$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: plgzq2k2gmZwoengcP/dp554zSWe9l+X0Sipj5VEQ8s= Subject key identifier: 45:A2:92:64:89:7B:74:58:2A:AA:D2:FD:30:78:D4:22:0B:DD:F5:C0 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 024D Signing time: Wed 25 Mar 2026 01:48:35 +0000 Manifest this update: Wed 25 Mar 2026 01:48:34 +0000 Manifest next update: Wed 01 Apr 2026 01:48:34 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: vYgf79RKQm01u9zdvYeXJUyv+cHyDAhhKybPMN+l8Ns=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: WkBrG4Ptn2oOu7MUQprdMpFUUGYiR0bDGLQIFpoza1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Mar 25 01:48:34 2026 GMT Not After : Apr 1 01:48:34 2026 GMT Subject: CN=69c33ef3-4bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:61:90:c0:a3:d9:b8:7d:01:0a:f4:de:9d: 8a:ad:67:b1:9a:78:29:6e:e0:c1:da:5c:96:d9:e9: 80:c3:1e:03:16:03:1f:c5:a2:98:e3:12:b9:1e:78: bb:63:6c:b4:13:2f:6f:fe:b0:c1:7d:8f:d3:b4:65: 4f:29:fc:3b:2c:9f:db:bc:63:f5:43:e9:5a:cb:a1: d9:33:ff:d0:a1:3d:fd:58:0b:8d:ef:18:91:d5:fd: 35:a6:6f:11:b4:5a:4c:f6:96:3c:81:bc:1d:36:89: 7d:8d:35:c4:21:7d:13:a2:ab:c6:3b:eb:be:74:5a: e3:da:e4:eb:d0:67:cc:9b:53:69:6b:02:24:3c:ce: 59:7e:91:9d:fb:33:a5:67:36:5b:ed:00:a8:76:41: fc:ad:3d:61:5e:b6:6a:b3:9a:f8:7a:b0:77:b9:dc: 0c:67:ac:f9:61:cf:e4:ba:d9:8e:7d:df:9d:25:b1: 9c:e0:b8:3f:68:2e:40:6f:1e:98:8b:ff:6b:56:8e: 96:22:c3:13:dc:8a:ca:21:12:9f:80:d9:bc:0a:05: 9f:48:2d:41:25:ab:99:0c:9b:79:54:2a:35:08:0c: e8:d5:e2:d0:a0:0a:65:ab:43:ef:ba:f2:67:08:02: 2e:c5:70:ec:8c:05:8c:9f:b0:80:59:74:aa:07:c0: 02:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A2:92:64:89:7B:74:58:2A:AA:D2:FD:30:78:D4:22:0B:DD:F5:C0 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e1:ac:4f:43:14:2a:9f:29:14:21:7e:84:81:94:10:35:58: 67:bd:c2:3f:4f:0f:db:d2:c5:c0:37:d7:ea:15:e6:8f:0a:1b: 95:b9:41:74:55:95:b2:d9:6c:43:e5:1f:a4:bd:ca:e8:e7:12: 32:a8:98:b0:44:0e:d4:9c:6f:58:19:d6:e2:68:1a:74:92:65: e4:e5:ed:5f:f8:18:34:5e:9e:92:9b:86:87:05:74:58:52:51: ca:ff:3c:62:fd:0d:65:dd:64:28:9d:d2:9b:da:d1:e8:82:ec: 69:ac:43:a6:c1:20:f4:05:f8:a5:9a:01:2b:ea:94:22:fe:8d: d3:1b:26:82:a8:e1:45:b6:a4:11:20:93:1d:a9:f6:e9:60:16: 4b:41:d8:b1:2d:d6:a2:e3:70:14:65:2b:1e:78:04:92:cc:d5: 23:81:b5:c5:b1:36:dc:26:51:aa:a1:db:d7:2a:e4:16:fc:dc: 47:10:35:70:09:a5:06:8d:0a:fa:75:de:1c:85:d7:bc:ee:67: 95:bd:d6:58:6d:77:de:01:75:3d:29:2e:26:79:e4:a7:65:ae: 4e:16:f4:87:e8:87:26:98:5e:e7:6a:dc:60:44:f8:50:ff:f9: 8a:ce:c0:ac:cd:6f:64:de:f8:c0:14:71:6c:70:00:e6:8a:1b: a0:d8:69:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjYwMzI1MDE0ODM0WhcNMjYwNDAxMDE0ODM0WjAYMRYwFAYD VQQDEw02OWMzM2VmMy00YmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMlhkMCj2bh9AQr03p2KrWexmngpbuDB2lyW2emAwx4DFgMfxaKY4xK5Hni7 Y2y0Ey9v/rDBfY/TtGVPKfw7LJ/bvGP1Q+lay6HZM//QoT39WAuN7xiR1f01pm8R tFpM9pY8gbwdNol9jTXEIX0ToqvGO+u+dFrj2uTr0GfMm1NpawIkPM5ZfpGd+zOl ZzZb7QCodkH8rT1hXrZqs5r4erB3udwMZ6z5Yc/kutmOfd+dJbGc4Lg/aC5Abx6Y i/9rVo6WIsMT3IrKIRKfgNm8CgWfSC1BJauZDJt5VCo1CAzo1eLQoAplq0PvuvJn CAIuxXDsjAWMn7CAWXSqB8ACSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEWikmSJ e3RYKqrS/TB41CIL3fXAMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFuGsT0MUKp8pFCF+hIGUEDVYZ73CP08P29LFwDfX6hXmjwoblblBdFWVstls Q+UfpL3K6OcSMqiYsEQO1JxvWBnW4mgadJJl5OXtX/gYNF6ekpuGhwV0WFJRyv88 Yv0NZd1kKJ3Sm9rR6ILsaaxDpsEg9AX4pZoBK+qUIv6N0xsmgqjhRbakESCTHan2 6WAWS0HYsS3WouNwFGUrHngEkszVI4G1xbE23CZRqqHb1yrkFvzcRxA1cAmlBo0K +nXeHIXXvO5nlb3WWG133gF1PSkuJnnkp2WuThb0h+iHJphe52rcYET4UP/5is7A rM1vZN74wBRxbHAA5ooboNhpgw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:36:15 2026 by rpki-client