$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: iml9VTuVIsxPZeY/VI2vR4O0jxNuIPvmB5qnd+m4dPw= Subject key identifier: 40:B8:4E:30:74:A6:D3:4F:9D:C6:A1:52:E9:B5:3D:B4:5F:54:8C:4F Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 022F Signing time: Wed 25 Mar 2026 02:02:13 +0000 Manifest this update: Wed 25 Mar 2026 02:02:12 +0000 Manifest next update: Wed 01 Apr 2026 02:02:12 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: nptzBK5PnI8twRY8oRW1cci7pEsavLXnUosyL7EdzEk=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: 6U++pNkeW+MPTCwzdV8Vs83jpXrL1CTpZqHD9JNg/bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Mar 25 02:02:12 2026 GMT Not After : Apr 1 02:02:12 2026 GMT Subject: CN=69c34225-390c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:68:7c:18:d5:f3:84:b7:1c:24:21:d7:94:eb: 11:ff:04:0b:26:c2:72:50:24:2f:3c:3f:67:c2:a1: 7e:a9:02:55:72:8c:d0:da:2f:78:ac:11:d3:09:f1: f0:9b:c2:ce:6c:09:01:4a:39:e8:e7:1d:73:74:26: 7e:4e:65:45:7e:0f:e4:0b:3c:8b:2a:f8:29:56:6d: fa:44:c4:05:07:db:85:54:46:82:64:65:b2:9a:75: f1:34:4f:e5:c8:08:65:31:57:39:b9:89:c0:da:2c: 78:92:5c:16:4f:39:80:7f:92:33:3d:56:a1:aa:f4: f0:44:cf:d4:7a:8f:95:18:91:9b:e4:2d:ec:68:4f: 4c:63:fd:d5:66:ee:c6:31:74:00:b5:cb:54:8c:30: 50:ae:18:dc:00:8b:c6:5d:d0:b0:18:62:e0:55:bc: fe:48:fe:32:8c:ed:b3:2f:64:c9:1d:25:4e:20:00: bf:3d:22:da:7c:d7:f1:53:60:5e:9d:2d:5a:72:9e: 02:ae:c9:c1:1b:5c:01:f4:69:ac:ed:02:9b:38:87: 9c:c4:72:c4:87:a6:f6:b1:81:a7:3a:f8:8b:99:36: f1:c2:94:e4:ad:11:9e:26:bf:4a:b7:69:8c:bf:c9: 32:0d:f6:0b:b1:86:a3:06:ce:32:e9:f1:f5:71:58: 73:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B8:4E:30:74:A6:D3:4F:9D:C6:A1:52:E9:B5:3D:B4:5F:54:8C:4F X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:44:6f:2c:d4:29:60:a8:dd:f6:f7:39:d2:14:d1:ab:3f:10: 59:c9:d6:55:20:38:73:77:b6:50:2b:1e:f2:9e:35:67:de:7f: 44:63:01:57:c2:b7:ce:bb:3c:d2:a1:f6:9d:f0:5a:3e:e5:46: 73:28:ed:ab:f0:5e:a4:6e:92:75:cc:03:7e:b8:14:76:fc:16: 08:1f:d2:23:cb:3b:58:40:9d:a0:69:54:ee:de:55:fd:7d:47: 18:13:8e:f8:89:39:37:59:81:29:a4:07:48:62:14:bc:d9:d5: b6:24:38:aa:12:fc:3f:4b:be:aa:de:b8:e9:2e:72:54:85:ec: f0:f0:04:c1:03:47:e0:3a:95:70:8e:ee:5f:53:39:cc:7d:4d: 44:3c:e5:b6:3b:d0:6f:2f:c6:34:f3:fa:60:75:32:81:9e:69: 92:ab:5f:bd:70:44:6a:99:79:51:da:84:c7:50:21:c3:7c:83: 32:96:41:46:11:e1:2f:5b:46:46:16:49:fa:06:a4:0c:0d:de: 2d:9f:1a:81:5e:3b:7c:df:54:fb:3e:2f:d0:f1:cb:c0:bd:bb: 65:dd:57:00:d5:86:b0:91:e0:8e:39:f0:a8:23:b2:43:d2:19: 28:7f:29:2f:29:89:ad:c7:31:15:a3:6b:f2:ac:9f:a3:aa:5a: 80:b8:1f:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjYwMzI1MDIwMjEyWhcNMjYwNDAxMDIwMjEyWjAYMRYwFAYD VQQDEw02OWMzNDIyNS0zOTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl2h8GNXzhLccJCHXlOsR/wQLJsJyUCQvPD9nwqF+qQJVcozQ2i94rBHTCfHw m8LObAkBSjno5x1zdCZ+TmVFfg/kCzyLKvgpVm36RMQFB9uFVEaCZGWymnXxNE/l yAhlMVc5uYnA2ix4klwWTzmAf5IzPVahqvTwRM/Ueo+VGJGb5C3saE9MY/3VZu7G MXQAtctUjDBQrhjcAIvGXdCwGGLgVbz+SP4yjO2zL2TJHSVOIAC/PSLafNfxU2Be nS1acp4CrsnBG1wB9Gms7QKbOIecxHLEh6b2sYGnOviLmTbxwpTkrRGeJr9Kt2mM v8kyDfYLsYajBs4y6fH1cVhzvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEC4TjB0 ptNPncahUum1PbRfVIxPMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQURvLNQpYKjd9vc50hTRqz8QWcnWVSA4c3e2UCse8p41Z95/RGMBV8K3zrs8 0qH2nfBaPuVGcyjtq/BepG6SdcwDfrgUdvwWCB/SI8s7WECdoGlU7t5V/X1HGBOO +Ik5N1mBKaQHSGIUvNnVtiQ4qhL8P0u+qt646S5yVIXs8PAEwQNH4DqVcI7uX1M5 zH1NRDzltjvQby/GNPP6YHUygZ5pkqtfvXBEapl5UdqEx1Ahw3yDMpZBRhHhL1tG RhZJ+gakDA3eLZ8agV47fN9U+z4v0PHLwL27Zd1XANWGsJHgjjnwqCOyQ9IZKH8p LymJrccxFaNr8qyfo6pagLgfpw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:49:19 2026 by rpki-client