$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: UJVUxgaeCp6zsKSrLBiK1NlTseUHAb0i0XBxT0bD7bg= Subject key identifier: 0D:86:53:E1:3F:E6:4A:41:B5:82:28:11:9C:C4:5F:64:B8:79:91:CF Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 02BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 02A7 Signing time: Sun 05 Apr 2026 01:18:38 +0000 Manifest this update: Sun 05 Apr 2026 01:18:38 +0000 Manifest next update: Sun 12 Apr 2026 01:18:38 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: hz6OCesf7frc4AgXWeYaWr8EQfsW8WIEZd0ysBawhas=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: d181Z1DYLcItp5l9IsZ1mcEBRFCLJxml8DnOv1hi/n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 699 (0x2bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Apr 5 01:18:38 2026 GMT Not After : Apr 12 01:18:38 2026 GMT Subject: CN=69d1b86e-9db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e0:e9:b2:10:cf:f4:a6:7d:ab:fe:b0:b4:68: 90:5e:ca:15:75:b3:81:a2:08:17:65:54:aa:92:81: 3e:d6:d7:bf:0d:45:c6:0d:90:c2:01:50:84:28:05: d7:4c:32:de:93:80:aa:60:b6:6b:97:08:a5:81:df: 95:cd:65:8e:a4:c3:ef:59:38:75:a8:f5:45:08:6c: a8:8f:6a:e5:3a:b8:b5:b0:62:a1:bb:2d:78:0e:e0: d3:9d:1f:5d:dd:33:e0:40:f1:03:27:11:26:0b:e8: 2b:cf:93:1d:d5:be:8c:4e:4b:d9:cb:e8:25:7b:1f: 7e:72:c7:75:a5:4d:81:cc:a7:63:61:80:61:c5:39: c9:b7:ac:36:fc:2d:b5:fc:21:4a:8d:9f:71:1f:3c: 41:1a:59:89:af:e1:0c:96:9a:f4:8e:e8:5d:69:33: 49:b6:50:a8:a4:6b:c4:c4:96:e6:50:2c:bf:ad:67: db:0e:67:a0:cd:fe:f4:91:b2:ed:78:31:33:b4:e2: f0:e3:f8:1b:9d:66:a6:26:17:3d:fa:b5:56:ba:60: 7e:4b:22:37:bf:7d:07:69:14:20:49:a6:8b:67:db: b6:fa:f2:fc:b4:76:5b:88:3d:9d:11:13:87:a0:5e: c2:92:06:f9:ec:10:66:99:92:10:4a:23:85:28:09: 64:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:86:53:E1:3F:E6:4A:41:B5:82:28:11:9C:C4:5F:64:B8:79:91:CF X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:65:1a:9f:98:3f:b1:39:64:73:72:3b:63:39:42:33:56:a3: 99:93:36:c6:50:59:02:6c:36:2c:21:cd:dc:5d:77:ec:47:73: d8:be:43:61:48:d2:dc:be:5a:ec:d3:31:e3:bd:58:14:82:63: bd:97:5d:1a:dd:15:ee:79:c9:43:82:39:e0:bc:af:25:79:34: 3e:3f:e5:48:37:50:fe:f1:11:0f:da:9c:2a:34:b7:ed:39:a0: 50:a5:ae:e3:b4:74:8a:2c:50:ff:77:da:f4:d5:36:e3:f1:93: 67:fa:52:50:ba:89:dc:f4:50:77:9d:f2:89:fc:9c:7e:5d:64: ac:48:d0:d4:91:02:08:6e:87:2c:42:e4:e4:cc:03:af:f0:b5: 8f:73:a0:69:11:8f:28:81:37:e6:89:43:ad:c4:d3:c3:88:9a: 54:11:8b:8c:c4:f9:a4:b9:e2:e7:c8:d9:99:43:d4:1e:9c:05: 3d:bf:2c:aa:04:8b:56:26:e1:85:4a:34:9a:71:df:cb:87:a8: 05:6d:73:85:a0:dd:ac:98:6d:2e:a6:37:9a:5b:9b:8e:e4:2f: 23:5f:e3:f0:72:c0:94:e1:b3:44:1e:7b:65:33:38:5b:49:56: 72:b8:15:48:9b:f3:0e:1d:25:e9:4a:1d:0a:46:92:60:dc:93: d8:96:7f:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjYwNDA1MDExODM4WhcNMjYwNDEyMDExODM4WjAYMRYwFAYD VQQDEw02OWQxYjg2ZS05ZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ODpshDP9KZ9q/6wtGiQXsoVdbOBoggXZVSqkoE+1te/DUXGDZDCAVCEKAXX TDLek4CqYLZrlwilgd+VzWWOpMPvWTh1qPVFCGyoj2rlOri1sGKhuy14DuDTnR9d 3TPgQPEDJxEmC+grz5Md1b6MTkvZy+glex9+csd1pU2BzKdjYYBhxTnJt6w2/C21 /CFKjZ9xHzxBGlmJr+EMlpr0juhdaTNJtlCopGvExJbmUCy/rWfbDmegzf70kbLt eDEztOLw4/gbnWamJhc9+rVWumB+SyI3v30HaRQgSaaLZ9u2+vL8tHZbiD2dEROH oF7Ckgb57BBmmZIQSiOFKAlk9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA2GU+E/ 5kpBtYIoEZzEX2S4eZHPMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzWUan5g/sTlkc3I7YzlCM1ajmZM2xlBZAmw2LCHN3F137Edz2L5DYUjS3L5a 7NMx471YFIJjvZddGt0V7nnJQ4I54LyvJXk0Pj/lSDdQ/vERD9qcKjS37TmgUKWu 47R0iixQ/3fa9NU24/GTZ/pSULqJ3PRQd53yifycfl1krEjQ1JECCG6HLELk5MwD r/C1j3OgaRGPKIE35olDrcTTw4iaVBGLjMT5pLni58jZmUPUHpwFPb8sqgSLVibh hUo0mnHfy4eoBW1zhaDdrJhtLqY3mlubjuQvI1/j8HLAlOGzRB57ZTM4W0lWcrgV SJvzDh0l6UodCkaSYNyT2JZ/OQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:26 2026 by rpki-client