$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: 6nhjBe5eoy4IMVbcX6/LkVK6VtPZK3A0EzMcnh5Qvvg= Subject key identifier: D3:10:DF:50:41:F7:C9:FE:0F:52:9A:8E:BD:6D:B2:01:35:02:98:31 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 0118 Signing time: Sun 05 Apr 2026 05:18:33 +0000 Manifest this update: Sun 05 Apr 2026 05:18:33 +0000 Manifest next update: Sun 12 Apr 2026 05:18:33 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: IjSXsZ0b/iyzdmIF7JNopY1T9OdXdjvBtIoI+t+r2lI=) 2: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: AFwVZfcUHzwe9j0UrSqlyKnxLzWcBfDiYKBuQr8Nbjs=) 3: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EUtWxQAE1BFRn9M5BHJ1aea0TybMQyltaStUs+wgA48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Apr 5 05:18:33 2026 GMT Not After : Apr 12 05:18:33 2026 GMT Subject: CN=69d1f0a9-6afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:64:07:a9:c1:37:4e:09:e7:76:a5:bf:df:e4: 82:0b:af:51:13:9b:2c:a1:56:97:83:2e:52:8b:80: d1:f2:3a:80:bc:10:44:3f:eb:06:39:83:05:8c:3d: c2:e4:02:89:4f:49:67:d0:18:c1:24:de:5f:df:3f: 39:f2:fd:30:a2:ce:e1:74:6f:30:d1:2e:50:56:c7: be:53:59:91:22:49:e2:ea:af:58:aa:63:74:ff:8b: 2e:3d:c9:26:14:e9:72:0a:97:3b:70:69:45:dd:22: 18:60:d2:6b:f8:0b:fa:ea:83:24:13:55:95:c1:32: ad:bc:2b:f0:7a:66:7a:71:db:c9:1c:1b:b4:7b:11: 3d:b7:ac:93:c4:14:66:8f:8d:90:05:02:05:e2:28: bd:be:6a:3f:c2:25:26:da:82:6f:7d:14:7e:1d:43: ea:2a:15:13:89:81:c5:7f:1b:4e:9d:ed:08:ec:a6: 80:1b:a2:76:34:f6:58:eb:5b:a4:df:7f:c3:cc:56: 8f:a2:fd:c5:19:d3:0d:3b:0c:8f:1f:97:d5:c8:a7: bf:dc:94:3c:b2:1e:5f:fe:72:1a:d1:88:ff:37:10: b5:9c:25:9f:95:9a:78:df:73:29:f9:83:b8:bc:df: b2:88:60:3c:8d:1a:0d:bb:86:b8:4a:02:0a:db:68: d7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:10:DF:50:41:F7:C9:FE:0F:52:9A:8E:BD:6D:B2:01:35:02:98:31 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d9:dc:6e:64:3b:ed:3e:b7:43:16:29:14:82:50:82:44:9f: 11:5f:20:5c:61:64:a9:fe:5f:a7:a3:da:db:42:e9:49:7e:7a: c0:b4:89:e5:84:a3:cd:3a:e6:f1:f6:0a:14:8d:ee:3b:c4:60: cb:a0:64:7e:b3:52:b4:71:53:df:a1:cb:c5:9f:d9:98:c3:e8: e6:e8:13:b5:5c:7b:90:6c:5f:f1:39:f3:81:5d:66:5b:76:c7: e5:33:a7:6f:13:40:02:0b:e4:a9:42:80:cd:7f:e4:65:75:29: a0:01:5e:26:cd:65:5a:68:4c:b5:6c:25:c2:10:13:01:c0:98: bf:1c:21:69:38:0e:45:12:c4:42:7a:f3:34:8c:16:b1:d8:c6: 8d:87:54:55:6b:3e:91:b7:1b:97:a8:51:97:3e:ad:bf:a7:a9: 75:55:60:2f:6e:aa:25:3f:97:69:4f:74:3f:62:a6:73:3f:f2: a5:90:d9:7a:b4:dc:65:46:26:d3:64:3e:a8:4f:a3:c0:b1:18: 5e:33:15:bf:82:6f:a2:af:84:44:16:07:48:96:08:31:64:8c: fd:fd:53:61:39:19:d8:36:b2:73:be:02:d7:53:4d:cd:ba:f7: 1e:d7:45:77:35:c5:96:40:a5:67:32:98:ef:eb:65:0d:a5:d2: 97:ce:72:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjYwNDA1MDUxODMzWhcNMjYwNDEyMDUxODMzWjAYMRYwFAYD VQQDEw02OWQxZjBhOS02YWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumQHqcE3TgnndqW/3+SCC69RE5ssoVaXgy5Si4DR8jqAvBBEP+sGOYMFjD3C 5AKJT0ln0BjBJN5f3z858v0wos7hdG8w0S5QVse+U1mRIkni6q9YqmN0/4suPckm FOlyCpc7cGlF3SIYYNJr+Av66oMkE1WVwTKtvCvwemZ6cdvJHBu0exE9t6yTxBRm j42QBQIF4ii9vmo/wiUm2oJvfRR+HUPqKhUTiYHFfxtOne0I7KaAG6J2NPZY61uk 33/DzFaPov3FGdMNOwyPH5fVyKe/3JQ8sh5f/nIa0Yj/NxC1nCWflZp433Mp+YO4 vN+yiGA8jRoNu4a4SgIK22jXowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNMQ31BB 98n+D1Kajr1tsgE1ApgxMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmNncbmQ77T63QxYpFIJQgkSfEV8gXGFkqf5fp6Pa20LpSX56wLSJ5YSjzTrm 8fYKFI3uO8Rgy6BkfrNStHFT36HLxZ/ZmMPo5ugTtVx7kGxf8TnzgV1mW3bH5TOn bxNAAgvkqUKAzX/kZXUpoAFeJs1lWmhMtWwlwhATAcCYvxwhaTgORRLEQnrzNIwW sdjGjYdUVWs+kbcbl6hRlz6tv6epdVVgL26qJT+XaU90P2Kmcz/ypZDZerTcZUYm 02Q+qE+jwLEYXjMVv4Jvoq+ERBYHSJYIMWSM/f1TYTkZ2Dayc74C11NNzbr3HtdF dzXFlkClZzKY7+tlDaXSl85yjQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:48:03 2026 by rpki-client