$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: 8csZFX+b/4EfvuqEMbcOsmwv3hQ6aAk/zcuTd9K3Jhs= Subject key identifier: 2A:58:F3:C2:31:D7:60:87:5A:84:D5:CB:F1:DA:EC:E4:75:F2:CD:99 Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 01EA Signing time: Sun 05 Apr 2026 02:52:17 +0000 Manifest this update: Sun 05 Apr 2026 02:52:16 +0000 Manifest next update: Sun 12 Apr 2026 02:52:16 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: 5CBdMb2VzvNlkGOffgsx8J1j2/MLl7CHtIScMRd6cJA=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: mj1933/3n6toouA33PYerjmiVEAl8MHe43vblZwNmME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Apr 5 02:52:16 2026 GMT Not After : Apr 12 02:52:16 2026 GMT Subject: CN=69d1ce61-85e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:68:e1:4f:ba:56:29:fe:73:09:14:25:24:4b: 2c:05:c3:62:d2:77:80:5a:10:ba:0d:a8:ef:ba:53: f0:b9:1a:c3:fd:f9:c7:0f:00:9b:62:6a:47:88:8f: 6e:62:77:f1:6f:c7:c9:3d:d2:8e:5f:04:d7:a2:68: 11:ce:5c:63:2f:d8:02:5b:27:c6:db:d6:3a:e1:f8: 9a:1a:26:30:0e:15:a0:84:38:95:36:3f:b3:47:d9: f0:7c:68:90:68:72:3e:f6:02:21:02:e6:7f:a0:d1: fe:91:33:51:fd:eb:57:6c:d1:a5:13:24:bf:06:58: be:05:4a:ed:2a:fa:4b:3d:ae:f1:71:db:46:3e:8d: 87:d4:a3:df:5b:08:b0:8f:8b:19:62:3a:6f:0f:ba: ca:c1:52:b9:a7:3c:5c:48:bb:55:97:40:bd:13:4b: af:87:38:25:c7:d6:c9:85:80:02:bc:61:38:c2:88: 7a:d6:ba:b5:e9:da:9e:69:4f:c4:c7:f9:0c:3d:bb: 3b:ad:26:3b:f8:5d:96:8b:98:20:24:38:b7:d8:8f: b4:11:bf:29:cb:2b:43:7c:85:11:5a:a5:c0:24:bc: 1a:c6:70:c6:a3:8e:cd:bf:b5:ab:4d:9a:d4:c3:56: 20:2a:33:e1:0e:43:c7:de:d8:39:7a:cc:f1:79:a8: fc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:58:F3:C2:31:D7:60:87:5A:84:D5:CB:F1:DA:EC:E4:75:F2:CD:99 X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ce:f9:5a:90:3d:cd:5d:f8:80:88:2b:dd:74:66:77:b3:96: 26:a5:ac:49:f1:90:aa:02:ab:32:02:a8:0d:9c:67:2d:6b:39: 0a:8f:f4:f9:e3:a8:36:99:76:e9:f7:df:72:0f:ec:ae:a8:63: fe:25:a6:3d:36:e2:b4:c0:eb:11:54:a0:b2:c5:b9:4c:af:e8: 5b:52:ff:d4:b6:5e:33:37:b7:6b:39:58:9b:50:07:2c:f7:71: 03:c8:be:0a:16:31:d0:2a:d1:c9:68:3a:01:d1:c8:2c:94:d6: 72:aa:3f:35:fe:aa:e3:59:3b:63:5b:1c:d5:46:a8:44:ee:91: 3b:54:ec:f6:b0:26:59:c4:08:11:6e:8d:3c:2a:c8:79:c4:ee: c8:d2:60:57:52:a7:b8:4f:9a:ed:0e:df:4f:3c:9b:ea:d9:28: 01:b3:95:d9:b4:be:9b:de:c1:06:e4:81:0a:c5:85:6d:a1:a4: 21:f0:b7:81:57:fd:13:34:9a:b7:08:81:f6:a3:e3:ee:33:d6: cf:04:7a:01:2c:d2:90:15:6e:97:08:b8:8b:5b:dd:86:6b:e6: 4b:1f:4c:ec:32:4b:c0:f8:e9:3d:d5:83:b4:78:6a:2e:41:53: db:48:94:54:3f:18:bf:21:4b:6c:52:35:6d:8d:d5:bc:23:50: fe:b3:4c:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjYwNDA1MDI1MjE2WhcNMjYwNDEyMDI1MjE2WjAYMRYwFAYD VQQDEw02OWQxY2U2MS04NWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiWjhT7pWKf5zCRQlJEssBcNi0neAWhC6DajvulPwuRrD/fnHDwCbYmpHiI9u Ynfxb8fJPdKOXwTXomgRzlxjL9gCWyfG29Y64fiaGiYwDhWghDiVNj+zR9nwfGiQ aHI+9gIhAuZ/oNH+kTNR/etXbNGlEyS/Bli+BUrtKvpLPa7xcdtGPo2H1KPfWwiw j4sZYjpvD7rKwVK5pzxcSLtVl0C9E0uvhzglx9bJhYACvGE4woh61rq16dqeaU/E x/kMPbs7rSY7+F2Wi5ggJDi32I+0Eb8pyytDfIURWqXAJLwaxnDGo47Nv7WrTZrU w1YgKjPhDkPH3tg5eszxeaj8+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCpY88Ix 12CHWoTVy/Ha7OR18s2ZMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcM75WpA9zV34gIgr3XRmd7OWJqWsSfGQqgKrMgKoDZxnLWs5Co/0+eOoNpl2 6fffcg/srqhj/iWmPTbitMDrEVSgssW5TK/oW1L/1LZeMze3azlYm1AHLPdxA8i+ ChYx0CrRyWg6AdHILJTWcqo/Nf6q41k7Y1sc1UaoRO6RO1Ts9rAmWcQIEW6NPCrI ecTuyNJgV1KnuE+a7Q7fTzyb6tkoAbOV2bS+m97BBuSBCsWFbaGkIfC3gVf9EzSa twiB9qPj7jPWzwR6ASzSkBVulwi4i1vdhmvmSx9M7DJLwPjpPdWDtHhqLkFT20iU VD8YvyFLbFI1bY3VvCNQ/rNMag== -----END CERTIFICATE-----Generated at Mon Apr 6 08:27:35 2026 by rpki-client