$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: PmbS5api8KWfT4qvDFRf1ZZr7u7OOEIU2ppMB7PwlHc= Subject key identifier: 64:66:98:FB:F9:CD:6B:58:0E:5A:4D:B4:4D:0C:67:96:53:56:59:83 Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0D2D Signing time: Sat 04 Apr 2026 18:55:10 +0000 Manifest this update: Sat 04 Apr 2026 18:55:09 +0000 Manifest next update: Sat 11 Apr 2026 18:55:09 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: FTFHFICaaeWBV17GTEcQCNkKvP29aC/0xzY5VbPqS3A=) 2: 6360524E03D311F0A6C64177C4F9AE02.roa (hash: Ry7KGatju8gQIkEerCE04qBOSViPgAfHOUcXP50puA0=) 3: 58EC5A1A8F3E11EF9B5DE37CC4F9AE02.roa (hash: I18zAt/BkD9Bb7mANLUdVtltl5DZ/4h5hTY25edSSp0=) 4: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (hash: RovO93BaUsnbygbJmzaH5ZltHIIuHyoR9TeI3mU8JC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Apr 4 18:55:09 2026 GMT Not After : Apr 11 18:55:09 2026 GMT Subject: CN=69d15e8d-1fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f5:31:1c:57:50:29:ef:37:d3:bf:63:f5:3b: 57:22:90:c9:0e:ac:b2:5e:5b:b5:ef:a4:5d:c2:cd: fd:0f:51:a7:3c:8d:d2:53:2a:cf:5c:4b:06:b9:14: 62:7e:4b:61:f5:18:24:df:cd:6c:8b:76:e4:87:cd: 36:b1:6d:46:63:c3:1a:f5:45:65:14:25:e5:ad:85: 12:89:6b:9b:b1:89:10:7c:9b:21:54:44:8b:f8:c3: bb:37:a2:e5:29:a2:fb:45:d9:94:c1:31:db:9c:1e: 0e:16:18:1d:a3:78:b0:ae:96:88:16:af:e4:49:ff: 71:fd:ef:c1:2a:c9:b1:2f:26:3d:ba:bb:e2:bb:47: ab:12:cf:17:cf:10:fa:b8:7a:36:90:95:45:5f:e8: 01:e1:f5:52:8c:b0:48:15:41:df:fb:3b:b3:5d:fa: 78:ad:0b:d6:d9:c4:07:b5:e0:22:bc:6c:fe:8f:ac: 74:45:a0:93:02:5d:86:b0:66:68:25:bb:a0:68:ab: aa:0d:7f:a1:69:2e:d5:c7:47:3c:7f:9e:1f:c8:3e: 5d:53:1d:63:b5:b8:92:1c:aa:c7:3d:a3:22:8b:95: b7:7c:4e:1a:75:86:1e:6c:75:64:e2:5d:55:bb:7f: ac:78:b3:75:59:65:a4:3e:33:9d:f0:d6:5b:fd:05: c7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:66:98:FB:F9:CD:6B:58:0E:5A:4D:B4:4D:0C:67:96:53:56:59:83 X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:66:a9:30:e3:f6:2b:e4:73:32:b9:e0:7d:24:a7:45:c2:93: 73:52:17:fa:0e:a4:95:a1:49:04:b7:1b:ba:d9:31:16:07:b0: 7d:c5:d7:6f:49:ce:f7:c8:87:92:d9:ba:cb:46:b4:fa:11:96: a9:6a:c1:36:7a:94:fe:c5:b5:92:46:87:16:5b:0c:49:4d:d0: 73:47:c9:53:f1:9c:fc:a8:2d:38:91:1e:08:c1:f8:b7:1d:34: c5:dc:9f:4a:ea:b7:36:d8:d4:10:d2:f9:c2:bb:f8:60:60:2e: f5:a6:32:d1:b7:ad:ed:c1:0f:9f:4e:e3:fc:d7:13:19:52:e8: 83:80:98:b5:e0:03:c1:fc:62:78:0b:51:fe:1e:28:26:51:f2: e6:51:10:a0:2a:30:05:23:dd:90:f6:6c:73:3a:67:56:33:f6: 5f:74:7f:52:df:23:7e:c7:94:e4:8f:07:e7:45:01:d8:49:91: fa:cb:82:d5:90:c9:5b:98:13:7f:47:2f:a7:77:9c:72:09:1a: 2d:a1:7b:71:6f:92:53:f8:3b:64:7c:b0:ee:ae:6b:bd:62:cb: 58:46:17:9c:d4:20:ea:61:be:9e:97:d4:05:ec:93:14:1f:05: d9:fd:de:ab:de:6a:e0:7b:c2:53:8f:2f:9e:21:21:4a:27:54: a5:29:b1:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjYwNDA0MTg1NTA5WhcNMjYwNDExMTg1NTA5WjAYMRYwFAYD VQQDEw02OWQxNWU4ZC0xZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vUxHFdQKe83079j9TtXIpDJDqyyXlu176Rdws39D1GnPI3SUyrPXEsGuRRi fkth9Rgk381si3bkh802sW1GY8Ma9UVlFCXlrYUSiWubsYkQfJshVESL+MO7N6Ll KaL7RdmUwTHbnB4OFhgdo3iwrpaIFq/kSf9x/e/BKsmxLyY9urviu0erEs8XzxD6 uHo2kJVFX+gB4fVSjLBIFUHf+zuzXfp4rQvW2cQHteAivGz+j6x0RaCTAl2GsGZo JbugaKuqDX+haS7Vx0c8f54fyD5dUx1jtbiSHKrHPaMii5W3fE4adYYebHVk4l1V u3+seLN1WWWkPjOd8NZb/QXH5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGRmmPv5 zWtYDlpNtE0MZ5ZTVlmDMB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZL QVNBQkIybVI5WnEtTEtzZVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApWapMOP2K+RzMrngfSSnRcKTc1IX+g6klaFJBLcbutkxFgewfcXXb0nO98iH ktm6y0a0+hGWqWrBNnqU/sW1kkaHFlsMSU3Qc0fJU/Gc/KgtOJEeCMH4tx00xdyf Suq3NtjUENL5wrv4YGAu9aYy0bet7cEPn07j/NcTGVLog4CYteADwfxieAtR/h4o JlHy5lEQoCowBSPdkPZsczpnVjP2X3R/Ut8jfseU5I8H50UB2EmR+suC1ZDJW5gT f0cvp3eccgkaLaF7cW+SU/g7ZHyw7q5rvWLLWEYXnNQg6mG+npfUBeyTFB8F2f3e q95q4HvCU48vniEhSidUpSmx9A== -----END CERTIFICATE-----Generated at Mon Apr 6 09:56:45 2026 by rpki-client