$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft File: aTn8BA2lwwt2bceU-cpML0Gsruo.mft (raw, json) Hash identifier: d71lGu59/K50pLG5Vfnghss0lWu2EBGY9/dtvJD2u2U= Subject key identifier: F9:02:E8:CC:DF:53:98:6C:0C:59:EA:7F:1F:CD:91:4F:3F:79:76:D4 Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft Manifest number: 04E1 Signing time: Tue 24 Mar 2026 23:33:31 +0000 Manifest this update: Tue 24 Mar 2026 23:33:31 +0000 Manifest next update: Tue 31 Mar 2026 23:33:31 +0000 Files and hashes: 1: aTn8BA2lwwt2bceU-cpML0Gsruo.crl (hash: xZ+IoiCWnS5vFDt2MQXS6lvGXpxDejDaHbTqJtR7SY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F, serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: Mar 24 23:33:31 2026 GMT Not After : Mar 31 23:33:31 2026 GMT Subject: CN=69c31f4b-eaea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e0:06:b2:11:05:fc:91:49:1e:6b:94:3c:24: 31:5d:5c:4b:fc:00:e9:43:e0:e0:45:98:64:d1:db: 28:8f:cb:7b:db:f4:21:c7:99:df:7d:ba:ce:bb:0a: 1e:12:f9:e8:d0:0d:fb:f3:5c:16:73:b7:8d:b8:db: e9:c7:e7:2e:fd:ab:12:28:6e:f3:da:38:ab:38:5a: 83:1a:23:6e:ed:20:00:d8:5d:9a:18:66:ee:70:55: fb:35:09:8a:0c:0a:ec:58:cf:51:33:44:28:cf:2b: e7:13:ed:37:34:4e:df:2d:45:09:1b:b6:cb:be:51: 73:4e:67:77:82:98:d3:45:d2:b0:2e:dd:71:56:c0: c2:82:1f:6d:ed:9f:fd:12:82:98:f0:95:67:4c:1b: dd:c2:77:ef:c6:3d:b0:df:92:ec:a4:fd:29:d3:df: 89:3a:ca:2f:c2:87:0a:5f:35:fa:2b:05:3e:4f:93: b6:5b:28:ae:73:0c:79:24:6e:c7:8e:69:29:d7:20: 93:a1:fd:4c:18:3f:7f:b1:6b:9c:a0:19:df:8b:8c: a5:f4:ca:7b:6a:d9:40:ec:30:fb:a4:dd:92:bc:f4: ed:10:74:0f:bb:25:d3:36:56:03:b9:d5:14:a2:6d: 03:e1:6e:28:d6:27:15:c4:b5:a4:7e:eb:c1:11:24: 29:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:02:E8:CC:DF:53:98:6C:0C:59:EA:7F:1F:CD:91:4F:3F:79:76:D4 X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:be:e0:95:a1:ab:22:2e:91:6f:fa:74:9f:22:ef:03:95:ec: f1:15:39:1d:ee:61:33:3e:ac:bb:68:f4:ea:8d:32:1f:27:ca: cc:80:d3:ca:1e:9d:f6:9e:05:ed:d3:c8:f5:d9:45:43:10:df: 3b:20:63:e1:be:78:27:d9:48:a6:de:dd:84:a7:cf:d3:62:14: 84:df:5f:46:96:da:1e:87:b3:c1:20:a7:fc:66:0c:ef:5e:4b: b8:2d:25:a3:e9:74:e8:9d:0a:0d:17:ed:a4:52:94:5c:dc:4a: f2:a1:e0:9c:db:3a:7c:85:d8:55:25:87:7c:57:55:69:82:b8: 0c:e0:eb:a0:c0:39:f6:dc:65:f1:a0:98:cb:5a:56:dd:21:42: 2a:7e:38:a1:ed:9f:e4:c6:86:c6:1c:65:ae:bd:8a:87:4c:d4: 53:16:e8:be:a9:b7:3f:19:e0:cf:b3:f5:c3:44:96:88:0e:76: 38:e9:18:ff:09:70:62:33:22:d7:98:69:63:b7:e1:fe:ab:12: c2:5e:7d:40:ba:be:73:de:41:c5:ed:6b:d1:13:92:19:e2:2f: 97:47:55:82:cb:22:5b:3f:fd:f3:18:c8:07:04:3c:a1:8f:2c: 51:bf:d2:6a:0e:8f:83:43:27:e9:ad:81:64:c2:e8:db:af:d4: 9e:eb:c2:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjYwMzI0MjMzMzMxWhcNMjYwMzMxMjMzMzMxWjAYMRYwFAYD VQQDEw02OWMzMWY0Yi1lYWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+AGshEF/JFJHmuUPCQxXVxL/ADpQ+DgRZhk0dsoj8t72/Qhx5nffbrOuwoe Evno0A3781wWc7eNuNvpx+cu/asSKG7z2jirOFqDGiNu7SAA2F2aGGbucFX7NQmK DArsWM9RM0QozyvnE+03NE7fLUUJG7bLvlFzTmd3gpjTRdKwLt1xVsDCgh9t7Z/9 EoKY8JVnTBvdwnfvxj2w35LspP0p09+JOsovwocKXzX6KwU+T5O2Wyiucwx5JG7H jmkp1yCTof1MGD9/sWucoBnfi4yl9Mp7atlA7DD7pN2SvPTtEHQPuyXTNlYDudUU om0D4W4o1icVxLWkfuvBESQpbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPkC6Mzf U5hsDFnqfx/NkU8/eXbUMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkExRi8xRUNGRkM0QzYyMTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3 dDJiY2VVLWNwTUwwR3NydW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ77glaGrIi6Rb/p0nyLvA5Xs8RU5He5hMz6su2j06o0yHyfKzIDTyh6d9p4F 7dPI9dlFQxDfOyBj4b54J9lIpt7dhKfP02IUhN9fRpbaHoezwSCn/GYM715LuC0l o+l06J0KDRftpFKUXNxK8qHgnNs6fIXYVSWHfFdVaYK4DODroMA59txl8aCYy1pW 3SFCKn44oe2f5MaGxhxlrr2Kh0zUUxbovqm3Pxngz7P1w0SWiA52OOkY/wlwYjMi 15hpY7fh/qsSwl59QLq+c95Bxe1r0ROSGeIvl0dVgssiWz/98xjIBwQ8oY8sUb/S ag6Pg0Mn6a2BZMLo26/UnuvCzA== -----END CERTIFICATE-----Generated at Thu Mar 26 03:39:19 2026 by rpki-client