$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: 2Agfh8XlyQ2vVHLbRP0os7+NmgHURlzBQZA5YoMG/hk= Subject key identifier: 7D:0A:0B:27:94:81:43:ED:FF:5E:5A:A0:36:C6:41:D6:65:3F:13:99 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 137B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 1367 Signing time: Sat 04 Apr 2026 16:53:06 +0000 Manifest this update: Sat 04 Apr 2026 16:53:05 +0000 Manifest next update: Sat 11 Apr 2026 16:53:05 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: Xxo2ZxUl7eAw6FSkEtZ6bNUYPbYHdoeyOyaL5bYKF2g=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: O9w5ukmDcrFDcEjD6HiwQa6Y82NCxJ277Oe6QTyQjzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4987 (0x137b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Apr 4 16:53:05 2026 GMT Not After : Apr 11 16:53:05 2026 GMT Subject: CN=69d141f1-0347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a0:1b:c7:42:62:42:1e:21:c7:de:84:ae:9a: d1:5c:72:31:00:7a:35:e8:f2:67:24:e4:4e:b6:40: 5e:89:36:17:3d:a0:59:eb:10:eb:38:d5:4e:93:3e: e0:93:89:22:2f:52:92:9e:13:f1:8f:b0:20:ee:f7: e3:52:c2:44:c7:c9:3a:5f:19:ce:3f:d1:34:ec:3e: f9:f9:0b:1b:8f:e3:33:8c:40:6a:bb:7d:bb:04:71: c0:7f:47:6b:79:ae:00:ce:bc:e8:e2:b8:23:0e:4d: 1c:f2:90:1b:7f:68:68:8e:f8:98:af:dd:02:fd:7b: 91:85:64:0e:40:45:af:db:97:b3:1e:f9:1f:e7:41: 02:cf:7f:75:1e:79:28:87:81:46:d8:b1:ae:92:7d: 36:e8:78:65:73:04:14:bb:ef:95:83:d3:f8:15:16: d5:a3:5c:8f:ce:fe:01:c8:09:a7:c5:9d:91:99:77: cd:f5:b8:96:f7:4b:a2:15:ad:c2:8c:ee:0b:a4:54: 4a:86:f5:bd:28:8c:01:ab:65:26:d5:3e:90:14:e5: 93:a7:d3:1a:42:cd:f9:9e:0f:ed:1b:6d:57:28:72: e5:47:1a:55:13:0f:9b:79:3b:9c:15:b2:77:ca:50: 76:b4:9e:ab:8f:96:14:61:8c:fb:d2:fb:d2:de:73: 23:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0A:0B:27:94:81:43:ED:FF:5E:5A:A0:36:C6:41:D6:65:3F:13:99 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:0b:f6:a3:a6:13:26:41:e6:71:e3:2b:13:57:aa:b3:26:c6: 32:1d:00:e0:75:f5:9a:b2:45:98:be:11:4f:f0:8f:70:08:0e: 08:b4:09:c2:37:69:6a:56:5f:11:63:73:a5:87:de:9c:a2:16: ed:db:6f:7a:fc:3d:90:05:e1:b3:d7:09:77:f1:3f:5b:db:56: ea:55:e5:fb:1c:1d:a6:f2:8b:8d:2b:a5:fd:55:12:91:08:0c: 14:a5:c3:de:42:9e:f4:49:f9:51:25:8b:50:2a:8c:78:e4:8a: a8:05:63:29:87:13:52:1d:d2:cf:c4:5f:f1:0e:aa:4b:81:d3: 8b:5f:55:60:aa:af:cc:1f:4d:d3:b3:1d:1c:29:e7:cf:c1:b1: 15:c9:9f:00:fd:56:52:75:52:a4:a4:aa:d7:d9:ea:5b:f7:90: 59:c1:e6:f2:5e:c1:a5:ad:12:67:ce:46:d0:bf:cb:7a:6c:f5: d7:75:a3:06:1c:fd:24:23:5e:b2:43:b9:65:46:e5:32:09:ff: d0:4e:98:8b:87:ff:50:ef:e9:8f:29:fe:6d:6e:5c:3a:18:c1: 8e:b7:ff:79:53:f7:b7:5d:6b:21:2d:43:fe:65:88:3e:72:75: 17:35:6c:cb:db:f5:1c:fa:8b:78:de:7e:66:b8:f3:f6:7a:4a: 5b:8e:d7:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjYwNDA0MTY1MzA1WhcNMjYwNDExMTY1MzA1WjAYMRYwFAYD VQQDEw02OWQxNDFmMS0wMzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraAbx0JiQh4hx96ErprRXHIxAHo16PJnJOROtkBeiTYXPaBZ6xDrONVOkz7g k4kiL1KSnhPxj7Ag7vfjUsJEx8k6XxnOP9E07D75+Qsbj+MzjEBqu327BHHAf0dr ea4Azrzo4rgjDk0c8pAbf2hojviYr90C/XuRhWQOQEWv25ezHvkf50ECz391Hnko h4FG2LGukn026HhlcwQUu++Vg9P4FRbVo1yPzv4ByAmnxZ2RmXfN9biW90uiFa3C jO4LpFRKhvW9KIwBq2Um1T6QFOWTp9MaQs35ng/tG21XKHLlRxpVEw+beTucFbJ3 ylB2tJ6rj5YUYYz70vvS3nMjxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH0KCyeU gUPt/15aoDbGQdZlPxOZMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWgv2o6YTJkHmceMrE1eqsybGMh0A4HX1mrJFmL4RT/CPcAgOCLQJwjdpalZf EWNzpYfenKIW7dtvevw9kAXhs9cJd/E/W9tW6lXl+xwdpvKLjSul/VUSkQgMFKXD 3kKe9En5USWLUCqMeOSKqAVjKYcTUh3Sz8Rf8Q6qS4HTi19VYKqvzB9N07MdHCnn z8GxFcmfAP1WUnVSpKSq19nqW/eQWcHm8l7Bpa0SZ85G0L/Lemz113WjBhz9JCNe skO5ZUblMgn/0E6Yi4f/UO/pjyn+bW5cOhjBjrf/eVP3t11rIS1D/mWIPnJ1FzVs y9v1HPqLeN5+Zrjz9npKW47XfA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:59:31 2026 by rpki-client