$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft File: afotkTN0HoMAQ-tA5A0ivzU4684.mft (raw, json) Hash identifier: UUINKmWW8j1XUnN7QcKuLBZoRxMWbwrvxr2yCzS0a+c= Subject key identifier: B0:75:A9:29:5F:A1:9D:50:A9:59:FD:7F:7E:BB:9B:B9:49:AB:C4:C6 Authority key identifier: 69:FA:2D:91:33:74:1E:83:00:43:EB:40:E4:0D:22:BF:35:38:EB:CE Certificate issuer: /CN=A91CCB81/serialNumber=69FA2D9133741E830043EB40E40D22BF3538EBCE Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/afotkTN0HoMAQ-tA5A0ivzU4684.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft Manifest number: 2D Signing time: Sun 05 Apr 2026 08:05:49 +0000 Manifest this update: Sun 05 Apr 2026 08:05:48 +0000 Manifest next update: Sun 12 Apr 2026 08:05:48 +0000 Files and hashes: 1: afotkTN0HoMAQ-tA5A0ivzU4684.crl (hash: v5tjtWJ20mGwSsIiG3k1iFXEQXc2Bv2gz4y/wkPh7mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.crl rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/afotkTN0HoMAQ-tA5A0ivzU4684.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 08:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCB81, serialNumber=69FA2D9133741E830043EB40E40D22BF3538EBCE Validity Not Before: Apr 5 08:05:48 2026 GMT Not After : Apr 12 08:05:48 2026 GMT Subject: CN=69d217dd-16c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:89:7a:1f:6b:2f:77:85:d5:13:2e:76:76:38: a9:c2:04:e3:7f:b0:5a:38:2b:98:74:ea:58:fe:5c: 94:b4:9f:bd:16:67:0c:0c:c1:52:7c:c5:19:0c:1a: 27:90:2d:15:55:28:ae:6b:cc:d0:f9:ac:a2:f6:3c: cb:e2:fc:97:9c:1e:c8:a9:38:5d:73:90:6f:46:39: 01:a2:19:cf:ad:94:cc:ef:fd:40:32:58:31:7f:02: 9f:0e:7f:c8:d3:e4:fc:3f:93:4f:69:e4:15:eb:a4: 5a:85:9a:9a:d7:e8:1a:d4:89:b3:74:09:9f:99:10: 81:2b:a6:16:ad:bc:b1:f2:77:3d:29:42:94:21:10: 75:57:2c:e2:ab:f6:18:67:69:d4:bf:d2:96:4a:37: 24:34:6f:e3:75:f3:ed:5d:f5:ab:4e:1c:ad:30:a9: 89:c4:3b:8e:9c:aa:ab:01:52:f7:63:42:76:b4:fd: e7:dc:8e:8b:c7:04:c3:25:72:4e:5f:89:66:80:c1: 87:17:91:e1:b3:64:a3:30:e5:38:81:2f:24:c5:f5: f9:cb:19:77:46:9b:ee:41:95:f6:b3:01:ed:10:22: 05:ba:48:bf:58:69:2c:a1:1d:d1:2e:b1:ef:ac:50: 82:8a:51:58:12:20:dc:c7:bc:e9:ca:13:a3:98:4c: ad:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:75:A9:29:5F:A1:9D:50:A9:59:FD:7F:7E:BB:9B:B9:49:AB:C4:C6 X509v3 Authority Key Identifier: keyid:69:FA:2D:91:33:74:1E:83:00:43:EB:40:E4:0D:22:BF:35:38:EB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/afotkTN0HoMAQ-tA5A0ivzU4684.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCB81/2861E496F86A11F0B4BBAF3C4A6F56BC/afotkTN0HoMAQ-tA5A0ivzU4684.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:5f:1c:b3:48:a9:70:49:a2:f2:17:90:9b:f6:23:b2:de:aa: 69:3e:52:be:07:7d:d1:d5:20:87:e1:d3:ef:90:12:16:0a:0e: 22:24:b6:98:3b:ae:3d:21:d2:78:03:67:f6:f2:4b:db:e0:4b: 78:fe:3b:a6:02:d5:7f:b3:b5:3d:b1:69:22:fb:f9:e8:ce:cc: aa:79:1a:bb:be:a7:23:89:5d:40:cd:d7:dd:3c:24:d1:4b:78: 59:d6:14:5f:14:84:df:48:47:fe:b5:94:c6:90:51:f6:c7:37: bb:7b:23:3a:59:4e:12:9e:0b:b8:35:8b:07:c5:71:84:73:fa: 4b:a0:c0:14:7d:c6:67:56:38:71:9e:e0:ac:74:ed:75:e9:5f: 73:42:83:90:5f:a9:4c:c6:da:f2:34:88:ac:c5:a9:f1:4b:0a: 82:92:84:1a:85:bc:bb:2b:4b:9c:ef:9d:df:08:89:2b:82:31: b9:f0:16:6e:e2:09:ba:ba:1b:06:b8:5e:32:f4:73:13:3e:f3: a4:8f:74:29:df:03:4d:51:ec:a0:62:72:dc:f7:38:b5:5b:2d: 2d:10:c5:0f:f6:96:ec:ca:eb:82:a3:08:6e:63:f6:5e:6d:09: e0:59:b1:23:a7:3d:e9:14:b4:aa:da:a3:b6:2a:70:ed:2a:f5: 5a:56:0a:16 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0I4MTExMC8GA1UEBRMoNjlGQTJEOTEzMzc0MUU4MzAwNDNFQjQwRTQwRDIyQkYz NTM4RUJDRTAeFw0yNjA0MDUwODA1NDhaFw0yNjA0MTIwODA1NDhaMBgxFjAUBgNV BAMTDTY5ZDIxN2RkLTE2YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsiXofay93hdUTLnZ2OKnCBON/sFo4K5h06lj+XJS0n70WZwwMwVJ8xRkMGieQ LRVVKK5rzND5rKL2PMvi/JecHsipOF1zkG9GOQGiGc+tlMzv/UAyWDF/Ap8Of8jT 5Pw/k09p5BXrpFqFmprX6BrUibN0CZ+ZEIErphatvLHydz0pQpQhEHVXLOKr9hhn adS/0pZKNyQ0b+N18+1d9atOHK0wqYnEO46cqqsBUvdjQna0/efcjovHBMMlck5f iWaAwYcXkeGzZKMw5TiBLyTF9fnLGXdGm+5BlfazAe0QIgW6SL9YaSyhHdEuse+s UIKKUVgSINzHvOnKE6OYTK11AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUsHWpKV+h nVCpWf1/frubuUmrxMYwHwYDVR0jBBgwFoAUafotkTN0HoMAQ+tA5A0ivzU4684w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQjgxLzI4NjFFNDk2Rjg2 QTExRjBCNEJCQUYzQzRBNkY1NkJDL2Fmb3RrVE4wSG9NQVEtdEE1QTBpdnpVNDY4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWZvdGtUTjBIb01BUS10QTVBMGl2elU0Njg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QjgxLzI4NjFFNDk2Rjg2QTExRjBCNEJCQUYzQzRBNkY1NkJDL2Fmb3RrVE4wSG9N QVEtdEE1QTBpdnpVNDY4NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC2XxyzSKlwSaLyF5Cb9iOy3qppPlK+B33R1SCH4dPvkBIWCg4iJLaYO649IdJ4 A2f28kvb4Et4/jumAtV/s7U9sWki+/nozsyqeRq7vqcjiV1AzdfdPCTRS3hZ1hRf FITfSEf+tZTGkFH2xze7eyM6WU4Sngu4NYsHxXGEc/pLoMAUfcZnVjhxnuCsdO11 6V9zQoOQX6lMxtryNIisxanxSwqCkoQahby7K0uc753fCIkrgjG58BZu4gm6uhsG uF4y9HMTPvOkj3Qp3wNNUeygYnLc9zi1Wy0tEMUP9pbsyuuCowhuY/ZebQngWbEj pz3pFLSq2qO2KnDtKvVaVgoW -----END CERTIFICATE-----Generated at Sun Apr 5 19:53:09 2026 by rpki-client