$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft File: aTyLTLomsG0s-roPm-TTffDd_z0.mft (raw, json) Hash identifier: NFdMPInQti+wBchn5UcLtAfRGq3KyeTKAtSy3GhQ2Ns= Subject key identifier: FE:47:B5:04:95:D6:FE:C7:F2:D3:88:DB:C1:3F:9A:98:2F:51:13:79 Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft Manifest number: 1A01 Signing time: Sat 04 Apr 2026 17:23:06 +0000 Manifest this update: Sat 04 Apr 2026 17:23:06 +0000 Manifest next update: Sat 11 Apr 2026 17:23:06 +0000 Files and hashes: 1: aTyLTLomsG0s-roPm-TTffDd_z0.crl (hash: 4tv6ER1buZoh/7DnATh4Ial8OJzHdUhVhjfzEQq1nb4=) 2: 3A470C9EB6DF11F0B03DBB46C4F9AE02.roa (hash: JU1nmvDSwBDUJRvbHX+1iDZpWPz4w1uVP5HZYw279f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Apr 4 17:23:06 2026 GMT Not After : Apr 11 17:23:06 2026 GMT Subject: CN=69d148fa-379f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:de:8b:e1:95:42:c9:c9:06:bf:52:2c:c7:b6: 5b:21:e3:d7:11:83:1c:d8:80:9f:bb:93:1a:14:54: 36:f7:f0:1d:61:c9:43:49:53:c8:2a:11:3c:83:ab: 28:41:91:43:7a:dd:f3:4f:b2:b5:9d:77:87:55:87: a8:e9:ae:ad:f2:6c:dd:2f:97:85:23:d1:49:3e:f7: f3:99:1e:56:c1:c2:66:8b:89:78:9a:d7:96:85:72: 82:b2:0d:99:36:75:67:c8:41:1d:3c:07:0e:9c:33: 75:4d:12:75:21:ef:9f:e7:14:1a:0c:a2:92:3d:82: 40:f9:a9:ee:6e:06:5d:d6:55:95:9e:bb:91:d7:34: d4:fa:dd:cb:46:7f:da:3e:44:22:a7:d4:fb:54:ad: 8e:60:06:a7:12:2d:fb:a9:cf:4d:90:ec:8a:2a:b4: c3:b4:ac:7c:8d:f6:57:73:42:d2:26:0f:d6:d4:7b: f0:14:3e:9a:b3:a5:85:66:79:b0:75:3c:2b:86:26: c9:cc:ca:a8:c3:6f:aa:fe:70:d4:39:d9:a5:a8:21: e1:62:e0:bf:44:4b:19:dc:d9:95:93:90:e0:09:1d: 64:9a:81:af:9c:8e:37:49:5a:6d:8b:77:93:07:b9: bd:97:b1:59:74:b6:ef:20:9f:aa:55:83:42:08:09: 50:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:47:B5:04:95:D6:FE:C7:F2:D3:88:DB:C1:3F:9A:98:2F:51:13:79 X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:3a:56:0b:9c:d0:78:71:a9:ed:5e:62:51:4a:1b:ae:78:fb: 5e:c2:e8:10:5e:fc:ff:e9:7f:12:d3:69:a2:90:2c:54:33:dd: 1a:6f:c3:70:57:94:f4:b6:25:f5:b6:ce:5e:f3:6c:65:aa:87: c0:05:ba:b5:f8:c8:12:69:b8:e9:08:29:68:db:4b:07:7a:a8: cd:4b:90:ec:99:4f:ee:7c:54:c2:a4:b9:19:e1:e5:48:03:ec: 09:18:88:c7:f9:6f:98:38:11:4c:76:d9:44:7f:04:cc:ed:52: 43:89:2f:6e:ba:ee:97:0c:f7:20:28:0f:06:73:31:a6:c3:c8: ef:d0:da:2f:e4:ca:e9:ef:b3:17:b3:8f:8c:23:81:85:10:02: d9:ce:bc:e9:a2:70:fd:82:2b:f3:cd:1c:3d:41:d9:f4:33:fb: 68:90:23:46:98:87:db:2d:76:a3:35:12:66:1a:c5:c2:04:be: 00:4a:64:7a:31:80:3f:8e:2d:25:4b:28:b2:4c:44:16:2d:c9: 87:95:40:b1:1a:a6:45:1c:7a:77:2e:1c:01:65:27:a0:40:30: f5:bb:b2:4f:be:a5:81:f2:d9:b0:c2:03:65:83:34:c2:92:7a: b4:40:1f:c8:fe:f1:f4:71:fe:96:cb:52:5b:79:e7:ce:78:fb: b4:3f:a7:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjYwNDA0MTcyMzA2WhcNMjYwNDExMTcyMzA2WjAYMRYwFAYD VQQDEw02OWQxNDhmYS0zNzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAod6L4ZVCyckGv1Isx7ZbIePXEYMc2ICfu5MaFFQ29/AdYclDSVPIKhE8g6so QZFDet3zT7K1nXeHVYeo6a6t8mzdL5eFI9FJPvfzmR5WwcJmi4l4mteWhXKCsg2Z NnVnyEEdPAcOnDN1TRJ1Ie+f5xQaDKKSPYJA+anubgZd1lWVnruR1zTU+t3LRn/a PkQip9T7VK2OYAanEi37qc9NkOyKKrTDtKx8jfZXc0LSJg/W1HvwFD6as6WFZnmw dTwrhibJzMqow2+q/nDUOdmlqCHhYuC/REsZ3NmVk5DgCR1kmoGvnI43SVpti3eT B7m9l7FZdLbvIJ+qVYNCCAlQ8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP5HtQSV 1v7H8tOI28E/mpgvURN5MB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJGNC9FQTg3MTg1QzcyMUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNH MHMtcm9QbS1UVGZmRGRfejAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVjpWC5zQeHGp7V5iUUobrnj7XsLoEF78/+l/EtNpopAsVDPdGm/DcFeU9LYl 9bbOXvNsZaqHwAW6tfjIEmm46QgpaNtLB3qozUuQ7JlP7nxUwqS5GeHlSAPsCRiI x/lvmDgRTHbZRH8EzO1SQ4kvbrrulwz3ICgPBnMxpsPI79DaL+TK6e+zF7OPjCOB hRAC2c686aJw/YIr880cPUHZ9DP7aJAjRpiH2y12ozUSZhrFwgS+AEpkejGAP44t JUsoskxEFi3Jh5VAsRqmRRx6dy4cAWUnoEAw9buyT76lgfLZsMIDZYM0wpJ6tEAf yP7x9HH+lstSW3nnznj7tD+nTA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:34 2026 by rpki-client