$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft File: aMW6vfwSOWbQX4DD-kI3lELEIgw.mft (raw, json) Hash identifier: PmFN4OEEgdDfWmGrmxXLFHjgF7a7UwgjWHzVbP5VVqM= Subject key identifier: 01:04:26:48:75:84:4D:72:D5:A6:AC:23:9F:16:CD:A1:9F:04:24:2E Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 355C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft Manifest number: 353A Signing time: Sat 04 Apr 2026 14:44:26 +0000 Manifest this update: Sat 04 Apr 2026 14:44:25 +0000 Manifest next update: Sat 11 Apr 2026 14:44:25 +0000 Files and hashes: 1: aMW6vfwSOWbQX4DD-kI3lELEIgw.crl (hash: hoyzPDkglKeE339I2bS4r8YcWCgvS7OHIirUBl+Vm3Q=) 2: E05FE99AB0D511E5B4F68B09C4F9AE02.roa (hash: cbOF25KS3Ii1neQB3lO33xPaJIbgxTebcwnMlxfjqmE=) 3: 73438FF06DED11E9A21D1341C4F9AE02.roa (hash: wkiRfCu/XLYyXw4TOm6YezOpImuhMfUU+dENf0r96zI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13660 (0x355c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D, serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: Apr 4 14:44:25 2026 GMT Not After : Apr 11 14:44:25 2026 GMT Subject: CN=69d123ca-efbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4c:a5:3f:28:c4:cb:7a:9b:9d:ea:52:70:e0: 73:00:f4:36:2c:4f:ed:12:b1:57:01:f4:7d:10:d7: e0:4a:dd:d3:93:dd:3e:75:60:19:62:88:97:c9:f1: df:a5:fc:d0:b7:b9:a7:11:a5:1a:76:8d:a4:a0:1b: 87:1a:ca:b2:6d:cc:12:39:c9:73:f9:c8:82:4d:c4: 7e:63:c0:b7:d6:a0:f1:09:cb:90:85:e8:87:f7:73: 45:ce:b3:e3:b9:3f:c8:fb:48:13:e9:f2:43:35:4c: 11:9a:3d:08:98:77:51:40:a4:19:2e:4b:ef:98:62: 1f:e5:dc:aa:42:c2:d0:80:e7:c8:31:d6:d3:6d:61: 1e:4d:3d:19:ce:c4:f4:1e:1c:bd:c2:63:c3:e6:4a: b6:4c:e9:07:80:0f:79:5c:10:6f:45:18:09:8e:f2: e4:5c:05:e8:21:dc:ea:c5:d0:af:a3:3b:05:8a:a3: 7f:51:ee:46:d3:ec:59:ea:bc:e0:66:a3:fe:4c:a2: ce:58:11:e1:5b:53:10:96:d9:ea:7d:8b:5f:27:ae: e4:d6:cd:aa:73:81:05:1f:29:b2:25:75:f9:82:90: 54:26:11:fb:2d:ec:79:00:77:a8:8b:47:23:35:ae: ef:20:bb:98:6c:89:fe:7f:1b:2a:ce:3a:26:91:a8: 9c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:04:26:48:75:84:4D:72:D5:A6:AC:23:9F:16:CD:A1:9F:04:24:2E X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:64:94:48:8d:39:eb:e0:ca:66:57:2a:3a:ab:63:0f:41:93: cd:0c:7a:0d:db:f6:43:27:7c:6b:21:2b:f4:39:ef:13:e5:d9: 81:99:be:7b:63:fc:af:63:67:30:7e:f5:98:aa:1d:19:08:5a: 32:71:53:69:af:54:d7:4f:60:e3:1e:dd:05:d3:d2:4a:25:c1: 5b:26:a2:1a:98:3b:da:06:90:4c:81:bf:ef:af:1c:04:79:bf: 61:05:4f:a4:0e:4a:5e:35:f5:35:d3:25:c3:14:2c:7a:38:52: 86:9e:96:1b:80:7b:f5:28:3d:bb:7d:88:7a:1e:3a:4e:51:f7: cb:5a:f3:5e:e6:78:5f:a6:99:78:e5:3c:57:00:f5:37:b4:d3: 62:b6:a3:6c:7b:a8:c9:b9:ac:bd:72:91:2e:b0:a5:e2:a3:55: 50:b8:01:29:f7:3b:26:7e:88:81:b9:e3:8c:01:40:a3:61:96: 81:38:f3:13:ca:29:97:5e:70:36:47:a8:42:79:8a:49:df:c7: 66:4e:9b:20:98:3e:88:06:cb:67:56:0e:3c:02:0f:09:bf:7e: 3c:23:90:58:95:09:a8:1b:46:e1:65:57:62:6c:71:44:b7:ec: 98:77:3b:bf:74:b8:c9:b5:7d:52:29:73:ac:6a:b4:97:5d:fa: b2:3d:d7:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjYwNDA0MTQ0NDI1WhcNMjYwNDExMTQ0NDI1WjAYMRYwFAYD VQQDEw02OWQxMjNjYS1lZmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokylPyjEy3qbnepScOBzAPQ2LE/tErFXAfR9ENfgSt3Tk90+dWAZYoiXyfHf pfzQt7mnEaUado2koBuHGsqybcwSOclz+ciCTcR+Y8C31qDxCcuQheiH93NFzrPj uT/I+0gT6fJDNUwRmj0ImHdRQKQZLkvvmGIf5dyqQsLQgOfIMdbTbWEeTT0ZzsT0 Hhy9wmPD5kq2TOkHgA95XBBvRRgJjvLkXAXoIdzqxdCvozsFiqN/Ue5G0+xZ6rzg ZqP+TKLOWBHhW1MQltnqfYtfJ67k1s2qc4EFHymyJXX5gpBUJhH7Lex5AHeoi0cj Na7vILuYbIn+fxsqzjomkaichwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAEEJkh1 hE1y1aasI58WzaGfBCQuMB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjAxRC9DRDFFMjk0ODFEOTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09X YlFYNERELWtJM2xFTEVJZ3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApWSUSI056+DKZlcqOqtjD0GTzQx6Ddv2Qyd8ayEr9DnvE+XZgZm+e2P8r2Nn MH71mKodGQhaMnFTaa9U109g4x7dBdPSSiXBWyaiGpg72gaQTIG/768cBHm/YQVP pA5KXjX1NdMlwxQsejhShp6WG4B79Sg9u32Ieh46TlH3y1rzXuZ4X6aZeOU8VwD1 N7TTYrajbHuoybmsvXKRLrCl4qNVULgBKfc7Jn6IgbnjjAFAo2GWgTjzE8opl15w NkeoQnmKSd/HZk6bIJg+iAbLZ1YOPAIPCb9+PCOQWJUJqBtG4WVXYmxxRLfsmHc7 v3S4ybV9UilzrGq0l136sj3X+g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:41 2026 by rpki-client