$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: vOdh7W3/TmnLzFR/qOK+UaryEOjBVsNmJk86+8Joanc= Subject key identifier: 77:1B:C2:10:41:33:50:1B:76:97:8F:DE:C7:23:CA:24:E7:7F:57:84 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 01C5 Signing time: Sun 05 Apr 2026 03:20:44 +0000 Manifest this update: Sun 05 Apr 2026 03:20:44 +0000 Manifest next update: Sun 12 Apr 2026 03:20:44 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: KkJ/1hQNLeokytOD6ru8rUrtlQ9Vf4M9xFrrZWDPeio=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: /k9F9UoMVvvC6p1jgV3pWpP4PVT7CPpxGz+wVVYMTRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:20:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Apr 5 03:20:44 2026 GMT Not After : Apr 12 03:20:44 2026 GMT Subject: CN=69d1d50c-385d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:af:48:da:6d:bd:cd:16:d6:9c:b3:a5:da:32: a6:0a:c9:fe:40:fc:07:5a:7b:cc:30:2f:23:04:b2: 92:80:98:5e:07:5b:1a:c5:85:93:2d:9f:e9:2a:bd: bf:6f:92:2b:9b:f7:d8:3b:f4:cb:20:09:65:70:36: 03:c8:5b:96:27:38:ff:d9:05:89:fd:94:39:29:57: f0:c1:f0:02:7f:42:06:b7:03:0e:1f:65:b9:25:20: 55:11:4e:63:22:cf:fb:5c:85:07:d6:2a:3c:61:9d: 14:10:a7:63:e5:90:5b:c6:ce:36:3c:8c:1f:2c:3f: d2:86:e0:87:34:9a:29:20:5a:e7:31:27:87:a4:01: d8:ca:1c:87:7e:4e:d7:94:2b:c6:99:58:41:0d:e0: 4f:a4:43:5b:0d:30:59:f7:84:24:87:05:6f:b3:be: cf:9a:69:c1:ca:e8:86:95:0b:43:98:46:b8:bb:56: 31:55:4e:fd:d4:84:6a:d6:d4:4b:82:54:a5:c4:a1: 43:ea:54:ff:0d:b0:e9:56:e7:d1:30:47:d2:31:9e: 57:26:91:ac:1d:8c:25:39:3f:9f:a0:44:1c:99:58: a3:98:99:cb:06:e6:fc:ff:14:9c:ce:99:42:00:2f: 90:13:b8:fe:0b:07:93:33:70:f7:59:95:64:75:60: 1f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1B:C2:10:41:33:50:1B:76:97:8F:DE:C7:23:CA:24:E7:7F:57:84 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:6b:15:3f:3d:a6:98:70:c3:fc:27:1f:d2:07:a7:f6:36:e2: 40:f7:12:3f:bf:f9:d5:9a:41:07:1e:35:19:f3:ef:ac:85:6e: 9f:1b:f8:d5:d3:e6:87:09:c3:7a:b4:e4:12:c1:2b:23:60:82: 50:76:bb:73:9c:ab:48:d6:32:65:53:e9:99:a3:eb:27:62:67: 24:a7:da:80:0e:8f:51:77:a7:8d:6b:5c:4e:d2:f4:6a:6e:52: 7e:b1:c6:f5:31:93:04:db:cd:c8:df:f9:5d:86:bf:76:ca:23: e0:07:df:13:75:bf:f7:10:e9:34:bf:f3:a5:7b:6e:d3:0a:51: 59:51:66:0e:e1:b0:08:2c:ea:96:2b:f4:c0:2c:8e:d9:9a:1d: 7a:dc:d2:46:3d:11:07:c1:30:28:20:ab:4c:6d:f9:7a:c5:d6: 54:8c:35:34:ae:24:8f:a4:1c:6b:11:43:0b:86:e7:7c:de:5f: 78:50:3c:46:72:50:7e:80:57:db:98:51:2b:7b:a9:bd:72:93: 16:8f:42:74:e9:2c:39:5f:54:82:56:6c:f8:ff:ae:80:c4:cd: cf:ec:e2:a7:41:fb:b2:5c:e1:a3:34:43:3c:e5:1c:81:13:5a: 94:c6:8d:00:4d:40:b9:ab:97:dd:c7:47:a3:e7:b1:06:77:6b: c0:f9:26:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjYwNDA1MDMyMDQ0WhcNMjYwNDEyMDMyMDQ0WjAYMRYwFAYD VQQDEw02OWQxZDUwYy0zODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1K9I2m29zRbWnLOl2jKmCsn+QPwHWnvMMC8jBLKSgJheB1saxYWTLZ/pKr2/ b5Irm/fYO/TLIAllcDYDyFuWJzj/2QWJ/ZQ5KVfwwfACf0IGtwMOH2W5JSBVEU5j Is/7XIUH1io8YZ0UEKdj5ZBbxs42PIwfLD/ShuCHNJopIFrnMSeHpAHYyhyHfk7X lCvGmVhBDeBPpENbDTBZ94QkhwVvs77PmmnByuiGlQtDmEa4u1YxVU791IRq1tRL glSlxKFD6lT/DbDpVufRMEfSMZ5XJpGsHYwlOT+foEQcmVijmJnLBub8/xSczplC AC+QE7j+CweTM3D3WZVkdWAf1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHcbwhBB M1AbdpeP3scjyiTnf1eEMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHmsVPz2mmHDD/Ccf0gen9jbiQPcSP7/51ZpBBx41GfPvrIVunxv41dPmhwnD erTkEsErI2CCUHa7c5yrSNYyZVPpmaPrJ2JnJKfagA6PUXenjWtcTtL0am5SfrHG 9TGTBNvNyN/5XYa/dsoj4AffE3W/9xDpNL/zpXtu0wpRWVFmDuGwCCzqliv0wCyO 2ZodetzSRj0RB8EwKCCrTG35esXWVIw1NK4kj6QcaxFDC4bnfN5feFA8RnJQfoBX 25hRK3upvXKTFo9CdOksOV9UglZs+P+ugMTNz+zip0H7slzhozRDPOUcgRNalMaN AE1AuauX3cdHo+exBndrwPkmmA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:18 2026 by rpki-client