$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft File: jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json) Hash identifier: SIaV0buvGy8HEUFt3t1fDHUqA7U64RUn2StX9Tc49ec= Subject key identifier: 4D:B3:ED:0C:B4:9C:84:C7:64:56:AC:38:F7:5B:36:49:99:63:40:D9 Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 Certificate issuer: /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft Manifest number: 020F Signing time: Sun 05 Apr 2026 02:29:10 +0000 Manifest this update: Sun 05 Apr 2026 02:29:09 +0000 Manifest next update: Sun 12 Apr 2026 02:29:09 +0000 Files and hashes: 1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: Pj+99nDUXZ36ncoQimV9PcC5vZ9L1u0cD4ttVev4O5Q=) 2: 27623F48040711F193DC81CA173D8C67.roa (hash: 4UQuwImlHbzxK5xAml0mOBA2CK1r1LRApTKclWV+/nY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A6EB, serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Validity Not Before: Apr 5 02:29:09 2026 GMT Not After : Apr 12 02:29:09 2026 GMT Subject: CN=69d1c8f6-fb1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d9:06:c9:55:a3:08:e4:db:5b:b6:5b:96:be: 2e:cd:f1:3d:35:0b:ec:ad:67:c9:52:22:a9:a3:96: b2:24:b5:9f:a7:d5:47:4b:62:68:97:a5:89:da:81: 20:32:f6:82:01:ec:a8:f4:38:59:a9:c6:d8:f0:b9: 9a:a1:eb:2b:b7:5f:96:67:37:8d:0a:c5:e6:68:d4: e5:f1:28:8f:33:3d:fa:e3:41:b4:94:b5:c1:76:3f: df:c8:17:05:36:dd:c3:b4:d6:0a:21:bd:17:98:7f: 8e:99:b9:dd:84:01:31:05:6f:f2:33:67:55:e3:6d: 17:3a:f8:e6:56:12:a1:84:9f:f6:ed:a2:4e:67:d9: 7a:4a:b9:aa:4c:98:e5:b2:f9:76:09:97:34:e3:55: 0c:43:d8:30:2f:42:6e:54:31:0f:19:42:41:23:d4: 00:cb:82:92:d1:51:9e:5a:9c:35:60:8f:f8:b7:72: 26:05:30:29:8c:33:7a:91:0e:b7:0f:04:2a:b3:ab: b4:2a:ab:47:0f:5c:d2:50:e1:68:1e:9a:38:0b:d1: 56:ad:76:00:0d:1a:5d:ed:2e:e5:7d:2c:c7:0f:e5: e5:b1:9d:f9:98:e3:7c:72:2c:e0:94:cb:be:6f:9a: 39:28:2b:6a:0e:4e:02:73:f6:c7:85:97:83:5c:6e: fe:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B3:ED:0C:B4:9C:84:C7:64:56:AC:38:F7:5B:36:49:99:63:40:D9 X509v3 Authority Key Identifier: keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:47:2f:a9:4e:72:fc:66:70:8e:fd:1c:d1:33:82:d5:29:b7: 15:b7:c9:f0:83:85:52:cd:c2:d6:6c:7b:e9:2a:6b:ee:6e:25: 51:7e:9a:28:89:58:61:d3:63:96:e6:da:10:46:f4:02:53:fc: 4e:30:b4:90:ee:a0:22:02:0b:e3:64:53:65:b3:3e:e7:69:2b: a8:e4:a2:07:8b:77:69:e7:59:92:c7:d7:63:1a:31:63:42:34: 01:86:d1:32:a0:f8:34:3a:5a:3b:c9:33:a0:bf:6a:fa:69:2e: 5e:7d:3d:db:f1:ae:17:0c:6a:75:db:91:7e:4d:44:1f:1a:c4: af:09:90:34:9e:70:c2:d2:39:00:b1:84:cb:b1:d1:6c:b1:6b: 82:b5:29:9b:9a:00:a0:1a:fd:70:55:30:eb:b5:94:99:db:10: 53:20:b7:dd:4d:27:c0:e5:9e:3e:d7:fd:5c:ca:46:65:d1:79: 47:b7:75:a3:06:08:91:1c:51:54:16:a1:89:62:df:c7:74:e5: 6a:19:f4:ed:90:c2:46:20:ed:b3:6c:68:06:01:09:5e:1e:b0: 9c:53:f9:ed:57:6b:8a:3a:73:11:6e:91:d5:32:44:18:01:dc: a6:c3:d2:0e:52:9e:79:ed:db:e0:a9:25:58:ab:89:f0:0b:56: 41:dd:4b:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF MzgzNUMyNzcwHhcNMjYwNDA1MDIyOTA5WhcNMjYwNDEyMDIyOTA5WjAYMRYwFAYD VQQDEw02OWQxYzhmNi1mYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdkGyVWjCOTbW7Zblr4uzfE9NQvsrWfJUiKpo5ayJLWfp9VHS2Jol6WJ2oEg MvaCAeyo9DhZqcbY8Lmaoesrt1+WZzeNCsXmaNTl8SiPMz3640G0lLXBdj/fyBcF Nt3DtNYKIb0XmH+OmbndhAExBW/yM2dV420XOvjmVhKhhJ/27aJOZ9l6SrmqTJjl svl2CZc041UMQ9gwL0JuVDEPGUJBI9QAy4KS0VGeWpw1YI/4t3ImBTApjDN6kQ63 DwQqs6u0KqtHD1zSUOFoHpo4C9FWrXYADRpd7S7lfSzHD+XlsZ35mON8cizglMu+ b5o5KCtqDk4Cc/bHhZeDXG7+DQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE2z7Qy0 nITHZFasOPdbNkmZY0DZMB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3 bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3 eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABkcvqU5y/GZwjv0c0TOC1Sm3FbfJ8IOFUs3C1mx76Spr7m4lUX6aKIlYYdNj lubaEEb0AlP8TjC0kO6gIgIL42RTZbM+52krqOSiB4t3aedZksfXYxoxY0I0AYbR MqD4NDpaO8kzoL9q+mkuXn092/GuFwxqdduRfk1EHxrErwmQNJ5wwtI5ALGEy7HR bLFrgrUpm5oAoBr9cFUw67WUmdsQUyC33U0nwOWePtf9XMpGZdF5R7d1owYIkRxR VBahiWLfx3Tlahn07ZDCRiDts2xoBgEJXh6wnFP57VdrijpzEW6R1TJEGAHcpsPS DlKeee3b4KklWKuJ8AtWQd1LYQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:42:26 2026 by rpki-client