$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: F9uBe5t/kDWC2DV455NHCttnINyd1ZbDxtwjc4Mc9uE= Subject key identifier: A9:84:8F:EE:A0:22:6A:7C:86:C2:4E:FE:09:78:D7:C1:51:94:B3:E7 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: FD Signing time: Tue 24 Mar 2026 22:17:15 +0000 Manifest this update: Tue 24 Mar 2026 22:17:15 +0000 Manifest next update: Tue 31 Mar 2026 22:17:15 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: PFbGP4NJVRIhUGSKtmYldgCLlZGP80jHciU7W1opipQ=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: ASL8/2HCWAJCmthowgFWIUdkitcmGIEB/XyIsZpt42w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Mar 24 22:17:15 2026 GMT Not After : Mar 31 22:17:15 2026 GMT Subject: CN=69c30d6b-b074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3b:ac:f6:3b:3e:c8:f0:4c:cc:c0:be:f6:38: 92:af:5c:83:3d:78:e2:37:95:aa:f4:12:8f:5c:45: 5d:d8:c6:21:ad:48:f5:64:22:5b:ea:b2:14:63:a0: ea:fa:5d:d7:dc:48:8d:c9:fb:6c:16:ea:36:2b:73: 23:f3:4a:d1:70:ec:74:93:30:ba:b2:64:c8:85:e6: 94:ea:09:dc:a6:7b:4b:8b:1e:9c:b0:5a:4b:04:4a: 1a:ae:5b:0f:1d:73:9f:6c:4e:cd:e4:40:a9:07:8a: 0d:83:b7:dc:01:1a:f1:13:76:89:47:2c:9c:95:38: ef:0f:78:a5:4e:a9:f9:58:ce:53:fc:2a:de:b9:c8: f3:9d:7a:db:60:bf:9a:75:2c:73:5c:7d:ec:05:69: fd:3d:0c:b2:a1:5f:04:fc:a5:d1:d0:f1:fc:bc:bb: b6:6a:f7:1d:c7:9c:a4:05:53:89:41:c0:98:fe:90: e1:87:aa:71:fd:d3:77:97:8d:79:ae:e2:e9:8f:50: 4a:90:2c:1a:09:04:69:ba:df:1d:b9:a9:b8:6d:53: 28:e3:f9:6c:8d:58:fa:db:04:00:e1:ec:59:45:d7: 3c:37:aa:9d:11:4b:69:e2:b1:3f:3a:1f:e2:21:d8: 56:e0:43:03:e0:ab:29:41:7c:84:de:48:e5:d3:44: 37:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:84:8F:EE:A0:22:6A:7C:86:C2:4E:FE:09:78:D7:C1:51:94:B3:E7 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:a9:2c:5a:77:23:88:d9:1c:c6:8e:a2:3a:05:67:17:19:0f: a4:ba:66:cf:10:de:cb:9f:a7:32:e4:06:c0:90:25:5e:9d:08: fb:f0:15:dd:69:b0:1b:db:7e:f4:b6:57:96:c3:17:f0:0e:6f: 39:58:8e:16:79:24:cb:ba:80:f5:9c:03:20:4e:c3:b1:47:18: be:ab:29:38:9a:61:fa:72:85:f8:54:ca:b2:4a:58:49:a4:53: b4:b4:ea:92:28:5b:ed:88:0a:c4:8e:99:cd:10:b4:b5:e2:a0: 05:8f:31:5f:4b:72:68:b8:b8:0a:26:e0:7b:5c:4c:0d:15:55: a5:07:0f:28:78:c5:c3:1b:bb:a5:bd:d2:10:9a:42:6b:8c:bc: 48:4b:e8:f1:af:38:88:b8:ba:1f:79:1d:2a:10:f9:18:1b:e0: f7:48:55:62:ba:c6:02:09:6d:48:6a:ac:cf:df:96:87:11:cf: b5:63:fe:53:a2:c4:9e:97:0b:f9:6f:c1:08:90:92:08:70:99: b7:72:d7:9b:a1:5b:25:99:81:c0:c1:84:53:f5:fb:a8:e4:53: 88:c5:91:36:01:0f:26:4c:68:f5:aa:4a:4a:7d:a3:f8:c0:7f: 75:0a:6d:10:6a:78:e8:d1:55:58:52:19:3e:c6:81:69:79:25: f2:25:3d:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGNjcyREE4QzVEMUQ2QzgwRDUwNjE3OEM5RTdDQjc0 NEY2RTM4RTYwHhcNMjYwMzI0MjIxNzE1WhcNMjYwMzMxMjIxNzE1WjAYMRYwFAYD VQQDEw02OWMzMGQ2Yi1iMDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDus9js+yPBMzMC+9jiSr1yDPXjiN5Wq9BKPXEVd2MYhrUj1ZCJb6rIUY6Dq +l3X3EiNyftsFuo2K3Mj80rRcOx0kzC6smTIheaU6gncpntLix6csFpLBEoarlsP HXOfbE7N5ECpB4oNg7fcARrxE3aJRyyclTjvD3ilTqn5WM5T/CreucjznXrbYL+a dSxzXH3sBWn9PQyyoV8E/KXR0PH8vLu2avcdx5ykBVOJQcCY/pDhh6px/dN3l415 ruLpj1BKkCwaCQRput8duam4bVMo4/lsjVj62wQA4exZRdc8N6qdEUtp4rE/Oh/i IdhW4EMD4KspQXyE3kjl00Q36QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKmEj+6g Imp8hsJO/gl418FRlLPnMB8GA1UdIwQYMBaAFK9nLajF0dbIDVBheMnny3RPbjjm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC82RjgyMTE3OEFC ODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFzZ05VR0Y0eWVmTGRFOXVP T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFz Z05VR0Y0eWVmTGRFOXVPT1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXaksWncjiNkcxo6iOgVnFxkPpLpmzxDey5+nMuQGwJAlXp0I+/AV3WmwG9t+ 9LZXlsMX8A5vOViOFnkky7qA9ZwDIE7DsUcYvqspOJph+nKF+FTKskpYSaRTtLTq kihb7YgKxI6ZzRC0teKgBY8xX0tyaLi4Cibge1xMDRVVpQcPKHjFwxu7pb3SEJpC a4y8SEvo8a84iLi6H3kdKhD5GBvg90hVYrrGAgltSGqsz9+WhxHPtWP+U6LEnpcL +W/BCJCSCHCZt3LXm6FbJZmBwMGEU/X7qORTiMWRNgEPJkxo9apKSn2j+MB/dQpt EGp46NFVWFIZPsaBaXkl8iU97A== -----END CERTIFICATE-----Generated at Thu Mar 26 11:19:44 2026 by rpki-client