$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft File: CHspwfvXREICrgAqSXEn_WbyStk.mft (raw, json) Hash identifier: HA/c6HiMImIcalu6IiL40GHIWT+U5PVyLfv2ca1yWEI= Subject key identifier: 62:4D:10:2F:AF:29:15:88:C7:0D:10:D6:8F:CE:CC:CC:7E:3F:C9:74 Authority key identifier: 08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 Certificate issuer: /CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft Manifest number: 051B Signing time: Sat 04 Apr 2026 23:23:05 +0000 Manifest this update: Sat 04 Apr 2026 23:23:04 +0000 Manifest next update: Sat 11 Apr 2026 23:23:04 +0000 Files and hashes: 1: CHspwfvXREICrgAqSXEn_WbyStk.crl (hash: 3247ndQuXY/tFfsuhbiFCtYWdnINWblnsLrdfZA8pUw=) 2: D3C965FA45F611EC9FB3BB49C4F9AE02.roa (hash: ux98ZA0wQgB4FkaCCMLS/K2q+Dgh8iXTzVCbgOOhli4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAED9, serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Validity Not Before: Apr 4 23:23:04 2026 GMT Not After : Apr 11 23:23:04 2026 GMT Subject: CN=69d19d58-302a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c4:8d:9c:a1:d1:7d:1a:f9:dd:a9:08:68:bc: fc:85:c6:e5:6d:d9:8e:e6:2e:a7:e0:99:c4:78:4e: 98:82:d7:e8:e3:55:7f:5e:d9:e1:7d:75:5f:73:07: 33:34:e6:23:11:f4:63:8c:5d:ce:29:2e:df:f9:49: df:fc:8e:b6:41:d5:63:84:d0:77:2a:4e:80:19:75: 6b:36:82:b4:8d:ff:a6:09:3c:67:8e:c3:6c:fb:c2: 29:e7:51:72:6f:a5:74:9c:ce:88:c1:09:91:b9:76: b7:b3:83:82:b9:38:ff:3e:eb:ec:cd:34:7d:0f:a0: f7:dc:65:90:bb:b0:62:df:13:ff:75:04:7c:40:70: 9d:e2:d5:26:f5:1c:f1:63:b6:07:e4:c2:1a:35:16: 4c:0e:b7:4c:87:fa:d5:5e:7c:4a:2b:b9:a3:13:a7: 6c:32:b3:d8:1f:73:b8:28:43:c0:a4:e6:08:86:02: e2:60:ba:27:64:82:77:04:70:ee:15:ec:bf:b9:0a: b0:08:0f:e0:f0:57:e3:35:f7:48:e2:23:f8:2d:6a: 35:4a:b4:8a:82:e3:a1:3f:41:be:1d:76:3d:81:2f: 1f:63:4c:af:e4:4d:63:0d:70:38:15:6d:31:26:12: 0e:80:9a:57:47:a3:6f:ae:f8:2a:0c:6b:79:73:d2: fb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4D:10:2F:AF:29:15:88:C7:0D:10:D6:8F:CE:CC:CC:7E:3F:C9:74 X509v3 Authority Key Identifier: keyid:08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:3d:bb:08:d7:67:d3:86:dd:22:f0:a0:6b:bd:a0:ea:0b:44: 4e:e4:86:c4:bb:94:29:bb:1e:59:1c:1c:4f:d5:05:a3:5e:31: 38:b5:3e:2d:5c:b5:d2:1e:65:d4:74:91:ee:97:3c:70:c9:32: cd:86:f6:c4:31:b4:e7:65:9d:9d:f4:38:03:18:e0:c0:be:bc: 90:5c:99:2b:0d:65:49:b4:a5:45:91:d3:ff:2b:c2:39:49:1c: ed:f0:f9:6d:d4:0a:ee:7f:60:44:dd:93:4f:34:6e:c2:2f:e9: 7c:19:aa:cc:ac:4d:33:18:cd:d7:98:82:bc:0c:7a:04:c7:51: 44:37:8d:f5:39:36:4e:da:d1:58:22:10:3a:36:08:7f:19:49: 2d:e8:b7:fa:12:0c:41:d9:b5:c8:eb:55:da:cd:8f:92:22:af: 2b:1a:4a:d8:c6:09:7a:68:36:79:27:99:4c:30:46:25:0e:84: 30:30:95:fb:a1:0f:93:e8:9f:0a:32:d0:c7:2c:7b:83:c3:01: c3:3c:a2:4a:84:d7:75:89:a4:81:63:73:d6:5a:f2:30:ab:26: 51:57:d9:51:30:6b:d3:e7:a4:f0:8f:c1:68:bb:60:e4:e2:91: 5e:c4:c9:0e:28:f5:ea:ed:4a:0f:05:91:27:13:4f:6d:f0:1d: 91:e5:4c:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRDkxMTAvBgNVBAUTKDA4N0IyOUMxRkJENzQ0NDIwMkFFMDAyQTQ5NzEyN0ZE NjZGMjRBRDkwHhcNMjYwNDA0MjMyMzA0WhcNMjYwNDExMjMyMzA0WjAYMRYwFAYD VQQDEw02OWQxOWQ1OC0zMDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMSNnKHRfRr53akIaLz8hcblbdmO5i6n4JnEeE6Ygtfo41V/XtnhfXVfcwcz NOYjEfRjjF3OKS7f+Unf/I62QdVjhNB3Kk6AGXVrNoK0jf+mCTxnjsNs+8Ip51Fy b6V0nM6IwQmRuXa3s4OCuTj/PuvszTR9D6D33GWQu7Bi3xP/dQR8QHCd4tUm9Rzx Y7YH5MIaNRZMDrdMh/rVXnxKK7mjE6dsMrPYH3O4KEPApOYIhgLiYLonZIJ3BHDu Fey/uQqwCA/g8FfjNfdI4iP4LWo1SrSKguOhP0G+HXY9gS8fY0yv5E1jDXA4FW0x JhIOgJpXR6NvrvgqDGt5c9L7rQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGJNEC+v KRWIxw0Q1o/OzMx+P8l0MB8GA1UdIwQYMBaAFAh7KcH710RCAq4AKklxJ/1m8krZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVEOS82QTc2NUFBQTQ1 REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJFSUNyZ0FxU1hFbl9XYnlT dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIc3B3ZnZYUkVJQ3JnQXFTWEVuX1dieVN0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUVEOS82QTc2NUFBQTQ1REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJF SUNyZ0FxU1hFbl9XYnlTdGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALz27CNdn04bdIvCga72g6gtETuSGxLuUKbseWRwcT9UFo14xOLU+LVy10h5l 1HSR7pc8cMkyzYb2xDG052WdnfQ4AxjgwL68kFyZKw1lSbSlRZHT/yvCOUkc7fD5 bdQK7n9gRN2TTzRuwi/pfBmqzKxNMxjN15iCvAx6BMdRRDeN9Tk2TtrRWCIQOjYI fxlJLei3+hIMQdm1yOtV2s2PkiKvKxpK2MYJemg2eSeZTDBGJQ6EMDCV+6EPk+if CjLQxyx7g8MBwzyiSoTXdYmkgWNz1lryMKsmUVfZUTBr0+ek8I/BaLtg5OKRXsTJ Dij16u1KDwWRJxNPbfAdkeVMww== -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:09 2026 by rpki-client