$ rpki-client -vvf rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft File: PurfFFrim0gkCj-6OvvZSajxU10.mft (raw, json) Hash identifier: ltLhqlZKYt4Syd7toeo1O9ViTvBwNK+zrIOwic7ZEYA= Subject key identifier: 7C:32:9A:3D:C5:00:90:F6:6E:B7:10:42:7D:7A:79:3E:18:E3:8B:DB Authority key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D Certificate issuer: /CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Certificate serial: 03B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft Manifest number: 03AF Signing time: Tue 21 Apr 2026 00:35:50 +0000 Manifest this update: Tue 21 Apr 2026 00:35:50 +0000 Manifest next update: Tue 28 Apr 2026 00:35:50 +0000 Files and hashes: 1: PurfFFrim0gkCj-6OvvZSajxU10.crl (hash: j5DamOwSeV9dzbZ8w4DqCstE2WNQR3VWa9niLqmNCFs=) 2: B3481ED4D5B611ECA61EEC28C4F9AE02.roa (hash: SFrPVIEcm3Sob1UjztJCMJRsgyH7hMthtgc0D0N7bCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F823E, serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Validity Not Before: Apr 21 00:35:50 2026 GMT Not After : Apr 28 00:35:50 2026 GMT Subject: CN=69e6c666-4f06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1b:c7:03:32:1f:10:85:8c:de:38:96:8d:2c: a9:2c:d5:01:ec:1a:e9:c6:f6:4e:c6:a6:9a:81:c1: 57:57:b4:26:42:04:74:7b:b8:c0:93:e6:87:f2:e6: 9b:3f:1b:53:46:fc:ef:a6:e8:73:90:ef:97:46:43: 04:24:da:c3:c1:c5:6d:b8:f5:8d:24:98:d7:96:99: 8d:77:ce:25:7b:11:d7:df:e2:17:89:63:3a:1b:08: 44:fb:67:3d:42:80:20:dd:99:60:4b:7e:0a:99:91: 41:d9:ff:08:1c:36:47:c6:84:98:32:6f:71:52:a6: 22:b2:58:59:9d:46:9b:c2:ea:37:09:a4:10:94:74: 3d:f1:c1:90:d2:b5:e5:e4:c8:de:94:8d:4d:33:c5: 03:4c:46:4a:de:58:23:0f:60:a6:68:55:e7:74:87: c4:ec:8e:65:07:96:58:7d:3f:5f:d0:ea:39:cc:0a: 84:5a:93:fe:83:78:1f:78:92:50:65:48:8d:19:8e: 1d:f5:59:d9:f6:00:d7:2e:94:32:c9:4a:8f:a8:d5: 3c:18:d4:3f:62:e0:0f:9f:59:ad:e4:a3:12:31:f2: 29:24:eb:d8:65:2e:65:c1:c0:4d:c4:2b:1b:56:c4: 51:a8:7c:65:5a:60:6a:2b:cb:5d:c0:2e:df:83:b4: 0b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:32:9A:3D:C5:00:90:F6:6E:B7:10:42:7D:7A:79:3E:18:E3:8B:DB X509v3 Authority Key Identifier: keyid:3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:d8:8e:9b:77:88:fe:8f:3c:45:15:e1:25:ab:c1:af:55:13: aa:75:7e:b3:20:2d:ca:1a:29:76:ec:29:08:b1:6d:37:c2:a3: d4:d3:c9:45:f3:29:88:91:a5:05:76:97:40:e7:c0:ae:e5:dd: da:66:7d:c2:f2:13:b7:3e:77:ee:d8:fd:72:86:28:cd:5f:64: d1:c2:81:f6:e8:aa:1b:5f:c3:9c:23:dc:35:2b:37:4c:c3:2f: 41:00:fa:b9:98:a4:31:79:81:f9:93:3e:5e:63:a6:71:88:5d: 06:a1:75:a0:49:dd:bb:59:60:1a:88:05:5e:e6:9f:e7:91:b5: 20:a1:19:dc:d2:c5:a9:d4:0f:30:d8:41:c5:a7:0e:14:15:a0: be:cc:47:4c:48:72:ef:47:69:5d:40:4b:f1:69:05:7f:04:7a: d9:ee:d5:c5:45:5e:80:6e:2d:f0:94:d4:7c:07:2e:4e:6e:d2: f6:19:77:c5:cc:1d:b2:3e:28:c6:5b:ee:8e:7e:ce:23:f5:56: 7c:65:27:42:c0:ec:30:15:c2:c9:7e:71:43:33:9b:2c:ed:86: c7:ee:95:df:3b:6d:49:08:2b:2c:8e:4b:4a:ca:02:10:a9:d1: 6e:a3:90:fb:d0:2c:bf:4c:3a:dc:d6:02:f8:5e:7c:a5:f5:87: 3b:49:7a:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyM0UxMTAvBgNVBAUTKDNFRUFERjE0NUFFMjlCNDgyNDBBM0ZCQTNBRkJEOTQ5 QThGMTUzNUQwHhcNMjYwNDIxMDAzNTUwWhcNMjYwNDI4MDAzNTUwWjAYMRYwFAYD VQQDEw02OWU2YzY2Ni00ZjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxvHAzIfEIWM3jiWjSypLNUB7BrpxvZOxqaagcFXV7QmQgR0e7jAk+aH8uab PxtTRvzvpuhzkO+XRkMEJNrDwcVtuPWNJJjXlpmNd84lexHX3+IXiWM6GwhE+2c9 QoAg3ZlgS34KmZFB2f8IHDZHxoSYMm9xUqYislhZnUabwuo3CaQQlHQ98cGQ0rXl 5MjelI1NM8UDTEZK3lgjD2CmaFXndIfE7I5lB5ZYfT9f0Oo5zAqEWpP+g3gfeJJQ ZUiNGY4d9VnZ9gDXLpQyyUqPqNU8GNQ/YuAPn1mt5KMSMfIpJOvYZS5lwcBNxCsb VsRRqHxlWmBqK8tdwC7fg7QLhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHwymj3F AJD2brcQQn16eT4Y44vbMB8GA1UdIwQYMBaAFD7q3xRa4ptIJAo/ujr72Umo8VNd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODIzRS83RDY5QTgzQ0Q1 QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0wZ2tDai02T3Z2WlNhanhV MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1cmZGRnJpbTBna0NqLTZPdnZaU2FqeFUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODIzRS83RDY5QTgzQ0Q1QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0w Z2tDai02T3Z2WlNhanhVMTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVdiOm3eI/o88RRXhJavBr1UTqnV+syAtyhopduwpCLFtN8Kj1NPJRfMpiJGl BXaXQOfAruXd2mZ9wvITtz537tj9coYozV9k0cKB9uiqG1/DnCPcNSs3TMMvQQD6 uZikMXmB+ZM+XmOmcYhdBqF1oEndu1lgGogFXuaf55G1IKEZ3NLFqdQPMNhBxacO FBWgvsxHTEhy70dpXUBL8WkFfwR62e7VxUVegG4t8JTUfAcuTm7S9hl3xcwdsj4o xlvujn7OI/VWfGUnQsDsMBXCyX5xQzObLO2Gx+6V3zttSQgrLI5LSsoCEKnRbqOQ +9Asv0w63NYC+F58pfWHO0l6Pw== -----END CERTIFICATE-----Generated at Wed Apr 22 07:28:23 2026 by rpki-client