$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: RLnBpPSFPFY42cwJh33xZmp5xjkipDdAO+WDVkRJkCA= Subject key identifier: FD:35:79:97:28:68:25:EF:FC:91:3F:8E:1C:6C:86:58:9C:4C:AE:D2 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 073B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 0737 Signing time: Tue 24 Mar 2026 21:29:16 +0000 Manifest this update: Tue 24 Mar 2026 21:29:16 +0000 Manifest next update: Tue 31 Mar 2026 21:29:16 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: zGjA6pKz8c+4ULuAo4ptXBGwHxL0xvnMP7dENl4y3YQ=) 2: 8C78A208009911F18C66F2A2636F56BC.roa (hash: OwjvTZwLM59M2Gz+ZjeNWWD2TR8A5gAMx3HNPkuDJ40=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1851 (0x73b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Mar 24 21:29:16 2026 GMT Not After : Mar 31 21:29:16 2026 GMT Subject: CN=69c3022c-d610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7c:bc:d8:d7:34:9f:d1:ea:17:b4:be:f5:6a: 68:b9:e9:b7:dc:1c:2c:48:ab:46:c3:84:94:29:e5: a0:af:40:bd:bf:75:26:a5:c2:5d:2b:f2:62:e7:07: 98:dd:e2:78:04:52:1c:87:22:42:9b:47:57:7f:f2: cc:84:75:d6:ef:ac:10:0e:29:84:15:85:da:70:d1: d8:b7:c8:60:34:77:b5:eb:ab:29:69:b1:54:3b:f2: a2:bd:d0:07:83:58:7e:9e:fe:76:c4:30:4d:58:93: 94:c7:b5:93:69:81:5e:c2:a9:41:db:25:b8:cb:62: 1f:6c:37:c2:0b:be:3e:99:26:41:ef:83:03:46:6c: b1:8f:1b:be:11:53:a0:69:71:96:8b:78:33:05:3b: d1:70:f7:90:9f:70:a4:82:b1:22:89:fe:05:34:1b: 8b:b0:26:aa:59:47:3b:64:f6:77:0d:b4:63:19:33: 5c:cf:43:d6:d3:47:bc:31:c0:7e:16:1a:09:55:35: b9:c5:7c:42:4c:11:9f:b3:49:18:55:15:eb:f0:d4: cb:09:c5:a3:fe:3d:b1:db:84:bd:bd:7d:dc:bc:b9: 70:72:a3:d3:fd:94:46:8b:33:1b:90:42:b8:9d:22: 94:fa:5a:03:e9:91:a7:3f:a6:df:55:9c:3c:97:41: f4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:35:79:97:28:68:25:EF:FC:91:3F:8E:1C:6C:86:58:9C:4C:AE:D2 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:32:15:52:0f:76:f2:51:f4:44:ea:1d:d3:81:60:92:2b:cd: 2f:c6:3a:79:0b:d2:a4:8f:8e:5f:2d:4e:e6:9d:5e:d5:cf:d4: e4:96:4c:0a:7f:50:2b:0c:67:e2:dd:15:8b:ce:ba:0c:fe:7d: 40:51:ec:d6:36:88:a7:06:6a:de:3b:6f:7d:4b:2c:cd:c9:d0: 7e:e4:52:2c:d4:86:56:42:16:1c:8e:9d:17:22:fd:1e:04:8a: 56:af:32:d7:12:74:d6:bf:37:f5:ca:10:d8:3e:ba:e6:dc:57: b7:18:41:21:be:1f:69:1f:87:4f:85:ea:b1:86:2c:6d:dc:53: 35:7c:29:6f:a5:cc:fe:12:93:8a:ac:e3:3c:d9:7c:11:6b:0e: af:db:04:4c:53:0c:d1:2f:cb:5c:d2:cd:99:2c:a6:2e:f1:ee: 8a:d5:38:46:8d:10:5d:14:3f:e7:3c:50:b7:44:88:32:0c:df: dd:4e:b6:6d:f8:37:b9:c6:f4:89:da:39:cf:9d:8e:28:88:95: a7:fb:f0:b7:94:0c:b9:39:3d:e8:3a:a2:a4:78:26:f0:dc:c9: 21:86:0b:40:a3:7f:60:dd:1f:e6:1d:af:b1:c3:88:d5:97:f9: bf:2b:6e:ea:a4:c0:f7:ad:6a:43:a3:e0:de:ed:73:7a:e2:c1: 0c:cc:59:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjYwMzI0MjEyOTE2WhcNMjYwMzMxMjEyOTE2WjAYMRYwFAYD VQQDEw02OWMzMDIyYy1kNjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3y82Nc0n9HqF7S+9Wpouem33BwsSKtGw4SUKeWgr0C9v3UmpcJdK/Ji5weY 3eJ4BFIchyJCm0dXf/LMhHXW76wQDimEFYXacNHYt8hgNHe166spabFUO/KivdAH g1h+nv52xDBNWJOUx7WTaYFewqlB2yW4y2IfbDfCC74+mSZB74MDRmyxjxu+EVOg aXGWi3gzBTvRcPeQn3CkgrEiif4FNBuLsCaqWUc7ZPZ3DbRjGTNcz0PW00e8McB+ FhoJVTW5xXxCTBGfs0kYVRXr8NTLCcWj/j2x24S9vX3cvLlwcqPT/ZRGizMbkEK4 nSKU+loD6ZGnP6bfVZw8l0H0oQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP01eZco aCXv/JE/jhxshlicTK7SMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvDIVUg928lH0ROod04FgkivNL8Y6eQvSpI+OXy1O5p1e1c/U5JZMCn9QKwxn 4t0Vi866DP59QFHs1jaIpwZq3jtvfUsszcnQfuRSLNSGVkIWHI6dFyL9HgSKVq8y 1xJ01r839coQ2D665txXtxhBIb4faR+HT4XqsYYsbdxTNXwpb6XM/hKTiqzjPNl8 EWsOr9sETFMM0S/LXNLNmSymLvHuitU4Ro0QXRQ/5zxQt0SIMgzf3U62bfg3ucb0 ido5z52OKIiVp/vwt5QMuTk96DqipHgm8NzJIYYLQKN/YN0f5h2vscOI1Zf5vytu 6qTA961qQ6Pg3u1zeuLBDMxZMw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:40:53 2026 by rpki-client