$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft File: aZoPjRWjT1mVbLSADGxEBNwOvV0.mft (raw, json) Hash identifier: HCeMnQXuOUlW8zB4+X8OS85JNm5g1inYsBeo8dNY8hc= Subject key identifier: 81:08:D9:51:9B:98:E0:7F:AE:BE:C1:36:D4:AD:8B:3B:41:76:33:87 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 355D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft Manifest number: 353A Signing time: Thu 16 Apr 2026 15:15:48 +0000 Manifest this update: Thu 16 Apr 2026 15:15:47 +0000 Manifest next update: Thu 23 Apr 2026 15:15:47 +0000 Files and hashes: 1: aZoPjRWjT1mVbLSADGxEBNwOvV0.crl (hash: aX27ub0Hbiyo8UzfNGxO1TY90SUnlsg+xgT1ui+YyUs=) 2: 6A9E6940B10511E591A3E484C4F9AE02.roa (hash: r04m0dygY46FaQTW/nPIfiQRgJAEQgwcrVUDGTqnrns=) 3: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (hash: qSmohF2Ew/7iNqjlaac7NjVFQvypLZR1CdqVmQUsvSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13661 (0x355d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE, serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Apr 16 15:15:47 2026 GMT Not After : Apr 23 15:15:47 2026 GMT Subject: CN=69e0fd24-1b6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:34:db:e5:5f:2d:2c:4d:ee:f7:f5:06:45:3c: e9:56:94:a7:c9:fa:ec:72:68:bd:0e:97:ca:36:3b: 8e:97:f0:ec:7d:84:12:88:59:93:86:1c:45:92:2e: f4:a3:e6:c3:92:eb:bb:ed:4b:cd:96:1f:f9:db:92: 2b:11:ed:69:09:1c:43:a1:e6:36:a0:ff:02:7d:29: 24:74:d7:d7:a6:f4:59:f0:b2:2e:d8:ca:e2:12:52: 3e:48:8b:c9:0b:09:48:2a:7d:40:89:4c:a5:2d:bf: da:5b:dc:87:53:cf:42:1f:67:64:b0:aa:3b:09:aa: a3:12:0a:51:e7:5d:c4:5b:71:b3:16:c4:16:a8:64: 32:fb:23:d6:5a:66:db:97:17:21:7a:ff:64:16:f1: 89:1f:e4:93:71:5b:a4:59:e6:27:b8:2e:f4:a5:05: 25:a8:27:7d:68:08:f9:df:df:30:29:16:6d:94:56: ca:1c:10:b4:32:24:77:dd:0f:11:e0:6e:ac:0b:d4: b5:11:9a:6c:26:6f:f4:60:b1:4f:c9:31:44:a1:a5: 9e:0c:08:fa:c8:fe:b5:fd:66:d7:66:85:5e:fc:b7: 26:b9:1f:e0:e9:d6:81:67:8d:72:fb:c8:52:72:45: 19:a4:40:ce:b7:f3:f7:d1:c6:42:19:8d:76:e1:36: e2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:08:D9:51:9B:98:E0:7F:AE:BE:C1:36:D4:AD:8B:3B:41:76:33:87 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:49:5f:5b:cd:8c:0a:b5:c3:93:97:03:e1:28:cc:8e:bb:61: 18:c5:cf:d1:13:a0:57:f1:e3:d0:3e:58:79:8d:8c:17:b8:1a: 6b:7e:13:5f:50:04:2f:9b:bb:ca:29:f5:8c:4c:21:89:d1:fd: cf:67:24:ad:26:75:d6:59:3f:98:84:df:fb:d6:e9:0f:0b:82: 77:49:49:89:e0:25:0e:f0:1a:40:3c:a5:77:77:4a:bf:a2:ef: c0:f2:81:81:ab:40:29:89:5a:0a:7f:7d:8e:7b:c2:bb:23:c1: 8c:b5:95:2b:1b:36:44:76:47:0d:e0:ac:7e:6c:8c:36:e2:81: a6:a4:4b:36:53:9b:0c:14:64:57:52:1b:e0:b5:9f:60:2b:5f: e4:0f:e3:c6:31:4d:22:47:8e:34:69:6d:37:bc:f6:76:15:57: 4c:b4:70:79:e1:8d:e8:4a:de:3d:88:9d:5f:4d:7b:4b:12:46: 78:4d:66:b7:37:ae:ab:1e:68:48:0b:5c:fc:b5:7c:19:d9:63: 41:dc:02:0e:89:f9:6f:77:a3:05:d8:46:37:f2:cf:98:76:8e: 6d:3d:3d:d8:8c:7a:59:eb:3a:69:c8:f4:59:e8:ef:d8:da:d3: ed:b6:e6:72:f9:e2:14:a9:95:13:db:65:df:f9:0c:e7:7f:a3: 9e:df:88:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjYwNDE2MTUxNTQ3WhcNMjYwNDIzMTUxNTQ3WjAYMRYwFAYD VQQDEw02OWUwZmQyNC0xYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzTb5V8tLE3u9/UGRTzpVpSnyfrscmi9DpfKNjuOl/DsfYQSiFmThhxFki70 o+bDkuu77UvNlh/525IrEe1pCRxDoeY2oP8CfSkkdNfXpvRZ8LIu2MriElI+SIvJ CwlIKn1AiUylLb/aW9yHU89CH2dksKo7CaqjEgpR513EW3GzFsQWqGQy+yPWWmbb lxchev9kFvGJH+STcVukWeYnuC70pQUlqCd9aAj5398wKRZtlFbKHBC0MiR33Q8R 4G6sC9S1EZpsJm/0YLFPyTFEoaWeDAj6yP61/WbXZoVe/LcmuR/g6daBZ41y+8hS ckUZpEDOt/P30cZCGY124TbiiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIEI2VGb mOB/rr7BNtStiztBdjOHMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFGRS9EMTE4QUFCQTFEQUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQx bVZiTFNBREd4RUJOd092VjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU0lfW82MCrXDk5cD4SjMjrthGMXP0ROgV/Hj0D5YeY2MF7gaa34TX1AEL5u7 yin1jEwhidH9z2ckrSZ11lk/mITf+9bpDwuCd0lJieAlDvAaQDyld3dKv6LvwPKB gatAKYlaCn99jnvCuyPBjLWVKxs2RHZHDeCsfmyMNuKBpqRLNlObDBRkV1Ib4LWf YCtf5A/jxjFNIkeONGltN7z2dhVXTLRweeGN6ErePYidX017SxJGeE1mtzeuqx5o SAtc/LV8GdljQdwCDon5b3ejBdhGN/LPmHaObT092Ix6Wes6acj0Wejv2NrT7bbm cvniFKmVE9tl3/kM53+jnt+I5A== -----END CERTIFICATE-----Generated at Fri Apr 17 09:47:40 2026 by rpki-client