$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft File: 81QJOUhm-0CKDRiOC30AzFpzlI4.mft (raw, json) Hash identifier: bhbRVgdIBvqNByG7ugGw/eZu3jmkZkyGblaixOI5xFc= Subject key identifier: 85:99:65:F9:C9:E6:95:66:5B:DD:4F:60:9D:4D:F9:3D:BB:77:42:24 Authority key identifier: F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E Certificate issuer: /CN=A91FDBE8/serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Certificate serial: 0852 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft Manifest number: 0837 Signing time: Sat 04 Apr 2026 20:51:56 +0000 Manifest this update: Sat 04 Apr 2026 20:51:56 +0000 Manifest next update: Sat 11 Apr 2026 20:51:56 +0000 Files and hashes: 1: 81QJOUhm-0CKDRiOC30AzFpzlI4.crl (hash: 3bkd6lQFa/J3p1MWAoKReWS+zy7PPUX/DLc0SYG0QVU=) 2: 06F011A2134B11F0AA41F90AC4F9AE02.roa (hash: syS+9guCxEoztAFQkgarn4bONRAd62QCH19yi6osoP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2130 (0x852) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDBE8, serialNumber=F35409394866FB408A0D188E0B7D00CC5A73948E Validity Not Before: Apr 4 20:51:56 2026 GMT Not After : Apr 11 20:51:56 2026 GMT Subject: CN=69d179ec-1d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4c:04:ba:d5:d0:e5:12:f0:93:7b:04:6c:cc: 44:71:cd:ed:6b:06:cb:25:30:45:33:23:1c:f6:cb: 69:d6:19:b5:bd:4a:6c:4e:a5:84:e9:27:b7:9b:55: 6d:f5:d6:53:27:97:52:01:b5:bf:ec:19:33:60:68: d8:ae:8b:a0:c7:98:a5:e5:a7:af:46:a6:0c:35:d1: e2:66:fe:ef:36:fa:db:51:74:d5:8b:10:12:d6:48: 47:a3:cc:ff:2d:25:79:8b:fe:63:37:69:3b:a5:71: d4:8f:a8:95:07:cc:e4:41:9f:08:18:c8:6e:01:cb: 89:ff:0b:5e:70:f2:a0:1d:c5:cb:6a:cc:41:dc:9c: 47:03:5d:12:da:f5:0b:41:56:ed:c5:65:4e:8b:df: e9:68:77:47:82:0d:26:9d:ad:b1:5f:51:d5:31:97: b0:2f:4c:b9:ef:e2:72:ac:02:a7:a4:9d:58:75:c7: b2:e5:2c:0d:66:a4:a7:c3:3d:d1:1d:8e:b1:04:2b: 84:03:6a:f6:5c:ad:37:fc:34:40:25:96:0b:40:b1: 10:d7:bb:41:8a:4b:36:73:c3:5d:0e:8d:85:90:11: 9e:9d:3b:02:b6:f0:2b:76:1f:4d:e0:04:79:a9:4e: 59:c2:cf:87:68:e8:78:a8:0f:73:5f:2a:2d:1f:41: 45:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:99:65:F9:C9:E6:95:66:5B:DD:4F:60:9D:4D:F9:3D:BB:77:42:24 X509v3 Authority Key Identifier: keyid:F3:54:09:39:48:66:FB:40:8A:0D:18:8E:0B:7D:00:CC:5A:73:94:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81QJOUhm-0CKDRiOC30AzFpzlI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDBE8/9D363178152B11EB9BD4EB46C4F9AE02/81QJOUhm-0CKDRiOC30AzFpzlI4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:82:9f:0c:c4:16:d3:88:f7:32:c3:4f:cd:cb:17:30:19:1a: 9e:81:09:3b:0f:85:59:a0:c3:5e:87:2a:18:c3:d5:b9:2c:94: 04:27:11:d0:d2:5d:8b:10:fe:f4:6f:60:0d:73:4c:1e:12:ca: 80:41:a2:ea:d7:9e:ea:40:e0:ca:9e:be:bb:9d:93:b9:3c:79: 40:47:47:59:23:1c:7d:fb:c8:7f:62:5a:ee:03:b0:0e:60:a1: 92:38:ca:ad:c0:2d:e9:55:1c:f0:9e:b4:fd:0b:71:31:fa:66: 36:ab:c5:35:af:3c:75:b2:b6:f5:eb:41:ce:d9:d1:59:3d:93: e7:e3:f9:c1:3d:25:5d:11:ca:f1:91:df:0f:99:06:d0:d4:6f: b6:3a:5d:36:d3:f7:ea:f8:f8:a1:05:83:e5:51:11:58:2e:a6: fc:43:c4:38:c2:a8:4c:64:ce:57:2c:bd:63:f0:5a:73:cc:21: 4a:07:ca:4f:ec:f2:12:5a:7c:3a:12:5b:13:c8:fc:e6:64:a4: d1:15:ce:cf:b2:9e:44:d5:06:20:5c:00:e2:7d:c0:9f:e7:b3: 34:65:bd:4f:0d:b4:88:9f:3c:59:b8:33:31:8b:69:56:4d:2a: 9f:90:c7:95:56:79:db:aa:96:7f:fe:51:e0:3f:79:1d:73:a6: cd:f3:41:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRCRTgxMTAvBgNVBAUTKEYzNTQwOTM5NDg2NkZCNDA4QTBEMTg4RTBCN0QwMEND NUE3Mzk0OEUwHhcNMjYwNDA0MjA1MTU2WhcNMjYwNDExMjA1MTU2WjAYMRYwFAYD VQQDEw02OWQxNzllYy0xZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0wEutXQ5RLwk3sEbMxEcc3tawbLJTBFMyMc9stp1hm1vUpsTqWE6Se3m1Vt 9dZTJ5dSAbW/7BkzYGjYrougx5il5aevRqYMNdHiZv7vNvrbUXTVixAS1khHo8z/ LSV5i/5jN2k7pXHUj6iVB8zkQZ8IGMhuAcuJ/wtecPKgHcXLasxB3JxHA10S2vUL QVbtxWVOi9/paHdHgg0mna2xX1HVMZewL0y57+JyrAKnpJ1Ydcey5SwNZqSnwz3R HY6xBCuEA2r2XK03/DRAJZYLQLEQ17tBiks2c8NdDo2FkBGenTsCtvArdh9N4AR5 qU5Zws+HaOh4qA9zXyotH0FFMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIWZZfnJ 5pVmW91PYJ1N+T27d0IkMB8GA1UdIwQYMBaAFPNUCTlIZvtAig0Yjgt9AMxac5SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREJFOC85RDM2MzE3ODE1 MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0wQ0tEUmlPQzMwQXpGcHps STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgxUUpPVWhtLTBDS0RSaU9DMzBBekZwemxJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REJFOC85RDM2MzE3ODE1MkIxMUVCOUJENEVCNDZDNEY5QUUwMi84MVFKT1VobS0w Q0tEUmlPQzMwQXpGcHpsSTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcIKfDMQW04j3MsNPzcsXMBkanoEJOw+FWaDDXocqGMPVuSyUBCcR0NJdixD+ 9G9gDXNMHhLKgEGi6tee6kDgyp6+u52TuTx5QEdHWSMcffvIf2Ja7gOwDmChkjjK rcAt6VUc8J60/QtxMfpmNqvFNa88dbK29etBztnRWT2T5+P5wT0lXRHK8ZHfD5kG 0NRvtjpdNtP36vj4oQWD5VERWC6m/EPEOMKoTGTOVyy9Y/Bac8whSgfKT+zyElp8 OhJbE8j85mSk0RXOz7KeRNUGIFwA4n3An+ezNGW9Tw20iJ88WbgzMYtpVk0qn5DH lVZ526qWf/5R4D95HXOmzfNBZQ== -----END CERTIFICATE-----Generated at Mon Apr 6 15:25:38 2026 by rpki-client