$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: qDcmOwTwE11CMipWKZwH9Yk+X/Bl3jBd/5BfbdVAo9M= Subject key identifier: BD:C7:AC:97:5D:DE:FC:CC:E3:6D:7F:3B:C1:6D:AB:A2:82:7A:F9:22 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: CD Signing time: Wed 25 Mar 2026 06:02:54 +0000 Manifest this update: Wed 25 Mar 2026 06:02:53 +0000 Manifest next update: Wed 01 Apr 2026 06:02:53 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: XZQwESHj8x2T+LMiKUWhGUtll4+xKZ/n+9YRH2Pl/oY=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: pelY/uHx6kDkE6LCBISkdm7PFKfU0bUQR1oP68K+NMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Validity Not Before: Mar 25 06:02:53 2026 GMT Not After : Apr 1 06:02:53 2026 GMT Subject: CN=69c37a8e-5c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c1:66:ed:25:ec:62:90:c3:b0:9d:16:f6:91: 40:60:67:2e:7b:9a:68:03:89:3b:06:53:ce:9b:a7: cc:90:97:de:46:09:a0:c0:19:51:91:fd:7b:39:09: 74:50:f4:42:21:08:51:99:13:70:c0:bb:0e:3e:8c: b4:69:0d:96:86:df:19:60:c2:01:4f:48:f6:54:bc: 8d:fc:e5:ed:7f:4e:9d:b4:e5:c2:9c:7c:7d:8f:87: fa:1c:02:7e:ed:e3:a0:74:e6:dd:f9:ca:91:03:bb: f9:d2:65:55:dd:51:68:0b:96:fe:bf:f5:58:6d:bd: b7:7d:58:30:bc:8c:63:a0:59:f8:70:78:5a:3d:b7: ea:a7:95:5d:81:83:b5:db:84:83:11:2e:16:c3:ad: b6:d7:c8:91:46:b5:8a:54:77:e2:71:8a:ad:59:33: 4d:a8:8d:72:48:e9:65:09:dc:94:79:59:a7:4c:6b: 60:eb:84:0e:f0:45:b4:61:ba:5e:fe:3f:03:3a:fc: 71:01:50:c5:c5:b5:f9:bd:ae:52:84:06:0d:c5:0a: ee:a2:00:8c:59:ea:1c:5e:eb:e9:e0:b4:9d:f6:85: 94:16:bf:2f:80:eb:4f:3a:a2:7e:35:20:a3:1f:24: a3:b1:40:04:81:6d:9d:69:a3:5b:b4:2c:c0:70:84: 5b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C7:AC:97:5D:DE:FC:CC:E3:6D:7F:3B:C1:6D:AB:A2:82:7A:F9:22 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:7e:f6:2d:86:61:e6:2d:f8:66:9a:40:69:db:4c:93:9c:72: 3c:a5:11:60:88:99:70:93:b3:23:a5:a4:7a:b3:e5:ca:13:5d: 01:a2:5d:e5:61:a3:dc:1c:ac:61:79:12:e7:9b:64:5e:56:a9: cf:00:20:19:6f:6b:e8:19:94:77:cd:5f:8b:71:c7:2d:03:40: d3:84:bf:21:05:87:9a:7e:8f:f4:32:4f:6b:15:de:6c:55:0d: 80:29:ad:f4:fe:31:44:4a:44:61:3d:36:8e:ef:e1:18:09:08: 63:34:61:1c:cd:e4:17:16:ef:47:90:02:d7:f9:c4:a9:3c:52: 97:32:aa:c2:b4:33:59:0e:22:e0:4d:60:fd:0a:71:71:3e:0d: 77:84:ce:30:9e:5b:85:4f:0f:02:b0:9b:4d:a8:dd:c5:50:6e: ab:8e:2a:c4:54:4a:d4:fd:a5:4c:bf:8b:8d:3e:6d:c8:64:52: c2:3e:93:09:0f:f4:46:3b:f1:59:fe:05:fe:50:48:e2:3e:b6: 40:b5:fa:21:33:d4:5a:28:00:8f:0b:20:50:52:55:11:64:b5: 72:c1:ab:56:63:c1:21:ea:f0:be:92:3e:cd:90:09:53:ab:cd: 14:a8:5e:ea:1a:51:00:11:d3:d2:07:85:f6:15:0c:ca:e1:3a: 97:06:e9:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE4QzcxMTAvBgNVBAUTKEUzNjkyOTBGRDcxOUUzRTQ5ODdENzE5QTczQjFFQzc3 QUFBRjQ5QjYwHhcNMjYwMzI1MDYwMjUzWhcNMjYwNDAxMDYwMjUzWjAYMRYwFAYD VQQDEw02OWMzN2E4ZS01YzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsFm7SXsYpDDsJ0W9pFAYGcue5poA4k7BlPOm6fMkJfeRgmgwBlRkf17OQl0 UPRCIQhRmRNwwLsOPoy0aQ2Wht8ZYMIBT0j2VLyN/OXtf06dtOXCnHx9j4f6HAJ+ 7eOgdObd+cqRA7v50mVV3VFoC5b+v/VYbb23fVgwvIxjoFn4cHhaPbfqp5VdgYO1 24SDES4Ww62218iRRrWKVHficYqtWTNNqI1ySOllCdyUeVmnTGtg64QO8EW0Ybpe /j8DOvxxAVDFxbX5va5ShAYNxQruogCMWeocXuvp4LSd9oWUFr8vgOtPOqJ+NSCj HySjsUAEgW2daaNbtCzAcIRbqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL3HrJdd 3vzM421/O8Ftq6KCevkiMB8GA1UdIwQYMBaAFONpKQ/XGePkmH1xmnOx7Heqr0m2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MThDNy9GOTMwMDFCNkY4 Q0YxMUVGODJEOEQ1MkJDNEY5QUUwMi80MmtwRDljWjQtU1lmWEdhYzdIc2Q2cXZT YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MThDNy9GOTMwMDFCNkY4Q0YxMUVGODJEOEQ1MkJDNEY5QUUwMi80MmtwRDljWjQt U1lmWEdhYzdIc2Q2cXZTYlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHX72LYZh5i34ZppAadtMk5xyPKURYIiZcJOzI6WkerPlyhNdAaJd5WGj3Bys YXkS55tkXlapzwAgGW9r6BmUd81fi3HHLQNA04S/IQWHmn6P9DJPaxXebFUNgCmt 9P4xREpEYT02ju/hGAkIYzRhHM3kFxbvR5AC1/nEqTxSlzKqwrQzWQ4i4E1g/Qpx cT4Nd4TOMJ5bhU8PArCbTajdxVBuq44qxFRK1P2lTL+LjT5tyGRSwj6TCQ/0Rjvx Wf4F/lBI4j62QLX6ITPUWigAjwsgUFJVEWS1csGrVmPBIerwvpI+zZAJU6vNFKhe 6hpRABHT0geF9hUMyuE6lwbp6g== -----END CERTIFICATE-----Generated at Thu Mar 26 00:50:30 2026 by rpki-client