:6c:fe:1c: df:df:b6:4b:4a:53:b9:12:9d:80:ab:6f:bd:cb:c7:d3:15:5e: 06:bb:2f:76:20:d7:4b:e7:4b:59:5c:83:b4:3b:19:b9:73:65: 58:92:43:c1:dc:dc:25:d5:35:f5:f6:33:90:36:96:27:35:ea: f1:7c:e9:4d:00:7a:11:2f:2d:02:d8:51:51:03:cd:8c:5d:36: 50:63:36:04:26:4a:41:91:c7:d7:db:6d:65:91:ea:05:c8:5c: 46:9f:6e:4e:5d:15:a6:5f:b1:64:ce:c9:8b:15:c2:73:11:1e: ab:2c:6f:68:2b:5a:6b:ac:97:8b:f5:41:da:ea:30:44:82:5e: c5:86:ed:e6:da:7f:28:2d:97:1e:68:b0:39:7b:b8:e6:2b:fd: c2:27:e8:65:c6:e5:94:5f:3c:e5:56:e6:e6:5b:c2:ad:34:8e: 63:fe:2b:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QjExMTAvBgNVBAUTKDMwMDc4NDRBQUExOTlCQTlDODhENjQwNEMzREZFODc2 RTFFMzlGQzYwHhcNMjYwNDA0MTY0MzA5WhcNMjYwNDExMTY0MzA5WjAYMRYwFAYD VQQDEw02OWQxM2Y5ZS1mOTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+efqSg5nXXcIg4F6lVkzlKxR0YTpZESTR63z+SfoUz6+HL02FuEHerlzUYc +yfvUiZZNHOmeqtaPJrEwJUWlndO1dOMZt3C56EawfF12HeeqnW1iaPxixgXYzrQ zx54kmqzisAUCTurNcfffhWOmHkC50BGevID+p7MHd9+pVFUE/qNBLw8v5mm3RHL TJqr417Y8detbOUahcOvh3RKXUzSi802O100yNkKdUlI7ToQrQuSzz5ZMqni3HM+ e1oPG2WSh1CG3RPkGsi0qP5FQl5RI5wnjFAhIOBcEKrSzBASifinawzR241hWpH+ MDXAeN3GFM3daoLL8UeWuIdpYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNLzZfY7 EEY9m4918JK429lPPh3YMB8GA1UdIwQYMBaAFDAHhEqqGZupyI1kBMPf6Hbh45/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZCMS9GMDBERjM2NjY3 OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02bklqV1FFdzlfb2R1SGpu OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BZUVTcW9abTZuSWpXUUV3OV9vZHVIam44WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZCMS9GMDBERjM2NjY3OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02 bklqV1FFdzlfb2R1SGpuOFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOFLaPgn1/fQrbxfrfCTxC00iduAEmiYL4IbJ0Zt4B55oUhzt2A3PAlPO7zpl 920qBRlQRFtBJCk1Oq1b+usPWZ1vCFaTeB1mjKZwLNIsHqfz4kwh666kbP4c39+2 S0pTuRKdgKtvvcvH0xVeBrsvdiDXS+dLWVyDtDsZuXNlWJJDwdzcJdU19fYzkDaW JzXq8XzpTQB6ES8tAthRUQPNjF02UGM2BCZKQZHH19ttZZHqBchcRp9uTl0Vpl+x ZM7JixXCcxEeqyxvaCtaa6yXi/VB2uowRIJexYbt5tp/KC2XHmiwOXu45iv9wifo ZcbllF885Vbm5lvCrTSOY/4reQ== -----END CERTIFICATE-----Generated at Mon Apr 6 16:15:57 2026 by rpki-client