$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: PTqLTDXubqslPBC1Bzg5WK5HwK46z2iba8MCBiKBJqk= Subject key identifier: D4:B6:54:0D:E5:B6:D7:F7:ED:24:A8:65:18:86:77:F2:8A:F5:3C:C7 Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 05D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 05CE Signing time: Sat 04 Apr 2026 22:49:49 +0000 Manifest this update: Sat 04 Apr 2026 22:49:48 +0000 Manifest next update: Sat 11 Apr 2026 22:49:48 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: qiRwMDxkbSXz+tvBOscbIQcN7ASZXVM86k4OxahcLhk=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: fOkqVihCu1L5Ia3iPQWWnGFlmmkL41U8TtXyOcg3l2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1493 (0x5d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Apr 4 22:49:48 2026 GMT Not After : Apr 11 22:49:48 2026 GMT Subject: CN=69d1958d-58ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:2c:81:30:9d:39:85:d3:58:ee:65:7c:96: e3:c8:34:06:b6:03:07:75:c0:b4:57:42:44:1a:34: 1f:0c:4c:af:b0:97:61:7c:e6:f3:53:fb:4b:19:95: a0:24:14:c8:4f:6a:f8:62:a9:6b:1d:cc:ef:01:65: bd:df:d7:9c:d5:f5:ca:f3:5e:0d:c3:b1:80:65:76: b7:3f:42:d8:bd:41:30:86:42:f3:ee:03:98:45:a8: 12:95:da:46:5d:e6:00:f0:ab:b4:98:c2:56:ab:96: 18:45:f9:65:3f:19:d0:9f:fc:d8:19:1d:15:66:9d: 71:35:59:96:0d:d4:a1:d6:ba:10:0d:d2:b2:4d:54: 19:75:68:64:8a:dc:e7:ab:02:8e:a1:de:a3:4a:f7: 5e:ad:f7:d8:55:c4:2c:a5:94:35:4e:b8:7c:b3:ca: 96:59:5c:63:15:95:33:c3:bd:5e:5e:0a:ce:be:f3: 58:a2:ca:a5:2f:d7:11:41:cc:46:1b:6f:12:c5:36: 19:7c:a0:97:03:e2:c0:26:bc:03:8f:e2:ce:e7:c6: 0b:d3:3a:84:e2:34:f0:dc:72:86:75:ce:a1:b7:96: 50:19:65:22:34:4c:14:b4:81:01:e5:c1:7f:d1:b1: 5b:e5:bc:71:6f:d7:2e:50:bb:19:a6:d7:b9:74:ab: a8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B6:54:0D:E5:B6:D7:F7:ED:24:A8:65:18:86:77:F2:8A:F5:3C:C7 X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:00:cc:18:3a:0b:14:11:cc:c8:84:8d:84:a6:3c:bb:7e:5b: 7b:18:1b:ed:52:f6:18:c1:1d:70:38:a1:6d:79:d6:f8:11:09: fc:2c:f6:10:f5:41:42:c2:dd:d8:ed:97:5a:e6:51:42:4c:8b: 9c:29:4d:6e:38:98:c9:9c:6c:ab:d7:48:13:a1:a3:20:3e:b2: 53:ec:64:22:e2:87:58:f9:22:0e:5b:5b:bb:82:18:90:13:d0: 24:65:07:17:d3:e6:37:15:32:e7:f1:04:94:2c:ad:fa:06:2c: 63:f5:49:98:af:8d:15:28:52:32:9d:58:15:38:34:2f:f3:49: a1:2b:c3:6c:bd:d7:cf:a1:d2:89:f1:59:d1:81:5a:c8:06:b3: d3:a4:c4:1c:8a:b4:15:a1:31:4b:6f:44:52:4f:f9:57:63:31: 99:5c:ba:dc:fa:20:f1:b1:2c:4a:7c:0a:69:b6:91:89:df:37: 4f:5d:ec:f3:70:90:0c:af:6a:0b:90:ac:60:f0:67:75:72:fd: 40:83:c6:21:29:b9:85:0e:5a:09:59:bb:4c:90:0e:2b:a9:b5: e1:ce:9a:8b:da:11:d3:ec:4d:9e:de:07:d1:62:2d:56:00:d9: 28:cb:29:89:93:2f:45:2c:23:82:23:6e:ee:78:66:9e:ee:c6: c2:14:eb:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjYwNDA0MjI0OTQ4WhcNMjYwNDExMjI0OTQ4WjAYMRYwFAYD VQQDEw02OWQxOTU4ZC01OGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPwsgTCdOYXTWO5lfJbjyDQGtgMHdcC0V0JEGjQfDEyvsJdhfObzU/tLGZWg JBTIT2r4YqlrHczvAWW939ec1fXK814Nw7GAZXa3P0LYvUEwhkLz7gOYRagSldpG XeYA8Ku0mMJWq5YYRfllPxnQn/zYGR0VZp1xNVmWDdSh1roQDdKyTVQZdWhkitzn qwKOod6jSvderffYVcQspZQ1Trh8s8qWWVxjFZUzw71eXgrOvvNYosqlL9cRQcxG G28SxTYZfKCXA+LAJrwDj+LO58YL0zqE4jTw3HKGdc6ht5ZQGWUiNEwUtIEB5cF/ 0bFb5bxxb9cuULsZpte5dKuoawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNS2VA3l ttf37SSoZRiGd/KK9TzHMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlwDMGDoLFBHMyISNhKY8u35bexgb7VL2GMEdcDihbXnW+BEJ/Cz2EPVBQsLd 2O2XWuZRQkyLnClNbjiYyZxsq9dIE6GjID6yU+xkIuKHWPkiDltbu4IYkBPQJGUH F9PmNxUy5/EElCyt+gYsY/VJmK+NFShSMp1YFTg0L/NJoSvDbL3Xz6HSifFZ0YFa yAaz06TEHIq0FaExS29EUk/5V2MxmVy63Pog8bEsSnwKabaRid83T13s83CQDK9q C5CsYPBndXL9QIPGISm5hQ5aCVm7TJAOK6m14c6ai9oR0+xNnt4H0WItVgDZKMsp iZMvRSwjgiNu7nhmnu7GwhTr7A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:50:22 2026 by rpki-client