$ rpki-client -vvf rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft File: aK5b6xu35ELO4KfgFAKf9y49tB8.mft (raw, json) Hash identifier: D3NBA85N1ry3TK/NI4Lg1GaA+ZeoVecsiKfdO83iI78= Subject key identifier: 93:80:22:2E:02:D1:2C:56:5B:C1:10:1B:5D:DD:7C:D5:2D:B4:F4:14 Authority key identifier: 68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F Certificate issuer: /CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Certificate serial: 0CA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft Manifest number: 0C92 Signing time: Tue 24 Mar 2026 18:23:17 +0000 Manifest this update: Tue 24 Mar 2026 18:23:16 +0000 Manifest next update: Tue 31 Mar 2026 18:23:16 +0000 Files and hashes: 1: aK5b6xu35ELO4KfgFAKf9y49tB8.crl (hash: s4/P7s4P4PnVzGBdJ8wxX+yt6Be70wLDqNRtySVZ9vk=) 2: 4C1F013E5AF511EFBAB1F86CC4F9AE02.roa (hash: S7vABV4LANs4s/qDbVNaE7a/E/6cf6qzp42fekgpXlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104C9, serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Validity Not Before: Mar 24 18:23:16 2026 GMT Not After : Mar 31 18:23:16 2026 GMT Subject: CN=69c2d694-7567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bf:65:f7:c4:2c:bc:3e:d4:e7:69:04:bb:5e: 95:f1:2e:92:fe:45:42:f1:38:74:0a:fb:66:e5:98: 7f:f4:d5:a8:c6:71:f9:01:60:44:ad:9b:66:a2:df: bc:86:4f:61:5e:63:ba:60:28:59:8b:db:5e:16:60: 82:b6:bc:72:e0:2a:71:d7:51:32:66:76:46:63:78: ee:81:4d:10:0e:06:07:8c:d4:10:22:bb:8d:7e:e0: b5:84:de:85:9f:05:ae:49:61:7d:9c:cb:97:65:f6: 52:d7:16:01:25:65:f4:f8:18:9a:02:b5:59:38:e7: 84:f4:35:56:4e:94:c7:e9:fb:83:3f:66:a6:b5:c4: 40:6f:cd:b4:42:0c:43:29:81:28:29:2a:9e:d5:f1: 7a:4c:93:3a:61:9b:61:b0:b1:1f:fb:86:1c:97:94: c8:57:59:f9:de:62:64:53:92:1a:b8:eb:07:1e:f4: c5:56:66:35:5b:e0:bd:cb:07:f9:12:72:2b:7d:58: e4:2c:c7:38:08:bf:f0:66:ec:4d:a9:7b:18:f9:29: 8e:1e:6c:3d:26:ed:d7:cd:ca:61:5e:d3:e3:e0:6d: 27:2c:72:7a:f8:ff:b4:a7:f3:2e:74:ff:4c:8b:fc: 3e:14:3c:d5:02:da:75:9c:66:75:84:dd:16:62:56: 13:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:80:22:2E:02:D1:2C:56:5B:C1:10:1B:5D:DD:7C:D5:2D:B4:F4:14 X509v3 Authority Key Identifier: keyid:68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:a2:d5:90:b3:e7:85:78:19:f9:a3:d5:25:f4:2b:10:a3:d8: 37:23:88:8a:f4:ae:a5:53:55:4d:45:70:c8:ff:b8:16:e0:cf: 9a:6a:70:df:2b:e6:49:43:45:04:5d:09:91:6d:b1:9c:01:45: 86:64:ab:e3:3e:1d:2f:8a:87:4d:a9:46:f5:bc:3d:34:bd:ef: b7:74:68:ed:4a:73:96:81:87:29:36:fb:9a:ef:a0:cf:9c:10: ef:34:e1:07:d7:9b:f8:3f:82:04:32:59:1a:e7:ab:cf:d1:b7: 09:69:49:50:87:e3:09:ef:81:58:dd:ec:2c:ca:f1:c6:90:e9: 07:78:26:d2:d3:ac:19:8b:23:7a:0d:08:a2:70:0b:08:01:02: b8:d3:7d:31:2c:51:79:aa:a4:7a:4d:c5:ef:6b:cf:07:5e:8b: 48:c6:3f:32:b9:99:e2:54:ae:cf:48:11:5c:de:be:f5:66:27: b4:9c:48:c4:7f:5d:a5:0a:e2:fa:1a:dc:cd:3c:12:76:72:e1: 4b:f7:56:f2:4f:2e:8b:44:9f:f1:3d:15:44:c4:c0:40:ee:d3: db:7a:ac:a8:7a:65:59:b7:23:4d:76:b7:ed:90:07:46:59:43: e6:0d:c9:ab:dc:63:a7:51:6f:ce:f7:21:4b:d9:be:61:da:7d: a9:0b:f4:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QzkxMTAvBgNVBAUTKDY4QUU1QkVCMUJCN0U0NDJDRUUwQTdFMDE0MDI5RkY3 MkUzREI0MUYwHhcNMjYwMzI0MTgyMzE2WhcNMjYwMzMxMTgyMzE2WjAYMRYwFAYD VQQDEw02OWMyZDY5NC03NTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtL9l98QsvD7U52kEu16V8S6S/kVC8Th0Cvtm5Zh/9NWoxnH5AWBErZtmot+8 hk9hXmO6YChZi9teFmCCtrxy4Cpx11EyZnZGY3jugU0QDgYHjNQQIruNfuC1hN6F nwWuSWF9nMuXZfZS1xYBJWX0+BiaArVZOOeE9DVWTpTH6fuDP2amtcRAb820QgxD KYEoKSqe1fF6TJM6YZthsLEf+4Ycl5TIV1n53mJkU5IauOsHHvTFVmY1W+C9ywf5 EnIrfVjkLMc4CL/wZuxNqXsY+SmOHmw9Ju3XzcphXtPj4G0nLHJ6+P+0p/MudP9M i/w+FDzVAtp1nGZ1hN0WYlYTdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJOAIi4C 0SxWW8EQG13dfNUttPQUMB8GA1UdIwQYMBaAFGiuW+sbt+RCzuCn4BQCn/cuPbQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRDOS8yQUE4QjM4ODE0 QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVFTE80S2ZnRkFLZjl5NDl0 QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLNWI2eHUzNUVMTzRLZmdGQUtmOXk0OXRCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRDOS8yQUE4QjM4ODE0QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVF TE80S2ZnRkFLZjl5NDl0QjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiKLVkLPnhXgZ+aPVJfQrEKPYNyOIivSupVNVTUVwyP+4FuDPmmpw3yvmSUNF BF0JkW2xnAFFhmSr4z4dL4qHTalG9bw9NL3vt3Ro7UpzloGHKTb7mu+gz5wQ7zTh B9eb+D+CBDJZGuerz9G3CWlJUIfjCe+BWN3sLMrxxpDpB3gm0tOsGYsjeg0IonAL CAECuNN9MSxReaqkek3F72vPB16LSMY/MrmZ4lSuz0gRXN6+9WYntJxIxH9dpQri +hrczTwSdnLhS/dW8k8ui0Sf8T0VRMTAQO7T23qsqHplWbcjTXa37ZAHRllD5g3J q9xjp1FvzvchS9m+Ydp9qQv0pg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:24:33 2026 by rpki-client