$ rpki-client -vvf rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft File: NJajCV1HiwJuR1VeusUdjgorO5Y.mft (raw, json) Hash identifier: hZbdFQQMgSwqAQ0wPSocrI9C1MS7k1h59R0B2+fQ4a4= Subject key identifier: 88:E8:C2:37:51:B9:81:7F:CC:C6:9B:B4:73:58:74:3B:12:EA:FA:ED Authority key identifier: 34:96:A3:09:5D:47:8B:02:6E:47:55:5E:BA:C5:1D:8E:0A:2B:3B:96 Certificate issuer: /CN=A91112C1/serialNumber=3496A3095D478B026E47555EBAC51D8E0A2B3B96 Certificate serial: 0628 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft Manifest number: 0621 Signing time: Sat 04 Apr 2026 22:35:08 +0000 Manifest this update: Sat 04 Apr 2026 22:35:07 +0000 Manifest next update: Sat 11 Apr 2026 22:35:07 +0000 Files and hashes: 1: NJajCV1HiwJuR1VeusUdjgorO5Y.crl (hash: eQy820u9zNMr5jJJWtoKvTB4uoH4dssldqqHxncv1MI=) 2: F7C5E44EDA2E11EB8FAAB246C4F9AE02.roa (hash: PwomU+D7WSzTyKJbENDcuXSXxZUfrB5PjKw8Vn35Qbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.crl rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112C1, serialNumber=3496A3095D478B026E47555EBAC51D8E0A2B3B96 Validity Not Before: Apr 4 22:35:07 2026 GMT Not After : Apr 11 22:35:07 2026 GMT Subject: CN=69d1921c-3185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:dc:d9:aa:09:c1:47:e2:46:a7:d3:4a:72:43: 5f:8c:af:b7:30:ec:f0:a7:e5:09:34:69:cc:dd:99: c1:69:51:64:2a:1f:ba:bd:15:dc:f6:02:4f:4f:cb: f3:e4:9e:d9:3c:9e:af:91:0b:e5:9d:df:90:db:fc: 63:5b:74:63:2e:2c:ea:b6:12:a2:3c:4c:31:e2:e3: f8:c4:3f:f1:95:d4:8f:c4:43:71:fe:65:0a:a7:8d: 3e:40:98:27:f3:4c:0d:84:1e:5b:90:ed:49:a2:58: 0f:5d:a6:ef:b5:c6:e8:40:90:63:de:07:4e:d9:c3: f7:59:d3:b5:20:ae:8e:2b:ad:88:8a:71:ee:24:c7: c3:a3:0d:fa:e9:23:2b:e2:bb:76:0c:3b:f0:6b:22: 6a:3c:f7:f9:6b:04:37:ef:fa:79:01:c1:14:25:ae: 8f:b0:75:ad:77:eb:d6:65:92:ce:89:31:8b:9e:cb: 9a:6e:75:eb:e6:29:66:5d:73:9b:da:30:58:bc:7e: c7:62:61:bd:91:cf:a4:57:8c:bb:9e:87:1b:7a:ca: 85:d5:cd:77:f8:55:5f:be:44:24:ed:70:0a:4b:51: 77:25:7b:21:5d:f9:83:e3:51:14:a4:0c:1e:ca:af: cf:e2:2e:ac:29:c4:aa:c3:27:fd:2f:74:db:dd:3b: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E8:C2:37:51:B9:81:7F:CC:C6:9B:B4:73:58:74:3B:12:EA:FA:ED X509v3 Authority Key Identifier: keyid:34:96:A3:09:5D:47:8B:02:6E:47:55:5E:BA:C5:1D:8E:0A:2B:3B:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:95:18:0e:9f:1d:c1:db:11:f2:fe:75:6b:e2:50:0b:75:dc: ce:2f:2d:fc:4b:fc:71:02:96:59:2b:e0:3b:0f:13:7e:b2:4b: 01:3a:63:67:85:ff:54:7b:2d:59:76:ce:11:4e:25:2a:3b:2c: a8:79:61:d7:23:8c:e1:e4:17:b0:2f:1e:ff:c0:ff:ad:23:fb: 83:12:3e:5f:9a:e1:47:4f:bf:94:52:1c:ee:1e:6d:a1:7c:4c: 79:de:57:81:ec:ca:fc:8a:e6:d2:65:fc:ad:36:03:44:a0:85: ef:52:82:77:0a:91:a0:c0:89:c0:c2:cc:54:74:f9:35:a3:bd: 42:0a:3f:5a:ca:be:05:f8:26:d1:f7:fb:cc:ec:a3:9f:10:2f: 0f:a0:03:1f:00:86:18:d5:c6:97:3d:db:f1:87:4f:9b:0e:7e: 7a:f8:92:de:0b:a2:1a:00:c4:3f:5e:c0:5a:4a:eb:64:47:db: c2:5c:90:00:84:e0:d9:1e:4d:b0:09:7f:e9:2a:7b:4b:be:0a: 1a:e9:9e:30:d6:bf:35:49:8d:1a:0a:8d:e6:f7:15:8a:53:a3: 59:2b:40:60:99:d1:17:53:68:d6:7a:b0:5f:d6:40:7e:20:ca: 33:43:3a:f5:ba:89:5c:4f:04:70:05:ab:98:6b:84:52:f6:e8: 0c:73:ed:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQzExMTAvBgNVBAUTKDM0OTZBMzA5NUQ0NzhCMDI2RTQ3NTU1RUJBQzUxRDhF MEEyQjNCOTYwHhcNMjYwNDA0MjIzNTA3WhcNMjYwNDExMjIzNTA3WjAYMRYwFAYD VQQDEw02OWQxOTIxYy0zMTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNzZqgnBR+JGp9NKckNfjK+3MOzwp+UJNGnM3ZnBaVFkKh+6vRXc9gJPT8vz 5J7ZPJ6vkQvlnd+Q2/xjW3RjLizqthKiPEwx4uP4xD/xldSPxENx/mUKp40+QJgn 80wNhB5bkO1JolgPXabvtcboQJBj3gdO2cP3WdO1IK6OK62IinHuJMfDow366SMr 4rt2DDvwayJqPPf5awQ37/p5AcEUJa6PsHWtd+vWZZLOiTGLnsuabnXr5ilmXXOb 2jBYvH7HYmG9kc+kV4y7nocbesqF1c13+FVfvkQk7XAKS1F3JXshXfmD41EUpAwe yq/P4i6sKcSqwyf9L3Tb3TvmLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIjowjdR uYF/zMabtHNYdDsS6vrtMB8GA1UdIwQYMBaAFDSWowldR4sCbkdVXrrFHY4KKzuW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJDMS84NkFCNjYyNERB MkIxMUVCOEYwQjAxM0ZDNEY5QUUwMi9OSmFqQ1YxSGl3SnVSMVZldXNVZGpnb3JP NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KYWpDVjFIaXdKdVIxVmV1c1Vkamdvck81WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJDMS84NkFCNjYyNERBMkIxMUVCOEYwQjAxM0ZDNEY5QUUwMi9OSmFqQ1YxSGl3 SnVSMVZldXNVZGpnb3JPNVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAZUYDp8dwdsR8v51a+JQC3Xczi8t/Ev8cQKWWSvgOw8TfrJLATpjZ4X/VHst WXbOEU4lKjssqHlh1yOM4eQXsC8e/8D/rSP7gxI+X5rhR0+/lFIc7h5toXxMed5X gezK/Irm0mX8rTYDRKCF71KCdwqRoMCJwMLMVHT5NaO9Qgo/Wsq+Bfgm0ff7zOyj nxAvD6ADHwCGGNXGlz3b8YdPmw5+eviS3guiGgDEP17AWkrrZEfbwlyQAITg2R5N sAl/6Sp7S74KGumeMNa/NUmNGgqN5vcVilOjWStAYJnRF1No1nqwX9ZAfiDKM0M6 9bqJXE8EcAWrmGuEUvboDHPt1w== -----END CERTIFICATE-----Generated at Sun Apr 5 19:40:11 2026 by rpki-client