$ rpki-client -vvf rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft File: jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft (raw, json) Hash identifier: 5mz2XNQePmn+PqlAar83h8tpYxFVSokkyucA9+3Esr8= Subject key identifier: 0D:98:77:A9:BD:5F:19:E7:24:E9:34:0B:CD:3B:C4:A0:38:B5:9D:61 Authority key identifier: 8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 Certificate issuer: /CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Certificate serial: 05A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft Manifest number: 059A Signing time: Sat 04 Apr 2026 23:00:56 +0000 Manifest this update: Sat 04 Apr 2026 23:00:56 +0000 Manifest next update: Sat 11 Apr 2026 23:00:56 +0000 Files and hashes: 1: jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl (hash: lp+dAyFr71wPxrAaCXREJ8YBmn+OU3l0GRdlCGKos1w=) 2: F85178E05DD111EF83CF1063C4F9AE02.roa (hash: Cr23RBREtuT54zLAvnFw/R9xfkhI60wXk3xodOfPdEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1446 (0x5a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91385F2, serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Validity Not Before: Apr 4 23:00:56 2026 GMT Not After : Apr 11 23:00:56 2026 GMT Subject: CN=69d19828-d4d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4e:eb:f9:19:6c:46:b2:4c:d7:6e:3a:fa:49: 99:e7:e2:94:65:bb:23:fb:66:9e:6e:e0:84:cb:f5: e0:36:5a:2a:60:f0:71:d7:17:f6:3e:1b:2d:50:39: 48:17:db:24:8d:e1:a9:bb:c9:d8:02:d0:24:60:cf: 9f:4c:8b:be:e5:65:5a:2a:7f:2d:41:74:b5:b9:d8: 86:6d:52:4c:9e:63:0c:9c:03:40:a2:8f:0c:77:91: 6a:14:6e:5a:b1:de:41:72:89:05:06:94:ba:08:e6: 9c:0a:f2:a4:8c:b3:37:ff:d1:de:32:52:9d:f6:6b: e8:0c:38:46:ba:2e:7b:59:e2:47:11:61:51:ed:2f: 74:cb:b5:9d:f7:28:05:b4:b6:5b:c3:22:63:44:aa: e6:a3:87:c3:b3:2f:48:69:a3:ae:62:dd:5f:4d:bb: c3:e5:c4:ad:f7:aa:71:8b:22:02:5a:f4:68:1b:c5: 1e:ff:c9:8f:59:44:ea:cd:18:0e:21:ae:39:79:d7: 8c:2b:ed:36:3c:6f:6a:34:e6:34:d3:d6:be:35:92: 59:b5:5c:52:98:e4:4d:ec:d9:a8:d4:c7:56:9c:f0: 7d:95:80:44:12:ae:14:c8:14:99:a3:4e:62:54:e6: eb:09:54:d9:4b:6b:20:62:be:76:5c:23:26:d8:f3: 2d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:98:77:A9:BD:5F:19:E7:24:E9:34:0B:CD:3B:C4:A0:38:B5:9D:61 X509v3 Authority Key Identifier: keyid:8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:4b:0f:be:cc:5d:1e:92:76:2a:c1:3f:61:4d:fa:11:9c:42: e7:a7:62:6d:1a:1c:38:e2:30:ba:3e:23:70:d6:89:19:94:b2: a6:80:53:60:32:67:94:f9:c4:68:f3:ce:7e:03:a1:0f:4a:e0: f8:e8:7e:ae:d8:10:19:58:ba:4b:df:86:d5:48:cc:d2:bb:fa: 04:dc:ae:5e:fd:a8:c2:ec:d2:64:5e:43:ae:d8:c6:dd:14:e9: 0b:9d:03:ce:c4:26:a1:fd:ec:da:10:cf:46:77:f8:dd:39:88: 0d:31:a4:19:a0:89:ad:2d:03:75:bb:5a:78:9a:08:2d:ea:51: a7:64:36:6a:f7:d6:2c:ed:97:ec:de:2a:a8:20:e8:25:44:67: 44:c1:25:72:ca:ee:f4:25:85:9d:b5:b0:5b:f8:81:7f:ec:95: 4c:2b:3a:08:3f:a1:95:cf:dd:7c:33:04:72:19:be:ae:dc:02: 63:48:7b:6d:10:22:a2:7e:2c:c3:4e:83:f3:76:75:0a:d0:3a: 85:b9:14:9d:26:44:c0:1f:f2:af:f2:27:4e:e0:bb:42:21:68: ad:5d:98:56:e0:b9:3f:17:b0:e1:4c:53:37:8d:9a:95:a4:cc: a0:6d:3a:f5:67:25:c4:4a:b6:84:7b:e5:68:6d:27:d6:76:ef: 70:f3:9e:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1RjIxMTAvBgNVBAUTKDhDMEExRkZGMUFBMzFDRUE2Q0MwQzg4QjY3QUMyMkQ1 OTQ2MzlDNzUwHhcNMjYwNDA0MjMwMDU2WhcNMjYwNDExMjMwMDU2WjAYMRYwFAYD VQQDEw02OWQxOTgyOC1kNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsk7r+RlsRrJM1246+kmZ5+KUZbsj+2aebuCEy/XgNloqYPBx1xf2PhstUDlI F9skjeGpu8nYAtAkYM+fTIu+5WVaKn8tQXS1udiGbVJMnmMMnANAoo8Md5FqFG5a sd5BcokFBpS6COacCvKkjLM3/9HeMlKd9mvoDDhGui57WeJHEWFR7S90y7Wd9ygF tLZbwyJjRKrmo4fDsy9IaaOuYt1fTbvD5cSt96pxiyICWvRoG8Ue/8mPWUTqzRgO Ia45edeMK+02PG9qNOY009a+NZJZtVxSmORN7Nmo1MdWnPB9lYBEEq4UyBSZo05i VObrCVTZS2sgYr52XCMm2PMtTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA2Yd6m9 XxnnJOk0C807xKA4tZ1hMB8GA1UdIwQYMBaAFIwKH/8aoxzqbMDIi2esItWUY5x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODVGMi80RDMwMTZFODE1 MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhPcHN3TWlMWjZ3aTFaUmpu SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pBb2ZfeHFqSE9wc3dNaUxaNndpMVpSam5IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODVGMi80RDMwMTZFODE1MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhP cHN3TWlMWjZ3aTFaUmpuSFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuEsPvsxdHpJ2KsE/YU36EZxC56dibRocOOIwuj4jcNaJGZSypoBTYDJnlPnE aPPOfgOhD0rg+Oh+rtgQGVi6S9+G1UjM0rv6BNyuXv2owuzSZF5DrtjG3RTpC50D zsQmof3s2hDPRnf43TmIDTGkGaCJrS0DdbtaeJoILepRp2Q2avfWLO2X7N4qqCDo JURnRMElcsru9CWFnbWwW/iBf+yVTCs6CD+hlc/dfDMEchm+rtwCY0h7bRAion4s w06D83Z1CtA6hbkUnSZEwB/yr/InTuC7QiForV2YVuC5Pxew4UxTN42alaTMoG06 9WclxEq2hHvlaG0n1nbvcPOeiA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:48 2026 by rpki-client