$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: 3q51iISBsZT+zW5nARKpO76T5DbaZiSr7YpstpZa0rM= Subject key identifier: 8C:EA:EE:05:AF:CD:B4:2B:42:F8:AA:FF:1D:84:9C:06:2F:8B:5C:AB Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0898 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 087A Signing time: Mon 20 Apr 2026 20:44:00 +0000 Manifest this update: Mon 20 Apr 2026 20:43:59 +0000 Manifest next update: Mon 27 Apr 2026 20:43:59 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: MqO+BA4zDI+73EnlKHAgvai4MGjAx8d7krc8jCa42/E=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: 08lz7b6szSEMQO1jrd2yTTyJym47lMNxqFGZhqAfyUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 20:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2200 (0x898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Apr 20 20:43:59 2026 GMT Not After : Apr 27 20:43:59 2026 GMT Subject: CN=69e6900f-f96a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:dc:45:6e:d4:74:20:1d:d2:95:9e:3d:50:d0: 0b:45:e2:04:c9:a0:92:5e:fa:7a:0f:72:34:0d:27: b4:4f:a4:96:4c:6b:7f:58:67:e7:60:d3:cc:30:05: ec:03:c8:23:96:ee:0e:33:3a:2a:c1:40:bb:33:30: a3:1d:55:bd:d8:3b:d5:c5:05:90:95:62:7f:cf:83: bf:70:e5:2b:6b:c8:74:92:8a:9b:7f:bc:c6:d4:a2: 5a:34:61:df:93:2e:03:eb:73:59:a9:52:fa:18:71: a1:d7:18:de:cb:38:cb:16:64:c0:9a:d3:a3:4b:3e: bc:e8:bc:9d:68:5d:7d:29:a9:b2:f8:f4:46:a7:25: a1:df:8c:0c:00:2c:fe:41:70:4b:ab:89:06:8a:10: c3:b2:95:5a:96:e9:92:47:34:e6:4a:2a:89:cc:e0: 97:f7:da:42:38:e9:dd:ae:e1:43:3c:73:27:59:a2: 09:87:96:aa:09:63:88:1d:fe:d0:52:67:7c:bf:17: d7:91:db:fa:8b:d1:13:7c:aa:11:29:90:d3:ba:59: 19:f1:ea:79:a6:9a:3d:92:f6:5a:2f:7b:e7:f4:e2: 00:4a:58:71:0d:a9:eb:3f:04:aa:6e:f0:3a:49:c2: 42:dd:ab:63:a7:98:30:37:71:ec:53:5d:96:b1:0a: 38:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:EA:EE:05:AF:CD:B4:2B:42:F8:AA:FF:1D:84:9C:06:2F:8B:5C:AB X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:aa:74:9c:cd:d5:ab:e8:2b:d3:fe:35:ff:8f:33:e9:52:cb: 90:08:de:8d:33:c1:62:26:1f:b1:37:89:3e:00:92:7b:b6:d1: 2b:61:ef:e1:a7:a7:dd:f2:4c:d5:09:a6:f5:2b:9b:0b:9d:74: b7:ce:65:ea:13:3f:ef:a6:6f:bd:5d:b3:66:b3:3a:5b:13:3e: 9c:41:52:d4:00:38:86:63:2e:79:85:84:7b:24:66:b6:27:42: 33:fc:e3:55:da:51:ef:23:cb:ec:53:64:09:2e:f4:76:92:8d: ea:ce:cb:3f:ca:96:63:39:fb:91:f8:d9:3b:14:ba:b8:f9:c4: d2:6c:11:05:63:e4:65:fa:e3:93:81:b0:f4:97:2a:70:3e:86: 94:0e:5c:19:5d:91:f8:be:b1:55:a7:93:d6:50:6c:35:06:05: 39:72:20:97:c7:c3:82:7b:bc:99:54:cc:d6:5b:3d:dd:97:c3: 2f:bd:4c:b1:70:b3:b9:95:ee:05:8f:93:1e:b9:4e:cb:a5:7d: 7e:24:6d:e8:11:fc:c4:9e:bb:a1:dd:17:49:fc:5f:5b:53:2a: 2a:a1:5e:a3:6e:76:4c:18:fc:3c:ab:b8:d7:e4:30:d0:b6:3e: c8:1e:27:14:b1:f8:5b:99:4d:b1:0f:12:53:bf:da:03:98:f7: bf:df:16:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjYwNDIwMjA0MzU5WhcNMjYwNDI3MjA0MzU5WjAYMRYwFAYD VQQDEw02OWU2OTAwZi1mOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8NxFbtR0IB3SlZ49UNALReIEyaCSXvp6D3I0DSe0T6SWTGt/WGfnYNPMMAXs A8gjlu4OMzoqwUC7MzCjHVW92DvVxQWQlWJ/z4O/cOUra8h0koqbf7zG1KJaNGHf ky4D63NZqVL6GHGh1xjeyzjLFmTAmtOjSz686LydaF19Kamy+PRGpyWh34wMACz+ QXBLq4kGihDDspValumSRzTmSiqJzOCX99pCOOndruFDPHMnWaIJh5aqCWOIHf7Q Umd8vxfXkdv6i9ETfKoRKZDTulkZ8ep5ppo9kvZaL3vn9OIASlhxDanrPwSqbvA6 ScJC3atjp5gwN3HsU12WsQo45QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIzq7gWv zbQrQviq/x2EnAYvi1yrMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK6p0nM3Vq+gr0/41/48z6VLLkAjejTPBYiYfsTeJPgCSe7bRK2Hv4aen3fJM 1Qmm9SubC510t85l6hM/76ZvvV2zZrM6WxM+nEFS1AA4hmMueYWEeyRmtidCM/zj VdpR7yPL7FNkCS70dpKN6s7LP8qWYzn7kfjZOxS6uPnE0mwRBWPkZfrjk4Gw9Jcq cD6GlA5cGV2R+L6xVaeT1lBsNQYFOXIgl8fDgnu8mVTM1ls93ZfDL71MsXCzuZXu BY+THrlOy6V9fiRt6BH8xJ67od0XSfxfW1MqKqFeo252TBj8PKu41+Qw0LY+yB4n FLH4W5lNsQ8SU7/aA5j3v98W6Q== -----END CERTIFICATE-----Generated at Wed Apr 22 05:28:16 2026 by rpki-client