$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft File: ApdxaY8oNwXUpN4S5XOVhcvrjww.mft (raw, json) Hash identifier: cUxA+aWOEghVOWQc+lKa25QMULRphwXCG8k4wbsbOU0= Subject key identifier: EF:0B:FF:AA:59:EC:3E:5B:90:75:C9:90:C9:EE:88:25:80:F5:B6:CC Authority key identifier: 02:97:71:69:8F:28:37:05:D4:A4:DE:12:E5:73:95:85:CB:EB:8F:0C Certificate issuer: /CN=A91772FA/serialNumber=029771698F283705D4A4DE12E5739585CBEB8F0C Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ApdxaY8oNwXUpN4S5XOVhcvrjww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft Manifest number: 1A Signing time: Wed 25 Mar 2026 00:19:53 +0000 Manifest this update: Wed 25 Mar 2026 00:19:53 +0000 Manifest next update: Wed 01 Apr 2026 00:19:53 +0000 Files and hashes: 1: ApdxaY8oNwXUpN4S5XOVhcvrjww.crl (hash: z9MVJpLmPsPORGqh2/3muxPwvb+G8TMHiz1np677VLs=) 2: 56C55F20266411F1AE95FD6DA8833773.roa (hash: hUJYmbEayh5+7CMHRvgMiSYWtpPReQpF/dZMyCcKu4Q=) 3: 579B4ED2266411F1AE95FD6DA8833773.roa (hash: Wh6GMEPQbJm2Jl2DMg8rLhNDPE89Mo+plpzmnnXpFTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.crl rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ApdxaY8oNwXUpN4S5XOVhcvrjww.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=029771698F283705D4A4DE12E5739585CBEB8F0C Validity Not Before: Mar 25 00:19:53 2026 GMT Not After : Apr 1 00:19:53 2026 GMT Subject: CN=69c32a29-2e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:39:00:2d:84:27:c0:2b:de:36:f9:ce:2b:1a: b9:b5:29:6d:bd:14:a5:c7:34:9a:b8:cd:e8:ec:ea: c4:17:74:37:df:8b:5a:70:64:53:54:75:1d:42:a4: f4:2c:ed:f8:3c:a3:73:10:d4:34:aa:71:b9:99:cf: ab:58:af:15:92:e0:0e:f8:39:97:26:70:48:f0:7a: d7:60:40:d8:79:f1:4a:8d:e6:29:75:63:cc:ae:fe: f9:23:27:4e:29:8e:83:66:ca:11:66:e6:b4:2a:67: 53:2c:58:ff:23:79:2a:db:af:d2:5a:c7:c2:74:ac: 78:6d:c0:a7:9a:20:8f:39:e5:f1:fb:2d:fc:9c:64: 98:d9:ad:f8:fe:17:76:0c:ae:9e:6b:d6:7d:34:3a: df:0e:fc:4b:07:fb:df:c9:d6:32:67:e7:5a:c8:e0: 52:d5:18:98:03:c7:04:b3:22:a1:87:27:bd:59:7e: 3d:59:b5:33:01:dd:5c:02:ed:1c:ff:60:33:fc:73: 37:69:ff:7b:a7:e9:ad:5b:e7:c1:46:ca:b1:0d:2f: 10:6d:7e:ad:ba:09:fc:39:10:d8:1f:ea:f2:d9:e6: 1a:62:50:52:7b:fb:43:d8:8d:49:98:c4:ca:bf:f9: e7:eb:22:a0:44:0a:2a:57:39:ed:df:ca:cf:55:d1: 8b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0B:FF:AA:59:EC:3E:5B:90:75:C9:90:C9:EE:88:25:80:F5:B6:CC X509v3 Authority Key Identifier: keyid:02:97:71:69:8F:28:37:05:D4:A4:DE:12:E5:73:95:85:CB:EB:8F:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/ApdxaY8oNwXUpN4S5XOVhcvrjww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/B8FF2F18111A11F18F6995AB173D8C67/ApdxaY8oNwXUpN4S5XOVhcvrjww.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:62:0c:b9:cd:18:77:4d:be:73:73:ae:e2:28:77:4b:24:ad: 58:ea:eb:b7:c3:c6:37:fb:50:1d:0a:66:c4:05:0e:9b:68:ce: 2f:eb:d4:8c:98:9f:43:bf:1c:a3:fb:7e:cf:15:40:05:b6:40: 21:71:7e:53:9a:50:90:62:97:ff:d7:f5:e2:cf:d9:96:25:02: ba:a7:82:8a:80:1c:79:a9:05:57:f9:92:9e:38:ed:83:f4:d7: 6e:4c:03:cd:81:1d:b5:5f:a0:94:6b:78:fa:d1:34:a0:82:23: 1a:7f:fc:34:4d:19:86:dd:6a:7e:a8:06:1c:a5:b9:f8:c0:8a: ac:c3:8a:98:8c:28:fe:bc:d8:ab:01:7f:41:42:03:b2:b2:e7: 5c:f5:73:4b:bf:83:bc:2d:08:e8:fe:b0:fc:41:3f:70:c9:80: d8:32:01:d5:21:6c:09:3b:8c:4c:58:37:a0:42:11:e6:ce:05: fd:e7:ba:3e:21:a7:15:b8:a6:f5:cb:4d:aa:c9:82:58:cc:91: e6:c4:bd:bc:ca:99:f0:f6:d7:42:1d:fa:43:d1:52:1e:8f:d2: b3:88:0a:ec:8e:d2:52:3a:7c:fb:8e:5f:6f:d2:e6:6c:84:05: b9:5b:8c:a4:e9:a0:37:cf:e1:b5:58:ea:11:5b:b1:06:3a:4e: b4:f9:2b:97 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzJGQTExMC8GA1UEBRMoMDI5NzcxNjk4RjI4MzcwNUQ0QTRERTEyRTU3Mzk1ODVD QkVCOEYwQzAeFw0yNjAzMjUwMDE5NTNaFw0yNjA0MDEwMDE5NTNaMBgxFjAUBgNV BAMTDTY5YzMyYTI5LTJlN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7OQAthCfAK942+c4rGrm1KW29FKXHNJq4zejs6sQXdDffi1pwZFNUdR1CpPQs 7fg8o3MQ1DSqcbmZz6tYrxWS4A74OZcmcEjwetdgQNh58UqN5il1Y8yu/vkjJ04p joNmyhFm5rQqZ1MsWP8jeSrbr9Jax8J0rHhtwKeaII855fH7LfycZJjZrfj+F3YM rp5r1n00Ot8O/EsH+9/J1jJn51rI4FLVGJgDxwSzIqGHJ71Zfj1ZtTMB3VwC7Rz/ YDP8czdp/3un6a1b58FGyrENLxBtfq26Cfw5ENgf6vLZ5hpiUFJ7+0PYjUmYxMq/ +efrIqBECipXOe3fys9V0Yv/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU7wv/qlns PluQdcmQye6IJYD1tswwHwYDVR0jBBgwFoAUApdxaY8oNwXUpN4S5XOVhcvrjwww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3MkZBL0I4RkYyRjE4MTEx QTExRjE4RjY5OTVBQjE3M0Q4QzY3L0FwZHhhWThvTndYVXBONFM1WE9WaGN2cmp3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvQXBkeGFZOG9Od1hVcE40UzVYT1ZoY3Zyand3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 MkZBL0I4RkYyRjE4MTExQTExRjE4RjY5OTVBQjE3M0Q4QzY3L0FwZHhhWThvTndY VXBONFM1WE9WaGN2cmp3dy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBdYgy5zRh3Tb5zc67iKHdLJK1Y6uu3w8Y3+1AdCmbEBQ6baM4v69SMmJ9Dvxyj +37PFUAFtkAhcX5TmlCQYpf/1/Xiz9mWJQK6p4KKgBx5qQVX+ZKeOO2D9NduTAPN gR21X6CUa3j60TSggiMaf/w0TRmG3Wp+qAYcpbn4wIqsw4qYjCj+vNirAX9BQgOy sudc9XNLv4O8LQjo/rD8QT9wyYDYMgHVIWwJO4xMWDegQhHmzgX957o+IacVuKb1 y02qyYJYzJHmxL28ypnw9tdCHfpD0VIej9KziArsjtJSOnz7jl9v0uZshAW5W4yk 6aA3z+G1WOoRW7EGOk60+SuX -----END CERTIFICATE-----Generated at Thu Mar 26 03:16:09 2026 by rpki-client