$ rpki-client -vvf rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft File: at5OHE4cCb8U36pMPWAPQY4X5y4.mft (raw, json) Hash identifier: /Ck2Fgvp2ypMnNsSN6dhVgikblp8lfSVY9Uqsbh4DEE= Subject key identifier: BF:99:30:B8:1A:16:D0:5B:74:1C:2D:96:37:77:6A:3F:2D:DD:90:DC Authority key identifier: 6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E Certificate issuer: /CN=A918429B/serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Certificate serial: 3528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft Manifest number: 3528 Signing time: Sat 04 Apr 2026 14:50:59 +0000 Manifest this update: Sat 04 Apr 2026 14:50:58 +0000 Manifest next update: Sat 11 Apr 2026 14:50:58 +0000 Files and hashes: 1: at5OHE4cCb8U36pMPWAPQY4X5y4.crl (hash: n+VWe6pd2WDds2VN/DYxnqt2zrsq586g2HDsTz3muvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13608 (0x3528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918429B, serialNumber=6ADE4E1C4E1C09BF14DFAA4C3D600F418E17E72E Validity Not Before: Apr 4 14:50:58 2026 GMT Not After : Apr 11 14:50:58 2026 GMT Subject: CN=69d12553-55d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d5:27:7d:a4:90:52:52:2e:49:15:5e:06:e5: 1a:e4:0b:1d:ad:7e:09:e8:b1:6b:c7:e0:06:67:50: 98:74:46:69:1c:10:c4:6d:12:8b:47:06:25:a4:03: 43:09:e7:47:59:42:ea:84:ac:f2:24:db:0e:84:6d: a5:2f:96:36:c3:97:40:b7:4c:01:92:30:33:99:fe: fe:94:a6:b6:7d:29:10:4c:14:7f:3f:21:1f:95:d5: 5d:4b:ec:31:e0:12:86:f4:00:00:7b:4e:33:8f:5a: 49:ce:5c:06:85:84:cd:81:9f:5d:14:73:f5:2e:a2: a1:12:5e:c1:ab:56:53:a8:ab:f6:0c:cc:2a:fe:1c: ff:60:6a:9d:b4:f4:ec:39:2b:ba:27:44:37:d1:28: 7a:b6:42:53:0c:58:36:2b:f8:c8:29:59:b6:6e:91: 4e:51:8c:16:71:69:a2:1f:8c:38:9d:5f:29:ac:f5: a0:ec:f9:15:b5:5a:89:f9:82:c0:c1:45:7e:c4:19: c8:e4:c3:36:06:4b:25:41:de:15:cf:f1:a1:bc:2a: a9:6c:bd:c0:82:e7:2c:bb:6b:45:89:8a:52:70:85: d2:fe:80:6e:35:91:53:b4:cd:de:87:e7:f5:bd:58: 70:25:b1:8c:0e:40:81:c0:b8:38:c0:7d:f2:5b:22: d3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:99:30:B8:1A:16:D0:5B:74:1C:2D:96:37:77:6A:3F:2D:DD:90:DC X509v3 Authority Key Identifier: keyid:6A:DE:4E:1C:4E:1C:09:BF:14:DF:AA:4C:3D:60:0F:41:8E:17:E7:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/at5OHE4cCb8U36pMPWAPQY4X5y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918429B/B60063AC1D9711E2BA2E458108B02CD2/at5OHE4cCb8U36pMPWAPQY4X5y4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:30:fc:ea:ea:6c:b1:9c:e8:fb:41:37:e7:1d:c3:9d:d5:53: b1:09:a1:fa:29:ad:78:65:a6:94:61:83:87:1d:dd:a1:8c:c5: 7f:42:94:b4:2b:af:ee:43:c4:ae:2c:d4:da:a7:68:cb:f6:ec: ed:71:d9:71:bb:02:2a:12:0b:7d:ae:e7:b9:34:4e:38:e2:51: aa:c1:23:e3:49:18:8e:0a:45:d8:ad:4e:93:75:e6:15:8a:b6: 4c:34:2c:88:fa:78:4a:1f:79:d6:31:07:46:c8:83:e1:25:7c: 0f:c5:cf:f9:01:ae:7e:8a:68:3e:13:0e:a7:1c:4e:a4:7a:6f: 09:91:6b:47:61:45:d1:61:a1:7b:f8:27:c2:f3:5a:d8:61:63: 23:e2:49:6e:17:84:52:ea:e1:7c:54:b9:a0:10:e6:2b:51:cd: 3c:40:17:d4:18:77:66:e9:ae:25:0c:eb:99:15:99:e1:ee:14: 8a:dd:1f:05:b2:c5:e6:74:02:62:c3:74:28:63:61:3f:eb:a8: 0a:3f:51:ae:51:0a:05:27:73:bd:eb:08:b3:2e:97:e4:f8:b2: 3d:ee:5c:41:40:5c:b5:10:c8:f1:a7:73:01:42:8c:81:23:5a: dd:75:f7:32:6f:a9:d9:e1:65:67:51:e1:f1:8e:a1:ca:a5:3f: bd:1c:47:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyOUIxMTAvBgNVBAUTKDZBREU0RTFDNEUxQzA5QkYxNERGQUE0QzNENjAwRjQx OEUxN0U3MkUwHhcNMjYwNDA0MTQ1MDU4WhcNMjYwNDExMTQ1MDU4WjAYMRYwFAYD VQQDEw02OWQxMjU1My01NWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NUnfaSQUlIuSRVeBuUa5AsdrX4J6LFrx+AGZ1CYdEZpHBDEbRKLRwYlpAND CedHWULqhKzyJNsOhG2lL5Y2w5dAt0wBkjAzmf7+lKa2fSkQTBR/PyEfldVdS+wx 4BKG9AAAe04zj1pJzlwGhYTNgZ9dFHP1LqKhEl7Bq1ZTqKv2DMwq/hz/YGqdtPTs OSu6J0Q30Sh6tkJTDFg2K/jIKVm2bpFOUYwWcWmiH4w4nV8prPWg7PkVtVqJ+YLA wUV+xBnI5MM2BkslQd4Vz/GhvCqpbL3Agucsu2tFiYpScIXS/oBuNZFTtM3eh+f1 vVhwJbGMDkCBwLg4wH3yWyLT0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL+ZMLga FtBbdBwtljd3aj8t3ZDcMB8GA1UdIwQYMBaAFGreThxOHAm/FN+qTD1gD0GOF+cu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI5Qi9CNjAwNjNBQzFE OTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0NiOFUzNnBNUFdBUFFZNFg1 eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F0NU9IRTRjQ2I4VTM2cE1QV0FQUVk0WDV5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI5Qi9CNjAwNjNBQzFEOTcxMUUyQkEyRTQ1ODEwOEIwMkNEMi9hdDVPSEU0Y0Ni OFUzNnBNUFdBUFFZNFg1eTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMzD86upssZzo+0E35x3DndVTsQmh+imteGWmlGGDhx3doYzFf0KUtCuv7kPE rizU2qdoy/bs7XHZcbsCKhILfa7nuTROOOJRqsEj40kYjgpF2K1Ok3XmFYq2TDQs iPp4Sh951jEHRsiD4SV8D8XP+QGufopoPhMOpxxOpHpvCZFrR2FF0WGhe/gnwvNa 2GFjI+JJbheEUurhfFS5oBDmK1HNPEAX1Bh3ZumuJQzrmRWZ4e4Uit0fBbLF5nQC YsN0KGNhP+uoCj9RrlEKBSdzvesIsy6X5PiyPe5cQUBctRDI8adzAUKMgSNa3XX3 Mm+p2eFlZ1Hh8Y6hyqU/vRxHig== -----END CERTIFICATE-----Generated at Mon Apr 6 08:49:02 2026 by rpki-client