$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: WoPUXOYbuN7snfG2Jbr8U4LIJpAkAQwDB/OebOG3v38= Subject key identifier: 2A:97:70:D7:79:88:73:71:61:99:9A:B3:13:DF:9F:29:6E:5E:ED:1E Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 02AD Signing time: Fri 17 Apr 2026 01:27:22 +0000 Manifest this update: Fri 17 Apr 2026 01:27:21 +0000 Manifest next update: Fri 24 Apr 2026 01:27:21 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: YUkD6CKjUwrd9gu/PZhf+SDIwHJFJArFmnqlWb+c7+0=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: d181Z1DYLcItp5l9IsZ1mcEBRFCLJxml8DnOv1hi/n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Apr 17 01:27:21 2026 GMT Not After : Apr 24 01:27:21 2026 GMT Subject: CN=69e18c7a-1fdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a2:02:b1:fc:39:d0:c9:c1:ac:20:8b:ce:99: 71:9c:a5:a2:10:a0:92:e0:5a:92:de:29:5a:ad:08: 50:ad:d9:dd:44:ee:1c:2e:35:0d:3a:6f:d0:be:cb: dd:f9:8e:0f:f5:33:8c:f7:73:30:e9:93:1e:d1:d6: 51:e3:55:4b:ac:91:a7:1f:97:62:aa:b9:8c:c5:b7: 31:4f:60:89:c9:da:59:77:b9:15:06:40:69:ef:2a: b7:2e:9b:73:f8:16:9a:7b:58:a0:a0:ae:09:97:3c: 2c:5b:1f:35:10:f2:0f:7f:26:4b:f4:d7:75:84:0c: 9e:7f:86:9b:cf:8a:44:c7:14:0a:aa:78:66:16:68: 82:c7:23:0a:89:14:40:a8:7e:e3:26:22:ec:8f:55: 5d:72:27:eb:fb:4d:87:30:0e:55:ce:51:37:29:97: d6:2d:99:73:88:9f:12:a3:e1:57:2d:37:90:61:29: 7d:73:b7:5d:27:08:af:12:41:1d:f0:4d:69:5b:92: 85:70:f5:ac:54:2b:b8:54:81:ad:7b:34:fe:1d:74: 37:32:75:ba:8e:68:b2:a2:2c:13:5a:bf:e1:61:b5: f5:c0:25:e6:ae:bd:27:d2:3c:f6:6a:5a:9d:4b:55: 55:72:39:c6:f4:62:aa:6d:b4:c6:1d:bd:f3:ed:91: f9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:97:70:D7:79:88:73:71:61:99:9A:B3:13:DF:9F:29:6E:5E:ED:1E X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:d4:26:56:b7:f0:63:cf:ea:d4:ec:88:9e:0a:79:62:f3:77: 38:27:0a:6a:39:41:e2:e5:50:52:6a:fd:fd:19:4c:2c:c9:df: a3:c0:3d:64:29:94:20:80:b1:c4:41:21:d8:07:bb:2f:88:98: 6b:c8:33:db:9f:e4:d0:ae:c4:47:20:61:aa:76:81:16:c1:fe: a4:ee:ed:49:cb:8b:4b:81:ea:52:72:c3:ac:4e:d5:d0:19:03: 77:1d:7e:8b:f2:e5:fb:51:ac:53:83:fc:93:83:ce:54:d7:49: 72:b4:73:56:63:a9:a0:16:27:14:bd:ad:84:88:3e:f1:13:89: 47:f9:60:ed:1f:f9:02:71:9e:79:61:6d:84:de:1b:4d:97:23: 66:50:c9:5f:ce:fc:a7:0c:d8:e3:e5:24:e2:bd:10:c8:78:d0: d3:4b:43:35:1f:8e:05:b3:4a:6b:26:8b:9c:7a:00:1a:72:0a: 9b:99:11:25:ff:6e:a0:86:84:05:14:44:36:d6:89:da:f7:bf: 12:24:68:21:4d:75:7d:c0:a3:8c:5d:6a:fc:52:61:25:93:9c: c2:1a:fb:22:b6:dd:f8:76:b2:5f:24:56:d2:4e:e4:05:20:c5: f5:6a:71:e9:a3:26:3e:db:63:a4:f3:1c:95:bd:3c:06:83:24: 4c:38:ae:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjYwNDE3MDEyNzIxWhcNMjYwNDI0MDEyNzIxWjAYMRYwFAYD VQQDEw02OWUxOGM3YS0xZmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKICsfw50MnBrCCLzplxnKWiEKCS4FqS3ilarQhQrdndRO4cLjUNOm/Qvsvd +Y4P9TOM93Mw6ZMe0dZR41VLrJGnH5diqrmMxbcxT2CJydpZd7kVBkBp7yq3Lptz +Baae1igoK4JlzwsWx81EPIPfyZL9Nd1hAyef4abz4pExxQKqnhmFmiCxyMKiRRA qH7jJiLsj1Vdcifr+02HMA5VzlE3KZfWLZlziJ8So+FXLTeQYSl9c7ddJwivEkEd 8E1pW5KFcPWsVCu4VIGtezT+HXQ3MnW6jmiyoiwTWr/hYbX1wCXmrr0n0jz2alqd S1VVcjnG9GKqbbTGHb3z7ZH5UQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCqXcNd5 iHNxYZmasxPfnyluXu0eMB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAy9QmVrfwY8/q1OyIngp5YvN3OCcKajlB4uVQUmr9/RlMLMnfo8A9ZCmUIICx xEEh2Ae7L4iYa8gz25/k0K7ERyBhqnaBFsH+pO7tScuLS4HqUnLDrE7V0BkDdx1+ i/Ll+1GsU4P8k4POVNdJcrRzVmOpoBYnFL2thIg+8ROJR/lg7R/5AnGeeWFthN4b TZcjZlDJX878pwzY4+Uk4r0QyHjQ00tDNR+OBbNKayaLnHoAGnIKm5kRJf9uoIaE BRRENtaJ2ve/EiRoIU11fcCjjF1q/FJhJZOcwhr7Irbd+HayXyRW0k7kBSDF9Wpx 6aMmPttjpPMclb08BoMkTDiu7A== -----END CERTIFICATE-----Generated at Fri Apr 17 18:11:55 2026 by rpki-client