$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: yUBoPrF9oF8daip/D1morGyUQHXd3x1TXsvobZajBFs= Subject key identifier: 1C:3E:8E:8C:0A:AF:F1:9A:3D:CE:9D:34:F0:3E:B5:5B:E7:DD:47:B4 Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 07DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 07D3 Signing time: Sat 04 Apr 2026 21:09:02 +0000 Manifest this update: Sat 04 Apr 2026 21:09:01 +0000 Manifest next update: Sat 11 Apr 2026 21:09:01 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: jFJVP9NRHKq29B1XG1KFU6XH9GYdVgoheyjZ/2PkMms=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: +dqj5dUwvw+xC7YK9g1ktDdByBUDI++m9TD2lt9C0Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2012 (0x7dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4, serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: Apr 4 21:09:01 2026 GMT Not After : Apr 11 21:09:01 2026 GMT Subject: CN=69d17dee-22d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e8:9d:5c:0b:80:0f:92:4c:47:f9:00:c7:23: e4:cb:57:e7:47:73:ab:22:9d:0e:e0:b1:60:48:33: c8:e8:c7:3a:56:4a:c5:c0:a8:c1:73:85:f1:b5:e9: e1:a3:33:d5:fb:ff:95:8c:21:a3:86:dc:71:8d:57: 61:b0:f3:48:e5:cb:08:d3:0a:1a:46:91:f5:d4:a7: 1e:47:e8:12:1b:9b:e1:46:e2:cd:aa:ed:4b:aa:49: 31:f4:38:8e:c4:19:92:23:60:60:43:99:f9:93:11: db:5d:27:79:bc:fe:0d:1f:af:c4:48:71:71:35:97: 35:45:83:a2:65:96:56:31:50:56:fa:91:06:15:4c: fd:55:53:b6:5d:de:bb:70:33:45:de:23:da:b6:d1: 66:6c:4a:05:a7:c6:2d:80:5d:18:c4:72:e0:aa:21: a3:73:53:7a:53:7c:39:65:1e:d3:d2:69:b6:53:fe: 1b:a9:d8:6b:bb:8c:ad:ff:2d:fe:76:e4:a6:b3:5e: af:5f:4e:93:80:7d:3d:c7:29:15:85:e6:00:20:e7: 27:44:c1:37:46:a8:b1:2c:ce:f3:28:e7:16:df:d1: 6c:1b:b4:04:33:ba:ef:46:3b:27:94:71:1f:e1:23: c5:f9:7a:3c:d4:d7:19:07:b2:3e:e7:da:2b:2c:dd: fe:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3E:8E:8C:0A:AF:F1:9A:3D:CE:9D:34:F0:3E:B5:5B:E7:DD:47:B4 X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:64:61:70:13:c0:19:4f:ae:e8:eb:3d:4a:a6:58:19:a1:53: 1c:f8:5b:b3:c3:65:cc:83:82:68:b0:44:59:93:53:7a:c8:11: c5:ff:84:ef:2f:fa:3f:a9:68:5a:f7:a6:15:64:d2:49:1a:76: 91:d1:35:9e:00:11:de:2e:f0:4a:6f:9a:6a:e2:d8:32:a9:02: 82:78:8b:76:8b:f2:88:76:bf:cd:f3:09:77:3b:06:b4:44:4a: 0a:b7:6d:15:a8:2f:84:5b:68:59:10:7a:7f:46:95:d2:24:ad: 55:3f:7c:a9:62:bf:c5:fc:ba:e7:f9:b0:ab:d6:4c:44:24:fd: 92:0f:e2:51:ff:1c:53:63:62:ca:c6:5b:b1:35:1c:76:1f:c6: ad:6f:af:af:ea:6d:cb:d0:bd:98:20:b9:ff:47:af:d9:97:63: d8:ab:e1:42:8e:fd:0a:cb:b4:ea:74:9f:73:c1:30:bb:ee:49: e0:f4:4f:95:47:19:97:41:df:d0:ff:9a:1b:d4:bc:cc:75:86: b2:cb:f9:f9:9e:e3:d5:04:7f:cf:65:02:b0:8b:3f:3f:47:79: df:2f:53:bd:3c:9b:15:f9:b1:a2:6a:c3:2c:6d:bf:5a:51:c1: 66:75:4a:9c:9e:39:80:c4:63:06:15:62:1b:94:97:08:db:7d: 56:dd:a0:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjYwNDA0MjEwOTAxWhcNMjYwNDExMjEwOTAxWjAYMRYwFAYD VQQDEw02OWQxN2RlZS0yMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOidXAuAD5JMR/kAxyPky1fnR3OrIp0O4LFgSDPI6Mc6VkrFwKjBc4Xxtenh ozPV+/+VjCGjhtxxjVdhsPNI5csI0woaRpH11KceR+gSG5vhRuLNqu1Lqkkx9DiO xBmSI2BgQ5n5kxHbXSd5vP4NH6/ESHFxNZc1RYOiZZZWMVBW+pEGFUz9VVO2Xd67 cDNF3iPattFmbEoFp8YtgF0YxHLgqiGjc1N6U3w5ZR7T0mm2U/4bqdhru4yt/y3+ duSms16vX06TgH09xykVheYAIOcnRME3RqixLM7zKOcW39FsG7QEM7rvRjsnlHEf 4SPF+Xo81NcZB7I+59orLN3+SwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBw+jowK r/GaPc6dNPA+tVvn3Ue0MB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKGRhcBPAGU+u6Os9SqZYGaFTHPhbs8NlzIOCaLBEWZNTesgRxf+E7y/6P6lo WvemFWTSSRp2kdE1ngAR3i7wSm+aauLYMqkCgniLdovyiHa/zfMJdzsGtERKCrdt FagvhFtoWRB6f0aV0iStVT98qWK/xfy65/mwq9ZMRCT9kg/iUf8cU2NiysZbsTUc dh/GrW+vr+pty9C9mCC5/0ev2Zdj2KvhQo79Csu06nSfc8Ewu+5J4PRPlUcZl0Hf 0P+aG9S8zHWGssv5+Z7j1QR/z2UCsIs/P0d53y9TvTybFfmxomrDLG2/WlHBZnVK nJ45gMRjBhViG5SXCNt9Vt2gdw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:53:10 2026 by rpki-client