$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: gupI5ZN8WC47NDXTc8NJb536ZVLTi9QBgzi4RxDa1Bo= Subject key identifier: E5:0F:2A:C1:A5:AE:A9:67:67:66:E9:63:16:C7:6C:6D:FB:6A:53:F5 Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: BB Signing time: Wed 25 Mar 2026 06:14:54 +0000 Manifest this update: Wed 25 Mar 2026 06:14:53 +0000 Manifest next update: Wed 01 Apr 2026 06:14:53 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: TsFT/JlhntQ1v8N3uAlvwzNd99GfjxvQVw4bNRyyeyI=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: 09psz8wD6VQRY3lNubXSJ0qySYqq1I9NwqwomYkBSy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Mar 25 06:14:53 2026 GMT Not After : Apr 1 06:14:53 2026 GMT Subject: CN=69c37d5e-aa9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6c:c3:4e:bf:52:cd:5c:bf:3b:c6:f9:96:c5: db:47:41:d7:6e:87:be:d0:4e:a9:73:34:08:85:4e: 9f:ac:30:e6:b4:35:b4:7c:20:87:8c:95:98:ac:20: df:54:e1:ea:c6:84:90:d6:44:42:06:cf:68:ce:49: 3e:88:9d:8e:64:c6:aa:d4:2b:1c:52:9d:e8:8e:de: 36:be:f4:7a:a8:d3:67:8d:2c:85:73:bc:5c:74:7f: aa:85:04:d6:ce:36:63:4d:c8:da:b5:4f:42:ae:4d: 2e:ec:4b:ba:9a:c7:1d:c2:a6:e0:1f:f8:ed:02:5e: ed:34:23:b0:ff:cc:5c:d4:47:b5:9a:ef:a3:9b:85: ec:13:46:16:4e:e7:e1:58:0e:e1:14:83:81:32:62: 7d:57:67:45:6b:6c:cf:61:d7:a7:76:8d:f3:d2:f2: 5c:c5:74:91:19:36:19:e8:ae:c4:fe:c8:23:dc:70: 47:4f:73:a7:4a:ab:15:54:9c:4c:01:e1:62:86:45: e1:d3:ce:0c:a8:cb:13:0c:1c:87:5f:a7:7e:cf:1e: 54:fe:06:99:78:0b:b2:58:71:3f:19:29:9e:b9:43: 27:54:18:44:31:bf:ec:9b:cd:71:c4:21:01:13:47: de:d5:e4:47:8f:87:56:b1:4f:8f:e3:00:a2:bd:16: 6b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:0F:2A:C1:A5:AE:A9:67:67:66:E9:63:16:C7:6C:6D:FB:6A:53:F5 X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:0c:95:2d:a3:18:57:4b:34:4e:45:bf:24:b6:e1:22:76:ab: c5:88:83:e2:b9:10:78:f8:60:58:7b:87:04:46:9c:b6:b2:ec: 3b:3f:46:37:72:f1:70:62:0b:92:79:d3:42:a7:49:65:39:1f: 1f:52:e5:3c:04:c3:7f:88:ed:b4:f9:0c:7e:d5:1f:a7:ea:de: 99:2b:5f:64:3b:dd:9c:4d:17:38:6e:ce:9e:68:af:d3:35:c7: 7c:4e:46:44:e2:d0:88:6c:b3:b2:a0:9e:55:0f:8f:2c:2a:7e: 12:e9:79:42:d5:44:1d:2d:57:cd:20:e3:5d:63:01:b8:4f:df: 07:fd:db:b1:a8:c5:d3:7c:5d:31:e1:27:68:c3:7a:c2:2e:54: cc:f6:5a:61:5e:9c:72:a3:8c:98:5d:6d:cf:1f:f2:65:50:34: fe:91:6e:e7:ab:6b:35:63:8a:40:51:cc:7a:0e:5a:3a:b6:6d: 57:d7:a4:e1:07:24:71:bf:57:ee:d1:df:63:e5:75:f5:b4:38: 60:ad:7e:97:24:ce:bb:a6:c7:20:57:6e:ba:b7:37:95:ca:58: 96:65:a3:a7:d1:52:3f:d1:59:cf:c0:d2:2d:7d:03:60:5b:49: c4:88:08:3f:bb:8d:ec:fd:32:67:5c:29:b3:77:56:ac:86:69: a2:14:9f:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0QzkxMTAvBgNVBAUTKEIwRDUyNUVBOTlENEM4RUM3NTYwNzEyNkE0OUVGNjcw N0JENkY0QUQwHhcNMjYwMzI1MDYxNDUzWhcNMjYwNDAxMDYxNDUzWjAYMRYwFAYD VQQDEw02OWMzN2Q1ZS1hYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGzDTr9SzVy/O8b5lsXbR0HXboe+0E6pczQIhU6frDDmtDW0fCCHjJWYrCDf VOHqxoSQ1kRCBs9ozkk+iJ2OZMaq1CscUp3ojt42vvR6qNNnjSyFc7xcdH+qhQTW zjZjTcjatU9Crk0u7Eu6mscdwqbgH/jtAl7tNCOw/8xc1Ee1mu+jm4XsE0YWTufh WA7hFIOBMmJ9V2dFa2zPYdendo3z0vJcxXSRGTYZ6K7E/sgj3HBHT3OnSqsVVJxM AeFihkXh084MqMsTDByHX6d+zx5U/gaZeAuyWHE/GSmeuUMnVBhEMb/sm81xxCEB E0fe1eRHj4dWsU+P4wCivRZrcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOUPKsGl rqlnZ2bpYxbHbG37alP1MB8GA1UdIwQYMBaAFLDVJeqZ1MjsdWBxJqSe9nB71vSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDRDOS83QkEzRTcwQzBF QzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlPeDFZSEVtcEo3MmNIdlc5 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDRDOS83QkEzRTcwQzBFQzkxMUYwQTI2RkYxNDRDNEY5QUUwMi9zTlVsNnBuVXlP eDFZSEVtcEo3MmNIdlc5SzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfgyVLaMYV0s0TkW/JLbhInarxYiD4rkQePhgWHuHBEactrLsOz9GN3LxcGIL knnTQqdJZTkfH1LlPATDf4jttPkMftUfp+remStfZDvdnE0XOG7Onmiv0zXHfE5G ROLQiGyzsqCeVQ+PLCp+Eul5QtVEHS1XzSDjXWMBuE/fB/3bsajF03xdMeEnaMN6 wi5UzPZaYV6ccqOMmF1tzx/yZVA0/pFu56trNWOKQFHMeg5aOrZtV9ek4Qckcb9X 7tHfY+V19bQ4YK1+lyTOu6bHIFduurc3lcpYlmWjp9FSP9FZz8DSLX0DYFtJxIgI P7uN7P0yZ1wps3dWrIZpohSfbg== -----END CERTIFICATE-----Generated at Thu Mar 26 10:36:34 2026 by rpki-client