$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft File: IsfsPNntTFDolKEbzXDQMQzV-Fk.mft (raw, json) Hash identifier: WHA4ppuz5tywqYUTMvh0L11/F888pSsT1ptJZI5UlCI= Subject key identifier: 8B:97:96:1B:51:B5:CD:5B:D9:01:EC:2A:4E:5A:A5:BE:A7:0A:C3:BB Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 Certificate issuer: /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft Manifest number: FF Signing time: Sat 18 Apr 2026 17:28:17 +0000 Manifest this update: Sat 18 Apr 2026 17:28:16 +0000 Manifest next update: Sat 25 Apr 2026 17:28:16 +0000 Files and hashes: 1: IsfsPNntTFDolKEbzXDQMQzV-Fk.crl (hash: G4A9DBYvDd3my21Hey59kLoYBNEwtxh90Zc0INoHh7k=) 2: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (hash: akLA24IwRVeRV87VrcCP9mJOdJA7ntWRSTCaXT2ZWc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859 Validity Not Before: Apr 18 17:28:16 2026 GMT Not After : Apr 25 17:28:16 2026 GMT Subject: CN=69e3bf31-dbe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:77:ef:b9:47:2f:25:b8:80:d2:c1:ad:f6:87: 03:63:30:67:f6:0b:7c:26:cb:57:7d:67:c7:17:1d: 50:d0:4d:7f:3b:30:53:9a:ec:d4:cb:b4:e0:80:ca: 20:2c:1f:39:f0:5f:8d:5e:e4:d3:97:fe:3b:d1:7a: 06:35:6d:05:c3:14:94:57:0b:07:6e:1d:36:b8:9d: ce:54:09:29:3e:12:53:f6:4e:3a:22:4e:df:0c:3e: 32:99:84:17:9c:d5:fb:e9:4a:15:f3:2e:f9:3b:4a: c2:38:fb:d4:e7:ee:11:33:63:36:04:3d:ef:a6:3d: eb:f2:18:2e:29:92:4e:42:30:2c:36:e6:27:58:c5: 46:eb:d3:79:03:36:1f:bf:37:e9:4b:68:7f:99:09: a8:59:72:39:47:d3:6c:76:1a:6c:ce:88:01:6d:32: 5b:3b:00:73:45:a2:d4:67:28:62:8f:6b:79:0e:86: b8:bc:c1:cb:7c:45:97:2c:c8:bc:4e:f1:0c:c1:a0: 75:81:b7:7c:5c:7b:99:e3:bf:3c:6e:93:ac:22:a3: ff:f2:ad:40:75:d7:ea:fd:b5:3d:36:35:4b:9c:67: c5:07:2b:78:66:f5:b7:d4:69:96:92:3d:ef:88:4c: 13:54:1c:84:29:7d:d8:c8:6a:bd:0c:55:e4:c8:f4: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:97:96:1B:51:B5:CD:5B:D9:01:EC:2A:4E:5A:A5:BE:A7:0A:C3:BB X509v3 Authority Key Identifier: keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ce:2d:d7:3c:78:13:b4:16:42:d8:5b:1f:27:6a:39:e4:dc: 4b:58:c1:58:5d:37:3b:db:27:33:42:53:87:ce:b3:7d:1b:e7: 01:b2:75:bf:b3:e2:71:70:91:59:7b:a5:cf:23:1d:c4:b6:75: d2:6a:11:fe:49:52:f1:f2:55:ab:f8:34:8a:76:11:6c:a5:13: 3e:17:fa:30:7b:5f:25:a6:93:3b:3c:77:07:ac:68:b6:a9:a4: 03:96:40:f6:1e:ea:bd:f2:01:80:4b:f0:ef:05:fb:91:7d:44: bb:20:1d:8e:8d:8b:3a:6e:66:3e:ae:c5:08:70:10:fc:38:72: 78:5a:b1:c0:d8:6b:38:71:dd:0e:3f:f7:60:f3:c9:d1:7b:6e: 75:98:f2:e7:f2:c4:8d:9a:4f:8c:b0:e9:fb:ae:3a:27:05:e4: 0c:8c:7c:b3:16:37:71:67:b9:ce:f7:fb:36:d5:ee:0a:47:ad: 98:31:57:47:ef:ea:61:28:e2:05:ff:a7:cc:fd:3e:3a:9a:fa: 2e:65:73:45:a9:2a:65:93:a1:73:b6:4b:01:57:e7:0d:2b:2a: 50:93:46:7f:36:70:f1:74:a6:e0:07:a6:f5:22:4b:32:f7:b9: 25:4f:7c:83:2b:ef:ef:e9:bc:cd:ba:75:8f:fe:c4:c1:0e:a3: c2:88:23:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKDIyQzdFQzNDRDlFRDRDNTBFODk0QTExQkNENzBEMDMx MENENUY4NTkwHhcNMjYwNDE4MTcyODE2WhcNMjYwNDI1MTcyODE2WjAYMRYwFAYD VQQDEw02OWUzYmYzMS1kYmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3fvuUcvJbiA0sGt9ocDYzBn9gt8JstXfWfHFx1Q0E1/OzBTmuzUy7TggMog LB858F+NXuTTl/470XoGNW0FwxSUVwsHbh02uJ3OVAkpPhJT9k46Ik7fDD4ymYQX nNX76UoV8y75O0rCOPvU5+4RM2M2BD3vpj3r8hguKZJOQjAsNuYnWMVG69N5AzYf vzfpS2h/mQmoWXI5R9NsdhpszogBbTJbOwBzRaLUZyhij2t5Doa4vMHLfEWXLMi8 TvEMwaB1gbd8XHuZ4788bpOsIqP/8q1Addfq/bU9NjVLnGfFByt4ZvW31GmWkj3v iEwTVByEKX3YyGq9DFXkyPQbTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIuXlhtR tc1b2QHsKk5apb6nCsO7MB8GA1UdIwQYMBaAFCLH7DzZ7UxQ6JShG81w0DEM1fhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS9DOTQ0N0ZGMEJF RjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRGRG9sS0VielhEUU1RelYt RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS9DOTQ0N0ZGMEJFRjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRG RG9sS0VielhEUU1RelYtRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN84t1zx4E7QWQthbHydqOeTcS1jBWF03O9snM0JTh86zfRvnAbJ1v7PicXCR WXulzyMdxLZ10moR/klS8fJVq/g0inYRbKUTPhf6MHtfJaaTOzx3B6xotqmkA5ZA 9h7qvfIBgEvw7wX7kX1EuyAdjo2LOm5mPq7FCHAQ/DhyeFqxwNhrOHHdDj/3YPPJ 0XtudZjy5/LEjZpPjLDp+646JwXkDIx8sxY3cWe5zvf7NtXuCketmDFXR+/qYSji Bf+nzP0+Opr6LmVzRakqZZOhc7ZLAVfnDSsqUJNGfzZw8XSm4Aem9SJLMve5JU98 gyvv7+m8zbp1j/7EwQ6jwogjlA== -----END CERTIFICATE-----Generated at Sat Apr 18 21:07:40 2026 by rpki-client