$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft File: AJko8LjNMO2gVjCoumdOdiqdKDM.mft (raw, json) Hash identifier: uHLJc/69POiueWYxjwaH+a8OY83tcywus5jcO5P8pjA= Subject key identifier: 78:8B:B6:7E:CD:F6:08:0A:0F:50:A9:9A:BB:B1:BA:BF:06:96:24:4C Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft Manifest number: 01E4 Signing time: Sun 05 Apr 2026 03:00:33 +0000 Manifest this update: Sun 05 Apr 2026 03:00:33 +0000 Manifest next update: Sun 12 Apr 2026 03:00:33 +0000 Files and hashes: 1: AJko8LjNMO2gVjCoumdOdiqdKDM.crl (hash: Ozzha49uSl8m0yCF3s+6EFdqeTMIVbjgNCVHMC67LVA=) 2: EC56413A5B4B11EE9A031C81C4F9AE02.roa (hash: P1sFlrq62FMoLO7wf4E9r66SOU438vWKBPyMEzzBEHQ=) 3: 7022F6EE5B4611EE9093F11EC4F9AE02.roa (hash: 46gW2zgv3kg1jR+kuDN4YFuI7xpd+JwD4IDvp1lQDks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: Apr 5 03:00:33 2026 GMT Not After : Apr 12 03:00:33 2026 GMT Subject: CN=69d1d051-f5f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dd:0a:25:8a:83:d1:4c:fa:68:cb:1c:1d:b9: 00:65:b1:5b:27:6f:88:7e:ab:c1:6b:29:d0:a7:b4: db:49:88:10:3d:2f:32:b0:86:d4:51:21:d8:c4:70: 96:06:ba:a6:f7:87:95:1f:ac:79:94:6d:73:2d:19: 6b:2a:2b:5b:5e:10:e9:6b:c9:31:20:b4:ff:d2:6d: 30:83:a6:f5:8e:1a:3d:29:ac:08:14:6f:07:7b:21: c6:0e:42:da:c4:9a:65:3a:75:67:bb:c2:aa:59:a6: a9:14:e4:fe:2d:50:6f:b4:2f:64:c9:70:e9:11:f5: 88:1f:af:2a:1d:f1:02:65:6a:1d:d3:32:4e:1e:d1: 41:a1:3b:cd:24:59:b1:d1:ef:27:28:2c:1b:eb:35: 55:bb:b5:a2:85:56:dd:6b:02:bc:cb:38:92:b9:82: 67:68:46:b0:03:35:ae:0d:59:1f:fc:86:4f:1f:99: 20:2a:32:88:0f:17:25:83:d2:52:3d:44:d6:d0:78: 82:e3:f8:1b:8b:35:d5:14:75:30:d5:0a:0a:49:5d: e7:bd:70:0f:28:c5:7c:a5:c0:20:b4:59:a7:c6:35: 6c:f2:4d:47:e4:26:3c:7c:00:85:76:8b:3c:19:3e: 4c:5f:1b:86:73:d1:9a:98:d5:74:5d:a0:43:f7:f4: 12:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:8B:B6:7E:CD:F6:08:0A:0F:50:A9:9A:BB:B1:BA:BF:06:96:24:4C X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:70:13:dd:7c:67:d1:cd:6b:de:da:80:4d:81:3d:ee:14:dc: e6:b0:73:54:23:f2:d4:5a:18:55:57:4d:25:e4:88:ec:15:e4: 2b:3c:57:0d:36:18:90:78:3f:7e:43:6b:ce:62:9d:d0:69:1d: e1:3a:70:46:5d:1c:6b:87:39:bb:4b:e9:df:0d:d3:60:bd:9c: a1:08:a3:0b:3d:55:30:97:94:1a:83:ff:4a:4d:f4:58:e7:7f: 02:bd:af:a2:43:88:15:d7:dd:9f:0d:68:4e:67:8a:c4:04:6c: 9f:e3:8d:2a:a4:3c:c7:8f:31:75:d0:08:93:ae:b0:48:27:b4: fc:ba:16:7b:15:29:24:e1:4e:11:08:e9:d8:16:4f:82:7a:94: 0a:da:3b:40:cf:c3:7f:37:dd:5a:a6:0c:bd:b0:f3:41:c0:8c: a2:b3:e3:25:e2:89:75:fd:5a:05:d1:1f:4c:c1:7a:49:c7:c3: 0e:78:15:a7:d3:bc:29:ac:aa:c7:11:fe:82:7e:2d:fa:b1:c9: d5:70:59:8a:bd:68:98:d5:c6:b6:7a:61:00:42:dc:66:b2:ef: a0:01:e9:4e:ac:13:c1:f0:66:a9:be:6a:19:68:b3:64:d7:38: 97:1f:4c:71:80:71:49:de:69:98:fe:e4:0b:4d:49:fd:d3:24: 6b:e3:fe:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDAwOTkyOEYwQjhDRDMwRURBMDU2MzBBOEJBNjc0RTc2 MkE5RDI4MzMwHhcNMjYwNDA1MDMwMDMzWhcNMjYwNDEyMDMwMDMzWjAYMRYwFAYD VQQDEw02OWQxZDA1MS1mNWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd0KJYqD0Uz6aMscHbkAZbFbJ2+IfqvBaynQp7TbSYgQPS8ysIbUUSHYxHCW Brqm94eVH6x5lG1zLRlrKitbXhDpa8kxILT/0m0wg6b1jho9KawIFG8HeyHGDkLa xJplOnVnu8KqWaapFOT+LVBvtC9kyXDpEfWIH68qHfECZWod0zJOHtFBoTvNJFmx 0e8nKCwb6zVVu7WihVbdawK8yziSuYJnaEawAzWuDVkf/IZPH5kgKjKIDxclg9JS PUTW0HiC4/gbizXVFHUw1QoKSV3nvXAPKMV8pcAgtFmnxjVs8k1H5CY8fACFdos8 GT5MXxuGc9GamNV0XaBD9/QSwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHiLtn7N 9ggKD1Cpmruxur8GliRMMB8GA1UdIwQYMBaAFACZKPC4zTDtoFYwqLpnTnYqnSgz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9CMzc0OTcxMDVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1PMmdWakNvdW1kT2RpcWRL RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9CMzc0OTcxMDVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1P MmdWakNvdW1kT2RpcWRLRE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo3AT3Xxn0c1r3tqATYE97hTc5rBzVCPy1FoYVVdNJeSI7BXkKzxXDTYYkHg/ fkNrzmKd0Gkd4TpwRl0ca4c5u0vp3w3TYL2coQijCz1VMJeUGoP/Sk30WOd/Ar2v okOIFdfdnw1oTmeKxARsn+ONKqQ8x48xddAIk66wSCe0/LoWexUpJOFOEQjp2BZP gnqUCto7QM/DfzfdWqYMvbDzQcCMorPjJeKJdf1aBdEfTMF6ScfDDngVp9O8Kayq xxH+gn4t+rHJ1XBZir1omNXGtnphAELcZrLvoAHpTqwTwfBmqb5qGWizZNc4lx9M cYBxSd5pmP7kC01J/dMka+P+5w== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:52 2026 by rpki-client