$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: he9FlxuFJXrEepxfmG9Z2pxk75G3AdZvgnimJJtzwPo= Subject key identifier: 1D:3D:53:A6:29:8C:C7:B8:95:45:39:18:6B:2B:28:F2:CF:6B:70:66 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0D03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0CF0 Signing time: Sat 04 Apr 2026 18:09:27 +0000 Manifest this update: Sat 04 Apr 2026 18:09:27 +0000 Manifest next update: Sat 11 Apr 2026 18:09:27 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: yRlm3ctg0ykbR7vxwAo5IHPYTkApuRpl1JCiR9GzBH4=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: VuO6oFmdrg28zC8aljPGAA2mZqdTmBMcrxACwaZ0phY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3331 (0xd03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Apr 4 18:09:27 2026 GMT Not After : Apr 11 18:09:27 2026 GMT Subject: CN=69d153d7-8b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e7:90:40:39:5f:f1:20:a7:1d:99:c8:d8:a2: 9e:c8:22:fe:9d:5b:1e:86:f9:5a:65:79:e1:5c:78: 68:c5:87:28:b9:85:3d:5e:2b:97:7e:8c:87:3c:35: 79:fa:9e:9a:1d:54:ae:64:1e:4e:f7:af:0d:e6:a6: eb:35:06:c7:24:49:9f:6f:7e:f3:60:fc:9a:88:c9: 82:f8:e4:3e:f0:46:47:ee:4d:9d:fc:01:5a:50:df: 94:5f:2f:5d:cb:ed:7b:8b:20:8b:a8:97:6b:31:80: 89:74:be:85:01:a4:65:49:83:94:1b:c8:30:dd:5d: 5c:1a:78:cb:be:f7:cf:b0:43:1c:6f:7c:2a:6e:d2: 1e:be:37:7c:ee:8e:56:1a:4d:38:eb:33:76:93:36: 49:0b:ba:e4:e7:d8:66:9d:6a:37:6b:1b:1f:3c:be: ae:17:60:9e:34:ae:50:5e:e7:f6:94:03:bf:ea:87: 1a:51:13:3b:7b:87:f9:6c:d4:19:bf:12:48:9c:b8: 72:ad:dd:3e:d9:66:2b:4e:41:98:4c:c6:0e:6a:21: 0c:95:4e:2c:f0:2a:83:62:ef:0e:5c:b3:9d:4e:fa: 83:65:fc:7d:61:e9:ed:2f:7f:a4:cc:90:f4:aa:b3: df:df:b6:00:b3:8e:b6:53:42:e9:51:fa:c7:ba:8d: a6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3D:53:A6:29:8C:C7:B8:95:45:39:18:6B:2B:28:F2:CF:6B:70:66 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:68:56:c5:61:12:8c:9c:0d:61:0e:0f:51:a7:78:51:f4:7c: 91:40:6d:73:03:14:74:1b:e0:60:8c:c4:c0:19:31:c0:d8:c9: 33:3f:a6:9f:a4:77:2a:52:53:9e:01:67:a3:e7:99:b6:5b:af: b3:34:ee:8e:d7:82:08:97:e0:85:1f:fd:c2:09:9e:55:24:64: e4:99:2b:4b:59:b1:e9:81:41:e5:9a:32:b3:61:e6:0f:69:3b: 9d:4a:ee:51:69:95:9e:6f:f1:b8:36:3a:e0:ee:9a:73:8b:14: 2c:76:fa:24:31:56:c1:cb:94:f7:b5:ee:bd:b0:0e:8d:d0:fd: be:57:06:62:d5:b9:b7:4b:82:f3:6c:46:65:db:ec:82:56:cd: 00:97:a9:85:8e:ac:ea:26:d1:d2:e7:4d:c8:64:0a:d6:85:30: 73:db:6a:56:e0:01:52:a3:b2:4a:20:48:13:5b:22:ae:d9:3c: b0:6c:2e:4b:6f:a1:bf:88:13:7a:a2:5d:7f:1f:c1:4c:2a:ff: 3d:7b:3c:51:50:b1:98:35:50:c0:c5:9f:ea:50:6e:88:51:72: 99:7c:75:7d:19:9d:2d:9c:6e:0d:8c:13:b0:ad:6d:89:47:7c: 8b:4c:18:20:ef:75:b5:75:70:b7:2e:6a:a4:e3:4c:7d:91:05: 88:0c:62:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjYwNDA0MTgwOTI3WhcNMjYwNDExMTgwOTI3WjAYMRYwFAYD VQQDEw02OWQxNTNkNy04YjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+eQQDlf8SCnHZnI2KKeyCL+nVsehvlaZXnhXHhoxYcouYU9XiuXfoyHPDV5 +p6aHVSuZB5O968N5qbrNQbHJEmfb37zYPyaiMmC+OQ+8EZH7k2d/AFaUN+UXy9d y+17iyCLqJdrMYCJdL6FAaRlSYOUG8gw3V1cGnjLvvfPsEMcb3wqbtIevjd87o5W Gk046zN2kzZJC7rk59hmnWo3axsfPL6uF2CeNK5QXuf2lAO/6ocaURM7e4f5bNQZ vxJInLhyrd0+2WYrTkGYTMYOaiEMlU4s8CqDYu8OXLOdTvqDZfx9YentL3+kzJD0 qrPf37YAs462U0LpUfrHuo2mAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB09U6Yp jMe4lUU5GGsrKPLPa3BmMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHmhWxWESjJwNYQ4PUad4UfR8kUBtcwMUdBvgYIzEwBkxwNjJMz+mn6R3KlJT ngFno+eZtluvszTujteCCJfghR/9wgmeVSRk5JkrS1mx6YFB5Zoys2HmD2k7nUru UWmVnm/xuDY64O6ac4sULHb6JDFWwcuU97XuvbAOjdD9vlcGYtW5t0uC82xGZdvs glbNAJephY6s6ibR0udNyGQK1oUwc9tqVuABUqOySiBIE1sirtk8sGwuS2+hv4gT eqJdfx/BTCr/PXs8UVCxmDVQwMWf6lBuiFFymXx1fRmdLZxuDYwTsK1tiUd8i0wY IO91tXVwty5qpONMfZEFiAximA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:00:28 2026 by rpki-client