$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: Y1qMcgnHR5fttwXVGQnbbObZWTx9wMTcX5Js6dZeFgM= Subject key identifier: BA:96:01:38:2F:F4:D9:8E:9B:13:D7:93:D4:6D:D5:AA:C7:6F:BC:1B Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 382B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 3726 Signing time: Tue 24 Mar 2026 14:33:07 +0000 Manifest this update: Tue 24 Mar 2026 14:33:06 +0000 Manifest next update: Tue 31 Mar 2026 14:33:06 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: Y0Acp7Cf0qvPMa/lXvH1zdgGnxgdpqbn6uHYP7zBzl8=) 2: F24EEED208C011F19DFF611F213D8C67.roa (hash: j8mZP70/+lxFmxKK+gaXtA4vlgcSiykk11UZrhv9x1I=) 3: 15B06ACE01B211F1A8498BCA6C6F56BC.roa (hash: 5xNdDoLkpm/cKB7fxSHaoDjqTsi17ChXNYz70KIoKrA=) 4: 0F0E88A6192F11F183D9B1FC303D8C67.roa (hash: 5aKDuZwd3Wn+m9JFqN35rRMwxZf4PwI1YL49pBMgje4=) 5: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: Zntrf+XRFU/LUFPqt460t/df6T24vxpmkd5azGcAX5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14379 (0x382b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Mar 24 14:33:06 2026 GMT Not After : Mar 31 14:33:06 2026 GMT Subject: CN=69c2a0a2-f637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:34:20:8a:77:48:e4:63:66:98:25:a9:0b:6a: 4e:c6:45:02:cb:62:92:20:8e:ad:1a:10:45:11:bb: b3:0a:ab:73:4e:33:b9:98:ff:51:68:30:29:91:d6: d3:e2:cf:36:72:d0:ed:4b:d0:91:bd:21:de:6c:79: fd:3e:0d:48:af:f4:e3:4e:88:0f:46:4f:2a:ef:98: fe:05:f1:59:29:13:9d:ea:ed:a3:bc:84:5e:be:0e: 4c:1a:1f:61:f5:d3:0c:42:0e:23:2f:0e:c6:43:af: 75:17:6f:0e:d7:11:70:51:14:91:7a:75:11:b9:9e: 26:ba:4d:ce:71:00:c1:57:0b:b6:04:99:6f:ad:64: 07:ff:2f:fc:a8:56:9a:b4:17:0b:48:6c:54:63:14: c4:b6:9c:2d:f7:b2:c7:e6:be:36:4c:26:46:36:77: 77:5c:90:6e:36:65:26:97:8c:d1:b4:64:51:a5:19: 9f:0f:89:74:33:0a:0a:ba:04:5b:27:f5:d8:aa:23: 43:58:e7:24:dc:f9:82:f2:6b:ad:1e:d3:c8:4f:96: c4:6c:c8:8c:4c:b9:67:a9:e9:74:c8:7c:0b:d4:ef: 2c:33:21:aa:4b:75:b9:51:91:9d:77:9f:2b:83:a9: 5e:64:5f:31:fb:45:93:c1:bc:24:6d:1f:22:12:fb: 9e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:96:01:38:2F:F4:D9:8E:9B:13:D7:93:D4:6D:D5:AA:C7:6F:BC:1B X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:48:1c:d3:a1:e4:80:20:98:a0:7a:3a:75:c2:ec:47:1d:16: ec:b9:e1:07:ab:f5:8a:1d:44:f9:b1:3d:cd:a5:02:67:a3:be: ae:34:0c:10:ce:69:8f:5a:55:87:9c:03:35:11:18:e8:e3:ff: e0:35:7d:88:39:6d:c8:6c:e8:6e:84:42:a7:00:49:4d:1d:53: cf:a9:22:d5:64:7d:2e:c8:0b:e8:01:67:e8:6b:9c:5f:2f:0b: 30:42:5d:8d:65:ab:d8:08:7c:57:0f:89:6c:c7:68:b6:2e:4e: 28:1a:ed:0c:2a:17:7b:d0:39:23:2d:58:6a:2c:53:4b:11:70: d9:6a:68:eb:38:30:68:57:f5:47:8b:36:ff:5f:c6:b0:d1:cd: 2c:c2:13:a5:d2:66:e3:cd:b6:24:ce:25:68:ba:f7:39:8a:21: 25:78:05:72:8a:a8:2d:2a:59:d8:8a:54:27:fe:f1:a3:a1:49: 97:c9:82:7d:b4:cc:e1:a2:e1:ad:4a:41:44:2f:54:a2:2d:50: 12:b8:4d:89:8b:12:01:e0:cc:8e:e1:df:34:4f:8d:ea:f3:04: 47:27:91:93:22:4e:1f:77:d6:ba:66:14:8e:b4:b4:6d:98:0a: 40:90:34:20:d6:9b:b4:3d:8b:a4:98:cf:71:5a:f8:3b:e2:3f: 1d:98:4d:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICOCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwMzI0MTQzMzA2WhcNMjYwMzMxMTQzMzA2WjAYMRYwFAYD VQQDEw02OWMyYTBhMi1mNjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhzQgindI5GNmmCWpC2pOxkUCy2KSII6tGhBFEbuzCqtzTjO5mP9RaDApkdbT 4s82ctDtS9CRvSHebHn9Pg1Ir/TjTogPRk8q75j+BfFZKROd6u2jvIRevg5MGh9h 9dMMQg4jLw7GQ691F28O1xFwURSRenURuZ4muk3OcQDBVwu2BJlvrWQH/y/8qFaa tBcLSGxUYxTEtpwt97LH5r42TCZGNnd3XJBuNmUml4zRtGRRpRmfD4l0MwoKugRb J/XYqiNDWOck3PmC8mutHtPIT5bEbMiMTLlnqel0yHwL1O8sMyGqS3W5UZGdd58r g6leZF8x+0WTwbwkbR8iEvue5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLqWATgv 9NmOmxPXk9Rt1arHb7wbMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs0gc06HkgCCYoHo6dcLsRx0W7LnhB6v1ih1E+bE9zaUCZ6O+rjQMEM5pj1pV h5wDNREY6OP/4DV9iDltyGzoboRCpwBJTR1Tz6ki1WR9LsgL6AFn6GucXy8LMEJd jWWr2Ah8Vw+JbMdoti5OKBrtDCoXe9A5Iy1YaixTSxFw2Wpo6zgwaFf1R4s2/1/G sNHNLMITpdJm4822JM4laLr3OYohJXgFcoqoLSpZ2IpUJ/7xo6FJl8mCfbTM4aLh rUpBRC9Uoi1QErhNiYsSAeDMjuHfNE+N6vMERyeRkyJOH3fWumYUjrS0bZgKQJA0 INabtD2LpJjPcVr4O+I/HZhN5w== -----END CERTIFICATE-----Generated at Thu Mar 26 05:40:07 2026 by rpki-client