$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: kavg/xWArRBEYsFT+HV0btp1By/g1H7ib8FhAppKrxc= Subject key identifier: 3E:40:CE:AD:03:0C:35:B4:E7:68:FE:77:28:E2:10:30:4E:56:E0:AB Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 05DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 05D4 Signing time: Thu 16 Apr 2026 22:56:29 +0000 Manifest this update: Thu 16 Apr 2026 22:56:29 +0000 Manifest next update: Thu 23 Apr 2026 22:56:29 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: DCYHjewuA7mqLCUvEXFi/Qn6T4kzQrCXppyufWT+LmQ=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: fOkqVihCu1L5Ia3iPQWWnGFlmmkL41U8TtXyOcg3l2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Apr 16 22:56:29 2026 GMT Not After : Apr 23 22:56:29 2026 GMT Subject: CN=69e1691d-4e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d2:33:a1:a1:79:d6:ea:0e:25:54:6e:da:3d: b0:10:01:b9:ae:b6:b6:c7:40:06:ed:56:93:7f:dc: f4:4d:6e:2d:6f:75:73:6e:7a:72:fe:32:ed:88:6b: 2e:97:32:3c:db:ae:dd:64:26:e5:94:a2:1e:f3:d5: 05:68:79:25:56:ee:86:78:9c:4f:f9:96:8c:4b:ac: d1:f3:d7:6c:6f:82:b9:7c:d3:b2:12:36:13:f5:30: 0d:06:a1:a9:32:96:fd:26:a0:57:10:7d:cc:77:58: c3:83:02:0a:62:9e:fe:9c:1c:16:93:bb:a1:59:61: e8:b7:82:d3:0a:6c:ed:55:8c:42:d0:39:b3:db:e1: 73:2c:6b:8e:5d:45:5a:26:0a:b4:a6:26:96:b6:0c: 35:17:4d:07:2f:38:55:a2:05:50:e2:6f:28:07:b1: 8e:f1:aa:aa:69:b9:49:50:5b:a8:95:84:a2:cf:bd: c9:78:ba:05:6a:a8:5c:3e:f5:52:49:8e:2b:62:62: 2a:de:f5:97:b6:af:ad:81:47:c6:a1:2c:c2:33:3e: 7c:60:c8:88:ce:02:99:5e:29:e2:2c:39:f8:43:e7: 53:38:4e:a7:67:4b:23:33:24:ef:97:2d:e5:f7:59: c9:1b:3b:57:22:9d:3e:c1:a4:23:81:34:07:1c:e7: e3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:40:CE:AD:03:0C:35:B4:E7:68:FE:77:28:E2:10:30:4E:56:E0:AB X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:82:d3:2b:be:c6:99:72:9a:97:ac:24:8e:da:f4:29:8d:f4: c5:39:c2:fe:9e:26:37:40:d0:8d:cb:2e:4c:a1:b6:8b:d3:6e: 9a:1f:e6:8e:9f:5c:03:fc:c9:02:98:a4:90:0c:62:76:08:03: 67:01:a2:1e:47:9b:b4:b1:d5:b5:5b:fd:0e:a4:82:00:1d:c1: 44:3c:c7:7a:8d:c8:e6:06:17:48:f1:46:6a:a9:23:6a:d0:d6: 81:06:77:b3:41:71:26:58:de:ae:b2:16:db:69:8c:74:8a:79: a0:cc:73:c0:2a:e1:19:81:be:eb:2c:cf:93:e0:f5:c6:82:68: ed:7d:da:23:61:96:fa:b8:a2:79:7c:db:f7:bf:04:83:f1:02: 8b:1d:bb:e2:93:26:e9:de:9d:74:c1:74:82:77:09:e7:4f:55: fa:7e:de:59:24:28:3a:1b:23:0b:c9:77:9f:23:5a:c1:f1:4e: 6a:f0:fb:75:dd:79:9b:e4:e6:03:02:fc:b6:bb:ad:8b:38:19: ad:61:80:c3:54:58:29:fe:b3:1c:c3:fd:6a:3b:4c:d4:3b:43: 8e:9e:79:9b:68:87:d1:6d:6d:86:a2:05:52:8d:c2:27:85:5c: 2a:57:08:14:b5:e0:2a:c6:b2:07:cd:28:69:15:1c:6e:3b:45: 71:0f:41:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjYwNDE2MjI1NjI5WhcNMjYwNDIzMjI1NjI5WjAYMRYwFAYD VQQDEw02OWUxNjkxZC00ZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9IzoaF51uoOJVRu2j2wEAG5rra2x0AG7VaTf9z0TW4tb3Vzbnpy/jLtiGsu lzI8267dZCbllKIe89UFaHklVu6GeJxP+ZaMS6zR89dsb4K5fNOyEjYT9TANBqGp Mpb9JqBXEH3Md1jDgwIKYp7+nBwWk7uhWWHot4LTCmztVYxC0Dmz2+FzLGuOXUVa Jgq0piaWtgw1F00HLzhVogVQ4m8oB7GO8aqqablJUFuolYSiz73JeLoFaqhcPvVS SY4rYmIq3vWXtq+tgUfGoSzCMz58YMiIzgKZXiniLDn4Q+dTOE6nZ0sjMyTvly3l 91nJGztXIp0+waQjgTQHHOfjTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD5Azq0D DDW052j+dyjiEDBOVuCrMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALoLTK77GmXKal6wkjtr0KY30xTnC/p4mN0DQjcsuTKG2i9Numh/mjp9cA/zJ ApikkAxidggDZwGiHkebtLHVtVv9DqSCAB3BRDzHeo3I5gYXSPFGaqkjatDWgQZ3 s0FxJljerrIW22mMdIp5oMxzwCrhGYG+6yzPk+D1xoJo7X3aI2GW+riieXzb978E g/ECix274pMm6d6ddMF0gncJ509V+n7eWSQoOhsjC8l3nyNawfFOavD7dd15m+Tm AwL8trutizgZrWGAw1RYKf6zHMP9ajtM1DtDjp55m2iH0W1thqIFUo3CJ4VcKlcI FLXgKsayB80oaRUcbjtFcQ9BhQ== -----END CERTIFICATE-----Generated at Fri Apr 17 15:17:57 2026 by rpki-client