$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: 9Q1YR9LEESPaVdhvfCfSu1vB13JsI8wvjERDPA6v/04= Subject key identifier: D0:B9:A8:AE:A0:E7:28:72:9A:F9:40:90:70:74:80:98:C1:46:0B:7E Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 0261 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0253 Signing time: Sun 05 Apr 2026 01:55:09 +0000 Manifest this update: Sun 05 Apr 2026 01:55:08 +0000 Manifest next update: Sun 12 Apr 2026 01:55:08 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: jboOivYOrzrOIdlTws4YCP2C0ZT+4iboidrpQWE7mX8=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: WkBrG4Ptn2oOu7MUQprdMpFUUGYiR0bDGLQIFpoza1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Apr 5 01:55:08 2026 GMT Not After : Apr 12 01:55:08 2026 GMT Subject: CN=69d1c0fd-97c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f1:c9:21:32:ba:9a:2b:ea:57:35:a3:ef:51: bb:03:a0:79:e1:4d:24:ce:61:db:b4:51:cb:2c:f6: 03:2e:3d:a2:03:fd:c5:d9:4a:a0:13:68:e3:26:ff: 4d:11:7c:ae:d4:b6:c7:03:14:74:0a:3b:fa:9b:5e: c1:b8:dc:49:6e:ae:a7:12:bb:0b:be:f1:14:d2:06: a6:e9:53:ec:2d:ee:3f:6e:bb:f2:8a:d8:71:c8:e8: 47:6f:17:a1:0e:0a:54:01:d5:1f:3c:f8:a9:da:df: 2e:4c:ba:61:d1:3e:55:01:2a:49:16:0f:4d:44:0a: ae:75:51:e9:27:54:56:d8:72:24:44:98:6d:af:94: b6:24:3f:d8:e4:7e:1e:ef:94:55:04:03:0d:c1:59: 2c:e9:5e:02:d0:83:5c:07:de:5b:b9:dd:bb:4b:09: 1f:2f:6b:a1:3a:97:ad:d1:72:34:00:12:22:43:9c: 8a:fb:f8:c4:c5:26:01:22:af:92:44:70:35:bd:41: f9:4b:d1:c3:59:1a:55:f5:cb:5d:dd:9c:52:bb:45: e6:e3:63:2b:4a:40:9a:98:9a:0d:6a:8c:db:03:02: b7:35:00:86:1a:f7:1e:95:4f:ee:bd:9c:b5:e7:d8: 2f:c3:64:1f:f1:96:3e:6d:51:e2:e5:d6:ed:19:19: f8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B9:A8:AE:A0:E7:28:72:9A:F9:40:90:70:74:80:98:C1:46:0B:7E X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:9c:d7:e5:11:02:57:38:88:31:de:b3:2a:13:c8:99:04:db: 5f:9c:18:e8:fe:e8:c4:69:d5:9d:f9:d3:12:63:03:4b:7d:4a: f3:93:0b:9e:f1:05:73:82:58:86:f6:97:5c:e2:5f:d0:25:60: e9:63:ee:9b:33:42:ac:a4:c1:d4:e6:b1:4b:51:2b:b7:b2:35: 4d:ee:58:fc:10:46:16:74:11:27:fc:bf:fc:40:60:54:42:cb: bb:68:a7:67:3d:30:4f:97:4d:50:81:40:66:32:36:8e:61:b7: 8a:6b:b3:b5:6a:0a:22:50:45:fc:66:e3:3b:4c:b1:f3:45:db: 31:f1:54:97:bf:5d:bc:47:5f:d9:8f:51:76:31:83:98:cb:8f: 51:fa:24:3e:fb:3f:69:a0:7a:de:fd:0f:3a:aa:93:a5:dc:a2: 3c:13:1b:ba:63:48:e1:c3:a9:c6:99:58:bb:24:4d:bb:9d:19: d9:ee:94:b1:a4:09:fe:72:35:6d:ef:33:d8:ef:0f:94:c0:5a: df:ca:80:2a:39:88:35:09:89:05:94:0a:42:0a:8e:0e:c9:a0: 3d:7f:c7:c3:c6:bb:7d:c8:77:6d:b4:c4:1e:75:07:b8:5a:22: cb:88:cf:3d:09:65:ec:3a:65:47:9b:58:28:d3:e4:3e:7d:5b: f8:94:1c:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjYwNDA1MDE1NTA4WhcNMjYwNDEyMDE1NTA4WjAYMRYwFAYD VQQDEw02OWQxYzBmZC05N2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/HJITK6mivqVzWj71G7A6B54U0kzmHbtFHLLPYDLj2iA/3F2UqgE2jjJv9N EXyu1LbHAxR0Cjv6m17BuNxJbq6nErsLvvEU0gam6VPsLe4/brvyithxyOhHbxeh DgpUAdUfPPip2t8uTLph0T5VASpJFg9NRAqudVHpJ1RW2HIkRJhtr5S2JD/Y5H4e 75RVBAMNwVks6V4C0INcB95bud27SwkfL2uhOpet0XI0ABIiQ5yK+/jExSYBIq+S RHA1vUH5S9HDWRpV9ctd3ZxSu0Xm42MrSkCamJoNaozbAwK3NQCGGvcelU/uvZy1 59gvw2Qf8ZY+bVHi5dbtGRn4PwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNC5qK6g 5yhymvlAkHB0gJjBRgt+MB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAspzX5RECVziIMd6zKhPImQTbX5wY6P7oxGnVnfnTEmMDS31K85MLnvEFc4JY hvaXXOJf0CVg6WPumzNCrKTB1OaxS1Ert7I1Te5Y/BBGFnQRJ/y//EBgVELLu2in Zz0wT5dNUIFAZjI2jmG3imuztWoKIlBF/GbjO0yx80XbMfFUl79dvEdf2Y9RdjGD mMuPUfokPvs/aaB63v0POqqTpdyiPBMbumNI4cOpxplYuyRNu50Z2e6UsaQJ/nI1 be8z2O8PlMBa38qAKjmINQmJBZQKQgqODsmgPX/Hw8a7fch3bbTEHnUHuFoiy4jP PQll7DplR5tYKNPkPn1b+JQczw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:59:17 2026 by rpki-client