$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: LkkFEwR1E9+OVb35Sabms8SPI0ouhR4Fx9LNbv0xKCY= Subject key identifier: 61:C6:D0:43:E7:83:3E:EA:22:68:E3:BB:35:4D:F1:60:27:DF:13:59 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 0135 Signing time: Sun 05 Apr 2026 04:50:42 +0000 Manifest this update: Sun 05 Apr 2026 04:50:41 +0000 Manifest next update: Sun 12 Apr 2026 04:50:41 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: pv0LLDul26yNwKZbe7XiBQay663YBVDGluqkcdD4ke0=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: rKKs75f3Fq0WXiFUQVZhwV3/C+6KDS0+3S6WBSvsbeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Apr 5 04:50:41 2026 GMT Not After : Apr 12 04:50:41 2026 GMT Subject: CN=69d1ea22-eaa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:08:8d:40:3b:c9:83:a1:66:56:3d:02:aa:22: 34:a1:ce:2e:ee:04:80:b5:04:44:55:58:f3:3e:2c: 93:30:c2:6a:96:f3:76:66:00:93:47:ad:17:02:6c: 2d:8f:8b:2b:c9:3e:df:e3:28:14:e1:01:72:c0:8a: 48:ec:96:e0:db:0d:b6:59:a0:4d:2c:50:13:a3:35: bf:b4:13:51:e3:ea:a3:14:6a:e1:2b:d2:c5:af:a2: 7f:51:17:ce:c0:11:89:69:91:5e:2d:3a:45:e4:a8: 9f:8b:87:b5:24:1b:68:c6:9f:c6:06:b7:d3:54:9f: 72:c1:65:85:fb:26:37:ce:f2:98:b5:ef:d2:92:04: 53:c4:43:57:73:00:8d:ea:b5:56:84:a8:02:b7:0f: 0f:e0:2f:95:29:cb:0e:d7:85:df:0f:aa:34:e9:0a: 61:bd:87:4c:95:07:fb:25:e0:9a:f2:1e:3b:dc:87: 6f:7d:f4:02:2c:4c:b0:51:ec:73:6c:44:41:ec:d5: e5:cd:90:22:bd:5c:3f:0e:67:5a:81:ad:9e:39:41: e3:65:c5:2c:61:dd:06:a2:c8:f3:63:50:dc:06:3d: 6a:fe:05:ba:69:d1:c0:43:27:71:8d:7e:eb:9c:21: da:e7:3e:f6:e6:11:cd:e2:4c:9a:d0:33:c4:16:48: 02:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C6:D0:43:E7:83:3E:EA:22:68:E3:BB:35:4D:F1:60:27:DF:13:59 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:73:fe:f6:60:0b:6f:f1:8a:70:94:ca:bc:2f:8b:1e:74:b0: fa:69:fb:3a:db:df:8c:82:bf:86:62:0f:75:15:e8:c9:22:c2: c7:05:f8:fd:aa:cd:cc:f9:38:cd:ef:96:30:e2:9a:63:13:1c: 5d:02:90:37:42:12:8e:9f:6d:3d:eb:03:7a:82:ae:4a:69:71: ae:54:c4:c4:04:30:6f:e6:44:3b:d2:42:b4:84:8a:48:37:1c: 8d:74:c4:1f:f3:92:82:fb:25:d2:d3:0a:6b:ba:a9:f2:22:97: 79:ff:48:f7:a4:ed:79:dc:4e:e6:e8:88:5d:05:53:f2:33:8a: 7e:60:2e:6d:0c:f6:63:49:09:2a:92:8a:12:02:b5:61:f6:5d: 43:bb:57:9d:3f:e0:8f:3a:7a:48:a9:7d:b0:2a:30:a2:e4:c4: 79:b6:9e:d1:27:27:7b:9c:fd:00:a8:a2:96:63:13:de:a8:91: 9f:b9:bf:12:03:23:af:2a:52:80:63:ca:80:37:1d:58:cb:d9: f4:ad:3d:f3:22:0e:41:99:f0:15:f6:bd:7b:47:cd:f2:63:40: 5e:8d:62:42:fb:82:3a:5c:e1:0d:27:14:fd:4c:2e:04:14:c0: 84:ec:7d:f1:e4:6b:58:0f:ec:e5:0a:d3:c9:91:3c:b2:cb:d2: df:88:0c:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjYwNDA1MDQ1MDQxWhcNMjYwNDEyMDQ1MDQxWjAYMRYwFAYD VQQDEw02OWQxZWEyMi1lYWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgiNQDvJg6FmVj0CqiI0oc4u7gSAtQREVVjzPiyTMMJqlvN2ZgCTR60XAmwt j4sryT7f4ygU4QFywIpI7Jbg2w22WaBNLFATozW/tBNR4+qjFGrhK9LFr6J/URfO wBGJaZFeLTpF5Kifi4e1JBtoxp/GBrfTVJ9ywWWF+yY3zvKYte/SkgRTxENXcwCN 6rVWhKgCtw8P4C+VKcsO14XfD6o06QphvYdMlQf7JeCa8h473IdvffQCLEywUexz bERB7NXlzZAivVw/Dmdaga2eOUHjZcUsYd0GosjzY1DcBj1q/gW6adHAQydxjX7r nCHa5z725hHN4kya0DPEFkgCvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGHG0EPn gz7qImjjuzVN8WAn3xNZMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw3P+9mALb/GKcJTKvC+LHnSw+mn7OtvfjIK/hmIPdRXoySLCxwX4/arNzPk4 ze+WMOKaYxMcXQKQN0ISjp9tPesDeoKuSmlxrlTExAQwb+ZEO9JCtISKSDccjXTE H/OSgvsl0tMKa7qp8iKXef9I96TtedxO5uiIXQVT8jOKfmAubQz2Y0kJKpKKEgK1 YfZdQ7tXnT/gjzp6SKl9sCowouTEebae0Scne5z9AKiilmMT3qiRn7m/EgMjrypS gGPKgDcdWMvZ9K098yIOQZnwFfa9e0fN8mNAXo1iQvuCOlzhDScU/UwuBBTAhOx9 8eRrWA/s5QrTyZE8ssvS34gMJg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:56:45 2026 by rpki-client