$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: RR1YtL/LC0DTeVYB2EyuNFAOuqoz5gepPvug0IwC/ho= Subject key identifier: 5E:8A:C9:2C:FF:8E:FF:E9:A0:98:CE:25:33:BB:61:35:4A:4B:08:B8 Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 0790 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 0786 Signing time: Sat 04 Apr 2026 21:20:35 +0000 Manifest this update: Sat 04 Apr 2026 21:20:35 +0000 Manifest next update: Sat 11 Apr 2026 21:20:35 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: MgmaNQqbvDcQMOHOCcQV71sLO1OX/Rb53kfs6q2q0rQ=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: u76wFHKSd9h8KbRCk1j6gIodR7f+T1CjbW7mJvG9G1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1936 (0x790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Apr 4 21:20:35 2026 GMT Not After : Apr 11 21:20:35 2026 GMT Subject: CN=69d180a3-ae78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:77:93:bd:09:2b:17:04:c6:0f:2a:eb:ca:ea: 35:e7:e4:b4:a7:c1:a3:4e:71:68:45:05:f5:b2:f2: 15:3b:b9:fb:c9:eb:e0:e1:d5:4a:95:9d:49:08:5d: 63:40:fd:cf:b1:1b:94:11:69:f2:a7:41:6d:40:89: 9f:c5:f9:3a:42:48:50:88:b0:b5:79:db:9e:bd:93: 0d:78:46:2f:26:e2:fe:41:14:07:6a:10:01:f2:d4: bd:fd:5a:2d:ae:1c:0d:e2:b1:32:24:d8:e4:d9:12: fa:99:62:d2:08:f6:b0:b5:fa:cd:39:7d:35:53:98: e9:3a:f9:39:16:d6:26:5b:bd:05:5e:70:83:bb:5e: 87:d5:26:94:bf:31:77:a3:4f:24:77:6c:56:0c:99: 34:19:55:17:b9:12:f6:d2:4e:a1:cd:cf:b0:39:b4: f3:48:10:34:c7:8f:61:df:ea:52:eb:d9:57:c1:e9: 27:19:9c:63:ac:57:f6:12:70:6a:20:0d:a0:c3:95: e1:f5:62:fc:24:59:91:00:1b:48:04:71:79:49:76: d1:f7:1d:7d:82:8a:e7:d0:1d:44:18:d7:bc:18:00: d0:62:b0:f3:9c:87:29:7f:38:c3:18:f5:d1:16:2f: 67:b5:54:59:07:bd:a6:24:28:53:b9:b1:a5:7e:46: a4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:8A:C9:2C:FF:8E:FF:E9:A0:98:CE:25:33:BB:61:35:4A:4B:08:B8 X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:57:3d:c3:c1:b7:1f:5f:0a:40:e8:72:f9:d9:62:17:50:47: db:4a:14:40:ed:95:7f:55:d1:1e:d4:c1:4f:35:37:07:64:72: e3:4d:83:a9:8c:5c:05:e3:84:b5:bb:10:dd:96:1b:3f:1b:02: 0b:52:6c:c3:e1:29:e8:dc:42:57:b5:68:45:07:84:2c:25:ef: 92:27:85:de:4f:1a:3a:3c:67:56:36:ac:4c:b0:b1:dd:83:d2: 5e:58:71:61:be:84:36:8b:f8:9d:2b:43:48:4a:d2:e7:7e:e4: 1b:95:77:16:b0:47:64:01:1a:60:48:ef:eb:01:11:1b:1f:33: 4c:c3:d5:4c:0d:a5:2d:a4:b3:09:8a:20:1c:6b:77:25:ce:a7: 76:08:3a:f7:53:f3:e3:a7:5a:aa:72:3b:d3:ff:8f:22:ac:40: ac:6f:bd:d0:8c:d1:74:95:37:e7:d0:19:2f:b7:59:ba:a0:c1: 1a:f9:09:c4:ef:56:9f:e2:37:6e:9d:2b:be:c4:30:99:cc:34: d7:82:2a:88:14:8b:62:b8:1b:ed:09:c0:01:02:45:87:f8:d7: 4c:34:6e:21:54:8a:ab:79:ac:97:f7:fc:7c:0e:8a:e9:99:94: 88:34:2b:24:ff:dd:a4:40:8d:ae:9e:35:ec:75:e5:18:ad:2a: c7:a7:f5:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjYwNDA0MjEyMDM1WhcNMjYwNDExMjEyMDM1WjAYMRYwFAYD VQQDEw02OWQxODBhMy1hZTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHeTvQkrFwTGDyrryuo15+S0p8GjTnFoRQX1svIVO7n7yevg4dVKlZ1JCF1j QP3PsRuUEWnyp0FtQImfxfk6QkhQiLC1eduevZMNeEYvJuL+QRQHahAB8tS9/Vot rhwN4rEyJNjk2RL6mWLSCPawtfrNOX01U5jpOvk5FtYmW70FXnCDu16H1SaUvzF3 o08kd2xWDJk0GVUXuRL20k6hzc+wObTzSBA0x49h3+pS69lXweknGZxjrFf2EnBq IA2gw5Xh9WL8JFmRABtIBHF5SXbR9x19gorn0B1EGNe8GADQYrDznIcpfzjDGPXR Fi9ntVRZB72mJChTubGlfkakkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF6KySz/ jv/poJjOJTO7YTVKSwi4MB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlVc9w8G3H18KQOhy+dliF1BH20oUQO2Vf1XRHtTBTzU3B2Ry402DqYxcBeOE tbsQ3ZYbPxsCC1Jsw+Ep6NxCV7VoRQeELCXvkieF3k8aOjxnVjasTLCx3YPSXlhx Yb6ENov4nStDSErS537kG5V3FrBHZAEaYEjv6wERGx8zTMPVTA2lLaSzCYogHGt3 Jc6ndgg691Pz46daqnI70/+PIqxArG+90IzRdJU359AZL7dZuqDBGvkJxO9Wn+I3 bp0rvsQwmcw014IqiBSLYrgb7QnAAQJFh/jXTDRuIVSKq3msl/f8fA6K6ZmUiDQr JP/dpECNrp417HXlGK0qx6f1dw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:45 2026 by rpki-client