$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: vJzgS9P+1j4uAe34whvdRAM8mTLEKI8g3+AAa68vbow= Subject key identifier: A9:5E:F4:CF:B1:6E:B8:09:57:03:CC:FA:A8:7B:D6:8E:CB:E8:0A:3A Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 8C Signing time: Sun 05 Apr 2026 06:57:01 +0000 Manifest this update: Sun 05 Apr 2026 06:57:01 +0000 Manifest next update: Sun 12 Apr 2026 06:57:01 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: lBMotGqlepSZO8Zkb5DurAUejejLJSWJ0Oly+laavM8=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: 1+gWdAZ37YIBU2iFVY3fHe/eCmXpEhHdoc6OKpG9wTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Apr 5 06:57:01 2026 GMT Not After : Apr 12 06:57:01 2026 GMT Subject: CN=69d207bd-5c5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4f:43:85:ac:53:86:8d:be:64:32:a8:9a:bb: 10:8f:5c:13:52:08:8e:a5:57:d4:c6:c6:2a:1a:01: ef:90:08:1e:cb:8b:b5:88:e4:b9:c5:f0:49:b0:86: 67:93:30:9c:69:10:de:9d:6c:9c:3e:74:76:56:11: 52:33:8e:a9:2e:c7:6f:cb:78:d3:ca:56:c5:f3:1a: 22:42:35:41:fe:e6:24:0d:38:f2:fa:db:cd:8b:cb: f2:6d:56:3e:8f:f4:84:f4:d1:9c:0b:10:f8:5c:97: 75:d3:51:d9:2b:e5:8a:05:5c:34:51:de:13:89:27: a1:cf:5e:6c:9a:d1:f3:91:22:09:89:65:ac:88:fa: 53:e2:c3:73:66:b1:71:13:6e:bc:37:64:8c:f7:3e: 8e:84:6d:12:6e:b5:6b:e2:7d:b9:cc:38:84:72:29: 1c:fc:d2:44:5b:30:29:1b:85:5f:32:b1:1b:20:db: 49:15:6a:84:04:c6:c0:d7:46:fd:c0:49:82:d2:cd: 22:ea:e4:79:7e:16:28:fc:b2:72:03:7e:5b:52:72: 91:aa:3e:66:27:b5:be:66:8a:ad:c6:be:92:d1:68: d7:91:c8:7b:f7:41:6d:71:05:74:24:e8:ed:e3:17: e8:71:0e:36:ea:b2:64:e8:73:27:45:94:62:99:df: ff:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:5E:F4:CF:B1:6E:B8:09:57:03:CC:FA:A8:7B:D6:8E:CB:E8:0A:3A X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:5b:9c:c2:91:20:d6:22:9f:a8:30:d8:2c:08:d4:57:b3:37: 1c:b3:3e:13:07:5e:a6:a1:ad:2a:e8:3f:59:48:38:df:75:e9: cd:38:da:c6:b5:8f:98:fd:59:27:3b:c0:0e:b2:61:96:19:56: 31:5f:6c:0a:ff:e5:3b:49:03:65:b7:fb:b5:69:39:15:84:fc: f1:e7:75:7a:22:00:01:30:cf:fa:ba:2f:c4:4b:88:23:1a:c6: 58:14:cf:40:b4:86:ef:b3:59:a4:08:a2:04:4e:ad:ef:ff:58: 64:1f:55:1a:bd:bd:cf:bb:94:87:00:c9:ac:36:42:02:c5:a4: 55:ba:7b:ba:bb:b5:13:e3:7b:b9:b6:13:e3:37:b4:ea:2a:67: d6:51:59:93:54:64:07:21:38:b4:47:d4:6a:5c:ef:db:6c:51: bd:88:cd:f3:da:7c:dc:fa:cb:5d:46:d1:c8:bb:a6:a3:29:8f: 15:eb:da:1c:ea:14:f2:80:61:ba:4e:6a:8b:76:9c:11:7c:f6: 03:66:bb:be:e5:b1:bc:11:a5:2e:14:ea:77:48:ea:39:64:1b: 98:be:6f:38:b5:eb:46:d1:ed:75:97:31:8f:81:61:cc:f8:ec: 7c:24:51:ef:b4:e1:e3:37:b1:95:8a:85:62:b4:a3:a0:c3:f8: ec:e4:6a:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQzRjIxMTAvBgNVBAUTKDU1Nzg5QTM0MTZFN0VGNTE1Q0UwOEYwNUEzNkYxREVE ODM0NDRDMDkwHhcNMjYwNDA1MDY1NzAxWhcNMjYwNDEyMDY1NzAxWjAYMRYwFAYD VQQDEw02OWQyMDdiZC01YzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz09DhaxTho2+ZDKomrsQj1wTUgiOpVfUxsYqGgHvkAgey4u1iOS5xfBJsIZn kzCcaRDenWycPnR2VhFSM46pLsdvy3jTylbF8xoiQjVB/uYkDTjy+tvNi8vybVY+ j/SE9NGcCxD4XJd101HZK+WKBVw0Ud4TiSehz15smtHzkSIJiWWsiPpT4sNzZrFx E268N2SM9z6OhG0SbrVr4n25zDiEcikc/NJEWzApG4VfMrEbINtJFWqEBMbA10b9 wEmC0s0i6uR5fhYo/LJyA35bUnKRqj5mJ7W+Zoqtxr6S0WjXkch790FtcQV0JOjt 4xfocQ426rJk6HMnRZRimd//fQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKle9M+x brgJVwPM+qh71o7L6Ao6MB8GA1UdIwQYMBaAFFV4mjQW5+9RXOCPBaNvHe2DREwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDNGMi80MTgwNTA5NDYw QzAxMUYwQUZCNDU3MkJDNEY5QUUwMi9WWGlhTkJibjcxRmM0SThGbzI4ZDdZTkVU QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDNGMi80MTgwNTA5NDYwQzAxMUYwQUZCNDU3MkJDNEY5QUUwMi9WWGlhTkJibjcx RmM0SThGbzI4ZDdZTkVUQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGFucwpEg1iKfqDDYLAjUV7M3HLM+EwdepqGtKug/WUg433XpzTjaxrWPmP1Z JzvADrJhlhlWMV9sCv/lO0kDZbf7tWk5FYT88ed1eiIAATDP+rovxEuIIxrGWBTP QLSG77NZpAiiBE6t7/9YZB9VGr29z7uUhwDJrDZCAsWkVbp7uru1E+N7ubYT4ze0 6ipn1lFZk1RkByE4tEfUalzv22xRvYjN89p83PrLXUbRyLumoymPFevaHOoU8oBh uk5qi3acEXz2A2a7vuWxvBGlLhTqd0jqOWQbmL5vOLXrRtHtdZcxj4FhzPjsfCRR 77Th4zexlYqFYrSjoMP47ORqqA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:33:50 2026 by rpki-client