$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: UW6EnkdcxxuYtONmMJ6jKoq1+uwMmEDGlllFcB1KW9E= Subject key identifier: 44:B9:2E:29:B5:E3:0D:78:B8:BE:F3:4A:08:1D:DA:B2:D6:A9:15:92 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 08C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 08B2 Signing time: Sat 04 Apr 2026 20:16:45 +0000 Manifest this update: Sat 04 Apr 2026 20:16:45 +0000 Manifest next update: Sat 11 Apr 2026 20:16:45 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: +3CYc8h0S0EZBuOTB4TWBWB4qVbNa+eUgGm7Ra6KOaY=) 2: CEDD71FAE48811F09BEEC367446F56BC.roa (hash: n4+tu4whf2PQeZcNUGvCEnzwL08T5EGFFqHM2nYkstI=) 3: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: KkfurgFgQaSiOoD1DoZqsh9tHMcIVcJW+jsOCJRRuvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2241 (0x8c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Apr 4 20:16:45 2026 GMT Not After : Apr 11 20:16:45 2026 GMT Subject: CN=69d171ad-5deb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:4a:e0:c2:09:86:4c:ed:51:93:33:93:b8: 4c:f2:5b:5a:83:26:61:ad:7a:68:0c:a8:76:e7:06: 83:dd:d8:ec:b2:9d:87:d6:38:ad:92:cf:dd:a6:2f: b4:d1:43:74:dc:ed:89:5e:db:48:95:22:51:88:fd: d0:a5:4b:1c:79:ea:7b:64:03:c2:70:6c:ec:df:57: 60:eb:65:06:8f:b0:b4:e6:46:b3:fe:2e:f0:e9:66: fa:45:1b:f9:1b:53:d7:09:f5:ff:7d:ba:17:62:09: b9:1f:06:b5:22:62:be:59:3e:b1:ef:f7:15:69:fd: d0:36:a8:fa:fb:f3:db:10:38:9e:6e:ea:77:69:19: 1b:44:ec:48:0a:49:c0:34:dd:0b:c8:1a:75:a3:f0: 39:02:7d:ee:05:80:1b:4e:fc:8e:94:68:50:8d:cd: 1f:64:d0:80:0e:5c:5b:83:53:2f:07:ac:8e:7d:b2: 2e:15:76:c3:1c:10:5d:76:72:20:6c:b3:65:80:88: 35:a8:5e:d3:ea:f2:48:86:51:5c:07:3b:37:dc:d3: b7:79:d5:69:91:fd:0c:2d:93:10:fa:16:17:8b:99: d7:99:94:f4:33:41:29:0a:4f:f7:b4:3d:71:5d:01: 0e:fc:c0:dd:ba:3c:3c:00:3a:40:1b:3d:e5:94:32: 65:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B9:2E:29:B5:E3:0D:78:B8:BE:F3:4A:08:1D:DA:B2:D6:A9:15:92 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:8a:2f:6c:59:47:71:8f:44:c4:ab:ee:6a:12:4b:b5:c2:b8: c7:dd:a9:5e:68:4c:d7:ff:16:f4:ff:48:97:f1:01:45:23:1c: 60:ef:66:f7:5f:43:b7:47:42:f7:e4:dc:30:33:d3:64:38:d5: ee:92:92:c7:37:32:f0:e0:45:78:45:62:fa:82:e1:3e:7e:7e: bd:68:49:e6:b4:29:92:1c:97:83:4b:09:2a:8f:02:e1:2b:07: 44:9a:e2:84:2b:b3:78:ff:da:9b:0a:2e:66:58:29:01:e0:c1: ce:d1:b3:36:28:4b:12:26:61:26:56:c5:b6:ca:9e:8d:d8:6c: 72:71:16:cf:c8:ec:e0:80:4d:c2:99:76:4a:f6:19:a2:fe:25: 5f:90:96:4a:d8:bc:6a:2d:9a:60:e1:86:ca:60:55:6d:33:9a: c8:97:f9:7e:11:26:9d:96:48:e3:c3:97:fb:60:50:d1:a3:09: c4:45:e6:c6:a0:9f:20:fa:d9:09:69:b5:70:6d:ef:22:ad:9f: fa:eb:e0:74:c7:ed:d9:91:4a:9b:20:99:58:1f:f9:1a:fe:da: 22:87:7e:01:61:61:8d:b7:d1:7e:b2:9f:a7:a5:dd:92:85:20: ac:e4:df:ac:39:52:a2:fd:1a:94:16:26:7e:00:4b:1c:9b:2e: e9:ee:52:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjYwNDA0MjAxNjQ1WhcNMjYwNDExMjAxNjQ1WjAYMRYwFAYD VQQDEw02OWQxNzFhZC01ZGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnRK4MIJhkztUZMzk7hM8ltagyZhrXpoDKh25waD3djssp2H1jitks/dpi+0 0UN03O2JXttIlSJRiP3QpUsceep7ZAPCcGzs31dg62UGj7C05kaz/i7w6Wb6RRv5 G1PXCfX/fboXYgm5Hwa1ImK+WT6x7/cVaf3QNqj6+/PbEDiebup3aRkbROxICknA NN0LyBp1o/A5An3uBYAbTvyOlGhQjc0fZNCADlxbg1MvB6yOfbIuFXbDHBBddnIg bLNlgIg1qF7T6vJIhlFcBzs33NO3edVpkf0MLZMQ+hYXi5nXmZT0M0EpCk/3tD1x XQEO/MDdujw8ADpAGz3llDJldwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFES5Lim1 4w14uL7zSggd2rLWqRWSMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAoovbFlHcY9ExKvuahJLtcK4x92pXmhM1/8W9P9Il/EBRSMcYO9m919Dt0dC 9+TcMDPTZDjV7pKSxzcy8OBFeEVi+oLhPn5+vWhJ5rQpkhyXg0sJKo8C4SsHRJri hCuzeP/amwouZlgpAeDBztGzNihLEiZhJlbFtsqejdhscnEWz8js4IBNwpl2SvYZ ov4lX5CWSti8ai2aYOGGymBVbTOayJf5fhEmnZZI48OX+2BQ0aMJxEXmxqCfIPrZ CWm1cG3vIq2f+uvgdMft2ZFKmyCZWB/5Gv7aIod+AWFhjbfRfrKfp6XdkoUgrOTf rDlSov0alBYmfgBLHJsu6e5Sxw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:00 2026 by rpki-client