$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: QjWQHr6x8l8eS6krXYXQHFYcaZEPkk9adgLVwOu+CAI= Subject key identifier: F0:6A:3C:86:00:5F:68:BF:54:1F:F4:51:BB:A0:32:64:EB:02:A7:88 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 05A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0592 Signing time: Fri 10 Apr 2026 23:19:26 +0000 Manifest this update: Fri 10 Apr 2026 23:19:25 +0000 Manifest next update: Fri 17 Apr 2026 23:19:25 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: 4JBu5xqFcpqcuBB4lzPT0iDCAmao6krLg6DSYHQqH1Q=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 23:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1440 (0x5a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Apr 10 23:19:25 2026 GMT Not After : Apr 17 23:19:25 2026 GMT Subject: CN=69d9857d-dc51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:99:fd:97:d7:33:b2:34:8c:34:d1:5a:a2:9e: e6:9d:38:dd:5e:f2:e6:40:2b:6c:2a:2e:3e:63:3d: 21:88:5c:b4:b8:da:f3:f6:a5:c2:d6:bf:3d:90:b3: 28:ae:d0:b3:88:62:e6:28:4c:fd:7d:5f:a0:fa:33: e5:d4:a1:48:cf:11:44:31:76:85:41:63:8a:59:d9: 0c:ee:78:f9:2d:ad:65:e8:99:34:c4:e5:3f:b0:97: c7:aa:76:54:a0:a7:41:4d:c7:cf:2b:f3:1d:04:af: cf:96:ed:d8:c3:8a:99:96:91:7f:f9:c3:bd:58:74: a3:e5:f1:c6:25:12:d9:fb:a4:1e:f6:ae:5d:02:b2: cb:da:3a:df:20:1c:fe:da:40:86:af:8d:d0:87:58: f8:39:67:0f:75:e6:a9:40:94:89:8d:94:e7:13:71: 26:ed:3e:3a:8b:bb:13:39:63:a5:69:f6:23:88:e7: a0:08:65:61:99:24:12:0a:40:27:83:fa:2a:ff:7e: 93:cb:7b:e0:15:40:11:8a:ee:cd:59:89:ba:eb:dd: fe:9b:b3:25:4e:74:aa:fc:7f:3a:51:5b:00:5b:7d: f3:3a:38:d3:30:37:7f:8f:d0:ff:33:4c:30:df:ac: da:b2:70:5c:1f:67:78:64:6f:2b:0c:55:38:c8:23: 98:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6A:3C:86:00:5F:68:BF:54:1F:F4:51:BB:A0:32:64:EB:02:A7:88 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1e:9e:40:ca:15:ef:fc:b9:fa:1c:7a:2f:e2:73:96:12:b4: f5:f3:9b:51:dc:0a:e2:5c:32:42:eb:b4:d2:72:84:09:1b:74: 75:00:7d:62:d2:6e:67:05:63:bc:69:12:ca:e3:c9:e8:83:3f: 52:40:f4:53:59:0d:b1:1d:05:63:c4:83:9b:f0:9a:bc:61:fd: f5:0f:d8:5a:15:58:23:7a:03:9a:39:16:6a:a3:ef:91:75:0c: 29:60:0d:57:37:68:4f:c2:30:f2:59:26:6a:1d:2b:6d:cb:0d: 8e:10:be:c7:5d:7b:56:9e:b6:a4:5a:39:1c:58:0e:55:53:e4: 9c:87:e4:95:4b:6b:4e:be:44:2f:0b:fa:c8:c7:08:24:28:61: f9:a3:49:12:d2:de:59:cc:9b:c9:ef:dc:d1:4d:fd:af:a6:b9: 55:8c:3d:a0:07:eb:66:ef:45:2a:62:8a:a7:88:30:d7:38:e1: fc:0b:e8:fe:a6:83:b5:b2:1a:dd:09:1a:c9:e8:b0:f8:07:0b: 86:03:1d:9b:01:e6:58:0a:b8:de:33:91:7f:1a:57:2f:3e:55: f7:26:0b:05:72:64:db:ad:0f:88:66:c6:97:65:60:32:9a:71: e4:7a:d5:33:57:a7:62:22:8e:ce:48:4a:02:b2:87:ed:3f:bd: 9d:f0:a0:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwNDEwMjMxOTI1WhcNMjYwNDE3MjMxOTI1WjAYMRYwFAYD VQQDEw02OWQ5ODU3ZC1kYzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5n9l9czsjSMNNFaop7mnTjdXvLmQCtsKi4+Yz0hiFy0uNrz9qXC1r89kLMo rtCziGLmKEz9fV+g+jPl1KFIzxFEMXaFQWOKWdkM7nj5La1l6Jk0xOU/sJfHqnZU oKdBTcfPK/MdBK/Plu3Yw4qZlpF/+cO9WHSj5fHGJRLZ+6Qe9q5dArLL2jrfIBz+ 2kCGr43Qh1j4OWcPdeapQJSJjZTnE3Em7T46i7sTOWOlafYjiOegCGVhmSQSCkAn g/oq/36Ty3vgFUARiu7NWYm6693+m7MlTnSq/H86UVsAW33zOjjTMDd/j9D/M0ww 36zasnBcH2d4ZG8rDFU4yCOYfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPBqPIYA X2i/VB/0UbugMmTrAqeIMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWh6eQMoV7/y5+hx6L+JzlhK09fObUdwK4lwyQuu00nKECRt0dQB9YtJuZwVj vGkSyuPJ6IM/UkD0U1kNsR0FY8SDm/CavGH99Q/YWhVYI3oDmjkWaqPvkXUMKWAN VzdoT8Iw8lkmah0rbcsNjhC+x117Vp62pFo5HFgOVVPknIfklUtrTr5ELwv6yMcI JChh+aNJEtLeWcybye/c0U39r6a5VYw9oAfrZu9FKmKKp4gw1zjh/Avo/qaDtbIa 3Qkayeiw+AcLhgMdmwHmWAq43jORfxpXLz5V9yYLBXJk260PiGbGl2VgMppx5HrV M1enYiKOzkhKArKH7T+9nfCgHA== -----END CERTIFICATE-----Generated at Sun Apr 12 06:58:16 2026 by rpki-client