$ rpki-client -vvf rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft File: fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft (raw, json) Hash identifier: OaU1jwJyh+AwO96ULL7/+tkMoeaBjYIeBg/MrzcWb4o= Subject key identifier: 72:0F:65:A5:46:4C:E2:24:61:7A:5E:47:DF:A3:80:1F:F7:8E:A0:FB Authority key identifier: 7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB Certificate issuer: /CN=A91380B5/serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft Manifest number: 03C8 Signing time: Wed 25 Mar 2026 00:18:08 +0000 Manifest this update: Wed 25 Mar 2026 00:18:08 +0000 Manifest next update: Wed 01 Apr 2026 00:18:08 +0000 Files and hashes: 1: fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl (hash: B2n9B+YG2DfmArWopacQfwwD34fANYiva8ahAluPXcQ=) 2: 121437B45ABB11EF8C696E58C4F9AE02.roa (hash: 5qVS8yAP9geafMCui47y2bneVvGFNSs25MQvHFvL3Q0=) 3: 245B417CADD411EE95FF6C6DC4F9AE02.roa (hash: gLOFNsHejik+yQKsEBrjAw7cANoRp3jJQV4pA0a+JR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380B5, serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Validity Not Before: Mar 25 00:18:08 2026 GMT Not After : Apr 1 00:18:08 2026 GMT Subject: CN=69c329c0-8044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:66:24:dc:61:2d:c5:88:05:a6:55:ec:46:df: 0a:dd:18:95:f1:c6:44:6b:03:f8:56:cf:47:38:a8: c7:e1:c7:6b:95:d5:23:e0:c8:0a:e1:68:42:75:a3: 44:55:8a:78:59:fd:f5:15:03:27:c2:bb:c1:48:b8: 66:e6:4b:7b:01:18:ab:b1:7b:09:d6:2f:59:1b:62: c3:90:25:1e:87:f2:c1:d4:27:d3:77:a3:02:18:67: d6:56:b2:e7:91:fb:35:bd:79:13:28:7c:7e:96:7a: c5:37:17:e3:9b:a1:87:4a:a0:94:e3:6f:20:5d:96: 52:26:7c:f2:f1:dc:e2:91:c8:3f:38:ad:30:ee:8b: 9e:94:83:77:89:86:0e:9d:4e:81:6a:e8:da:20:dc: 88:cb:fa:32:84:a0:48:8f:2b:62:b4:58:33:fa:b9: 62:47:9d:91:14:46:f3:fe:ad:25:38:ae:d6:17:5c: e8:1d:1d:2f:7c:80:30:6b:19:a6:bc:da:54:33:07: a7:76:eb:bd:a1:1e:c3:0e:ee:99:ad:76:e9:1f:3e: 2d:33:27:70:31:55:2a:5b:b5:ef:cb:cd:0d:7e:f6: 40:1a:a6:b2:25:7b:6f:86:5b:31:d9:9e:fa:5b:35: 16:59:b6:ec:33:e5:e6:44:79:c1:b2:06:bd:bf:79: 6e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0F:65:A5:46:4C:E2:24:61:7A:5E:47:DF:A3:80:1F:F7:8E:A0:FB X509v3 Authority Key Identifier: keyid:7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:13:3f:33:e8:40:7f:08:f3:52:22:55:25:b1:8b:b1:69:6b: 42:41:08:ca:06:44:ff:67:26:f7:82:00:31:a6:20:f5:64:d6: ed:e1:ab:e9:14:3e:52:8e:a5:49:d3:30:8d:75:7f:5a:a0:49: 0a:3c:0e:b8:ae:92:b0:37:1c:96:5d:10:70:1e:ed:79:bb:43: 3f:d3:70:05:26:14:57:f9:17:d9:b7:dd:74:f4:d4:b6:bf:c6: ab:6c:0d:94:45:93:77:5a:8f:d8:1c:a5:46:41:af:9c:26:e3: d3:af:5e:75:31:bb:38:e6:64:a9:ee:f8:a0:20:4e:17:81:4e: e8:bc:27:52:0c:a0:70:3d:ca:59:c0:4d:af:00:1a:77:20:be: fe:d1:8c:f7:d0:57:86:10:56:f1:fa:62:47:9c:e7:7b:0d:ef: 6a:3d:41:c8:ef:6f:be:7f:e6:d2:6b:a6:dd:4d:9f:32:0b:59: 8c:36:e4:40:9c:20:74:b6:75:c4:22:be:b3:3c:75:af:30:90: 51:8b:fd:48:2b:5e:5e:f0:d0:e5:3d:10:57:ae:c0:a8:57:01: 9a:49:45:59:98:7d:46:e9:8f:a4:7c:bb:1f:ab:97:61:16:05: 5e:d3:b4:1f:05:79:79:86:d6:77:f1:9c:c9:b5:31:f2:da:8b: 74:a9:7a:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwQjUxMTAvBgNVBAUTKDdFNjVDNThGQTM0M0ExMEM1MzQzNTBBQjQ5N0ZEMDkw Q0VFRkJGQkIwHhcNMjYwMzI1MDAxODA4WhcNMjYwNDAxMDAxODA4WjAYMRYwFAYD VQQDEw02OWMzMjljMC04MDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GYk3GEtxYgFplXsRt8K3RiV8cZEawP4Vs9HOKjH4cdrldUj4MgK4WhCdaNE VYp4Wf31FQMnwrvBSLhm5kt7ARirsXsJ1i9ZG2LDkCUeh/LB1CfTd6MCGGfWVrLn kfs1vXkTKHx+lnrFNxfjm6GHSqCU428gXZZSJnzy8dzikcg/OK0w7ouelIN3iYYO nU6BaujaINyIy/oyhKBIjytitFgz+rliR52RFEbz/q0lOK7WF1zoHR0vfIAwaxmm vNpUMwenduu9oR7DDu6ZrXbpHz4tMydwMVUqW7Xvy80NfvZAGqayJXtvhlsx2Z76 WzUWWbbsM+XmRHnBsga9v3luKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHIPZaVG TOIkYXpeR9+jgB/3jqD7MB8GA1UdIwQYMBaAFH5lxY+jQ6EMU0NQq0l/0JDO77+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODBCNS82OTQ2M0QwNENB M0QxMUVDOTFBQzQyNkRDNEY5QUUwMi9mbVhGajZORG9ReFRRMUNyU1hfUWtNN3Z2 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZtWEZqNk5Eb1F4VFExQ3JTWF9Ra003dnY3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODBCNS82OTQ2M0QwNENBM0QxMUVDOTFBQzQyNkRDNEY5QUUwMi9mbVhGajZORG9R eFRRMUNyU1hfUWtNN3Z2N3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALhM/M+hAfwjzUiJVJbGLsWlrQkEIygZE/2cm94IAMaYg9WTW7eGr6RQ+Uo6l SdMwjXV/WqBJCjwOuK6SsDccll0QcB7tebtDP9NwBSYUV/kX2bfddPTUtr/Gq2wN lEWTd1qP2BylRkGvnCbj069edTG7OOZkqe74oCBOF4FO6LwnUgygcD3KWcBNrwAa dyC+/tGM99BXhhBW8fpiR5znew3vaj1ByO9vvn/m0mum3U2fMgtZjDbkQJwgdLZ1 xCK+szx1rzCQUYv9SCteXvDQ5T0QV67AqFcBmklFWZh9RumPpHy7H6uXYRYFXtO0 HwV5eYbWd/GcybUx8tqLdKl6bQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:55:45 2026 by rpki-client