$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: Kj5M4Ed9R3cFifIinzu+a18teINa2HVE9ZN0DGo1eAE= Subject key identifier: 7A:E1:0D:AA:2F:A4:94:5A:66:C2:1A:1F:A5:3E:94:19:40:BA:ED:AB Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 0337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 0327 Signing time: Sun 05 Apr 2026 00:52:51 +0000 Manifest this update: Sun 05 Apr 2026 00:52:50 +0000 Manifest next update: Sun 12 Apr 2026 00:52:50 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: +Xyl/5t9rE2BmXjVyscZeWDTGQ2WvRaX9I2h3pOdRYU=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: O3Ls+9YBYFMKkyDDzAoAnYOjitWoJ58mnyLKpWOVBLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Apr 5 00:52:50 2026 GMT Not After : Apr 12 00:52:50 2026 GMT Subject: CN=69d1b262-e6aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:81:44:79:0c:91:95:f2:28:c5:ae:c5:ab:31: 40:9f:0c:eb:08:68:f1:fc:00:3e:df:dc:dd:b5:d7: 1c:40:47:ce:63:80:9a:7c:4b:ec:be:a7:cd:84:51: b9:45:9c:3b:df:87:4b:61:72:d5:66:5b:d8:75:c9: eb:2d:c9:8f:b3:97:92:e5:aa:6f:fa:dc:4b:db:14: ca:e0:58:80:4d:46:c5:e0:e4:72:b8:75:db:d4:ea: b9:78:95:58:38:55:07:1d:3b:3d:22:c7:01:91:21: d4:35:de:a5:a1:4a:8e:9e:07:1e:d6:89:c2:d1:cb: d4:90:5b:15:f7:0e:b8:36:76:1c:e5:a8:32:ef:fc: b4:d5:7b:14:22:c8:29:29:7c:05:88:b7:58:04:30: d1:49:f5:dd:36:36:6c:aa:28:ae:fa:0b:f3:66:89: 1f:1f:01:6d:14:18:f3:6f:5c:73:8b:3a:ee:56:d0: 9b:35:b3:f7:c5:47:4c:81:04:09:fb:40:b4:54:b0: 82:5a:36:a5:18:7c:1e:84:32:e6:4a:ea:b9:2f:cd: 5d:ff:9c:6b:70:cc:bd:79:64:f5:ba:f2:31:96:f5: 17:d9:57:8a:1a:f9:e0:5a:e6:fc:59:6b:ab:8c:5f: 88:31:0b:33:b0:86:f4:c5:31:4a:ad:4c:93:14:5a: 40:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E1:0D:AA:2F:A4:94:5A:66:C2:1A:1F:A5:3E:94:19:40:BA:ED:AB X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:37:d9:46:ce:39:8d:4e:11:01:84:4d:87:86:46:6a:c6:dd: 4e:88:73:3e:94:ce:33:b4:4f:fb:ee:f7:e9:92:37:fb:cf:74: e5:b3:a8:e1:d3:da:a1:84:b9:29:f4:c5:4c:58:3d:f8:6c:f3: 1b:e5:49:ef:71:98:a5:a2:cd:4c:3c:2f:1c:18:2b:ef:4b:ea: 39:c6:6c:5d:4f:26:29:6d:e3:25:87:ae:73:d3:c0:bd:84:40: 5e:e6:df:05:b6:7b:2c:83:68:b6:b5:42:31:79:c9:5e:16:29: 87:8f:9a:02:1d:6c:52:cc:0a:cd:4b:8c:ad:1d:98:90:f2:0b: 78:0e:cf:85:3b:1c:47:cc:76:22:b0:81:00:63:be:cf:ee:bd: 87:b0:e1:8c:d2:34:58:91:f7:38:f3:02:18:03:4c:97:5d:78: 5f:ba:5e:0e:72:72:1a:38:8c:8c:72:a2:ac:fb:27:0b:2e:ba: 1d:0e:c0:c9:1e:e4:d5:86:9f:36:25:4d:1e:69:5e:28:d3:f2: ee:85:17:54:fc:fe:6b:13:93:ff:28:51:5b:46:60:5a:20:bb: d9:c3:9d:ad:e0:87:a6:7c:b1:d3:fd:60:d2:06:00:38:c7:57: 58:bb:9f:86:09:85:aa:cd:43:a0:dd:f1:c9:7e:e8:3a:6b:5c: 24:2d:09:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjYwNDA1MDA1MjUwWhcNMjYwNDEyMDA1MjUwWjAYMRYwFAYD VQQDEw02OWQxYjI2Mi1lNmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYFEeQyRlfIoxa7FqzFAnwzrCGjx/AA+39zdtdccQEfOY4CafEvsvqfNhFG5 RZw734dLYXLVZlvYdcnrLcmPs5eS5apv+txL2xTK4FiATUbF4ORyuHXb1Oq5eJVY OFUHHTs9IscBkSHUNd6loUqOngce1onC0cvUkFsV9w64NnYc5agy7/y01XsUIsgp KXwFiLdYBDDRSfXdNjZsqiiu+gvzZokfHwFtFBjzb1xzizruVtCbNbP3xUdMgQQJ +0C0VLCCWjalGHwehDLmSuq5L81d/5xrcMy9eWT1uvIxlvUX2VeKGvngWub8WWur jF+IMQszsIb0xTFKrUyTFFpAGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHrhDaov pJRaZsIaH6U+lBlAuu2rMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXTfZRs45jU4RAYRNh4ZGasbdTohzPpTOM7RP++736ZI3+8905bOo4dPaoYS5 KfTFTFg9+GzzG+VJ73GYpaLNTDwvHBgr70vqOcZsXU8mKW3jJYeuc9PAvYRAXubf BbZ7LINotrVCMXnJXhYph4+aAh1sUswKzUuMrR2YkPILeA7PhTscR8x2IrCBAGO+ z+69h7DhjNI0WJH3OPMCGANMl114X7peDnJyGjiMjHKirPsnCy66HQ7AyR7k1Yaf NiVNHmleKNPy7oUXVPz+axOT/yhRW0ZgWiC72cOdreCHpnyx0/1g0gYAOMdXWLuf hgmFqs1DoN3xyX7oOmtcJC0JCw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:01:33 2026 by rpki-client