$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: 32kbv6mPuX6lTtzF9DWxiQK3iNl1PLdXEoIm4RXagig= Subject key identifier: 52:29:16:49:B1:DF:07:64:E6:4B:E6:6E:06:66:FA:E5:5E:B0:50:0F Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A7E Signing time: Tue 24 Mar 2026 19:24:50 +0000 Manifest this update: Tue 24 Mar 2026 19:24:49 +0000 Manifest next update: Tue 31 Mar 2026 19:24:49 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: 5fF1Q6TmXBsenqD9XogrfK2Yyjj3qz/lTldUDPDaD8o=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: zF+J5zFh1poif0hGxgEuq8x4MHnVNaCe2reoxnvlkL0=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: aLRF4zBkBM2y6xKpL1GC5YHsO0D4qoPC3jE5KWFvB9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Mar 24 19:24:49 2026 GMT Not After : Mar 31 19:24:49 2026 GMT Subject: CN=69c2e502-56e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:df:a0:e3:07:6d:65:4e:60:0e:bf:86:3a:d4: 17:59:c8:35:b2:65:f3:13:fc:15:22:84:4f:d6:3d: a6:b4:46:af:ec:0c:6a:e7:6d:ac:b7:ce:10:ad:26: 8d:ba:79:03:57:9a:c7:42:21:c5:3c:54:24:11:6f: 9f:a5:f6:e8:97:b4:a3:84:94:d0:b5:97:48:79:61: 13:d1:d2:00:63:d9:d3:29:b9:d7:2c:ef:4b:24:a1: 92:c3:fb:be:53:8e:80:48:6e:d3:c6:59:d7:df:b2: 4f:0e:a5:d4:9a:be:ec:6f:73:9b:18:d7:db:8e:6b: fe:d4:20:e2:62:c7:6c:d5:ec:ce:ac:66:d7:d8:bd: 6a:ab:a8:f0:e7:f3:9b:2a:71:7e:b6:5e:8d:bf:fa: 9b:41:c7:0e:52:2a:88:dc:c5:74:6c:6b:f5:2b:ad: d3:aa:70:37:ac:cd:1e:51:3c:48:fd:a9:23:68:6c: 7d:2a:10:ca:7c:34:06:d6:24:36:28:c4:6d:f5:2d: a2:42:e9:46:e4:69:50:c9:d8:09:51:44:7b:8a:ed: 99:5d:97:03:79:5a:9e:36:d2:75:7b:80:cb:46:bd: 9a:93:db:21:db:0b:34:63:b8:ab:13:20:d3:c9:3e: 67:da:3b:8a:dc:33:b4:2a:7c:fa:26:18:16:d4:68: 3e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:29:16:49:B1:DF:07:64:E6:4B:E6:6E:06:66:FA:E5:5E:B0:50:0F X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:5b:9c:37:76:ce:6c:83:4d:23:c7:e7:dd:d4:04:a8:ff:56: 1e:ee:ee:91:9b:1d:0a:87:13:44:6d:b4:b3:6c:d2:92:d1:00: 9b:f5:28:36:f6:48:80:a5:49:f2:dc:b9:42:9f:3d:d4:74:07: 6f:5a:31:b5:3a:2e:60:2e:20:53:a2:d1:0e:86:e9:d1:43:59: fa:72:28:c6:48:1c:d9:9b:42:44:94:66:37:42:35:67:9c:9b: b1:7d:96:f1:b3:e6:ac:9b:15:2d:e6:2e:4e:b5:64:af:ee:65: 60:f5:ce:2f:1d:28:c5:2e:3e:e9:b5:f3:d9:7a:7f:b3:a5:36: 93:86:b1:c9:8e:62:26:4c:d0:7c:67:f8:44:94:18:92:e4:a7: cf:04:fd:a5:24:3f:90:21:58:00:3e:fc:6d:83:a5:74:f6:4d: 71:ea:6f:a0:4e:f6:8a:72:52:8e:d7:c7:aa:7e:0e:d7:2f:ce: 88:69:6a:35:46:38:c7:7a:5d:0f:22:db:90:bf:65:55:96:01: 1c:a0:5f:db:9a:fc:c7:72:88:df:02:5b:c3:40:28:34:b9:a1: 8e:e4:29:00:99:ea:c2:47:bd:0f:ed:26:5c:ad:e5:e2:9f:2d: 71:1a:20:7c:6c:42:28:a6:9e:de:0c:db:bf:46:bd:4c:b5:fd: c9:b6:01:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjYwMzI0MTkyNDQ5WhcNMjYwMzMxMTkyNDQ5WjAYMRYwFAYD VQQDEw02OWMyZTUwMi01NmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN+g4wdtZU5gDr+GOtQXWcg1smXzE/wVIoRP1j2mtEav7Axq522st84QrSaN unkDV5rHQiHFPFQkEW+fpfbol7SjhJTQtZdIeWET0dIAY9nTKbnXLO9LJKGSw/u+ U46ASG7TxlnX37JPDqXUmr7sb3ObGNfbjmv+1CDiYsds1ezOrGbX2L1qq6jw5/Ob KnF+tl6Nv/qbQccOUiqI3MV0bGv1K63TqnA3rM0eUTxI/akjaGx9KhDKfDQG1iQ2 KMRt9S2iQulG5GlQydgJUUR7iu2ZXZcDeVqeNtJ1e4DLRr2ak9sh2ws0Y7irEyDT yT5n2juK3DO0Knz6JhgW1Gg+MQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFIpFkmx 3wdk5kvmbgZm+uVesFAPMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATVucN3bObINNI8fn3dQEqP9WHu7ukZsdCocTRG20s2zSktEAm/UoNvZIgKVJ 8ty5Qp891HQHb1oxtTouYC4gU6LRDobp0UNZ+nIoxkgc2ZtCRJRmN0I1Z5ybsX2W 8bPmrJsVLeYuTrVkr+5lYPXOLx0oxS4+6bXz2Xp/s6U2k4axyY5iJkzQfGf4RJQY kuSnzwT9pSQ/kCFYAD78bYOldPZNcepvoE72inJSjtfHqn4O1y/OiGlqNUY4x3pd DyLbkL9lVZYBHKBf25r8x3KI3wJbw0AoNLmhjuQpAJnqwke9D+0mXK3l4p8tcRog fGxCKKae3gzbv0a9TLX9ybYBlQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:53:15 2026 by rpki-client