$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: 0IlGU9x05/n+J5Wi7I/C3I+EsdJQJeS8/RqDe0VtF20= Subject key identifier: 66:06:29:4B:04:55:26:B2:1E:44:A8:56:A6:81:4C:4A:19:C0:FC:26 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0938 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08F8 Signing time: Tue 24 Mar 2026 20:09:59 +0000 Manifest this update: Tue 24 Mar 2026 20:09:58 +0000 Manifest next update: Tue 31 Mar 2026 20:09:58 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: 47CMouAFoCWY+aG9cpnsiahADEbH0nXhOlCzPLde+wA=) 2: 4EF79184489411ED86987260C4F9AE02.roa (hash: FW+6trj4ky9MIx0ol9teJ9/ApDWDbFtG0371+JMzJmo=) 3: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: GzxogbU8QiwwF++aswC6YdHu3ZoZCEYz5G0xx5UJTJQ=) 4: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: oRxcNHxks0xSpQQ3xzQ2CValnLK9KvTZJVfHvaOGSxM=) 5: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: VWFn1ywKze4+Ch1d/UV7Lhp1ynMlJZLSKyiTkidd1hM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:09:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2360 (0x938) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Mar 24 20:09:58 2026 GMT Not After : Mar 31 20:09:58 2026 GMT Subject: CN=69c2ef96-134e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0e:4d:6c:c8:34:41:ab:90:89:cf:a5:ac:e2: bf:60:f4:e1:51:ac:00:a1:c2:ec:90:e2:f0:34:be: 8f:03:56:84:b9:3f:df:fa:fc:eb:d6:73:4f:14:e7: 73:a2:f5:b2:cf:dc:7b:c2:66:51:c7:c1:f3:88:d0: 7f:61:57:ef:cd:78:97:43:1a:98:6b:73:ed:5e:e0: 2b:8e:72:59:39:8e:c3:b0:fe:3e:78:b5:10:8f:64: d5:0d:00:f2:d0:2e:04:ce:0c:bc:da:76:d4:d6:c0: b8:15:2e:91:95:a1:90:2c:fb:5c:29:25:ff:d9:b2: 95:c9:b6:e3:4f:b9:92:12:f0:f7:fc:77:51:8b:34: 85:b8:22:92:75:23:4b:3c:64:43:96:34:17:0a:79: 48:7c:12:c8:20:5d:96:e7:a7:43:d8:69:8c:05:fa: f1:a7:cb:cf:36:de:71:e9:33:aa:ef:0a:8a:71:79: b4:99:ab:0c:94:43:09:aa:11:cc:76:7b:98:98:f2: 65:45:25:55:cd:59:de:4e:7d:9b:64:70:8f:e1:fc: 46:c5:2f:f0:50:ae:3f:4a:9a:33:ac:4b:4b:1b:7d: 80:f1:5e:10:bd:98:7b:1f:22:9a:9f:f4:71:09:f9: ae:bc:13:a8:84:80:c1:3d:ad:89:bf:99:f0:51:c5: 08:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:06:29:4B:04:55:26:B2:1E:44:A8:56:A6:81:4C:4A:19:C0:FC:26 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:fc:63:f0:b7:01:5f:1f:ab:d8:e0:7a:61:5e:10:6c:17:5b: d1:5a:78:98:9f:75:88:de:26:21:3b:f1:12:49:ae:7a:35:e6: d4:1f:59:01:04:c6:5b:11:36:0d:20:09:5f:f6:5d:c7:bc:a1: 42:5b:a7:85:bb:e1:56:59:6e:c3:b6:eb:fe:eb:37:08:a1:33: 22:4a:2c:2a:6e:67:a4:de:e6:29:f4:70:4e:99:e6:47:82:5d: 40:ee:77:19:e9:c5:d5:df:8f:86:c8:f1:52:d1:2e:33:ef:0a: 47:10:8c:5f:55:15:81:8b:3b:b3:95:e0:72:3b:e6:a3:92:74: dd:1d:47:e2:d9:d2:83:4b:39:5d:81:93:8a:72:e6:97:90:ba: 31:4d:4e:65:99:28:d7:74:d1:06:30:bc:9b:c3:a2:8a:d3:2d: 90:74:a7:2a:40:56:14:e3:b5:3e:18:42:9d:a2:bd:a9:51:dd: 6d:fe:5c:fa:1d:55:30:27:be:76:0d:74:fb:6c:fb:ea:41:8b: 1d:f9:b1:87:ad:7a:e9:75:33:7f:be:13:17:a4:60:0f:96:a2: 26:ef:f7:d1:66:0c:a0:c6:cf:d0:5e:ba:c8:39:66:3d:84:8a: bd:1b:ae:a2:4b:cf:05:6d:c0:b9:70:6a:c3:0c:95:20:0b:c9: 2e:52:8e:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjYwMzI0MjAwOTU4WhcNMjYwMzMxMjAwOTU4WjAYMRYwFAYD VQQDEw02OWMyZWY5Ni0xMzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww5NbMg0QauQic+lrOK/YPThUawAocLskOLwNL6PA1aEuT/f+vzr1nNPFOdz ovWyz9x7wmZRx8HziNB/YVfvzXiXQxqYa3PtXuArjnJZOY7DsP4+eLUQj2TVDQDy 0C4Ezgy82nbU1sC4FS6RlaGQLPtcKSX/2bKVybbjT7mSEvD3/HdRizSFuCKSdSNL PGRDljQXCnlIfBLIIF2W56dD2GmMBfrxp8vPNt5x6TOq7wqKcXm0masMlEMJqhHM dnuYmPJlRSVVzVneTn2bZHCP4fxGxS/wUK4/SpozrEtLG32A8V4QvZh7HyKan/Rx CfmuvBOohIDBPa2Jv5nwUcUIOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGYGKUsE VSayHkSoVqaBTEoZwPwmMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdfxj8LcBXx+r2OB6YV4QbBdb0Vp4mJ91iN4mITvxEkmuejXm1B9ZAQTGWxE2 DSAJX/Zdx7yhQlunhbvhVlluw7br/us3CKEzIkosKm5npN7mKfRwTpnmR4JdQO53 GenF1d+PhsjxUtEuM+8KRxCMX1UVgYs7s5Xgcjvmo5J03R1H4tnSg0s5XYGTinLm l5C6MU1OZZko13TRBjC8m8OiitMtkHSnKkBWFOO1PhhCnaK9qVHdbf5c+h1VMCe+ dg10+2z76kGLHfmxh6166XUzf74TF6RgD5aiJu/30WYMoMbP0F66yDlmPYSKvRuu okvPBW3AuXBqwwyVIAvJLlKOYg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:06:20 2026 by rpki-client