$ rpki-client -vvf rpki.apnic.net/member_repository/A91174DD/E2E99FBCF5D011F0A06517D2476F56BC/rwLrQTxcBTF1xvy8GcaTYGPnaBE.mft File: rwLrQTxcBTF1xvy8GcaTYGPnaBE.mft (raw, json) Hash identifier: E3ZKFdrLXCKxy5vPNQHWTAQpkZ77rf/O18YmPupnvMI= Subject key identifier: 6F:36:39:B8:28:46:78:47:8E:22:F1:BC:B5:95:AA:DC:DC:E1:20:56 Authority key identifier: AF:02:EB:41:3C:5C:05:31:75:C6:FC:BC:19:C6:93:60:63:E7:68:11 Certificate issuer: /CN=A91174DD/serialNumber=AF02EB413C5C053175C6FCBC19C6936063E76811 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwLrQTxcBTF1xvy8GcaTYGPnaBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91174DD/E2E99FBCF5D011F0A06517D2476F56BC/rwLrQTxcBTF1xvy8GcaTYGPnaBE.mft Manifest number: 26 Signing time: Wed 25 Mar 2026 08:00:07 +0000 Manifest this update: Wed 25 Mar 2026 08:00:07 +0000 Manifest next update: Wed 01 Apr 2026 08:00:07 +0000 Files and hashes: 1: rwLrQTxcBTF1xvy8GcaTYGPnaBE.crl (hash: NVByGAx+SaUDS5QKtFobA5OacCwVz3j+E6x11cVMeP4=) 2: A6977620FC6911F0B9F21353506F56BC.roa (hash: 2+c+kkZNH5WFLaEH+Mtz0KAlZ3T9lg2Gax329RYsTqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91174DD/E2E99FBCF5D011F0A06517D2476F56BC/rwLrQTxcBTF1xvy8GcaTYGPnaBE.crl rsync://rpki.apnic.net/member_repository/A91174DD/E2E99FBCF5D011F0A06517D2476F56BC/rwLrQTxcBTF1xvy8GcaTYGPnaBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwLrQTxcBTF1xvy8GcaTYGPnaBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91174DD, serialNumber=AF02EB413C5C053175C6FCBC19C6936063E76811 Validity Not Before: Mar 25 08:00:07 2026 GMT Not After : Apr 1 08:00:07 2026 GMT Subject: CN=69c39607-8f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f5:c0:5a:44:86:e1:bc:e4:7c:5c:72:8f:f6: 58:5e:eb:5d:47:e3:b3:19:71:b4:86:2d:8d:27:9d: f9:6d:56:8f:35:28:90:c6:d1:0b:51:1a:5b:60:c4: 33:0f:a2:bc:29:c7:0c:18:b9:ea:82:a5:3d:22:61: 22:05:b3:e5:c1:a6:52:18:b5:56:dc:c6:fe:95:c3: 1a:2f:96:56:37:6d:7a:08:2d:84:df:53:28:4a:5a: fb:d3:7c:6d:6a:e9:b2:36:e1:bc:73:d1:2d:34:2f: 73:03:3c:7e:0e:5d:44:9c:79:25:2d:9f:61:60:2e: df:3b:1c:1f:fa:78:f4:ed:f8:bb:47:76:1e:ce:b9: 66:11:1e:c2:dc:b3:b6:65:79:af:6e:8f:c8:7f:33: 6b:bf:11:56:e3:6a:f3:14:c3:a3:8f:8f:3f:13:a3: 79:22:95:43:99:1f:81:a5:b4:a5:4b:e4:6f:84:72: b2:0d:ac:5f:b5:a7:a5:87:0c:1e:40:c5:a2:00:fd: 1a:5e:dd:f7:fd:93:77:74:61:83:27:34:36:95:c6: 3a:e1:6b:23:2f:7a:84:ee:ed:95:7b:86:ae:93:6a: b2:49:53:86:0e:9f:7d:01:b3:f5:19:f0:a4:8a:7a: f2:6e:fe:88:22:f4:56:d5:6e:68:18:2a:fa:3e:8d: bc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:36:39:B8:28:46:78:47:8E:22:F1:BC:B5:95:AA:DC:DC:E1:20:56 X509v3 Authority Key Identifier: keyid:AF:02:EB:41:3C:5C:05:31:75:C6:FC:BC:19:C6:93:60:63:E7:68:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91174DD/E2E99FBCF5D011F0A06517D2476F56BC/rwLrQTxcBTF1xvy8GcaTYGPnaBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwLrQTxcBTF1xvy8GcaTYGPnaBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91174DD/E2E99FBCF5D011F0A06517D2476F56BC/rwLrQTxcBTF1xvy8GcaTYGPnaBE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:32:f3:11:c4:5b:b5:1f:63:8f:5b:09:61:d5:b8:33:d0:06: 36:53:63:0b:5d:b4:d7:ad:62:73:1c:c2:3d:36:cc:af:d2:c1: 3f:26:84:3f:78:fc:23:72:12:d3:b0:e2:0b:01:21:05:85:a6: 96:13:db:6a:9f:9f:6b:6a:9e:be:53:df:7e:66:67:93:e9:57: 26:dd:21:0d:1b:22:02:9a:8a:9f:f1:03:45:da:f6:f0:b4:68: d3:1d:f0:48:a5:30:c8:5d:2a:9b:f9:b8:ce:3e:a5:75:74:0c: be:55:c3:30:2a:3f:8b:ee:f0:69:b4:76:da:87:d0:e1:4e:b3: d2:c5:32:0a:71:e2:72:d6:56:37:25:db:5a:7c:57:e6:b8:67: ff:75:11:8e:38:5e:95:6d:33:2b:77:55:46:51:52:f0:c5:b3: e7:a2:43:37:d2:b9:69:4c:3b:e7:14:c0:99:9d:8c:b2:a1:c6: e1:c6:55:7a:73:3b:c5:7a:6f:2e:09:f5:da:e2:c5:78:38:ce: 66:31:e5:24:f8:e4:92:ec:20:8d:32:56:5e:49:4a:58:59:fc: 7d:d9:03:3a:c5:2a:23:d5:cb:a6:3b:0c:00:d6:1f:4a:92:d0: f3:0a:e8:c3:22:14:39:9a:f2:85:cb:48:3a:8b:43:03:b1:67: be:19:95:98 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzRERDExMC8GA1UEBRMoQUYwMkVCNDEzQzVDMDUzMTc1QzZGQ0JDMTlDNjkzNjA2 M0U3NjgxMTAeFw0yNjAzMjUwODAwMDdaFw0yNjA0MDEwODAwMDdaMBgxFjAUBgNV BAMTDTY5YzM5NjA3LThmMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv9cBaRIbhvOR8XHKP9lhe611H47MZcbSGLY0nnfltVo81KJDG0QtRGltgxDMP orwpxwwYueqCpT0iYSIFs+XBplIYtVbcxv6VwxovllY3bXoILYTfUyhKWvvTfG1q 6bI24bxz0S00L3MDPH4OXUSceSUtn2FgLt87HB/6ePTt+LtHdh7OuWYRHsLcs7Zl ea9uj8h/M2u/EVbjavMUw6OPjz8To3kilUOZH4GltKVL5G+EcrINrF+1p6WHDB5A xaIA/Rpe3ff9k3d0YYMnNDaVxjrhayMveoTu7ZV7hq6TarJJU4YOn30Bs/UZ8KSK evJu/ogi9FbVbmgYKvo+jbxtAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUbzY5uChG eEeOIvG8tZWq3NzhIFYwHwYDVR0jBBgwFoAUrwLrQTxcBTF1xvy8GcaTYGPnaBEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NEREL0UyRTk5RkJDRjVE MDExRjBBMDY1MTdEMjQ3NkY1NkJDL3J3THJRVHhjQlRGMXh2eThHY2FUWUdQbmFC RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcndMclFUeGNCVEYxeHZ5OEdjYVRZR1BuYUJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 NEREL0UyRTk5RkJDRjVEMDExRjBBMDY1MTdEMjQ3NkY1NkJDL3J3THJRVHhjQlRG MXh2eThHY2FUWUdQbmFCRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAUMvMRxFu1H2OPWwlh1bgz0AY2U2MLXbTXrWJzHMI9Nsyv0sE/JoQ/ePwjchLT sOILASEFhaaWE9tqn59rap6+U99+ZmeT6Vcm3SENGyICmoqf8QNF2vbwtGjTHfBI pTDIXSqb+bjOPqV1dAy+VcMwKj+L7vBptHbah9DhTrPSxTIKceJy1lY3JdtafFfm uGf/dRGOOF6VbTMrd1VGUVLwxbPnokM30rlpTDvnFMCZnYyyocbhxlV6czvFem8u CfXa4sV4OM5mMeUk+OSS7CCNMlZeSUpYWfx92QM6xSoj1cumOwwA1h9KktDzCujD IhQ5mvKFy0g6i0MDsWe+GZWY -----END CERTIFICATE-----Generated at Thu Mar 26 02:32:56 2026 by rpki-client