$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: R8uyoKCO23KmzB6cr9hatIoLginZRTZIA/2Lwg6mgT4= Subject key identifier: AE:B8:7F:D7:3C:BB:BD:D8:4E:83:E2:6A:D7:54:B1:C5:A8:4F:CF:FD Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0259 Signing time: Fri 17 Apr 2026 02:03:58 +0000 Manifest this update: Fri 17 Apr 2026 02:03:58 +0000 Manifest next update: Fri 24 Apr 2026 02:03:58 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: 6ECxgIqJdAwmP22T+AJxQn6ynzCMLluEc5AMLI4Xprg=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: WkBrG4Ptn2oOu7MUQprdMpFUUGYiR0bDGLQIFpoza1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:03:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Apr 17 02:03:58 2026 GMT Not After : Apr 24 02:03:58 2026 GMT Subject: CN=69e1950e-8604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1b:9c:92:cb:03:1d:79:76:6d:ba:dd:0f:87: b6:f5:e6:61:57:35:a4:56:c8:a8:ed:a9:71:ce:f8: b7:91:55:61:74:09:0c:8a:d7:c6:3d:c3:5b:e2:fb: 03:0c:f6:c1:53:bf:40:d6:8d:59:87:8d:fa:16:e6: 11:98:a3:0c:f3:2e:76:c2:1e:f4:d8:d5:7d:da:f5: 48:ed:b9:46:8d:76:ee:0b:7e:b6:dd:ec:48:ed:99: 80:cd:b6:28:c7:76:0a:d8:bc:f1:e6:bf:16:75:1f: 38:3e:63:16:85:e0:2a:9a:26:7d:96:0a:80:c9:fd: b2:46:0a:89:28:c4:4c:5d:c1:85:e0:c3:21:69:91: de:1f:3a:02:7e:8b:f5:fb:e1:a8:1c:d4:d3:d0:f1: 9a:df:df:ba:da:ff:2b:54:51:da:3d:cc:ca:72:08: af:08:da:0c:b6:51:d4:6c:8d:4f:67:db:7b:c7:04: 7d:0d:05:57:93:e2:99:76:32:d0:21:3a:c2:ba:88: 26:e8:28:49:f6:06:da:35:8d:8f:ff:c2:df:fe:37: d5:06:5f:29:9d:23:c7:68:26:82:a0:a5:58:5e:23: 76:c8:46:7c:0a:45:07:9b:c1:fa:3e:ed:3f:89:9f: 71:31:fc:6e:a5:8e:06:de:a3:6d:ab:d6:88:d0:a5: fc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B8:7F:D7:3C:BB:BD:D8:4E:83:E2:6A:D7:54:B1:C5:A8:4F:CF:FD X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:b2:90:55:ab:ca:c7:03:16:0e:52:fe:f0:df:8f:cf:de:ec: 47:5c:93:03:3d:6e:d9:c4:4a:0a:f6:0d:21:7e:c3:c9:8d:ac: b2:6e:c8:93:7b:8d:22:97:ca:19:be:c7:46:48:d6:0f:c4:77: 53:82:01:00:65:df:3a:e0:52:69:64:f5:93:63:09:96:56:20: 8a:18:87:7d:b1:86:4c:db:1d:d2:98:e4:1b:bf:96:68:27:6b: 6a:8f:c0:f4:03:f6:28:4f:51:19:e0:83:e7:d1:c5:68:a4:7d: 7b:b2:d8:0d:27:db:e1:db:51:32:52:5f:38:24:81:ec:d3:ef: e1:84:04:27:ea:23:b5:d4:85:ef:06:b8:4a:21:ee:ea:34:8c: 90:3e:98:0f:69:35:54:d5:38:b4:ec:cb:c6:d3:9f:d7:2c:09: e6:63:e0:06:90:b9:10:e1:8b:ed:0e:2e:19:5d:cf:54:1d:89: 65:c9:da:20:dd:2c:1d:df:a1:66:d4:cf:83:b7:ec:f4:9e:68: 8a:71:9a:ee:3f:9a:52:67:46:d8:0e:c7:d9:6f:a6:a6:43:ae: d6:b3:5f:e2:81:8b:8e:ad:75:de:58:45:a3:ef:a6:94:cd:e1: be:16:aa:4a:1b:bf:be:f9:d9:47:3c:a0:21:5a:7d:8d:31:6b: 61:e4:e7:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjYwNDE3MDIwMzU4WhcNMjYwNDI0MDIwMzU4WjAYMRYwFAYD VQQDEw02OWUxOTUwZS04NjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RuckssDHXl2bbrdD4e29eZhVzWkVsio7alxzvi3kVVhdAkMitfGPcNb4vsD DPbBU79A1o1Zh436FuYRmKMM8y52wh702NV92vVI7blGjXbuC3623exI7ZmAzbYo x3YK2Lzx5r8WdR84PmMWheAqmiZ9lgqAyf2yRgqJKMRMXcGF4MMhaZHeHzoCfov1 ++GoHNTT0PGa39+62v8rVFHaPczKcgivCNoMtlHUbI1PZ9t7xwR9DQVXk+KZdjLQ ITrCuogm6ChJ9gbaNY2P/8Lf/jfVBl8pnSPHaCaCoKVYXiN2yEZ8CkUHm8H6Pu0/ iZ9xMfxupY4G3qNtq9aI0KX8WwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK64f9c8 u73YToPiatdUscWoT8/9MB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmrKQVavKxwMWDlL+8N+Pz97sR1yTAz1u2cRKCvYNIX7DyY2ssm7Ik3uNIpfK Gb7HRkjWD8R3U4IBAGXfOuBSaWT1k2MJllYgihiHfbGGTNsd0pjkG7+WaCdrao/A 9AP2KE9RGeCD59HFaKR9e7LYDSfb4dtRMlJfOCSB7NPv4YQEJ+ojtdSF7wa4SiHu 6jSMkD6YD2k1VNU4tOzLxtOf1ywJ5mPgBpC5EOGL7Q4uGV3PVB2JZcnaIN0sHd+h ZtTPg7fs9J5oinGa7j+aUmdG2A7H2W+mpkOu1rNf4oGLjq113lhFo++mlM3hvhaq Shu/vvnZRzygIVp9jTFrYeTnDQ== -----END CERTIFICATE-----Generated at Fri Apr 17 16:07:46 2026 by rpki-client