$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78C2/35446376EDE511F0B01B923C766F56BC/A21zSqYwJkoY7FZN1qtBZGHGpGo.mft File: A21zSqYwJkoY7FZN1qtBZGHGpGo.mft (raw, json) Hash identifier: 4g1D7ILYXSV9yxUBeev/FXIqWVxKjvpuD18gDM9p8Gw= Subject key identifier: AA:01:25:E5:61:48:4B:52:CD:79:00:13:4C:37:AE:F2:21:47:41:66 Authority key identifier: 03:6D:73:4A:A6:30:26:4A:18:EC:56:4D:D6:AB:41:64:61:C6:A4:6A Certificate issuer: /CN=A91A78C2/serialNumber=036D734AA630264A18EC564DD6AB416461C6A46A Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A21zSqYwJkoY7FZN1qtBZGHGpGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78C2/35446376EDE511F0B01B923C766F56BC/A21zSqYwJkoY7FZN1qtBZGHGpGo.mft Manifest number: 2C Signing time: Wed 25 Mar 2026 07:55:43 +0000 Manifest this update: Wed 25 Mar 2026 07:55:42 +0000 Manifest next update: Wed 01 Apr 2026 07:55:42 +0000 Files and hashes: 1: A21zSqYwJkoY7FZN1qtBZGHGpGo.crl (hash: hp2EcHbCYN2CUyIybkP6dt7l4P1ChCTWsqhFicUWO6M=) 2: 96376E44EDE511F0AFD0F13E766F56BC.roa (hash: c7n/rW2wnuvOsF5QuJE/p0FOOd0sZ53Jnc8uBUMGA3U=) 3: 95BF687CEDE511F0AFD0F13E766F56BC.roa (hash: 49VoGrV1j9cqeMk1mIx6YMz9ljPSMDMLHiAGX5B7EFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78C2/35446376EDE511F0B01B923C766F56BC/A21zSqYwJkoY7FZN1qtBZGHGpGo.crl rsync://rpki.apnic.net/member_repository/A91A78C2/35446376EDE511F0B01B923C766F56BC/A21zSqYwJkoY7FZN1qtBZGHGpGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A21zSqYwJkoY7FZN1qtBZGHGpGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78C2, serialNumber=036D734AA630264A18EC564DD6AB416461C6A46A Validity Not Before: Mar 25 07:55:42 2026 GMT Not After : Apr 1 07:55:42 2026 GMT Subject: CN=69c394ff-02df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:14:fb:15:fa:f5:df:28:d6:0a:0c:09:1e:6f: d3:b5:87:36:c3:e0:86:19:21:ab:4f:56:3f:c2:03: 85:bf:7a:6b:32:25:d6:5e:c5:3c:0c:39:9e:4b:a7: 8a:bd:12:50:5b:dd:b7:7b:73:56:de:af:84:08:a6: 68:2b:84:27:20:c4:ec:f7:74:97:eb:21:d3:99:f9: 55:94:3e:8b:78:10:ee:9b:e3:90:bf:07:fe:2c:29: ed:00:bf:e6:ff:cb:dc:be:bc:a4:26:47:c7:aa:f2: 0e:ff:c3:7a:ec:6d:58:09:5d:84:88:b0:85:40:a6: 48:4b:94:66:11:fd:24:97:ab:71:88:e2:ef:8a:59: e4:87:a3:1d:a2:fb:d7:3b:52:e5:8c:87:b4:ee:14: 2a:c0:91:ac:e0:72:9a:1c:bc:b3:50:54:13:55:e6: 69:66:5c:fa:bc:e0:00:34:39:88:65:75:fa:f4:2c: 75:de:40:e9:25:49:5b:af:ba:d8:a0:5d:49:bf:47: 74:79:9e:91:82:db:9d:45:83:d7:c0:1c:05:f4:4f: 57:30:6b:b9:93:65:f4:41:cc:79:bd:51:e0:75:d3: c7:7e:d3:e2:3d:a1:10:9b:22:d0:7e:70:28:cc:88: da:98:3b:b8:3e:4b:69:b0:b4:1c:96:5b:3c:c8:5b: e8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:01:25:E5:61:48:4B:52:CD:79:00:13:4C:37:AE:F2:21:47:41:66 X509v3 Authority Key Identifier: keyid:03:6D:73:4A:A6:30:26:4A:18:EC:56:4D:D6:AB:41:64:61:C6:A4:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78C2/35446376EDE511F0B01B923C766F56BC/A21zSqYwJkoY7FZN1qtBZGHGpGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A21zSqYwJkoY7FZN1qtBZGHGpGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78C2/35446376EDE511F0B01B923C766F56BC/A21zSqYwJkoY7FZN1qtBZGHGpGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e8:09:05:7f:c1:00:54:f8:ff:79:a6:ad:7c:d1:fa:cd:e9: a8:f2:f5:88:48:29:e3:12:65:1d:07:8b:af:a6:b6:71:23:27: 08:5a:0e:08:0d:7b:f0:5a:da:57:3b:1b:45:ac:85:f8:09:ac: 8a:c0:a8:59:f5:ac:13:33:88:62:53:d0:d0:57:4c:47:cb:80: 03:aa:08:66:9c:10:72:10:02:66:e3:11:ac:18:b9:b2:96:dc: 81:93:20:3f:a8:d9:ee:32:b0:28:68:c3:05:84:46:68:ce:42: d0:27:d2:9f:c3:58:c7:19:d5:2f:73:23:a0:09:db:d9:12:cb: 91:54:a9:a1:40:47:0c:60:2f:97:2d:9c:10:8c:fa:ab:1c:8d: 8a:40:88:49:98:75:50:61:12:bc:24:9e:54:d7:dd:d2:9b:d0: 64:9f:ae:3f:22:42:09:c9:89:f4:fa:d8:41:c0:7d:d3:28:14: ab:6d:0c:ae:88:79:72:79:66:98:23:55:f0:58:d0:a2:b4:50: aa:92:70:3e:70:e3:b8:51:8e:13:89:8f:77:34:20:b2:c6:4e: 79:fa:39:fc:6d:4b:a3:cd:21:54:e8:fb:43:48:31:9e:cb:f3: f9:f8:3e:b5:57:e9:c7:83:25:9c:64:d5:73:43:98:bc:18:98: d7:9b:1f:48 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NzhDMjExMC8GA1UEBRMoMDM2RDczNEFBNjMwMjY0QTE4RUM1NjRERDZBQjQxNjQ2 MUM2QTQ2QTAeFw0yNjAzMjUwNzU1NDJaFw0yNjA0MDEwNzU1NDJaMBgxFjAUBgNV BAMTDTY5YzM5NGZmLTAyZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWFPsV+vXfKNYKDAkeb9O1hzbD4IYZIatPVj/CA4W/emsyJdZexTwMOZ5Lp4q9 ElBb3bd7c1ber4QIpmgrhCcgxOz3dJfrIdOZ+VWUPot4EO6b45C/B/4sKe0Av+b/ y9y+vKQmR8eq8g7/w3rsbVgJXYSIsIVApkhLlGYR/SSXq3GI4u+KWeSHox2i+9c7 UuWMh7TuFCrAkazgcpocvLNQVBNV5mlmXPq84AA0OYhldfr0LHXeQOklSVuvutig XUm/R3R5npGC251Fg9fAHAX0T1cwa7mTZfRBzHm9UeB108d+0+I9oRCbItB+cCjM iNqYO7g+S2mwtByWWzzIW+hRAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUqgEl5WFI S1LNeQATTDeu8iFHQWYwHwYDVR0jBBgwFoAUA21zSqYwJkoY7FZN1qtBZGHGpGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3OEMyLzM1NDQ2Mzc2RURF NTExRjBCMDFCOTIzQzc2NkY1NkJDL0EyMXpTcVl3SmtvWTdGWk4xcXRCWkdIR3BH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQTIxelNxWXdKa29ZN0ZaTjFxdEJaR0hHcEdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 OEMyLzM1NDQ2Mzc2RURFNTExRjBCMDFCOTIzQzc2NkY1NkJDL0EyMXpTcVl3Smtv WTdGWk4xcXRCWkdIR3BHby5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAR6AkFf8EAVPj/eaatfNH6zemo8vWISCnjEmUdB4uvprZxIycIWg4IDXvwWtpX OxtFrIX4CayKwKhZ9awTM4hiU9DQV0xHy4ADqghmnBByEAJm4xGsGLmyltyBkyA/ qNnuMrAoaMMFhEZozkLQJ9Kfw1jHGdUvcyOgCdvZEsuRVKmhQEcMYC+XLZwQjPqr HI2KQIhJmHVQYRK8JJ5U193Sm9Bkn64/IkIJyYn0+thBwH3TKBSrbQyuiHlyeWaY I1XwWNCitFCqknA+cOO4UY4TiY93NCCyxk55+jn8bUujzSFU6PtDSDGey/P5+D61 V+nHgyWcZNVzQ5i8GJjXmx9I -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:13 2026 by rpki-client