$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft File: aTyLTLomsG0s-roPm-TTffDd_z0.mft (raw, json) Hash identifier: M+9hMuR5SK0Z0ikjFJrSO8zaFUBGpabpRXpXnTct9fY= Subject key identifier: 53:5B:50:C1:36:A3:55:4B:63:E3:0B:18:89:43:65:85:47:50:4B:FA Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft Manifest number: 1A13 Signing time: Thu 16 Apr 2026 17:25:29 +0000 Manifest this update: Thu 16 Apr 2026 17:25:28 +0000 Manifest next update: Thu 23 Apr 2026 17:25:28 +0000 Files and hashes: 1: aTyLTLomsG0s-roPm-TTffDd_z0.crl (hash: LHfPLRAuJ9/zg0JuMUNbqCOdOlkW0v1/6vme0JiJByM=) 2: 3A470C9EB6DF11F0B03DBB46C4F9AE02.roa (hash: JU1nmvDSwBDUJRvbHX+1iDZpWPz4w1uVP5HZYw279f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Apr 16 17:25:28 2026 GMT Not After : Apr 23 17:25:28 2026 GMT Subject: CN=69e11b89-13b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:83:da:86:b2:7d:b5:ac:bd:c6:63:d2:5f:43: fa:8f:6b:d8:ec:3b:9c:ce:60:0d:db:da:35:de:84: 95:92:c4:50:9a:84:7c:fc:3f:45:f2:58:8e:ff:ff: 67:ba:a9:07:13:93:68:9f:75:f6:fa:bf:62:38:3d: e6:68:db:4d:1a:89:b8:aa:f9:b0:69:e6:c2:df:71: ef:4a:ee:9c:92:13:3c:59:bc:c2:86:1c:2d:c5:82: 5c:9f:2f:25:2f:d1:4d:60:b8:54:4b:d1:3c:3e:f7: 8d:81:26:5c:6a:2c:b4:14:fe:e6:c0:38:b6:0f:18: e4:ea:a8:1d:86:4f:8a:9c:1e:5c:47:5a:91:95:e5: 14:5d:36:c4:ff:1e:dd:2f:b3:4d:0a:0c:66:50:dd: 55:30:2d:e0:19:bc:78:1f:39:1e:50:1d:7f:dd:cd: 2b:72:aa:d9:9d:d5:1e:82:13:7f:f2:60:9c:13:23: e9:0f:f6:3d:3d:5b:d3:58:fe:f2:4e:34:85:71:97: f5:f3:83:19:9a:7b:a9:e5:a8:c8:2e:2c:3d:8b:15: 47:80:12:f9:f7:9f:f4:54:5d:cf:17:f1:85:8b:8a: 64:3e:6c:c7:44:30:a0:84:be:1c:6b:98:9a:cb:c7: ea:c6:2a:e8:81:a0:47:44:40:b9:21:74:38:34:1d: 30:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:5B:50:C1:36:A3:55:4B:63:E3:0B:18:89:43:65:85:47:50:4B:FA X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c8:d7:52:7f:93:96:71:fe:28:ab:d9:6e:18:da:32:36:7d: 35:4f:19:65:9e:4e:6b:1e:f4:ba:54:94:a5:26:1f:33:b6:14: 2e:d6:58:c5:d8:04:6c:75:e7:70:2a:b4:e0:fd:70:db:96:c9: 00:81:75:dc:ac:0e:f8:2c:64:84:e9:76:76:f4:ba:c4:f1:f3: bf:24:53:2d:83:9c:69:95:84:f2:23:9e:af:a2:e5:26:0c:e4: f9:a0:8a:d6:a6:a8:b5:52:3b:87:71:d6:69:8a:ed:27:eb:a6: bf:bd:1e:b1:47:9c:b7:a4:f6:50:07:56:2f:e1:b9:a8:c1:a4: 5e:b6:b0:11:18:f5:9d:fb:2a:eb:17:da:36:d3:1f:d3:5e:f5: 9e:67:cb:67:75:0a:d7:3c:96:20:b7:0c:9e:fb:1d:c9:6f:c8: 6f:f8:e0:3a:f2:2a:c6:16:0a:60:2e:82:4d:19:4b:21:8d:1d: ea:0b:f8:7a:78:46:fc:3d:76:45:53:a0:af:05:b0:dc:6a:0a: 7e:17:fe:a4:4e:47:fa:ca:36:f0:38:46:9f:bb:3c:b2:30:f6: 2b:9c:54:0b:60:e9:13:7a:73:aa:71:76:21:2a:5b:57:21:34: fc:9f:80:fa:5b:b7:b4:00:ef:b3:b5:6e:78:e8:5d:1e:6f:4d: d1:f5:46:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjYwNDE2MTcyNTI4WhcNMjYwNDIzMTcyNTI4WjAYMRYwFAYD VQQDEw02OWUxMWI4OS0xM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoPahrJ9tay9xmPSX0P6j2vY7DuczmAN29o13oSVksRQmoR8/D9F8liO//9n uqkHE5Non3X2+r9iOD3maNtNGom4qvmwaebC33HvSu6ckhM8WbzChhwtxYJcny8l L9FNYLhUS9E8PveNgSZcaiy0FP7mwDi2Dxjk6qgdhk+KnB5cR1qRleUUXTbE/x7d L7NNCgxmUN1VMC3gGbx4HzkeUB1/3c0rcqrZndUeghN/8mCcEyPpD/Y9PVvTWP7y TjSFcZf184MZmnup5ajILiw9ixVHgBL595/0VF3PF/GFi4pkPmzHRDCghL4ca5ia y8fqxirogaBHREC5IXQ4NB0wPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFNbUME2 o1VLY+MLGIlDZYVHUEv6MB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJGNC9FQTg3MTg1QzcyMUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNH MHMtcm9QbS1UVGZmRGRfejAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVcjXUn+TlnH+KKvZbhjaMjZ9NU8ZZZ5Oax70ulSUpSYfM7YULtZYxdgEbHXn cCq04P1w25bJAIF13KwO+CxkhOl2dvS6xPHzvyRTLYOcaZWE8iOer6LlJgzk+aCK 1qaotVI7h3HWaYrtJ+umv70esUect6T2UAdWL+G5qMGkXrawERj1nfsq6xfaNtMf 0171nmfLZ3UK1zyWILcMnvsdyW/Ib/jgOvIqxhYKYC6CTRlLIY0d6gv4enhG/D12 RVOgrwWw3GoKfhf+pE5H+so28DhGn7s8sjD2K5xUC2DpE3pzqnF2ISpbVyE0/J+A +lu3tADvs7VueOhdHm9N0fVGjw== -----END CERTIFICATE-----Generated at Fri Apr 17 16:40:21 2026 by rpki-client