$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: J4qZu/ut8j+V6W+xcCOYmlIqJ4xwR9InNlAy73Pw11Y= Subject key identifier: 49:CE:20:AF:E2:20:2E:9C:D0:38:AE:8B:D6:A6:E4:FE:8B:CD:CF:24 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0ED8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0ECD Signing time: Sat 04 Apr 2026 17:32:33 +0000 Manifest this update: Sat 04 Apr 2026 17:32:33 +0000 Manifest next update: Sat 11 Apr 2026 17:32:33 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: qwsTxUE+NoOX3O021njo2XKfHTa2qJS4hogV4F6HY14=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: 4pVvE+I9wNinJDczPi8MpCDR2ep+npYGZpMqxp50Meo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3800 (0xed8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Apr 4 17:32:33 2026 GMT Not After : Apr 11 17:32:33 2026 GMT Subject: CN=69d14b31-c692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:94:0a:87:ce:8e:7b:1e:60:bc:d9:e5:6d:36: 25:dc:a7:42:1d:be:a9:43:1a:66:77:95:4e:a8:0c: 94:2d:51:4d:cc:99:ad:65:7d:05:47:6c:17:7d:50: 81:97:9c:a0:28:27:87:47:1c:ef:2e:27:a6:f6:3a: fd:43:a0:af:b5:82:83:c3:fc:12:ed:bb:a0:9b:8c: 1f:8c:1f:27:24:92:9b:ae:a1:e2:06:b4:04:b5:40: ef:59:11:99:25:0d:de:2a:76:94:7e:4f:ee:72:f0: b1:bf:fc:f3:ca:66:e6:75:b4:fa:dd:b2:ce:74:49: 4a:5d:1b:6f:cd:39:d5:c3:37:18:22:32:a9:5e:db: 88:f0:5b:4b:eb:02:a0:95:be:19:73:b3:f4:1a:0b: c2:4d:fe:fa:6b:3e:d7:e1:09:ca:2a:f1:db:b0:b1: 5e:43:56:8f:0f:6c:00:af:fd:ab:a0:8f:6e:18:aa: 6f:9a:74:56:6c:bf:65:41:6e:de:db:6b:7f:f7:7d: 43:8d:03:00:64:bb:40:2c:7f:12:ca:30:44:3a:aa: 9a:10:0e:e2:86:74:64:a7:25:ea:25:ef:64:97:0c: 3f:38:ba:f6:83:10:cc:f3:5d:21:90:5e:8b:1f:5a: 29:76:11:f3:c7:64:5a:6c:59:c9:54:be:c7:8b:ef: 29:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:CE:20:AF:E2:20:2E:9C:D0:38:AE:8B:D6:A6:E4:FE:8B:CD:CF:24 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:d3:f4:da:ad:9e:8e:bc:de:04:ae:38:fb:90:67:d5:f5:c2: 98:e9:f1:9a:5f:b7:62:86:54:c7:a2:d8:f7:ef:35:01:95:d8: 00:ae:25:94:90:c9:9f:1e:7f:fd:08:1a:0b:35:78:04:1d:a0: 46:a5:89:ad:0a:6a:f3:e3:4f:a6:20:b7:11:30:fe:c7:40:ee: 77:d8:88:a0:ef:21:42:cf:b4:f8:3a:c5:6e:19:13:8a:d4:3d: 88:66:0f:e9:f2:19:00:3e:cb:2c:34:45:6b:81:e4:cb:3c:4c: eb:b6:39:27:65:04:ee:50:f4:12:a1:42:af:2d:5b:47:23:df: 54:03:71:97:3b:05:bd:8e:e1:74:df:85:e3:77:24:3f:74:fa: 7b:a9:fa:d7:17:99:38:24:e0:4b:71:59:0d:31:f8:27:e6:db: 9c:a6:b0:b2:84:31:11:36:23:76:1b:cd:43:25:b3:f6:5c:10: 2c:15:12:0e:09:d9:94:35:1d:5f:7e:4f:51:ca:b8:6c:8a:1b: e0:c6:ab:60:b2:d5:55:66:09:e7:74:96:e1:53:87:b7:59:98: fa:da:72:2c:24:ee:89:55:ed:2d:3c:ac:ec:df:21:53:69:e4: a1:a1:06:76:b4:65:27:3c:30:93:d5:84:24:06:00:4d:58:0a: 74:26:7d:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjYwNDA0MTczMjMzWhcNMjYwNDExMTczMjMzWjAYMRYwFAYD VQQDEw02OWQxNGIzMS1jNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5QKh86Oex5gvNnlbTYl3KdCHb6pQxpmd5VOqAyULVFNzJmtZX0FR2wXfVCB l5ygKCeHRxzvLiem9jr9Q6CvtYKDw/wS7bugm4wfjB8nJJKbrqHiBrQEtUDvWRGZ JQ3eKnaUfk/ucvCxv/zzymbmdbT63bLOdElKXRtvzTnVwzcYIjKpXtuI8FtL6wKg lb4Zc7P0GgvCTf76az7X4QnKKvHbsLFeQ1aPD2wAr/2roI9uGKpvmnRWbL9lQW7e 22t/931DjQMAZLtALH8SyjBEOqqaEA7ihnRkpyXqJe9klww/OLr2gxDM810hkF6L H1opdhHzx2RabFnJVL7Hi+8p6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEnOIK/i IC6c0Diui9am5P6Lzc8kMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXdP02q2ejrzeBK44+5Bn1fXCmOnxml+3YoZUx6LY9+81AZXYAK4llJDJnx5/ /QgaCzV4BB2gRqWJrQpq8+NPpiC3ETD+x0Dud9iIoO8hQs+0+DrFbhkTitQ9iGYP 6fIZAD7LLDRFa4HkyzxM67Y5J2UE7lD0EqFCry1bRyPfVANxlzsFvY7hdN+F43ck P3T6e6n61xeZOCTgS3FZDTH4J+bbnKawsoQxETYjdhvNQyWz9lwQLBUSDgnZlDUd X35PUcq4bIob4MarYLLVVWYJ53SW4VOHt1mY+tpyLCTuiVXtLTys7N8hU2nkoaEG drRlJzwwk9WEJAYATVgKdCZ9iA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:56:53 2026 by rpki-client