$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: cGMMirtpNLWWhlOj1DjTp6iHdkYf1d2zaemPAQsjiRU= Subject key identifier: 45:E8:3A:BD:A5:82:9F:8C:7E:FB:B0:5E:0F:AC:A8:14:E0:C2:59:90 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: FF Signing time: Sun 05 Apr 2026 05:36:08 +0000 Manifest this update: Sun 05 Apr 2026 05:36:08 +0000 Manifest next update: Sun 12 Apr 2026 05:36:08 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: PDZOqvQzBNKOCLgbB9P5uz/8I5DhsEqv5oBgZfVtjSg=) 2: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: Pjr/Al+ZFffNus+aH+TIpueq22icnlUqNTg+gkHkCcw=) 3: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: swU/cIT55IB6CLXX7olyaDaVghm9dVy0OQ1HquSKmXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Apr 5 05:36:08 2026 GMT Not After : Apr 12 05:36:08 2026 GMT Subject: CN=69d1f4c8-4d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:3f:6f:73:41:7a:08:30:06:10:90:1f:06:81: 31:1a:bc:88:a6:71:26:cc:e7:cd:5d:99:42:e1:96: 5c:e3:eb:67:ae:c2:0d:ac:ef:71:86:32:a0:b5:07: 55:fe:4d:f4:2f:56:d9:2c:c2:5f:3b:83:79:69:34: fe:f3:a7:60:54:e1:25:97:62:b8:60:3c:75:c4:b7: 87:2a:58:21:73:d6:77:f1:e4:02:f9:08:2a:1f:b2: 83:f2:de:18:ec:fa:b9:2a:b0:ee:e5:ff:7a:fd:9c: 3c:a9:68:05:92:55:85:f9:f8:96:17:6a:5e:1c:02: 2f:45:7e:43:e2:dd:f6:e8:f9:08:e1:00:7d:f7:62: a7:7b:50:e3:0b:44:1d:44:e1:3f:e3:a1:84:1b:b7: f7:ec:a4:b6:0a:ca:3d:f2:18:e0:fc:cf:ec:f5:49: 0f:6f:37:be:3d:8f:43:c8:64:08:19:0f:59:84:b1: 2f:c5:f7:fe:b8:6d:62:9e:f8:4f:37:00:9f:c3:d0: 55:2a:7f:42:9a:86:a4:35:52:39:12:ad:4d:4e:7f: 77:ec:4a:d6:09:0e:bd:d5:30:65:b0:11:8b:5c:67: e2:02:7d:79:79:18:98:53:94:62:f7:16:67:47:51: a5:d2:61:30:b7:7a:d6:66:31:d3:b2:93:61:10:8a: 90:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E8:3A:BD:A5:82:9F:8C:7E:FB:B0:5E:0F:AC:A8:14:E0:C2:59:90 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:bb:08:fd:b7:5b:5e:a8:f7:24:b9:08:e4:1d:c9:59:e6:a9: 5f:3f:7a:f3:1f:d7:3f:8e:a7:55:1e:ab:5f:c3:e9:8a:96:d9: 69:20:ee:a4:c1:f4:be:6c:89:0f:20:28:9b:3e:6a:ef:79:b0: fb:0d:11:54:d3:d2:b9:06:06:57:5c:c5:e9:be:3d:6f:ef:a5: bc:bd:58:03:57:a4:9a:89:0f:60:a0:ce:61:5d:67:8a:45:9c: ce:dc:02:19:37:b0:2a:13:bf:39:5b:b9:25:3f:6c:b4:f4:83: de:fc:e0:bf:d3:c6:e8:35:79:90:35:f9:a2:91:e5:09:89:d9: 2e:c4:7d:16:f3:f8:11:e9:3a:fc:7c:cc:41:c5:23:1b:0d:bd: 07:19:41:5e:47:bc:fc:6d:80:d9:ad:74:06:8a:1e:ae:94:5f: c8:3a:33:4d:f9:aa:7e:d6:ef:19:9e:f8:24:f2:9d:23:c5:28: ec:e7:cb:61:bf:dc:00:1b:11:ac:64:18:9d:8c:58:5c:da:45: a9:72:ad:1b:e2:15:81:6e:90:e3:ea:62:37:a0:f2:56:d4:3e: f3:df:ae:94:08:22:05:e9:54:41:24:4e:3e:4a:dc:e6:57:07: dd:a3:30:c5:d4:31:84:f5:53:d5:c6:18:56:23:07:db:d4:a4: 1b:09:e4:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKEEwMEUwMkRDNzgzRjkwODQwMjFERjk0Rjc1ODYyNjRF QzQ3RDM0MzgwHhcNMjYwNDA1MDUzNjA4WhcNMjYwNDEyMDUzNjA4WjAYMRYwFAYD VQQDEw02OWQxZjRjOC00ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3D9vc0F6CDAGEJAfBoExGryIpnEmzOfNXZlC4ZZc4+tnrsINrO9xhjKgtQdV /k30L1bZLMJfO4N5aTT+86dgVOEll2K4YDx1xLeHKlghc9Z38eQC+QgqH7KD8t4Y 7Pq5KrDu5f96/Zw8qWgFklWF+fiWF2peHAIvRX5D4t326PkI4QB992Kne1DjC0Qd ROE/46GEG7f37KS2Cso98hjg/M/s9UkPbze+PY9DyGQIGQ9ZhLEvxff+uG1invhP NwCfw9BVKn9CmoakNVI5Eq1NTn937ErWCQ691TBlsBGLXGfiAn15eRiYU5Ri9xZn R1Gl0mEwt3rWZjHTspNhEIqQUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEXoOr2l gp+MfvuwXg+sqBTgwlmQMB8GA1UdIwQYMBaAFKAOAtx4P5CEAh35T3WGJk7EfTQ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GOTdCQzMwMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJUUNIZmxQZFlZbVRzUjlO RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJ UUNIZmxQZFlZbVRzUjlORGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPbsI/bdbXqj3JLkI5B3JWeapXz968x/XP46nVR6rX8PpipbZaSDupMH0vmyJ DyAomz5q73mw+w0RVNPSuQYGV1zF6b49b++lvL1YA1ekmokPYKDOYV1nikWcztwC GTewKhO/OVu5JT9stPSD3vzgv9PG6DV5kDX5opHlCYnZLsR9FvP4Eek6/HzMQcUj Gw29BxlBXke8/G2A2a10BooerpRfyDozTfmqftbvGZ74JPKdI8Uo7OfLYb/cABsR rGQYnYxYXNpFqXKtG+IVgW6Q4+piN6DyVtQ+89+ulAgiBelUQSROPkrc5lcH3aMw xdQxhPVT1cYYViMH29SkGwnkYQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:31 2026 by rpki-client