$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: L0JVvMVkTtDe87YlyIj4uxwvoIqKb8oiTukYkr0TVRM= Subject key identifier: DD:0B:6C:A8:2A:A5:A3:4A:E2:97:EE:93:5A:0A:4D:0D:70:19:08:4A Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0DA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0D96 Signing time: Thu 26 Mar 2026 17:52:53 +0000 Manifest this update: Thu 26 Mar 2026 17:52:53 +0000 Manifest next update: Thu 02 Apr 2026 17:52:53 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: /YmH10qpnPKRbDuGfKZfNIbFB1wHmCW+JygrZB46OGE=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: pbKdsMeBsvOeSomjFM8j6Bm6hC7ndk/6YYGFv0c3ANY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3492 (0xda4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Mar 26 17:52:53 2026 GMT Not After : Apr 2 17:52:53 2026 GMT Subject: CN=69c57275-f1d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6e:ef:dc:c9:62:f5:55:5b:f3:da:6b:c1:be: e1:f9:8d:b0:c1:e8:46:7c:97:ec:65:e3:c4:b8:4d: 8f:66:f0:24:4c:b9:db:f9:8d:4d:cd:27:c0:07:a9: d7:bc:67:6c:d2:e7:8a:44:0f:97:bb:1b:75:ce:ed: 29:2d:49:87:e0:db:34:a3:18:df:66:d6:3a:9d:81: c1:67:95:cb:6d:dd:4d:cc:4c:6b:ca:88:b4:59:e7: f0:44:16:92:fe:d8:d1:bf:cf:61:0c:18:b1:77:82: 27:a9:6f:b5:2d:d4:81:28:7b:79:34:07:7d:89:2f: bd:37:8d:6b:66:39:cc:1b:f3:56:33:ec:cf:e2:e9: a1:32:6c:11:cc:0c:cd:93:ab:3e:b1:66:c0:0b:84: 9f:c9:34:67:aa:e6:1f:74:b9:8f:4e:d2:6f:df:89: c3:cd:d2:cb:3b:4a:c6:a1:01:47:a4:24:56:c9:53: 32:93:2c:e2:8f:c9:cd:b3:c7:74:88:2e:dd:52:6d: 65:a2:7c:64:02:3f:47:29:5b:c6:98:c6:30:35:11: c3:25:80:fa:78:06:da:ba:d3:7a:df:74:69:19:97: 4a:7f:ae:16:4f:07:d3:48:70:1f:17:87:08:13:8a: d9:11:ab:9d:6c:79:62:da:f1:f2:8b:69:08:4d:6a: 50:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0B:6C:A8:2A:A5:A3:4A:E2:97:EE:93:5A:0A:4D:0D:70:19:08:4A X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:57:ba:ae:b3:a5:21:2c:d2:b6:6a:b5:76:5d:f2:c5:e1:93: ae:87:d5:29:ec:04:83:db:cd:ff:63:42:07:dd:89:b6:a6:c7: a2:77:1d:a7:b0:6b:8d:2f:18:27:75:6a:b0:3b:c3:c3:df:50: fb:60:d8:6b:21:fe:d0:b2:9d:2e:53:e3:15:27:7a:66:ac:13: a3:c1:35:37:fe:9c:b5:2c:0a:99:03:38:5a:06:97:ba:a7:12: a2:15:0d:b5:bf:ca:a4:20:84:55:00:00:57:80:a3:4e:71:46: 76:28:11:b6:71:c1:0b:5d:82:81:45:ec:a7:5f:2a:cd:99:9d: b1:f1:6a:45:5c:87:74:26:b2:37:a0:e1:33:1a:fa:ca:89:83: 0a:15:8c:b2:c6:f1:aa:08:4e:53:df:e4:15:f2:53:57:56:27: d8:76:74:da:84:13:81:c7:a6:47:64:fb:36:07:c3:df:d8:ca: a6:0f:f2:c1:4b:34:58:93:b0:0e:13:a9:ea:ef:48:49:ce:e5: d3:4c:58:18:c9:be:9d:fd:d8:5c:09:4a:6b:55:49:ba:5a:16: 25:b0:b5:95:4b:ab:04:ed:26:4a:dc:cd:23:37:21:d2:cb:42: 14:a5:08:70:3f:eb:48:06:09:48:b6:b0:8f:10:ef:08:1f:4f: 92:2f:e4:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjYwMzI2MTc1MjUzWhcNMjYwNDAyMTc1MjUzWjAYMRYwFAYD VQQDEw02OWM1NzI3NS1mMWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvW7v3Mli9VVb89prwb7h+Y2wwehGfJfsZePEuE2PZvAkTLnb+Y1NzSfAB6nX vGds0ueKRA+Xuxt1zu0pLUmH4Ns0oxjfZtY6nYHBZ5XLbd1NzExryoi0WefwRBaS /tjRv89hDBixd4InqW+1LdSBKHt5NAd9iS+9N41rZjnMG/NWM+zP4umhMmwRzAzN k6s+sWbAC4SfyTRnquYfdLmPTtJv34nDzdLLO0rGoQFHpCRWyVMykyzij8nNs8d0 iC7dUm1lonxkAj9HKVvGmMYwNRHDJYD6eAbautN633RpGZdKf64WTwfTSHAfF4cI E4rZEaudbHli2vHyi2kITWpQuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN0LbKgq paNK4pfuk1oKTQ1wGQhKMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhVe6rrOlISzStmq1dl3yxeGTrofVKewEg9vN/2NCB92JtqbHoncdp7BrjS8Y J3VqsDvDw99Q+2DYayH+0LKdLlPjFSd6ZqwTo8E1N/6ctSwKmQM4WgaXuqcSohUN tb/KpCCEVQAAV4CjTnFGdigRtnHBC12CgUXsp18qzZmdsfFqRVyHdCayN6DhMxr6 yomDChWMssbxqghOU9/kFfJTV1Yn2HZ02oQTgcemR2T7NgfD39jKpg/ywUs0WJOw DhOp6u9ISc7l00xYGMm+nf3YXAlKa1VJuloWJbC1lUurBO0mStzNIzch0stCFKUI cD/rSAYJSLawjxDvCB9Pki/kvw== -----END CERTIFICATE-----Generated at Thu Mar 26 21:37:05 2026 by rpki-client