$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft File: M_iOrx5M4PGhh31J75fA5_7cA5o.mft (raw, json) Hash identifier: VXtF2UJXuNn77euTpoP5qPlKrA3iOfALhQqYguHIZ8E= Subject key identifier: 67:EE:2C:DC:42:54:E8:0E:B5:0D:85:17:AD:12:79:7F:CB:11:FE:5A Authority key identifier: 33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A Certificate issuer: /CN=A91758DF/serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Certificate serial: 0542 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft Manifest number: 0527 Signing time: Tue 24 Mar 2026 20:15:17 +0000 Manifest this update: Tue 24 Mar 2026 20:15:16 +0000 Manifest next update: Tue 31 Mar 2026 20:15:16 +0000 Files and hashes: 1: M_iOrx5M4PGhh31J75fA5_7cA5o.crl (hash: JnvASDmsgaVuWVQnJ0K1QwzGzOZztTukAH68dFdvLcg=) 2: 0732C4DC090B11F1B0A6391E363D8C67.roa (hash: Q9fK/HIBESDBwerI+LGeuA1a/3ibrPdtmUfxDWX3vMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Validity Not Before: Mar 24 20:15:16 2026 GMT Not After : Mar 31 20:15:16 2026 GMT Subject: CN=69c2f0d5-13d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:fa:36:5d:5d:e6:e1:b3:a4:6a:cb:df:7f: ec:a9:6a:8f:cb:b5:ac:e7:93:01:45:9d:0d:25:aa: 4b:b0:3b:0a:50:20:09:35:38:93:1e:bb:ef:98:04: 2e:90:1e:a1:0e:30:4e:a8:0e:da:1d:e6:5d:eb:b2: b7:79:2c:e7:ab:9c:ac:c8:99:99:3f:42:ab:06:b1: 36:70:a7:50:89:dc:ea:9e:92:54:96:fc:1a:2d:39: b0:69:70:bc:d7:52:7a:b4:26:35:52:94:c2:12:a8: 37:97:d1:db:69:d6:a0:e1:f8:c6:99:c9:65:b7:f5: 1e:65:e3:23:e2:ce:c2:ce:e6:25:d7:94:8f:8b:d4: 74:ed:a1:8c:fb:35:d9:c8:e0:a1:8e:cf:8a:18:f4: 0f:e9:01:39:ef:9c:f6:da:ef:16:f9:4f:d3:d7:e3: 5d:44:73:90:49:99:d3:56:7c:8f:71:11:49:dd:37: e1:ba:b7:3f:ca:fe:8c:2c:9c:95:65:7f:f7:50:1e: 34:b9:1c:11:55:54:e3:f8:04:c5:e0:35:3e:4d:4a: cd:b1:b7:6e:66:90:95:d7:69:9f:a4:60:3b:49:fa: f6:d2:3f:aa:7d:f7:d4:35:39:77:9f:8c:88:71:d9: bb:81:9a:c8:93:d5:a7:19:4b:a8:31:e9:db:c4:37: b6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:EE:2C:DC:42:54:E8:0E:B5:0D:85:17:AD:12:79:7F:CB:11:FE:5A X509v3 Authority Key Identifier: keyid:33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:03:46:e0:29:e7:75:04:bf:2b:49:dd:48:56:4e:e7:1b:37: 7a:d7:ba:c8:80:d7:d5:f7:76:ce:55:71:cd:0c:04:3c:d6:84: 05:1f:69:fa:b9:5d:e2:91:c1:4c:8f:52:27:7c:7d:1d:53:2a: d7:ee:b8:ce:6c:74:f5:f8:c3:eb:c8:ca:ad:af:81:2a:ef:91: 7e:7a:cc:88:f4:3a:4e:b2:28:db:2c:da:3f:12:34:59:52:97: ce:6e:6b:5f:ee:19:ac:79:1a:78:2f:08:56:d4:33:1f:5f:42: 34:06:f1:fc:51:fa:cb:f6:b7:7c:df:2c:98:83:ce:fe:b8:b9: e5:d0:49:89:99:7c:a0:7b:c9:e8:2a:86:17:60:52:55:9b:29: 05:0b:6b:f8:60:c6:58:c3:b1:d2:26:5d:d1:88:e9:c2:4d:c2: 9a:1e:08:39:bb:bc:b5:fd:54:7e:25:d1:5a:4e:f2:6e:7b:84: 08:b4:0a:64:aa:1d:a5:7b:c0:35:e7:f3:53:fb:88:79:60:f1: 7f:3e:ab:3c:42:b1:17:76:d0:c1:88:7c:ce:eb:aa:58:91:fd: 43:55:9b:e6:c1:7b:01:c7:b8:d4:5d:ff:b8:67:d6:43:da:af: f3:7c:1d:a6:54:88:9a:36:9a:c2:bf:e1:90:ff:f5:79:e9:3b: 62:73:53:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDMzRjg4RUFGMUU0Q0UwRjFBMTg3N0Q0OUVGOTdDMEU3 RkVEQzAzOUEwHhcNMjYwMzI0MjAxNTE2WhcNMjYwMzMxMjAxNTE2WjAYMRYwFAYD VQQDEw02OWMyZjBkNS0xM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk36Nl1d5uGzpGrL33/sqWqPy7Ws55MBRZ0NJapLsDsKUCAJNTiTHrvvmAQu kB6hDjBOqA7aHeZd67K3eSznq5ysyJmZP0KrBrE2cKdQidzqnpJUlvwaLTmwaXC8 11J6tCY1UpTCEqg3l9Hbadag4fjGmcllt/UeZeMj4s7CzuYl15SPi9R07aGM+zXZ yOChjs+KGPQP6QE575z22u8W+U/T1+NdRHOQSZnTVnyPcRFJ3Tfhurc/yv6MLJyV ZX/3UB40uRwRVVTj+ATF4DU+TUrNsbduZpCV12mfpGA7Sfr20j+qfffUNTl3n4yI cdm7gZrIk9WnGUuoMenbxDe2CwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGfuLNxC VOgOtQ2FF60SeX/LEf5aMB8GA1UdIwQYMBaAFDP4jq8eTODxoYd9Se+XwOf+3AOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi84NjczNjA4MDQ3 RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQR2hoMzFKNzVmQTVfN2NB NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01faU9yeDVNNFBHaGgzMUo3NWZBNV83Y0E1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThERi84NjczNjA4MDQ3RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQ R2hoMzFKNzVmQTVfN2NBNW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOQNG4CnndQS/K0ndSFZO5xs3ete6yIDX1fd2zlVxzQwEPNaEBR9p+rld4pHB TI9SJ3x9HVMq1+64zmx09fjD68jKra+BKu+RfnrMiPQ6TrIo2yzaPxI0WVKXzm5r X+4ZrHkaeC8IVtQzH19CNAbx/FH6y/a3fN8smIPO/ri55dBJiZl8oHvJ6CqGF2BS VZspBQtr+GDGWMOx0iZd0Yjpwk3Cmh4IObu8tf1UfiXRWk7ybnuECLQKZKodpXvA NefzU/uIeWDxfz6rPEKxF3bQwYh8zuuqWJH9Q1Wb5sF7Ace41F3/uGfWQ9qv83wd plSImjaawr/hkP/1eek7YnNTqg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:07:25 2026 by rpki-client