$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft File: 9JfRcWknbUPFhSFcGYMxwzwiWnU.mft (raw, json) Hash identifier: RrZxVOz6DoPn8IppA2YHzfypy33A57VEQProa54szHc= Subject key identifier: D3:31:1B:AF:FB:A7:30:0F:FB:E7:C8:43:13:0D:16:82:E5:51:C7:0D Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft Manifest number: 0288 Signing time: Sun 05 Apr 2026 01:29:32 +0000 Manifest this update: Sun 05 Apr 2026 01:29:31 +0000 Manifest next update: Sun 12 Apr 2026 01:29:31 +0000 Files and hashes: 1: 9JfRcWknbUPFhSFcGYMxwzwiWnU.crl (hash: lcO6j/DT7J1lnfn/pOOGsZobCV53wuVwx9TfBOsexHI=) 2: B9D8F9CE89D011EEB603FF75C4F9AE02.roa (hash: hMb2hcSIJToNCOk3fqaJJZYV+N/CGmHdt8jBqc5Ar/g=) 3: AC8A59D689D311EE81F03018C4F9AE02.roa (hash: JVxMI3BBydPHJQteEqMVI2GOfo7MKjizmO2le+yttg4=) 4: C82A0778680811EE88B5527CC4F9AE02.roa (hash: aGkSuS0d5kC8SSbfjCl/wREw36WuVh33R9qpSzjLESg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24, serialNumber=F497D17169276D43C585215C198331C33C225A75 Validity Not Before: Apr 5 01:29:31 2026 GMT Not After : Apr 12 01:29:31 2026 GMT Subject: CN=69d1bafb-ac51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:df:06:c0:e4:c4:1c:45:3c:de:1b:ce:41:9e: 15:50:2e:ad:06:d1:86:7c:fe:3a:aa:7b:b9:a2:00: 02:73:19:df:ad:ba:df:36:1d:5e:74:c6:69:20:d2: e8:6f:ed:e0:29:68:69:e5:83:56:2a:e5:c2:56:62: ab:ad:8d:09:44:25:2c:a9:82:01:e8:d3:2e:6e:e5: 48:cd:ba:7b:60:17:e3:c3:f2:92:57:1b:75:11:4c: 63:f3:6f:89:5e:6d:7d:1b:af:29:0c:f6:cc:6b:49: 72:af:b1:7a:ad:e4:cd:12:be:9f:36:3f:c3:95:0b: 51:01:25:d5:a9:22:60:5f:fe:35:69:c8:9f:d3:4a: 87:2a:39:a7:62:0a:49:87:bd:cb:a1:61:03:2c:5c: 8c:af:fb:31:8b:c9:3e:21:33:72:34:82:51:31:69: 8f:42:0d:15:03:c8:fe:1c:af:ea:93:3b:b1:1e:4a: c8:9b:bf:f8:7c:53:a2:3a:1a:41:f4:a8:d8:79:81: bf:fd:be:7a:8d:37:56:f5:80:71:3b:aa:96:a8:34: e6:7e:c8:ba:5a:ca:a3:e9:1f:db:47:e8:8b:27:28: e8:f9:c4:5f:30:2f:7b:ce:da:55:b0:cd:2d:52:67: e5:90:e5:14:fb:4d:9d:30:d1:2e:11:8e:24:b7:68: 02:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:31:1B:AF:FB:A7:30:0F:FB:E7:C8:43:13:0D:16:82:E5:51:C7:0D X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:2d:00:43:f9:88:a2:35:8e:12:8f:05:d0:a9:e5:f7:20:08: d3:56:40:d4:56:ad:f1:b9:44:92:d8:cd:21:fc:cf:54:2f:ed: 9f:57:03:38:77:ab:cb:da:7e:5f:a5:70:ea:f1:63:9a:ad:67: 71:01:d1:79:ad:90:35:0f:a7:cd:a3:93:43:12:ac:86:7e:52: ba:aa:4d:ba:e2:d7:a8:ca:f7:23:cb:44:93:fa:05:a9:b3:20: 54:59:bf:31:25:9f:64:0d:7c:12:be:1f:7d:a4:c3:f1:e4:c3: 1a:0d:ac:ff:18:bf:3e:1e:5f:7d:a1:db:ad:43:c8:c6:97:13: 33:0b:ee:0f:15:3e:de:27:c7:f9:08:13:43:2e:63:32:97:14: 56:78:05:05:b4:9e:10:cd:02:4d:21:11:86:b5:81:38:f1:85: 29:e4:5b:1a:61:71:44:d5:d4:75:72:18:35:5c:52:17:c3:59: 98:0c:a3:cf:d5:ee:9c:62:fc:1d:cd:20:2f:eb:37:75:20:d1: c7:03:4a:c4:77:53:e2:3a:29:ec:36:a8:63:22:30:00:1e:8c: 62:91:09:da:53:c1:65:09:c1:47:9a:0e:17:a8:72:d6:b3:39: 2d:0f:a6:79:e2:3f:f6:84:26:e0:ed:c4:7e:25:8c:8a:3c:66: 80:bf:bd:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjYwNDA1MDEyOTMxWhcNMjYwNDEyMDEyOTMxWjAYMRYwFAYD VQQDEw02OWQxYmFmYi1hYzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAst8GwOTEHEU83hvOQZ4VUC6tBtGGfP46qnu5ogACcxnfrbrfNh1edMZpINLo b+3gKWhp5YNWKuXCVmKrrY0JRCUsqYIB6NMubuVIzbp7YBfjw/KSVxt1EUxj82+J Xm19G68pDPbMa0lyr7F6reTNEr6fNj/DlQtRASXVqSJgX/41acif00qHKjmnYgpJ h73LoWEDLFyMr/sxi8k+ITNyNIJRMWmPQg0VA8j+HK/qkzuxHkrIm7/4fFOiOhpB 9KjYeYG//b56jTdW9YBxO6qWqDTmfsi6Wsqj6R/bR+iLJyjo+cRfMC97ztpVsM0t UmflkOUU+02dMNEuEY4kt2gCOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNMxG6/7 pzAP++fIQxMNFoLlUccNMB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0MyNC8xNkM2MTMxNjZBRkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJV UEZoU0ZjR1lNeHd6d2lXblUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXi0AQ/mIojWOEo8F0Knl9yAI01ZA1Fat8blEktjNIfzPVC/tn1cDOHery9p+ X6Vw6vFjmq1ncQHRea2QNQ+nzaOTQxKshn5SuqpNuuLXqMr3I8tEk/oFqbMgVFm/ MSWfZA18Er4ffaTD8eTDGg2s/xi/Ph5ffaHbrUPIxpcTMwvuDxU+3ifH+QgTQy5j MpcUVngFBbSeEM0CTSERhrWBOPGFKeRbGmFxRNXUdXIYNVxSF8NZmAyjz9XunGL8 Hc0gL+s3dSDRxwNKxHdT4jop7DaoYyIwAB6MYpEJ2lPBZQnBR5oOF6hy1rM5LQ+m eeI/9oQm4O3EfiWMijxmgL+9Vw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:56 2026 by rpki-client