$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: 9wW9GU/CS++Q4YBvE06R86uhovSPETbXr9MvWjAlh9Q= Subject key identifier: 5D:43:EC:68:35:AF:69:F2:5B:D6:37:E0:63:41:FF:9F:8D:42:58:F8 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 037A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 0357 Signing time: Sat 25 Apr 2026 00:54:34 +0000 Manifest this update: Sat 25 Apr 2026 00:54:34 +0000 Manifest next update: Sat 02 May 2026 00:54:34 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: sYcw69r3EGPceISWZT52/A0nDN0r4Nbk/FJyHmu2TvQ=) 2: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: vM0A7WnGvcxI52gcg6mHL5DanZRChz8WZQbZNCoxjuM=) 3: 652A87CC65EC11F0BAEF8066C4F9AE02.roa (hash: QTw/GKnqOzom+7g2Vy0ugUBB+pLhZarT5O8cic2MYbc=) 4: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: WYNTjnlZgwrqZBIU4k28zQZnPO22jdEa1SzcgGRQAiQ=) 5: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: 9v4NKBdRQhuU8DQv3Rod5Fcc10899zvHWabiZx6Nun8=) 6: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: nnwYsXqpriKdgHZ6F2Bjskh6Ji1AomhewkLa8SUVYYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 00:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 890 (0x37a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Apr 25 00:54:34 2026 GMT Not After : May 2 00:54:34 2026 GMT Subject: CN=69ec10ca-e59c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:46:45:ec:40:f7:77:77:3d:99:ad:31:3b:06: d5:5f:88:76:43:e8:5a:a5:94:26:e3:bf:06:c6:50: ef:e2:78:29:ea:dc:84:02:fc:87:7e:64:7b:a7:6b: ac:1a:d6:da:b6:d2:f7:63:ee:66:92:b4:30:f5:f9: d1:5f:7c:fd:6f:b5:3f:86:56:ef:43:d1:45:26:bd: 61:b4:7f:97:43:70:ca:23:39:96:29:9e:52:30:05: 4f:29:64:91:33:61:b7:d4:31:7c:38:9e:67:5e:55: 05:a6:76:2d:ad:1c:db:18:fa:f3:27:46:ab:7b:78: 98:a0:c0:41:9f:64:7f:16:11:00:4d:28:c2:d5:a9: 90:c7:20:92:02:c8:c5:c3:12:59:7d:8a:1e:91:90: 65:9d:00:e2:d6:b4:7c:cd:79:a6:ed:d0:57:c9:db: eb:db:57:56:04:e0:3d:5b:04:8b:63:5f:49:54:08: 16:fe:78:36:c0:6a:a1:21:e6:9b:86:37:5b:60:4e: a4:0d:c0:62:02:c6:df:d4:e2:6c:86:98:25:54:ec: 37:0d:a0:5f:7a:b4:7d:6c:0b:c0:46:c0:29:1b:08: ad:bb:ff:87:cd:e1:de:24:b6:44:b7:ea:32:d3:ec: f2:9f:e3:55:11:a8:e7:55:2c:d7:04:15:e6:44:44: 73:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:43:EC:68:35:AF:69:F2:5B:D6:37:E0:63:41:FF:9F:8D:42:58:F8 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:4c:6a:69:9f:2f:68:d1:b2:c0:17:f8:ea:78:30:b7:f3:ca: 8e:3d:ba:b5:18:eb:49:86:8e:e9:c5:af:4a:fa:a5:9c:79:d8: 7b:a8:8d:4c:75:13:70:95:3b:15:28:42:5f:1b:12:93:00:0b: 00:de:11:6a:ac:91:cb:59:36:6b:36:ad:41:f2:f1:64:81:65: 56:d3:49:20:d6:ca:1e:81:ae:3c:02:64:d5:6b:ca:ce:8b:32: 02:8a:52:7b:40:33:74:c7:dc:fc:0d:fc:75:e8:a4:c6:b5:d1: f4:8e:d7:bc:97:ae:f9:ca:b0:38:0e:f0:8b:46:ec:30:d4:5e: 72:98:78:29:02:c3:f9:84:09:6c:ce:c7:e7:01:fd:d3:d3:ba: 0d:7e:51:ae:34:e1:bb:b1:0c:53:64:b3:ab:ad:0d:50:ea:e0: 65:00:54:40:e5:8c:0f:29:e0:26:67:90:32:c7:6a:06:ed:b0: 34:05:84:be:f1:09:4b:2e:0b:76:48:53:15:33:75:18:00:36: e0:46:44:93:36:87:9c:ed:df:4b:9d:d4:0f:e2:13:b5:49:d4: 26:73:69:35:54:00:ab:2f:d2:02:79:20:2a:38:17:70:5f:e0: fb:84:b7:df:ca:f7:50:17:ba:7f:dd:0b:a7:ca:ee:71:be:64: 49:1c:ab:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjYwNDI1MDA1NDM0WhcNMjYwNTAyMDA1NDM0WjAYMRYwFAYD VQQDEw02OWVjMTBjYS1lNTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0ZF7ED3d3c9ma0xOwbVX4h2Q+hapZQm478GxlDv4ngp6tyEAvyHfmR7p2us GtbattL3Y+5mkrQw9fnRX3z9b7U/hlbvQ9FFJr1htH+XQ3DKIzmWKZ5SMAVPKWSR M2G31DF8OJ5nXlUFpnYtrRzbGPrzJ0are3iYoMBBn2R/FhEATSjC1amQxyCSAsjF wxJZfYoekZBlnQDi1rR8zXmm7dBXydvr21dWBOA9WwSLY19JVAgW/ng2wGqhIeab hjdbYE6kDcBiAsbf1OJshpglVOw3DaBferR9bAvARsApGwitu/+HzeHeJLZEt+oy 0+zyn+NVEajnVSzXBBXmRERzzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF1D7Gg1 r2nyW9Y34GNB/5+NQlj4MB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXExqaZ8vaNGywBf46ngwt/PKjj26tRjrSYaO6cWvSvqlnHnYe6iNTHUTcJU7 FShCXxsSkwALAN4RaqyRy1k2azatQfLxZIFlVtNJINbKHoGuPAJk1WvKzosyAopS e0AzdMfc/A38deikxrXR9I7XvJeu+cqwOA7wi0bsMNRecph4KQLD+YQJbM7H5wH9 09O6DX5RrjThu7EMU2Szq60NUOrgZQBUQOWMDyngJmeQMsdqBu2wNAWEvvEJSy4L dkhTFTN1GAA24EZEkzaHnO3fS53UD+ITtUnUJnNpNVQAqy/SAnkgKjgXcF/g+4S3 38r3UBe6f90Lp8rucb5kSRyrEA== -----END CERTIFICATE-----Generated at Mon Apr 27 02:05:54 2026 by rpki-client