$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: lfImXA7yBue8/kACqo4v3yxk5gL3s6waTPfrCE4Gy38= Subject key identifier: F4:26:7A:25:50:30:E4:FE:A1:8B:B5:CB:BD:3B:57:77:5E:E1:18:4E Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 0A23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 0A0F Signing time: Sat 04 Apr 2026 19:37:54 +0000 Manifest this update: Sat 04 Apr 2026 19:37:54 +0000 Manifest next update: Sat 11 Apr 2026 19:37:54 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: KU8yjnHDhhaaDU38GFTwrLw3vz/yrf2kLUr/KTCH4Nk=) 2: 7AEEA290829E11F0975FC440C4F9AE02.roa (hash: ffwoJq84kOy2tG4k/aN3n6ozf9LlqpCjd9uK2ZJO1BM=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: v6k0jsddCRTxnduBCevo9h7oXXgJAgW/4ikmMahgMvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2595 (0xa23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Apr 4 19:37:54 2026 GMT Not After : Apr 11 19:37:54 2026 GMT Subject: CN=69d16892-d1cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b2:d0:d0:8e:25:0e:bd:bf:0d:40:f4:2a:42: 98:c5:38:19:39:20:66:e1:24:9e:33:b8:b0:99:ad: 90:14:ba:6f:d1:9f:a6:22:33:dd:fa:25:57:6f:ef: 85:af:a0:9f:12:83:a3:62:6c:0e:ff:bc:46:84:6a: 10:83:ae:13:c5:72:61:12:54:e3:68:70:0e:df:0c: 6a:55:e4:cb:36:66:19:56:61:fc:4c:9d:37:54:11: 49:b7:03:26:d6:76:46:1b:ea:21:d9:8d:71:72:7e: 6e:61:01:1f:b3:52:3f:0b:7e:5e:e0:15:05:9f:ca: 01:76:86:a2:3d:8f:17:d3:60:68:ab:7d:9c:b2:e9: 1c:e9:c8:65:0a:1d:9e:04:cb:fe:f8:5b:b7:1f:cd: fd:84:3c:8a:93:26:42:1c:a4:03:e3:76:ef:5a:dd: 47:ba:8b:7f:11:4f:ad:42:84:cf:30:a1:52:66:c0: 6b:eb:c1:24:5d:38:78:24:64:08:dc:5a:54:08:06: b5:5c:96:4d:1d:61:09:fa:66:68:df:18:25:9b:93: 65:ff:29:fb:bf:e7:fb:45:cc:61:ab:13:d6:95:ed: dd:ea:32:9b:37:8f:a7:64:3e:83:c9:aa:dd:87:12: 32:8a:1b:2b:df:00:15:46:54:b7:f0:68:1a:68:8d: f5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:26:7A:25:50:30:E4:FE:A1:8B:B5:CB:BD:3B:57:77:5E:E1:18:4E X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:6c:c3:ac:84:76:31:79:90:ef:9a:54:33:b8:34:1d:28:6e: 78:79:1f:39:dd:e7:bb:b9:3e:e2:33:41:69:15:1e:81:32:1a: 62:b1:7d:5c:6a:e7:1b:52:1f:90:af:80:90:cc:5c:5f:e9:0a: d4:b0:cb:75:6b:2c:b4:c9:42:f0:b4:84:bf:f7:83:30:63:32: a0:d4:d7:be:4e:db:2b:9f:31:45:3e:7e:a8:b1:eb:3c:7b:d7: 19:2f:58:4b:c5:a0:ce:cb:10:e0:81:06:d2:3c:43:33:2c:51: 6b:04:32:6a:61:20:a9:9d:3a:41:cf:5a:84:ed:d6:c8:50:78: aa:44:80:5c:79:01:1b:54:6d:9e:e5:ea:16:7b:91:e2:0d:cb: ba:1c:1e:e1:b0:8e:6d:eb:79:2d:86:b8:8f:64:a8:34:64:0f: c6:f6:f3:d3:44:39:25:51:5b:a5:03:5e:f4:79:f1:c9:8c:2e: 49:06:0b:4d:71:49:fd:11:40:52:ce:0a:45:78:9a:cb:5c:2c: 3e:a9:2c:37:cf:81:33:9f:15:45:8f:00:a6:51:34:3d:58:e7: ee:84:1a:70:40:3c:6c:98:b5:08:c9:22:7b:21:a1:2c:e9:b5: 61:79:99:0b:b6:c4:3d:5a:4b:72:45:d0:a9:e9:35:d4:2e:02: d9:a0:65:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjYwNDA0MTkzNzU0WhcNMjYwNDExMTkzNzU0WjAYMRYwFAYD VQQDEw02OWQxNjg5Mi1kMWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7LQ0I4lDr2/DUD0KkKYxTgZOSBm4SSeM7iwma2QFLpv0Z+mIjPd+iVXb++F r6CfEoOjYmwO/7xGhGoQg64TxXJhElTjaHAO3wxqVeTLNmYZVmH8TJ03VBFJtwMm 1nZGG+oh2Y1xcn5uYQEfs1I/C35e4BUFn8oBdoaiPY8X02Boq32csukc6chlCh2e BMv++Fu3H839hDyKkyZCHKQD43bvWt1Huot/EU+tQoTPMKFSZsBr68EkXTh4JGQI 3FpUCAa1XJZNHWEJ+mZo3xglm5Nl/yn7v+f7RcxhqxPWle3d6jKbN4+nZD6Dyard hxIyihsr3wAVRlS38GgaaI31aQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPQmeiVQ MOT+oYu1y707V3de4RhOMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHmzDrIR2MXmQ75pUM7g0HShueHkfOd3nu7k+4jNBaRUegTIaYrF9XGrnG1If kK+AkMxcX+kK1LDLdWsstMlC8LSEv/eDMGMyoNTXvk7bK58xRT5+qLHrPHvXGS9Y S8WgzssQ4IEG0jxDMyxRawQyamEgqZ06Qc9ahO3WyFB4qkSAXHkBG1RtnuXqFnuR 4g3Luhwe4bCObet5LYa4j2SoNGQPxvbz00Q5JVFbpQNe9HnxyYwuSQYLTXFJ/RFA Us4KRXiay1wsPqksN8+BM58VRY8AplE0PVjn7oQacEA8bJi1CMkieyGhLOm1YXmZ C7bEPVpLckXQqek11C4C2aBlaw== -----END CERTIFICATE-----Generated at Mon Apr 6 14:15:09 2026 by rpki-client