$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: yACkLQ0987lfm4OHDpC6y41z6q/E5b8ho9JcDQ+gqRE= Subject key identifier: C5:DC:E8:2D:DC:84:D0:99:1B:F8:BA:88:C6:0A:56:2B:61:4A:D2:82 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 021B Signing time: Wed 25 Mar 2026 02:11:33 +0000 Manifest this update: Wed 25 Mar 2026 02:11:32 +0000 Manifest next update: Wed 01 Apr 2026 02:11:32 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: XkE9+XHvFokukUKJUChhzo5Cc8YR/H2CGDZMT+CB0sA=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: yPVfb1MOazkpM9yPxxW2+TeE6FVQ8h/jpcjwh9yPTZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Mar 25 02:11:32 2026 GMT Not After : Apr 1 02:11:32 2026 GMT Subject: CN=69c34455-3039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f0:03:a7:61:54:62:a0:a7:f9:ce:33:94:4b: 41:40:f4:cb:4a:c6:8a:46:d5:81:d9:58:96:6b:8b: 02:f3:4a:3d:bf:64:45:6a:bb:d9:91:fb:f8:f2:9d: 52:bb:28:e5:51:ad:e5:f8:05:53:cc:5b:39:a7:55: 56:47:62:4e:2e:9a:7f:7d:b0:c9:c4:1d:94:cc:41: db:8f:0c:7a:3c:9b:0b:01:2a:81:97:7e:82:12:af: c6:25:5a:cc:5e:31:53:68:c6:a0:a6:a8:8c:d3:df: 01:3c:81:42:e2:42:c4:18:fc:55:d2:16:ea:ef:0c: e1:a5:e4:75:01:1f:ac:b9:eb:03:43:ef:a0:30:1c: a7:1e:a5:dd:e0:f9:2f:e7:07:85:4b:21:b6:c0:cf: 50:c5:43:03:c3:98:8f:0c:70:0e:cf:b8:27:a7:ed: 26:34:af:00:84:52:4b:92:2f:56:e5:08:a2:e6:8a: 72:3e:02:7d:a4:01:f8:14:dc:18:e9:d5:58:a4:e1: 6d:d2:6b:52:a0:3c:35:fd:38:81:1e:95:d2:23:70: 5b:13:1a:7f:b0:42:8f:8f:f8:47:8d:f7:91:5b:43: 8e:b1:bb:62:e8:27:2e:1b:cc:c7:3a:31:3a:0f:e7: d2:f3:7f:75:4f:8c:b6:2d:72:5d:4e:48:66:f5:e3: 81:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DC:E8:2D:DC:84:D0:99:1B:F8:BA:88:C6:0A:56:2B:61:4A:D2:82 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:f9:d9:8a:a3:c1:6c:09:d1:32:f8:9a:e6:cb:a5:42:ec:e5: ea:51:b5:f1:0b:45:b6:55:3d:03:b8:12:ac:72:4e:47:f5:36: 0b:66:39:90:d0:ef:40:9a:67:ca:ba:41:96:92:58:7d:39:f6: bc:68:18:26:39:a2:75:20:b6:1c:d3:37:8f:5d:a5:a7:80:98: 91:53:bb:ff:b0:41:48:b5:b4:e4:80:3a:c6:5d:be:fd:57:eb: cd:ed:75:05:86:85:99:fc:e0:96:9a:01:0c:6c:ff:ee:18:31: bc:c3:52:5c:0c:fd:6f:80:76:ef:d8:f7:33:89:17:71:52:26: 41:73:88:67:b1:7c:b1:3a:0b:41:ee:1b:03:aa:d3:2b:37:27: eb:86:97:6f:f5:ee:ea:a6:81:f6:1b:66:9b:36:a0:71:d1:cc: 87:4c:ed:d5:64:d7:c2:c3:ba:a8:f4:c5:e7:60:1d:21:e9:c7: 60:27:69:23:3c:a4:62:4f:af:3a:78:2c:fa:cd:31:0f:5e:11: d4:3e:47:d1:13:68:f3:2f:de:61:61:e2:f0:d5:db:b9:f3:a8: 6d:53:0b:2a:33:b9:ab:85:e3:6f:03:46:cd:c8:03:2c:ae:06: 15:8a:51:36:ab:f5:36:d9:7c:4a:3f:54:6a:49:3c:e8:c9:fd: 4a:65:77:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjYwMzI1MDIxMTMyWhcNMjYwNDAxMDIxMTMyWjAYMRYwFAYD VQQDEw02OWMzNDQ1NS0zMDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlPADp2FUYqCn+c4zlEtBQPTLSsaKRtWB2ViWa4sC80o9v2RFarvZkfv48p1S uyjlUa3l+AVTzFs5p1VWR2JOLpp/fbDJxB2UzEHbjwx6PJsLASqBl36CEq/GJVrM XjFTaMagpqiM098BPIFC4kLEGPxV0hbq7wzhpeR1AR+suesDQ++gMBynHqXd4Pkv 5weFSyG2wM9QxUMDw5iPDHAOz7gnp+0mNK8AhFJLki9W5Qii5opyPgJ9pAH4FNwY 6dVYpOFt0mtSoDw1/TiBHpXSI3BbExp/sEKPj/hHjfeRW0OOsbti6CcuG8zHOjE6 D+fS8391T4y2LXJdTkhm9eOBXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMXc6C3c hNCZG/i6iMYKVithStKCMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv/nZiqPBbAnRMvia5sulQuzl6lG18QtFtlU9A7gSrHJOR/U2C2Y5kNDvQJpn yrpBlpJYfTn2vGgYJjmidSC2HNM3j12lp4CYkVO7/7BBSLW05IA6xl2+/Vfrze11 BYaFmfzglpoBDGz/7hgxvMNSXAz9b4B279j3M4kXcVImQXOIZ7F8sToLQe4bA6rT Kzcn64aXb/Xu6qaB9htmmzagcdHMh0zt1WTXwsO6qPTF52AdIenHYCdpIzykYk+v Ongs+s0xD14R1D5H0RNo8y/eYWHi8NXbufOobVMLKjO5q4XjbwNGzcgDLK4GFYpR Nqv1Ntl8Sj9Uakk86Mn9SmV37w== -----END CERTIFICATE-----Generated at Thu Mar 26 06:57:36 2026 by rpki-client