$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: LBYjm4U8gZk0oKJhGU2KNxjySQxkqTYVsF+5VFpG3p4= Subject key identifier: 82:73:2B:2A:7B:E3:05:16:A7:B1:99:74:D3:7A:63:C9:5F:25:5B:FD Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: BE Signing time: Wed 25 Mar 2026 06:14:10 +0000 Manifest this update: Wed 25 Mar 2026 06:14:10 +0000 Manifest next update: Wed 01 Apr 2026 06:14:10 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: J5QjrVLV6tv3uyeugGVMdcS2ihavD9ymErGFD7XmoXs=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: jRuHimWgQS+tjLR9bDCVnhmy0GeAXCUN8m6ZV5rJabM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Mar 25 06:14:10 2026 GMT Not After : Apr 1 06:14:10 2026 GMT Subject: CN=69c37d32-be09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9a:75:39:4c:7a:d1:e7:80:be:16:05:a0:b2: 45:59:cb:ea:42:76:f5:06:91:9f:2b:9c:24:56:f9: e4:0e:a2:1b:6f:1d:3d:e6:c4:2b:98:e7:a6:22:c7: 4f:e9:25:52:13:f6:1e:b3:b1:50:38:cd:0b:dd:9d: 2b:34:24:5b:27:41:d1:93:1b:0a:e5:9d:57:07:10: 21:90:f8:c5:b5:71:a5:58:7e:84:55:92:0d:e8:a1: 30:cc:b5:7f:ea:d9:d8:8d:6f:e4:ab:fe:53:08:af: 05:fc:72:83:97:4e:94:4c:91:d3:70:42:82:e9:70: ee:88:09:ca:86:03:58:cd:e4:12:af:4c:a6:10:4c: ca:f8:3f:89:92:8d:f8:46:c2:04:6c:1a:85:99:4d: 5a:ed:2b:ea:1d:a4:bd:57:3f:67:16:b6:4e:94:55: df:22:8d:a5:bf:f5:63:2c:eb:2f:9a:d3:1c:de:8b: b8:bb:da:b3:b8:e9:e3:08:79:09:83:e5:5d:e7:6a: d5:5d:eb:b0:a1:91:70:fd:1c:d7:4a:6f:3a:a3:ce: be:3d:27:8b:2f:9d:88:11:af:a3:8e:2a:91:99:69: 79:59:5f:31:18:7c:61:2d:ed:00:4c:a7:7b:75:bd: 89:b5:5e:1c:8d:d0:65:7e:99:e9:b8:c1:cd:9a:f3: 01:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:73:2B:2A:7B:E3:05:16:A7:B1:99:74:D3:7A:63:C9:5F:25:5B:FD X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:db:f1:d5:0e:0d:96:66:90:40:a4:9f:bf:3b:37:d0:0c:3b: ed:c3:0f:c1:2d:15:8a:7a:59:6f:82:fa:33:7c:58:89:f2:35: f4:97:a3:0c:a4:4f:fc:a5:2f:43:10:d2:a3:9d:46:38:13:74: 9f:14:e9:74:fd:37:66:3a:b5:a1:2d:20:92:22:86:e2:33:65: 03:46:08:8a:99:e6:7b:3c:9e:4d:d3:43:12:2a:01:c7:9e:65: f6:e2:d8:61:42:07:f4:89:be:f2:60:61:35:57:42:42:9c:c7: 61:b0:16:50:c0:08:c3:73:2c:c1:98:90:e7:f9:60:f3:cc:a5: 37:b1:aa:33:ea:c1:5a:22:88:09:9b:fb:68:7e:c1:81:e9:1f: da:2e:fe:bf:2a:68:c0:3b:3b:ef:b7:d0:33:77:ac:0a:de:8c: 81:b1:46:fd:f4:ef:e9:bc:f2:c6:06:f2:12:52:fd:61:14:ad: 3d:db:0f:fe:b3:a5:b4:92:5c:3b:5a:8d:5a:c1:5a:90:f5:ec: 4e:c5:9e:14:b2:a6:fd:32:54:2d:21:d3:c3:91:5c:7a:dc:2c: 80:12:0a:c4:17:22:9b:bb:82:52:7e:1c:83:f1:c2:0e:13:fe: 30:c8:da:75:0a:2f:72:c7:88:12:7a:bc:26:8a:b7:b9:8d:27: 04:ba:ae:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjYwMzI1MDYxNDEwWhcNMjYwNDAxMDYxNDEwWjAYMRYwFAYD VQQDEw02OWMzN2QzMi1iZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5p1OUx60eeAvhYFoLJFWcvqQnb1BpGfK5wkVvnkDqIbbx095sQrmOemIsdP 6SVSE/Yes7FQOM0L3Z0rNCRbJ0HRkxsK5Z1XBxAhkPjFtXGlWH6EVZIN6KEwzLV/ 6tnYjW/kq/5TCK8F/HKDl06UTJHTcEKC6XDuiAnKhgNYzeQSr0ymEEzK+D+Jko34 RsIEbBqFmU1a7SvqHaS9Vz9nFrZOlFXfIo2lv/VjLOsvmtMc3ou4u9qzuOnjCHkJ g+Vd52rVXeuwoZFw/RzXSm86o86+PSeLL52IEa+jjiqRmWl5WV8xGHxhLe0ATKd7 db2JtV4cjdBlfpnpuMHNmvMBlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIJzKyp7 4wUWp7GZdNN6Y8lfJVv9MB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvNvx1Q4NlmaQQKSfvzs30Aw77cMPwS0VinpZb4L6M3xYifI19JejDKRP/KUv QxDSo51GOBN0nxTpdP03Zjq1oS0gkiKG4jNlA0YIipnmezyeTdNDEioBx55l9uLY YUIH9Im+8mBhNVdCQpzHYbAWUMAIw3MswZiQ5/lg88ylN7GqM+rBWiKICZv7aH7B gekf2i7+vypowDs777fQM3esCt6MgbFG/fTv6bzyxgbyElL9YRStPdsP/rOltJJc O1qNWsFakPXsTsWeFLKm/TJULSHTw5FcetwsgBIKxBcim7uCUn4cg/HCDhP+MMja dQovcseIEnq8Joq3uY0nBLqujQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:02:18 2026 by rpki-client