$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: 2dKxKtcD2CH2YOWsxEJJv5O5xSo5uSFjzV6j2XP6KiY= Subject key identifier: 4A:94:46:08:AE:2F:CD:E6:71:3D:9B:AF:4C:50:94:46:7C:2B:CD:C3 Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0B66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0B56 Signing time: Thu 26 Mar 2026 19:09:43 +0000 Manifest this update: Thu 26 Mar 2026 19:09:43 +0000 Manifest next update: Thu 02 Apr 2026 19:09:43 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: z1tm2jVPewlYgq5JjPEFpf/rvu+LGzAR5PdSdSjtXws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2918 (0xb66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Mar 26 19:09:43 2026 GMT Not After : Apr 2 19:09:43 2026 GMT Subject: CN=69c58477-2b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fa:82:f8:85:fa:58:65:dc:95:ff:e2:d6:b0: 04:fd:17:bd:a9:3e:38:a7:c0:5c:bf:4b:43:43:eb: 52:8f:24:eb:4a:aa:89:64:ed:ba:4a:b8:c8:bd:4b: 05:4c:c3:f1:86:e0:51:b1:f6:21:6e:07:f1:26:8c: 81:c4:68:96:70:2d:57:25:aa:02:a7:c6:35:e4:cd: e7:88:21:47:6e:68:fc:2b:1b:7f:1e:61:6d:1c:59: 05:ba:81:02:c6:e8:de:41:07:be:a2:74:0f:39:3e: fa:30:7d:24:1a:ed:79:fb:ec:54:43:5f:50:d7:ca: bf:16:98:cc:b7:ee:a0:ac:38:1b:b3:51:54:69:26: 43:88:ef:21:54:bb:0e:e1:42:15:81:4c:07:43:3f: c9:7b:b0:ae:67:12:e9:7e:90:aa:32:46:b5:cb:63: 8c:68:d3:bd:a9:ab:f6:35:64:c4:df:9a:90:87:4b: 6c:bb:c8:6d:19:d0:49:9e:fa:83:ff:f9:aa:e2:72: 47:47:d5:06:42:30:0a:88:46:07:49:ae:e8:ab:84: 0c:c7:5a:40:ff:3b:e2:79:ba:f5:99:68:cd:cf:94: d5:90:79:55:c4:61:8f:ed:a8:50:ef:9f:f0:7e:1d: 06:af:00:0b:b7:2d:25:65:a2:85:13:00:53:96:3f: 94:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:94:46:08:AE:2F:CD:E6:71:3D:9B:AF:4C:50:94:46:7C:2B:CD:C3 X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:40:85:3e:94:22:ac:74:ce:ab:44:1e:30:57:43:aa:96:36: c8:3f:06:32:22:83:b8:09:30:ac:05:c1:61:73:54:1b:f2:e0: 65:84:61:36:0a:07:08:e5:32:b3:2c:3b:2a:8f:1d:56:a8:80: 4f:64:7a:78:b4:c4:10:38:c4:33:92:20:e3:16:11:4e:d1:3c: 46:a8:be:c9:82:be:57:f8:ac:0d:31:eb:31:f4:93:d9:2f:8a: 43:b3:1d:f4:8c:96:70:bc:fb:e3:51:50:84:d0:c5:f8:d1:8c: a7:f7:10:b9:68:f7:14:35:51:4d:29:85:38:c3:4e:c8:72:0d: 7c:d2:01:bc:65:06:78:06:1d:3a:62:f5:7a:fe:97:a8:9e:04: 76:14:d5:2a:1c:a9:23:b2:9c:37:02:fc:34:1e:b4:37:21:47: 48:71:93:8b:07:67:05:17:cf:2b:6d:0c:66:ba:c1:ca:1d:53: 09:71:43:04:a7:89:73:b9:c4:2e:4c:7b:4b:3e:5d:73:1b:70: 20:05:e6:f3:f0:4b:fa:17:f5:c6:c3:bd:35:ea:9d:71:0f:b8: 4a:18:bb:c8:61:65:a9:5c:d7:a6:f3:7d:7b:24:1e:a8:70:f7: 8f:60:8c:4c:c9:e8:fb:2c:a4:35:82:35:25:1e:d4:4a:2d:53: 6f:3b:1c:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjYwMzI2MTkwOTQzWhcNMjYwNDAyMTkwOTQzWjAYMRYwFAYD VQQDEw02OWM1ODQ3Ny0yYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/qC+IX6WGXclf/i1rAE/Re9qT44p8Bcv0tDQ+tSjyTrSqqJZO26SrjIvUsF TMPxhuBRsfYhbgfxJoyBxGiWcC1XJaoCp8Y15M3niCFHbmj8Kxt/HmFtHFkFuoEC xujeQQe+onQPOT76MH0kGu15++xUQ19Q18q/FpjMt+6grDgbs1FUaSZDiO8hVLsO 4UIVgUwHQz/Je7CuZxLpfpCqMka1y2OMaNO9qav2NWTE35qQh0tsu8htGdBJnvqD //mq4nJHR9UGQjAKiEYHSa7oq4QMx1pA/zviebr1mWjNz5TVkHlVxGGP7ahQ75/w fh0GrwALty0lZaKFEwBTlj+UaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEqURgiu L83mcT2br0xQlEZ8K83DMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG0CFPpQirHTOq0QeMFdDqpY2yD8GMiKDuAkwrAXBYXNUG/LgZYRhNgoHCOUy syw7Ko8dVqiAT2R6eLTEEDjEM5Ig4xYRTtE8Rqi+yYK+V/isDTHrMfST2S+KQ7Md 9IyWcLz741FQhNDF+NGMp/cQuWj3FDVRTSmFOMNOyHINfNIBvGUGeAYdOmL1ev6X qJ4EdhTVKhypI7KcNwL8NB60NyFHSHGTiwdnBRfPK20MZrrByh1TCXFDBKeJc7nE Lkx7Sz5dcxtwIAXm8/BL+hf1xsO9NeqdcQ+4Shi7yGFlqVzXpvN9eyQeqHD3j2CM TMno+yykNYI1JR7USi1TbzscKA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:17:36 2026 by rpki-client