$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: 2WT2RFhy+tfOkxgrlEfKrEqzh5j3xd7gi+Hf93tnBnU= Subject key identifier: 65:B2:12:59:E8:62:9F:EB:54:92:84:FC:21:26:FA:F8:4A:9F:92:74 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: EC Signing time: Wed 25 Mar 2026 05:39:31 +0000 Manifest this update: Wed 25 Mar 2026 05:39:30 +0000 Manifest next update: Wed 01 Apr 2026 05:39:30 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: myUfgu+nNwrlPvFrX3hN65Nfgsv3UV63ykE0ugYQH2Y=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: HG74SSnFpVc9cW3sd7L9piB9ZAlq596CN6u14507KWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Mar 25 05:39:30 2026 GMT Not After : Apr 1 05:39:30 2026 GMT Subject: CN=69c37513-3fac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:29:03:bb:a9:9f:72:29:92:eb:7f:74:7f:61: 26:20:af:f8:9e:b2:0f:5c:19:ee:cd:2b:d0:61:55: 3c:d4:0b:41:d3:28:d3:13:6a:c6:90:38:12:cc:85: 44:3b:c3:79:ac:65:d5:b6:2c:2f:ad:0f:b7:93:e5: b0:74:53:7b:b7:29:97:6b:dd:e5:1f:ab:95:d4:f7: 3b:12:10:40:62:b6:45:2c:5a:87:f2:a0:1f:fd:2f: 8d:24:91:b3:04:01:24:01:48:1d:50:33:7b:51:f6: 98:8f:2f:f1:b5:53:76:ca:8c:8e:74:eb:d0:27:90: 52:ad:86:56:94:56:7c:ba:c5:30:54:bb:3f:ce:fe: d1:91:eb:bd:19:e4:c4:88:bb:8c:48:3c:ef:9e:e8: 43:27:38:c2:a5:ef:09:5f:80:f8:ac:6d:e4:23:27: 3b:88:6f:2b:88:7a:d5:ff:23:53:b7:5d:57:f8:df: 91:b6:7a:35:a1:97:99:13:3a:5a:a9:1d:ef:33:19: ae:c9:2b:28:5b:df:c2:9f:76:87:08:05:2c:8d:e0: f7:69:61:aa:80:d9:56:d6:3c:9f:18:36:03:7d:c2: f6:71:b7:53:92:89:9e:56:bd:f4:b1:b8:2e:e3:c3: 15:84:1d:42:e4:8d:c1:59:8d:dd:24:47:46:7f:13: a5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B2:12:59:E8:62:9F:EB:54:92:84:FC:21:26:FA:F8:4A:9F:92:74 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:37:44:6f:12:ac:d9:b4:ed:c9:0f:88:c0:6f:58:67:ec:41: b2:74:d3:e9:b3:f2:dd:2d:d8:07:66:a5:8b:f3:9e:a5:33:1d: 3f:da:9d:c1:c4:4d:85:28:61:1d:fa:bc:f6:e1:31:90:96:53: c6:6e:6b:95:f2:b5:1c:6f:d9:51:a6:a2:84:a6:af:23:93:16: ba:46:ea:7e:65:6d:0f:31:56:f9:ce:a4:40:4b:2a:e6:03:cf: 1d:ab:3c:ec:14:5d:da:df:c0:f6:bc:b4:5a:ea:76:42:f5:08: 0e:49:17:54:5f:7a:62:0b:c9:3c:bd:e5:1c:9f:4e:3e:b7:db: d1:96:67:56:34:db:02:48:f2:26:ec:5d:37:0d:65:58:0b:ce: de:a1:c8:94:c8:49:4b:7e:6b:c4:b9:01:58:c7:77:68:98:71: 12:84:ee:ba:81:0b:e9:20:ea:d6:7a:6c:3c:e0:a3:44:cf:11: 52:e4:ba:2a:97:5a:da:2c:0b:20:35:77:2f:39:c0:27:7b:3c: ce:47:f1:2c:5e:f5:4d:a5:cd:23:a4:4f:51:2c:9c:ad:5e:5c: b3:a2:b2:b6:f9:82:45:94:24:16:5d:57:82:04:b8:2d:9f:df: c4:fe:55:da:a4:ec:20:c0:03:f4:bc:a1:b4:3b:17:c2:40:28: 02:1f:2f:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjYwMzI1MDUzOTMwWhcNMjYwNDAxMDUzOTMwWjAYMRYwFAYD VQQDEw02OWMzNzUxMy0zZmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SkDu6mfcimS6390f2EmIK/4nrIPXBnuzSvQYVU81AtB0yjTE2rGkDgSzIVE O8N5rGXVtiwvrQ+3k+WwdFN7tymXa93lH6uV1Pc7EhBAYrZFLFqH8qAf/S+NJJGz BAEkAUgdUDN7UfaYjy/xtVN2yoyOdOvQJ5BSrYZWlFZ8usUwVLs/zv7Rkeu9GeTE iLuMSDzvnuhDJzjCpe8JX4D4rG3kIyc7iG8riHrV/yNTt11X+N+Rtno1oZeZEzpa qR3vMxmuySsoW9/Cn3aHCAUsjeD3aWGqgNlW1jyfGDYDfcL2cbdTkomeVr30sbgu 48MVhB1C5I3BWY3dJEdGfxOlGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGWyElno Yp/rVJKE/CEm+vhKn5J0MB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQTdEbxKs2bTtyQ+IwG9YZ+xBsnTT6bPy3S3YB2ali/OepTMdP9qdwcRNhShh Hfq89uExkJZTxm5rlfK1HG/ZUaaihKavI5MWukbqfmVtDzFW+c6kQEsq5gPPHas8 7BRd2t/A9ry0Wup2QvUIDkkXVF96YgvJPL3lHJ9OPrfb0ZZnVjTbAkjyJuxdNw1l WAvO3qHIlMhJS35rxLkBWMd3aJhxEoTuuoEL6SDq1npsPOCjRM8RUuS6Kpda2iwL IDV3LznAJ3s8zkfxLF71TaXNI6RPUSycrV5cs6KytvmCRZQkFl1XggS4LZ/fxP5V 2qTsIMAD9LyhtDsXwkAoAh8vBQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:01 2026 by rpki-client