$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: fcCcxpKcOdsF3wQoRRI3P5kqDWmKPdswSf8mYZtUYZU= Subject key identifier: CE:F3:8B:B5:1D:AD:8B:A4:62:6B:DE:73:36:75:C1:9F:A1:35:1C:75 Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: D8 Signing time: Wed 25 Mar 2026 05:50:47 +0000 Manifest this update: Wed 25 Mar 2026 05:50:47 +0000 Manifest next update: Wed 01 Apr 2026 05:50:47 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: 7nXP3scEXOmifDl7Yud78oqNct1W4zgVrRwACnpiXqw=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: OFV7TAeYTwMYk3v0VLj9doRdmglLiVsQ3XZ6eBJ4Cug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: Mar 25 05:50:47 2026 GMT Not After : Apr 1 05:50:47 2026 GMT Subject: CN=69c377b7-f8d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:98:19:19:73:fa:09:4d:f8:c0:7e:4e:94:77: 8d:f9:33:95:81:ab:eb:52:3c:53:ee:31:fc:1d:6a: 42:e1:3a:c8:e8:b8:40:bf:bd:c3:7b:f5:f9:d8:30: b2:ec:b3:75:42:01:0a:f5:0f:99:1e:31:aa:58:a4: b9:03:c6:bb:ac:b2:1e:38:19:d7:e1:5a:7a:82:dd: d9:b5:46:aa:5b:3d:88:9c:b4:ab:28:ac:dc:46:06: 51:a4:be:5e:7c:4e:d2:53:68:fc:c4:4a:a6:63:47: cc:5d:de:cd:e7:e9:25:7a:79:dd:1e:b1:ef:64:fe: e7:dc:94:c0:27:4d:19:8f:e3:24:e0:3a:13:c2:a5: 05:42:a7:de:de:aa:34:0c:2f:11:d0:11:d2:fd:06: 9f:7c:2c:08:c9:57:ab:36:e7:39:02:ef:bd:35:50: ae:51:49:f8:23:15:fe:05:bb:8c:06:f8:f9:18:c4: 44:03:31:37:e4:2b:40:3a:cc:1f:02:1f:f4:5b:43: 2f:87:99:7f:51:5e:1f:34:6f:56:47:4c:75:00:36: 12:cb:69:e7:5d:52:3e:ca:9a:6b:ce:51:0c:b1:6b: 42:31:79:4c:09:de:84:2c:6d:95:f9:a4:76:d5:0f: 56:26:44:0e:22:c1:68:18:fb:af:a9:d3:50:2f:bb: f0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F3:8B:B5:1D:AD:8B:A4:62:6B:DE:73:36:75:C1:9F:A1:35:1C:75 X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:c1:a7:0e:0c:19:d4:34:14:88:b3:1f:e8:8f:61:16:36:72: ec:14:7d:c5:51:43:37:8f:b6:bb:cb:e3:5b:da:6f:81:9e:a0: 6b:e4:48:d5:5e:34:7a:0b:63:76:14:0a:01:e9:f2:93:26:8e: 92:76:f7:b7:a7:04:5f:e9:4a:72:36:92:af:29:9b:ba:24:5c: 89:66:5b:6b:d9:8e:2a:0d:ec:23:a9:67:ba:3e:2c:0a:fc:64: 13:37:c0:19:64:03:76:ae:f9:bf:66:ef:ea:f9:23:a9:b6:5a: 28:cf:68:ba:c3:9e:51:8a:5a:df:8f:a1:bc:63:18:a5:27:40: 9e:2f:1d:4d:e4:85:6f:e0:00:14:6f:61:7f:b2:f2:cc:8e:d8: 31:27:72:0a:af:7d:73:0f:aa:78:f4:5f:5f:62:42:e9:93:8b: e4:3b:04:dd:8d:26:38:ad:23:44:80:b1:2b:5c:7e:01:94:39: b7:51:9e:a8:cf:dc:3e:7f:b6:27:34:f3:58:b3:81:ea:bb:a9: b3:17:a5:6a:af:fd:31:d6:0a:15:48:d0:67:43:ad:a1:b1:1f: 66:4d:63:5c:30:4b:c4:11:45:7d:6c:eb:58:90:ec:f4:1f:8a: e6:93:1f:22:23:29:c6:eb:5d:ee:9f:50:a4:e3:24:2a:b1:6b: 1d:a9:56:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5RjUxMTAvBgNVBAUTKEYxMjg5NTc5MjExN0U5MDcwM0EwMDIwRjRGMzU5ODMx REIyRjkzN0EwHhcNMjYwMzI1MDU1MDQ3WhcNMjYwNDAxMDU1MDQ3WjAYMRYwFAYD VQQDEw02OWMzNzdiNy1mOGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5gZGXP6CU34wH5OlHeN+TOVgavrUjxT7jH8HWpC4TrI6LhAv73De/X52DCy 7LN1QgEK9Q+ZHjGqWKS5A8a7rLIeOBnX4Vp6gt3ZtUaqWz2InLSrKKzcRgZRpL5e fE7SU2j8xEqmY0fMXd7N5+klenndHrHvZP7n3JTAJ00Zj+Mk4DoTwqUFQqfe3qo0 DC8R0BHS/QaffCwIyVerNuc5Au+9NVCuUUn4IxX+BbuMBvj5GMREAzE35CtAOswf Ah/0W0Mvh5l/UV4fNG9WR0x1ADYSy2nnXVI+ypprzlEMsWtCMXlMCd6ELG2V+aR2 1Q9WJkQOIsFoGPuvqdNQL7vwBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM7zi7Ud rYukYmveczZ1wZ+hNRx1MB8GA1UdIwQYMBaAFPEolXkhF+kHA6ACD081mDHbL5N6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlGNS8zMjgzRTdENERG REExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZRY0RvQUlQVHpXWU1kc3Zr M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmszby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlGNS8zMjgzRTdENERGREExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZR Y0RvQUlQVHpXWU1kc3ZrM28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZcGnDgwZ1DQUiLMf6I9hFjZy7BR9xVFDN4+2u8vjW9pvgZ6ga+RI1V40egtj dhQKAenykyaOknb3t6cEX+lKcjaSrymbuiRciWZba9mOKg3sI6lnuj4sCvxkEzfA GWQDdq75v2bv6vkjqbZaKM9ousOeUYpa34+hvGMYpSdAni8dTeSFb+AAFG9hf7Ly zI7YMSdyCq99cw+qePRfX2JC6ZOL5DsE3Y0mOK0jRICxK1x+AZQ5t1GeqM/cPn+2 JzTzWLOB6rupsxelaq/9MdYKFUjQZ0OtobEfZk1jXDBLxBFFfWzrWJDs9B+K5pMf IiMpxutd7p9QpOMkKrFrHalWaA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:09:47 2026 by rpki-client