$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: YztEm5nuFEg3FKUesz/RKDXCbRyMAH3hxoAnoBlc5Fc= Subject key identifier: 2A:8F:EB:69:F7:6A:99:90:FE:34:EB:B1:FC:D4:7C:17:EF:15:1A:7D Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0CB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C73 Signing time: Tue 24 Mar 2026 18:35:42 +0000 Manifest this update: Tue 24 Mar 2026 18:35:41 +0000 Manifest next update: Tue 31 Mar 2026 18:35:41 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: VJSuj98tseKVImaiqyCGy+2cvZfdvcmnOEGtZEtjbDc=) 2: 16C56390B6FF11F096DEAA71C4F9AE02.roa (hash: /XLi+JoFopcNaQS+dz0I9QQbByJLgyqvV+UDc3RM9XQ=) 3: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: zZKkU5m5jrELsXLPpU2iKiEvYddsb6m7m0BK+ZsPDg0=) 4: 336E2134D0FF11F0904A3785C4F9AE02.roa (hash: /2RNIkBIhtZT+yQtCchMfxU/aFUT25YRMpbrC+A9cdA=) 5: 78E949B8BA2B11F091659A18C4F9AE02.roa (hash: VOBPRXqiWHsxxicImatBXQPFpdPNhWUthBewKk/mSYs=) 6: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: TdD366YPbDVh8M4hWGlCIcUx+fM9FgqZUJ2TV/gnPRw=) 7: FD9DD964D0FE11F09871A984C4F9AE02.roa (hash: fCNwY+bFmbNIKvRtyJc3Fedqpi08Sju/q2nGO6Ir4oQ=) 8: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: 2LqeRUOZAwgxybnlCEWpL5xaNP5BZabdtxW3D8ogqXA=) 9: 45DE9550BADF11F09B91D509C4F9AE02.roa (hash: VFxaFuE3kLPbmnaiebPltW71W8wxxR4QeAfyqtq3Fsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Mar 24 18:35:41 2026 GMT Not After : Mar 31 18:35:41 2026 GMT Subject: CN=69c2d97d-52e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e3:e3:12:d1:ac:d0:82:07:2f:40:26:d8:19: 03:2c:8a:b7:1e:ab:10:c4:bd:5c:4a:9f:7e:99:a1: 94:7a:0c:75:62:04:5c:4d:17:ab:85:20:35:ad:24: 06:79:b3:d3:04:5b:b6:c9:fb:65:48:5c:bf:51:00: 33:8d:59:95:91:46:74:ec:d1:28:3c:31:e0:59:22: 1e:6c:14:31:ca:64:90:00:c8:7e:be:11:7e:55:6b: f1:eb:02:a8:22:f4:4b:7e:48:55:5c:c0:29:88:78: d3:b7:9e:76:47:f6:37:8a:21:9e:b0:ee:23:b9:ca: 50:84:67:ae:e7:42:41:ca:c9:16:64:97:6d:31:c7: 6b:82:70:5e:a5:16:a7:60:bc:dd:ae:da:17:3b:10: fd:69:62:6b:d0:28:9e:c8:66:f2:f7:63:b4:1b:24: f3:2e:6b:a4:4f:fa:d6:77:22:53:b2:f6:2a:8d:22: 76:ae:a3:ee:57:e0:57:c7:21:59:97:a0:35:fc:0a: 2d:12:40:a2:9b:ac:e8:e6:c3:5c:0e:74:01:1d:94: 1b:9a:c8:da:c3:97:9c:68:d5:b6:d1:40:62:50:a3: 5a:18:ef:8b:8e:29:27:77:05:91:51:b6:32:72:57: bb:2a:90:db:f0:34:ca:17:31:c3:34:45:9e:58:c1: 73:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8F:EB:69:F7:6A:99:90:FE:34:EB:B1:FC:D4:7C:17:EF:15:1A:7D X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:62:2b:e5:cb:33:81:ad:70:18:04:ec:82:ca:03:2b:fa:f9: ee:0a:1d:31:b1:f6:85:1f:71:57:5a:23:9a:cb:2d:22:4e:93: 7c:6c:60:56:9f:71:0a:d1:a0:8d:76:67:7a:3d:15:e5:5f:b7: 17:51:2c:43:9c:70:52:e9:81:e5:f0:94:aa:c4:8d:eb:71:54: fb:cd:99:85:ea:97:11:4d:b0:24:d9:bd:2d:5a:2d:d6:62:dd: c1:37:84:d3:28:3d:df:65:db:66:e4:32:d2:0c:56:24:39:c6: e0:50:88:ad:0d:7f:37:8b:f3:ea:eb:eb:01:50:b8:a4:a4:ce: 76:ae:83:8e:53:7d:d5:06:77:54:c8:87:be:e7:03:55:2d:4b: a9:eb:a9:59:45:2d:72:b1:0f:90:84:cb:d7:d4:34:c4:d1:35: 67:66:43:32:80:48:c8:0b:1a:2c:11:44:eb:3a:cd:cb:ef:29: c3:0c:2f:c2:50:94:40:15:bd:91:12:44:88:e6:51:6f:a0:ff: 6f:3e:41:af:e9:db:de:fb:d3:a0:34:a1:29:3c:7f:ad:f0:ac: bd:a5:fe:2c:e6:05:c3:73:db:4d:db:56:e1:6d:9c:0d:a4:93: e8:3c:a3:13:f6:ab:1d:9d:8b:b5:aa:44:ad:57:05:86:f1:36: 87:a3:6f:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjYwMzI0MTgzNTQxWhcNMjYwMzMxMTgzNTQxWjAYMRYwFAYD VQQDEw02OWMyZDk3ZC01MmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ePjEtGs0IIHL0Am2BkDLIq3HqsQxL1cSp9+maGUegx1YgRcTRerhSA1rSQG ebPTBFu2yftlSFy/UQAzjVmVkUZ07NEoPDHgWSIebBQxymSQAMh+vhF+VWvx6wKo IvRLfkhVXMApiHjTt552R/Y3iiGesO4jucpQhGeu50JByskWZJdtMcdrgnBepRan YLzdrtoXOxD9aWJr0CieyGby92O0GyTzLmukT/rWdyJTsvYqjSJ2rqPuV+BXxyFZ l6A1/AotEkCim6zo5sNcDnQBHZQbmsjaw5ecaNW20UBiUKNaGO+LjikndwWRUbYy cle7KpDb8DTKFzHDNEWeWMFz1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCqP62n3 apmQ/jTrsfzUfBfvFRp9MB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhGIr5cszga1wGATsgsoDK/r57godMbH2hR9xV1ojmsstIk6TfGxgVp9xCtGg jXZnej0V5V+3F1EsQ5xwUumB5fCUqsSN63FU+82ZheqXEU2wJNm9LVot1mLdwTeE 0yg932XbZuQy0gxWJDnG4FCIrQ1/N4vz6uvrAVC4pKTOdq6DjlN91QZ3VMiHvucD VS1LqeupWUUtcrEPkITL19Q0xNE1Z2ZDMoBIyAsaLBFE6zrNy+8pwwwvwlCUQBW9 kRJEiOZRb6D/bz5Br+nb3vvToDShKTx/rfCsvaX+LOYFw3PbTdtW4W2cDaST6Dyj E/arHZ2LtapErVcFhvE2h6Nv5A== -----END CERTIFICATE-----Generated at Thu Mar 26 14:56:41 2026 by rpki-client