$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: 1bMhVtYj3IzDuRJ7sNReJS6+XU2sYJg2atPgYlqS6KE= Subject key identifier: 55:FB:30:DA:D7:66:E7:C4:FD:00:18:1F:BB:FC:24:A8:90:01:85:65 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 018C Signing time: Wed 25 Mar 2026 04:39:35 +0000 Manifest this update: Wed 25 Mar 2026 04:39:35 +0000 Manifest next update: Wed 01 Apr 2026 04:39:35 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: R5Cb/pKyZCT1l07ERDF2OQ0p+AjkHANq35sDAzhdoE0=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: CHmfasvIFMB8cvnVplF2VU1d1UcvTiGGkiQVF3TlMl8=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: tbhcExPyMdasBxcbE73h7b5HlPi0div8uaJX4sMb5Ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Mar 25 04:39:35 2026 GMT Not After : Apr 1 04:39:35 2026 GMT Subject: CN=69c36707-ca75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:02:40:89:69:89:6e:2c:99:96:ff:9f:fe:d4: 0c:c8:bd:d9:b4:93:63:ff:12:de:86:4f:84:68:e8: 25:ff:29:4d:41:ae:98:57:df:88:45:33:0d:b2:23: 43:5b:94:e5:ce:49:23:28:45:f8:bc:17:ab:77:0a: bd:d7:cb:c5:8d:e3:12:1e:3a:89:65:4a:58:b3:cb: 33:e0:8f:3b:e3:5c:df:d8:97:85:bb:79:02:1f:61: dd:21:13:11:b3:39:a8:57:5b:79:ed:fa:dc:cb:3b: 46:74:f0:7b:7e:9b:1b:97:14:fb:d3:57:c4:6f:4f: 35:2e:bd:4d:9b:48:73:f7:52:03:fa:04:24:19:dc: a5:14:2b:c6:d2:eb:ce:48:7c:a9:ee:0b:e1:c5:27: 6c:b5:42:7d:3d:6b:b6:95:d8:59:aa:a0:c0:d2:3c: d8:f1:68:dd:d6:44:bd:bb:1f:90:57:1c:56:37:c1: 78:76:ec:3d:91:df:19:05:a7:c9:39:a1:39:3c:05: d1:79:7e:4f:8d:2c:67:a1:56:cc:28:62:3f:68:f9: 32:d0:d2:2f:5f:8e:e0:5c:7f:02:4b:d5:9f:a7:f3: 18:03:cd:a2:7f:40:f3:0b:10:ad:34:7f:a8:b4:f1: 08:b1:3b:ac:9e:82:a7:07:29:5a:18:4d:bf:4c:a5: e2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FB:30:DA:D7:66:E7:C4:FD:00:18:1F:BB:FC:24:A8:90:01:85:65 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:59:43:28:01:9f:52:9e:be:fa:40:e3:b4:8d:dc:74:fe:49: 5c:92:7e:38:b5:2b:7a:16:f6:92:91:d6:56:db:b3:de:8b:ad: cc:f0:58:5d:57:63:28:9a:8c:bc:bd:9d:24:58:da:7d:81:5c: 47:a4:0c:64:6a:b2:81:21:8a:89:d6:a8:d2:75:66:04:5d:ab: d8:91:25:1b:ea:49:05:dc:bc:5a:77:cc:8f:27:b9:a0:d7:9b: d9:2c:00:04:72:2d:ed:94:cf:53:a7:9d:fb:4d:71:4f:4e:f5: 01:1d:cc:06:ed:40:aa:12:70:2e:7a:31:51:85:8c:2c:d2:d1: 00:2d:01:5b:bd:97:c4:2c:d7:1a:0b:d0:07:3e:6c:1b:be:e7: 72:45:41:6c:3e:b7:11:07:3c:f7:62:f0:d5:48:df:3a:04:fa: c0:3d:02:48:bd:65:61:c9:19:6e:bb:51:8f:b5:e9:21:20:de: fd:f1:fc:ba:bb:39:b7:1d:a6:dd:bf:31:3b:48:83:dd:76:f5: ef:e1:5b:71:0b:4f:e1:3f:32:cc:91:79:42:e2:44:bb:d4:51: 3a:2f:c7:99:c9:8a:91:f9:33:2a:60:04:a8:80:39:92:0a:7a: e1:38:c8:d8:0a:fb:82:3f:30:5d:c4:45:8f:52:7d:88:94:23: 12:1d:15:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjYwMzI1MDQzOTM1WhcNMjYwNDAxMDQzOTM1WjAYMRYwFAYD VQQDEw02OWMzNjcwNy1jYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QJAiWmJbiyZlv+f/tQMyL3ZtJNj/xLehk+EaOgl/ylNQa6YV9+IRTMNsiND W5TlzkkjKEX4vBerdwq918vFjeMSHjqJZUpYs8sz4I8741zf2JeFu3kCH2HdIRMR szmoV1t57frcyztGdPB7fpsblxT701fEb081Lr1Nm0hz91ID+gQkGdylFCvG0uvO SHyp7gvhxSdstUJ9PWu2ldhZqqDA0jzY8Wjd1kS9ux+QVxxWN8F4duw9kd8ZBafJ OaE5PAXReX5PjSxnoVbMKGI/aPky0NIvX47gXH8CS9Wfp/MYA82if0DzCxCtNH+o tPEIsTusnoKnBylaGE2/TKXi2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFX7MNrX ZufE/QAYH7v8JKiQAYVlMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaFlDKAGfUp6++kDjtI3cdP5JXJJ+OLUrehb2kpHWVtuz3outzPBYXVdjKJqM vL2dJFjafYFcR6QMZGqygSGKidao0nVmBF2r2JElG+pJBdy8WnfMjye5oNeb2SwA BHIt7ZTPU6ed+01xT071AR3MBu1AqhJwLnoxUYWMLNLRAC0BW72XxCzXGgvQBz5s G77nckVBbD63EQc892Lw1UjfOgT6wD0CSL1lYckZbrtRj7XpISDe/fH8urs5tx2m 3b8xO0iD3Xb17+FbcQtP4T8yzJF5QuJEu9RROi/HmcmKkfkzKmAEqIA5kgp64TjI 2Ar7gj8wXcRFj1J9iJQjEh0VZQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:22:41 2026 by rpki-client