$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: Qmb9GX9tFfkuM+LmbY3Z7+yLMUHVw2iQUmnc6HFzjzo= Subject key identifier: 72:60:D6:AD:57:19:91:50:75:EF:B6:21:EA:93:1B:0F:31:5C:6E:84 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 35BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 3563 Signing time: Tue 24 Mar 2026 14:17:29 +0000 Manifest this update: Tue 24 Mar 2026 14:17:28 +0000 Manifest next update: Tue 31 Mar 2026 14:17:28 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: HfBv0ikbte9kmyn3w4wPSZrFDyNmsIf+iIxG7tzx250=) 2: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: VG82nm7UqU5w2sJlNK4SDxqINYJwoA6/oxLrBlm8JIE=) 3: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: aqVmmYIJQaHpLvDdH8MbBjTUJnEk1fL6///wI+ixCg4=) 4: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: BUp0zcWa4HIudpk64mEylcMBmmGpd1vuqwNaBAsC6O8=) 5: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: GnJt59bMAjeqlYPa4lin7QYgA2KcGbUA51eIDiT69YA=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: tHVxf9Q3vQhMutTNU0Up1wvh8aZLr2ux0lvTei/d9kc=) 7: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: S5MQHQKHGoySn52561lN0xrvmjrDRJUvv1CviMHuNKM=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: yReVTcL58773Jpuyzjun19aGFuK7z9XDGu28zTvah3k=) 9: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: 8krrPxGdC1AJXLst0L0sKBcp7J4vtNMSaCyCJqfKloU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13757 (0x35bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Mar 24 14:17:28 2026 GMT Not After : Mar 31 14:17:28 2026 GMT Subject: CN=69c29cf9-7423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1b:95:52:7e:89:0f:df:c3:f8:b8:12:66:52: 28:f2:b9:b2:4a:90:2d:9e:8a:9d:18:e9:da:00:d8: 53:78:0d:38:26:e9:7c:3c:25:82:a2:0a:bc:c0:3b: 63:90:e9:cd:23:d2:ee:1e:cf:68:5b:60:27:02:21: 6e:d6:a6:a6:74:52:be:35:61:1c:02:18:81:54:fb: 0b:04:a8:89:ef:b8:89:ea:5b:05:95:0d:9f:b4:af: ac:e5:39:aa:df:00:c2:f0:97:9c:f9:80:2c:d2:d9: e8:0a:47:28:a5:84:31:90:f9:11:eb:41:0e:67:b4: c7:6c:32:e3:4e:ee:c4:a8:c3:ef:ce:0d:7a:ac:33: 9c:af:87:ba:e8:00:f0:07:55:99:12:fe:09:ba:fa: 0d:b6:94:32:10:3a:bc:02:92:fc:16:53:26:d7:1a: 16:24:0a:fd:ab:79:02:8d:79:c2:ef:4e:ea:d3:f0: 75:36:1a:b4:5f:76:b4:ca:5c:98:b5:fb:ab:37:51: 3b:b2:57:fa:72:c5:3e:2c:bf:40:05:33:65:18:91: 44:38:20:90:8c:45:9e:46:87:af:3f:40:37:a2:0b: 50:2f:23:4a:aa:be:8a:5f:4c:83:e0:e3:3a:a6:33: 50:3f:6d:66:b3:5c:d3:b0:6f:c3:ee:f1:11:12:7b: 98:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:60:D6:AD:57:19:91:50:75:EF:B6:21:EA:93:1B:0F:31:5C:6E:84 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:25:72:f8:28:5d:d4:6a:09:30:1f:b3:8c:0a:02:9c:dd:a0: 65:e4:7c:78:00:da:f6:31:fc:77:52:66:0b:e4:db:ac:5e:f2: fe:f0:67:4a:de:d2:87:d0:35:b9:a2:73:7b:6f:cd:c5:a3:dd: 32:1b:ca:c7:dd:2d:18:46:8f:54:f4:47:7f:9f:89:27:52:29: 18:14:96:39:26:5f:df:35:49:5c:33:52:56:a3:53:20:72:64: 27:f8:f0:62:f0:b5:85:82:71:f1:ae:d7:22:5a:6c:5a:f9:e0: 48:7f:2b:14:08:f7:a3:10:0d:3b:78:92:98:a5:44:1c:12:66: e0:b6:b5:e8:4e:35:35:d6:be:f5:e9:bd:20:05:6d:10:5f:8e: c6:6d:d1:aa:de:8c:31:9b:42:b8:d5:0a:0c:e9:9a:77:72:d5: 63:44:db:ab:db:02:7d:3f:21:4c:eb:e9:e0:33:0f:76:6a:58: 0a:07:9b:02:9a:c8:63:5f:b0:4c:a1:96:3a:97:95:28:10:66: 9b:41:3f:bd:48:2e:a3:04:ae:a0:9a:83:5f:12:9e:49:14:36: d8:bc:fc:be:d7:84:8d:d9:aa:3b:4d:cc:7b:4b:1c:fa:fd:66: a2:ff:e2:ce:d6:5b:90:28:12:90:97:ae:29:37:a0:9c:f4:2e: 9e:89:57:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjYwMzI0MTQxNzI4WhcNMjYwMzMxMTQxNzI4WjAYMRYwFAYD VQQDEw02OWMyOWNmOS03NDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BuVUn6JD9/D+LgSZlIo8rmySpAtnoqdGOnaANhTeA04Jul8PCWCogq8wDtj kOnNI9LuHs9oW2AnAiFu1qamdFK+NWEcAhiBVPsLBKiJ77iJ6lsFlQ2ftK+s5Tmq 3wDC8Jec+YAs0tnoCkcopYQxkPkR60EOZ7THbDLjTu7EqMPvzg16rDOcr4e66ADw B1WZEv4JuvoNtpQyEDq8ApL8FlMm1xoWJAr9q3kCjXnC707q0/B1Nhq0X3a0ylyY tfurN1E7slf6csU+LL9ABTNlGJFEOCCQjEWeRoevP0A3ogtQLyNKqr6KX0yD4OM6 pjNQP21ms1zTsG/D7vEREnuYiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHJg1q1X GZFQde+2IeqTGw8xXG6EMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKyVy+Chd1GoJMB+zjAoCnN2gZeR8eADa9jH8d1JmC+TbrF7y/vBnSt7Sh9A1 uaJze2/NxaPdMhvKx90tGEaPVPRHf5+JJ1IpGBSWOSZf3zVJXDNSVqNTIHJkJ/jw YvC1hYJx8a7XIlpsWvngSH8rFAj3oxANO3iSmKVEHBJm4La16E41Nda+9em9IAVt EF+Oxm3Rqt6MMZtCuNUKDOmad3LVY0Tbq9sCfT8hTOvp4DMPdmpYCgebAprIY1+w TKGWOpeVKBBmm0E/vUguowSuoJqDXxKeSRQ22Lz8vteEjdmqO03Me0sc+v1mov/i ztZbkCgSkJeuKTegnPQunolXjA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:41:25 2026 by rpki-client