$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: CCUR5iaD7wrKcUq5mpCvpWhaFnOonk+jpol3rgK1CHA= Subject key identifier: CC:4C:1A:93:4D:F6:3B:BD:DB:7A:A3:07:77:00:5A:8C:F2:F6:85:E7 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 15BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 15A8 Signing time: Wed 08 Apr 2026 16:41:43 +0000 Manifest this update: Wed 08 Apr 2026 16:41:42 +0000 Manifest next update: Wed 15 Apr 2026 16:41:42 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: o+16hos96wwv0wnsAjFtFmeGEXHKAGsbGVY+aO/XCqo=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: szL4BZSbgcQY4LfE/szjKTFQSSHTkoZGzk2quRmWzfY=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: mjER69CRCpsMBjGIx0Q4yyRPRuK30idnlQajAiMsy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 15:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5563 (0x15bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Apr 8 16:41:42 2026 GMT Not After : Apr 15 16:41:42 2026 GMT Subject: CN=69d68547-01a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:de:62:8b:f0:ca:8d:77:de:9e:b3:0d:3d: 04:0a:df:16:c1:fb:28:30:e6:37:7c:ca:a5:66:80: 42:76:49:a1:71:6f:ea:89:7e:32:17:a8:ab:e0:ff: 97:31:43:8c:45:af:45:f0:39:fc:c9:a4:42:99:2b: 05:0f:7a:f1:d1:73:59:3e:5a:d5:e5:ae:81:93:c1: c8:9a:b9:d2:ab:23:48:23:2d:d0:31:90:af:c3:86: f4:41:48:1a:1e:ef:18:e6:1b:84:51:02:11:d6:c3: 90:e0:bc:c8:a3:8b:f2:c2:ce:19:f8:a7:b6:fa:8a: d2:d8:07:00:09:64:eb:13:f8:09:ec:4a:a3:c0:12: bf:1d:03:1e:a2:4f:e0:bf:62:8b:57:27:12:88:05: 78:0d:80:89:cb:66:c6:0b:42:f8:d6:bc:22:96:7b: 13:de:9f:f2:ed:6f:59:cd:14:69:2c:ea:33:0c:44: ad:e7:82:51:3f:52:4c:00:17:ad:f7:86:aa:f7:57: 3a:df:b5:27:84:60:ee:93:52:fb:a1:a3:1d:4b:81: 8d:d1:fd:a2:ab:24:39:0e:e9:e1:4e:3c:bb:4c:48: b8:58:4e:b4:3a:e6:8e:fa:15:48:7b:27:9c:16:8f: ee:12:47:67:b6:dc:d9:69:92:d4:58:83:ac:0d:92: 10:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4C:1A:93:4D:F6:3B:BD:DB:7A:A3:07:77:00:5A:8C:F2:F6:85:E7 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:e8:54:ea:70:94:aa:3f:d6:42:1a:97:06:53:7e:c9:ee:59: b2:c8:0d:8f:33:84:cd:d7:cf:cd:1f:33:7c:c2:ea:fd:ba:ba: 35:94:1e:24:b3:25:11:ef:d9:0f:6d:0f:4c:c5:09:42:7c:64: 40:11:69:db:75:76:b4:d3:28:ed:d3:87:51:3d:98:74:d0:76: 45:bf:3d:3c:65:ae:a3:d6:ae:5a:28:81:98:e4:3e:91:56:32: a3:ba:05:57:f1:1c:4f:8e:9a:1a:bc:2a:f5:53:c5:84:af:fc: ae:6c:7e:50:82:31:6c:18:e1:ec:dd:3c:36:6e:72:51:a9:2f: ca:06:8b:e5:18:1b:90:58:4f:c4:a1:03:d7:dc:55:13:a8:3d: a7:f1:6f:9c:7f:66:37:9d:6f:7f:bc:aa:2d:22:7d:88:2c:d7: 1f:8a:69:c8:84:87:af:ca:71:04:b8:b1:1c:9b:c3:46:6b:85: 2c:8b:c5:04:ca:f6:cd:36:ff:84:95:3f:1a:42:13:64:8b:41: cf:73:11:26:a3:d5:a2:d4:6a:4c:70:42:19:20:b8:14:c4:49: 0f:7e:8e:48:17:66:87:f0:fa:0a:e3:8f:e0:68:f0:d3:93:e7: 55:1f:60:41:fa:20:4c:64:67:ed:93:35:d3:a8:69:b3:6e:55: 99:c0:37:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjYwNDA4MTY0MTQyWhcNMjYwNDE1MTY0MTQyWjAYMRYwFAYD VQQDEw02OWQ2ODU0Ny0wMWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2zeYovwyo133p6zDT0ECt8WwfsoMOY3fMqlZoBCdkmhcW/qiX4yF6ir4P+X MUOMRa9F8Dn8yaRCmSsFD3rx0XNZPlrV5a6Bk8HImrnSqyNIIy3QMZCvw4b0QUga Hu8Y5huEUQIR1sOQ4LzIo4vyws4Z+Ke2+orS2AcACWTrE/gJ7EqjwBK/HQMeok/g v2KLVycSiAV4DYCJy2bGC0L41rwilnsT3p/y7W9ZzRRpLOozDESt54JRP1JMABet 94aq91c637UnhGDuk1L7oaMdS4GN0f2iqyQ5DunhTjy7TEi4WE60OuaO+hVIeyec Fo/uEkdnttzZaZLUWIOsDZIQHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMxMGpNN 9ju923qjB3cAWozy9oXnMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL+hU6nCUqj/WQhqXBlN+ye5ZssgNjzOEzdfPzR8zfMLq/bq6NZQeJLMlEe/Z D20PTMUJQnxkQBFp23V2tNMo7dOHUT2YdNB2Rb89PGWuo9auWiiBmOQ+kVYyo7oF V/EcT46aGrwq9VPFhK/8rmx+UIIxbBjh7N08Nm5yUakvygaL5RgbkFhPxKED19xV E6g9p/FvnH9mN51vf7yqLSJ9iCzXH4ppyISHr8pxBLixHJvDRmuFLIvFBMr2zTb/ hJU/GkITZItBz3MRJqPVotRqTHBCGSC4FMRJD36OSBdmh/D6CuOP4Gjw05PnVR9g QfogTGRn7ZM106hps25VmcA3NQ== -----END CERTIFICATE-----Generated at Wed Apr 8 20:19:58 2026 by rpki-client