$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: geCLRtiQQa/Nx9ONI3GY5JauZt0kTT83Id3/kr3w/pc= Subject key identifier: 9E:DF:6D:E6:AF:FC:C2:AD:6C:CF:50:6C:27:2B:BD:A2:EB:59:D7:D7 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1CA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C8C Signing time: Tue 28 Apr 2026 16:13:50 +0000 Manifest this update: Tue 28 Apr 2026 16:13:50 +0000 Manifest next update: Tue 05 May 2026 16:13:50 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: gk3a2d1Nj/MneoO94C6FGyQGBF6246J3/FeBNDOBnAw=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: Mltlh2bx7WYK1xzaK+H07Yqp+mKuF+w3gv8nIlWhSn8=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: GM2/Zg+eI19YNP6sUwovNgmANsfWwnnAjBpybeU+09Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 16:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7330 (0x1ca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Apr 28 16:13:50 2026 GMT Not After : May 5 16:13:50 2026 GMT Subject: CN=69f0dcbe-55f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:21:aa:71:50:2e:29:47:7c:81:fe:94:5a:d3: f9:1a:16:ef:fa:d1:a1:02:d8:50:cc:dc:26:64:c5: 03:d5:89:da:15:2f:ea:13:4f:b7:56:85:11:f2:ca: 84:82:f2:86:e4:95:fb:88:db:74:66:2d:b4:f0:b4: 23:ec:92:08:c5:e1:35:45:61:b4:c4:f2:a5:f8:c5: 84:ab:c1:3f:9f:2e:9e:3c:28:70:07:c5:10:ee:1e: 33:c5:d1:7a:b7:91:ce:eb:d7:ad:fc:1c:5f:ff:74: 9f:78:46:b7:e5:87:f0:88:8c:5e:0e:22:34:df:8b: fb:93:80:43:e1:92:60:f5:36:77:d7:44:05:b0:3a: 08:0a:b1:bd:09:31:45:2c:06:bb:e1:26:a2:72:91: 65:44:5b:b2:20:d4:ae:08:19:0f:ef:b8:62:eb:d4: 66:23:d1:c5:cf:e4:c6:76:1d:41:cf:98:f8:a5:cf: aa:43:80:94:b0:47:79:22:9f:f1:6c:87:e9:d4:40: 20:01:f0:73:5c:29:2d:e2:9f:48:a8:98:1f:3d:c9: 21:74:3f:aa:f7:46:3e:89:43:1e:29:9c:13:4b:33: b7:5f:c2:22:5b:ef:1e:99:1a:84:27:36:63:4d:5a: d1:1d:cb:ce:13:3f:3d:8c:d6:75:4a:11:16:c2:d8: 57:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DF:6D:E6:AF:FC:C2:AD:6C:CF:50:6C:27:2B:BD:A2:EB:59:D7:D7 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:83:94:6d:30:c1:f4:80:1b:87:70:6e:f5:0f:f7:84:5c:9d: 7e:f5:bd:3a:30:dc:c8:e0:98:c4:ba:93:c4:03:71:48:8b:f4: 07:44:f2:1a:72:ec:7e:42:db:f5:74:34:64:04:41:57:4e:c0: 0e:65:6b:3d:f3:de:17:87:39:6c:a6:2b:2b:a2:5f:ed:96:88: af:30:d7:8b:11:d6:ef:7c:ad:fe:73:32:e6:10:8c:c7:2e:a4: e3:33:f9:27:3a:a4:e7:00:94:c1:54:c1:e6:bc:54:95:8f:46: 40:bf:83:87:53:f8:05:d9:28:e4:62:9a:25:b3:80:b9:49:87: b7:f4:64:85:10:14:d1:8e:cf:44:01:cd:12:72:cb:44:57:b4: 65:b8:ab:e8:76:2c:e1:f0:7b:35:3f:f5:9b:2c:aa:97:5b:be: 63:a5:e6:8a:c4:45:e2:bd:c1:19:41:ba:23:58:d1:60:3b:1e: 08:94:d7:67:bb:8b:79:48:1f:f3:b9:fd:13:00:7d:f1:29:1e: 7e:ad:b2:72:fc:58:da:48:d5:2d:44:71:d4:b8:45:a5:34:3f: f6:56:e2:a8:98:b6:a5:62:97:23:0d:a6:0a:af:62:51:ac:2c: 8d:80:fd:bd:19:13:e1:14:31:53:85:ef:1d:58:12:38:0c:8f: f6:f0:1f:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwNDI4MTYxMzUwWhcNMjYwNTA1MTYxMzUwWjAYMRYwFAYD VQQDEw02OWYwZGNiZS01NWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yGqcVAuKUd8gf6UWtP5Ghbv+tGhAthQzNwmZMUD1YnaFS/qE0+3VoUR8sqE gvKG5JX7iNt0Zi208LQj7JIIxeE1RWG0xPKl+MWEq8E/ny6ePChwB8UQ7h4zxdF6 t5HO69et/Bxf/3SfeEa35YfwiIxeDiI034v7k4BD4ZJg9TZ310QFsDoICrG9CTFF LAa74SaicpFlRFuyINSuCBkP77hi69RmI9HFz+TGdh1Bz5j4pc+qQ4CUsEd5Ip/x bIfp1EAgAfBzXCkt4p9IqJgfPckhdD+q90Y+iUMeKZwTSzO3X8IiW+8emRqEJzZj TVrRHcvOEz89jNZ1ShEWwthXowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7fbeav /MKtbM9QbCcrvaLrWdfXMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAloOUbTDB9IAbh3Bu9Q/3hFydfvW9OjDcyOCYxLqTxANxSIv0B0TyGnLsfkLb 9XQ0ZARBV07ADmVrPfPeF4c5bKYrK6Jf7ZaIrzDXixHW73yt/nMy5hCMxy6k4zP5 Jzqk5wCUwVTB5rxUlY9GQL+Dh1P4Bdko5GKaJbOAuUmHt/RkhRAU0Y7PRAHNEnLL RFe0Zbir6HYs4fB7NT/1myyql1u+Y6XmisRF4r3BGUG6I1jRYDseCJTXZ7uLeUgf 87n9EwB98Skefq2ycvxY2kjVLURx1LhFpTQ/9lbiqJi2pWKXIw2mCq9iUawsjYD9 vRkT4RQxU4XvHVgSOAyP9vAf9g== -----END CERTIFICATE-----Generated at Thu Apr 30 03:35:18 2026 by rpki-client