$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: dO5x68FWUc1tyupqtSLu046F6NXEysTanpnBGj4G2pg= Subject key identifier: 80:68:4E:20:67:83:54:4B:E4:18:0C:67:4C:2C:EB:09:7C:B9:E7:86 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 0936 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 090A Signing time: Sat 18 Apr 2026 17:51:47 +0000 Manifest this update: Sat 18 Apr 2026 17:51:46 +0000 Manifest next update: Sat 25 Apr 2026 17:51:46 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: 3J0GqPVcvdvg9GGIU/mhFx80lm0Q0hiDng5tImZsVVg=) 2: D385E420314711EBA579873DC4F9AE02.roa (hash: OXpsFXQnHysc6JgYoLG/ywf9w/jV3FpEntMMj1+ecpM=) 3: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: BoTL56JNkoT8zZTebPvc7QbRsS4FGOp32MGJ/vJjCqw=) 4: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: x1jD2hg6E8urDPutIfNWsExPrrmq8yEETqPUKu1cNM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2358 (0x936) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Apr 18 17:51:46 2026 GMT Not After : Apr 25 17:51:46 2026 GMT Subject: CN=69e3c4b2-2db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5c:c1:73:d8:42:40:60:2b:44:b6:2d:6e:68: 8d:fa:75:e9:cd:23:b3:b0:18:72:ef:33:85:c2:c1: 2d:f2:7b:c0:8a:62:06:63:80:c5:3f:48:16:c2:c6: 97:c1:2b:1c:a8:03:c4:dc:2c:42:40:4a:81:5d:f6: 28:55:17:d0:78:4e:e3:b8:62:ce:83:52:37:b9:0a: 52:6f:b1:1d:a3:a2:36:27:05:76:88:f0:20:7e:1b: 45:59:d9:67:5b:c8:1c:7e:36:e1:db:4a:34:41:ac: ae:9e:fc:52:24:56:9c:6d:74:37:9c:92:43:c5:32: fc:75:9d:6d:b5:a5:f9:e4:98:78:b7:65:da:c9:2c: 02:cd:ef:5f:a1:5e:c8:9f:96:04:6f:64:e7:b7:4a: 3b:90:8b:f7:59:61:a5:62:6e:fd:28:1f:73:b5:69: f3:2d:32:d9:bb:75:2d:77:43:93:c4:f2:77:8d:63: a6:d7:35:0a:43:7f:56:40:26:27:50:3a:c6:d5:29: df:90:1d:32:87:b5:c2:e6:66:16:43:2b:3a:49:20: 53:3a:6b:29:49:7a:8b:56:7a:e2:38:17:60:32:7d: e9:f7:53:69:7a:83:8c:4e:8b:38:6a:ea:b4:c5:84: c4:15:39:91:e3:5b:8c:b0:6b:54:1d:54:0f:8b:17: c6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:68:4E:20:67:83:54:4B:E4:18:0C:67:4C:2C:EB:09:7C:B9:E7:86 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:96:d4:6a:8e:fe:5f:c8:1c:c3:78:5a:d3:8b:97:e0:07:9b: cc:54:7c:89:0e:6e:2f:a4:f3:22:41:a2:ef:a3:14:ed:d4:8e: aa:7b:0c:b6:7c:fd:3f:ad:dc:43:57:13:68:0a:b9:d8:94:46: 9c:fb:49:5f:f3:31:bb:ae:39:63:62:8c:60:9c:d6:26:d2:33: d1:24:29:19:0d:59:f5:b5:ee:86:8a:6c:46:44:e6:2b:49:76: 68:02:4f:4d:2c:fb:4b:ea:c4:63:91:51:a9:2e:6d:52:d7:9f: 5a:01:b4:9d:9c:6d:c2:c7:85:8f:a2:08:f0:00:ae:a2:98:8d: fc:a3:77:f9:7e:f1:70:6f:b1:39:38:6c:f7:32:ec:34:3f:db: 9e:93:f4:c0:97:5b:99:dc:3b:61:d9:a6:74:55:a5:dd:0b:b0: 9f:50:15:26:39:00:80:d5:5d:bf:c7:7e:6b:07:c4:d8:26:cb: 10:e9:5f:c2:02:e7:09:89:70:74:74:4d:cd:fb:ae:58:2e:8e: fb:1b:af:11:d3:38:fe:3e:3a:02:23:0b:3e:bd:44:be:d9:69: cc:45:79:02:ea:37:45:7d:32:03:82:c5:41:45:22:20:1b:7a: 36:b2:da:64:f2:e6:55:12:dd:7e:3e:9a:0f:49:57:0a:f0:63: ed:8e:01:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjYwNDE4MTc1MTQ2WhcNMjYwNDI1MTc1MTQ2WjAYMRYwFAYD VQQDEw02OWUzYzRiMi0yZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVzBc9hCQGArRLYtbmiN+nXpzSOzsBhy7zOFwsEt8nvAimIGY4DFP0gWwsaX wSscqAPE3CxCQEqBXfYoVRfQeE7juGLOg1I3uQpSb7Edo6I2JwV2iPAgfhtFWdln W8gcfjbh20o0QayunvxSJFacbXQ3nJJDxTL8dZ1ttaX55Jh4t2XaySwCze9foV7I n5YEb2Tnt0o7kIv3WWGlYm79KB9ztWnzLTLZu3Utd0OTxPJ3jWOm1zUKQ39WQCYn UDrG1SnfkB0yh7XC5mYWQys6SSBTOmspSXqLVnriOBdgMn3p91NpeoOMTos4auq0 xYTEFTmR41uMsGtUHVQPixfGRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIBoTiBn g1RL5BgMZ0ws6wl8ueeGMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfpbUao7+X8gcw3ha04uX4AebzFR8iQ5uL6TzIkGi76MU7dSOqnsMtnz9P63c Q1cTaAq52JRGnPtJX/Mxu645Y2KMYJzWJtIz0SQpGQ1Z9bXuhopsRkTmK0l2aAJP TSz7S+rEY5FRqS5tUtefWgG0nZxtwseFj6II8ACuopiN/KN3+X7xcG+xOThs9zLs ND/bnpP0wJdbmdw7YdmmdFWl3Quwn1AVJjkAgNVdv8d+awfE2CbLEOlfwgLnCYlw dHRNzfuuWC6O+xuvEdM4/j46AiMLPr1EvtlpzEV5Auo3RX0yA4LFQUUiIBt6NrLa ZPLmVRLdfj6aD0lXCvBj7Y4BQQ== -----END CERTIFICATE-----Generated at Sat Apr 18 22:24:11 2026 by rpki-client