$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft File: loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft (raw, json) Hash identifier: XpBXgqFZ5iAFO/pubIH/cYm0DVvuk5VumvNXKEuFQzY= Subject key identifier: 85:18:38:23:66:1D:36:47:35:81:BB:6E:70:2F:F4:E3:31:84:38:19 Authority key identifier: 96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 Certificate issuer: /CN=A91534B8/serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft Manifest number: 032D Signing time: Wed 25 Mar 2026 00:46:39 +0000 Manifest this update: Wed 25 Mar 2026 00:46:39 +0000 Manifest next update: Wed 01 Apr 2026 00:46:39 +0000 Files and hashes: 1: loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl (hash: DxwbERcfADTHPo7hIgIBE1RrqwDHxVgkma6X3PsYmaI=) 2: E52CB968094711EDA5B20C0AC4F9AE02.roa (hash: vDY7lV8edjns4HhVnBehxYGRkX0r+4hBoe2Cr3cXbqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Validity Not Before: Mar 25 00:46:39 2026 GMT Not After : Apr 1 00:46:39 2026 GMT Subject: CN=69c3306f-926d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:25:5d:8e:c1:7e:cb:80:2d:ac:85:96:8f:d7: c2:9e:e5:98:74:a6:64:36:40:84:91:06:1d:99:c6: 1d:4d:71:57:0d:53:f2:73:64:a0:f6:03:5a:71:fa: 5c:a4:40:bf:36:0e:43:12:3d:c1:d8:4b:f8:76:5f: bf:ff:29:bd:a6:a6:88:de:c4:8b:0f:65:7c:9e:72: 15:78:f1:7b:d7:40:67:95:38:01:c3:9a:2a:05:2b: 20:e0:f1:ac:17:d8:54:ef:d7:36:01:ac:c5:bb:51: aa:87:21:0a:18:cb:69:c2:48:35:1a:51:6c:d0:fc: 6e:a6:6d:63:4a:5b:e2:18:21:3d:be:28:66:4f:d6: db:80:fb:ad:71:51:bf:e3:ac:ce:6a:1a:25:26:51: 7a:f8:50:7f:a1:97:d9:2d:46:31:9a:0a:5a:e9:9f: 53:e3:89:35:9c:cc:6d:ac:81:a2:94:6d:f8:c2:a0: d4:b6:64:6b:e4:3a:8a:de:2f:92:e9:03:ab:38:cc: bb:b9:8a:3e:bc:d8:dd:a7:bf:ab:66:02:51:89:ea: 8a:59:06:50:f3:25:32:2a:60:59:fe:c6:bd:cf:0d: 7a:64:d1:d5:ea:8a:80:9a:1f:b3:9d:fa:47:63:98: 86:3a:cc:d4:94:13:bc:f5:41:49:c5:57:52:95:3f: 27:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:18:38:23:66:1D:36:47:35:81:BB:6E:70:2F:F4:E3:31:84:38:19 X509v3 Authority Key Identifier: keyid:96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:11:58:52:3a:c2:ab:d9:0b:b5:5e:b0:39:31:42:2b:f6:33: 30:84:d3:01:c8:29:5b:fb:8d:96:04:74:ff:b6:8a:fd:88:29: 83:57:0e:c0:a9:5d:ad:49:af:70:b6:66:be:44:ef:a5:99:19: ce:14:7d:a6:b1:dd:0b:0f:0a:9b:73:fa:4d:db:c4:e0:0b:b5: cb:cf:e8:62:93:74:c2:3d:55:91:34:a9:1b:22:f2:02:6c:d2: 4f:00:45:8d:62:56:0e:63:35:c8:ec:da:58:e1:c3:60:aa:cd: af:88:b9:d7:8e:fd:cf:d4:55:78:80:fe:44:78:04:83:a3:24: 0a:b8:33:6a:9f:0c:fc:52:08:db:6f:80:28:87:dd:02:71:14: 77:fa:85:ca:8c:ff:40:e8:df:54:07:78:35:ed:29:00:3b:4c: eb:4e:b3:e9:21:f4:11:1f:a0:04:bd:ed:8b:f0:e0:66:68:c1: 43:a4:7f:71:19:92:19:18:b8:33:99:e3:2e:55:4b:1e:12:af: 44:bb:ce:28:c6:aa:da:80:76:2d:9e:6c:a6:d5:09:25:80:d8: 02:af:87:b4:bc:8a:8c:6a:48:71:8a:24:14:4f:3c:31:3b:9f: dd:b4:00:5c:65:46:e1:74:79:4f:c0:ea:de:cd:6f:2c:22:fc: f3:f6:49:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKDk2ODAwNTczMDE4QzdDMkZCNUEwMDgxRTYzQzYzRjRE QTQ0MDNDQjYwHhcNMjYwMzI1MDA0NjM5WhcNMjYwNDAxMDA0NjM5WjAYMRYwFAYD VQQDEw02OWMzMzA2Zi05MjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yVdjsF+y4AtrIWWj9fCnuWYdKZkNkCEkQYdmcYdTXFXDVPyc2Sg9gNacfpc pEC/Ng5DEj3B2Ev4dl+//ym9pqaI3sSLD2V8nnIVePF710BnlTgBw5oqBSsg4PGs F9hU79c2AazFu1GqhyEKGMtpwkg1GlFs0Pxupm1jSlviGCE9vihmT9bbgPutcVG/ 46zOaholJlF6+FB/oZfZLUYxmgpa6Z9T44k1nMxtrIGilG34wqDUtmRr5DqK3i+S 6QOrOMy7uYo+vNjdp7+rZgJRieqKWQZQ8yUyKmBZ/sa9zw16ZNHV6oqAmh+znfpH Y5iGOszUlBO89UFJxVdSlT8n1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIUYOCNm HTZHNYG7bnAv9OMxhDgZMB8GA1UdIwQYMBaAFJaABXMBjHwvtaAIHmPGP02kQDy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC9BODZCMzc1QTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZDLTFvQWdlWThZX1RhUkFQ TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvQUZjd0dNZkMtMW9BZ2VZOFlfVGFSQVBMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC9BODZCMzc1QTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZD LTFvQWdlWThZX1RhUkFQTFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcRFYUjrCq9kLtV6wOTFCK/YzMITTAcgpW/uNlgR0/7aK/Ygpg1cOwKldrUmv cLZmvkTvpZkZzhR9prHdCw8Km3P6TdvE4Au1y8/oYpN0wj1VkTSpGyLyAmzSTwBF jWJWDmM1yOzaWOHDYKrNr4i51479z9RVeID+RHgEg6MkCrgzap8M/FII22+AKIfd AnEUd/qFyoz/QOjfVAd4Ne0pADtM606z6SH0ER+gBL3ti/DgZmjBQ6R/cRmSGRi4 M5njLlVLHhKvRLvOKMaq2oB2LZ5sptUJJYDYAq+HtLyKjGpIcYokFE88MTuf3bQA XGVG4XR5T8Dq3s1vLCL88/ZJqw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:53:17 2026 by rpki-client