$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: rTCE/osacTBCB3hWHeYYoKAaCmof0pswutjTZoBH2LE= Subject key identifier: 3B:C4:2E:DB:5D:8C:EB:0D:C1:DC:C8:5C:DE:82:B0:6E:49:85:4E:15 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 026E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0260 Signing time: Wed 25 Mar 2026 01:41:39 +0000 Manifest this update: Wed 25 Mar 2026 01:41:39 +0000 Manifest next update: Wed 01 Apr 2026 01:41:39 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: yGBAioalIcDoCGckT3X1GjCWV/GPc91mYh2KHWqbNWM=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: oqs2HbQnUMYYMDR47oCqmjCl1ra9AMLnfmPG6sV1Oco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 622 (0x26e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Mar 25 01:41:39 2026 GMT Not After : Apr 1 01:41:39 2026 GMT Subject: CN=69c33d53-ad34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ba:10:0d:b0:f3:7a:95:95:49:95:7e:fb:c8: 32:5c:a2:2b:c0:54:ad:cd:ae:fc:41:40:c3:81:15: 43:39:54:c4:d0:a4:93:b7:e3:22:a8:e8:f1:92:64: c3:a8:7b:7c:a3:b5:c9:c3:40:ac:52:65:2a:13:61: 05:c2:c4:51:dd:5e:ac:da:a9:fc:10:62:d6:f1:2c: d8:1b:80:db:cf:ff:f1:ab:e0:8a:55:bf:54:36:8c: ba:c4:30:2d:21:04:a6:d0:59:85:a1:0f:f4:08:59: b8:3b:94:59:84:33:1d:2e:1e:a6:7a:67:b7:9d:7f: bb:6a:0b:2a:12:b4:22:d1:8c:e6:2b:a2:2d:35:2e: 62:a4:a2:89:e6:fc:49:39:0f:3b:ec:d8:d4:78:bf: 65:f1:60:a2:b1:7f:ad:90:a7:49:54:ea:a7:bd:9e: 21:6b:9a:7a:74:6f:e1:be:a3:8e:d2:3f:08:6f:7c: 42:86:a1:ba:66:1c:dc:7e:b0:05:46:e0:2b:84:46: 89:4a:08:87:be:e3:63:9f:f1:c1:81:2a:fa:96:a2: 09:5c:65:18:34:39:90:f1:1a:79:ba:36:1d:c6:cb: 5d:51:1f:f3:d3:62:b0:26:45:77:dc:6c:fb:6d:9e: aa:ca:e7:5a:82:29:ce:41:0a:0c:f6:98:fb:91:86: f8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C4:2E:DB:5D:8C:EB:0D:C1:DC:C8:5C:DE:82:B0:6E:49:85:4E:15 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:e5:54:81:df:41:78:82:f4:22:a5:ba:b8:be:73:33:46:53: 0e:e8:16:22:5a:a0:1e:43:73:82:59:c1:c0:90:5c:9b:26:62: ab:99:3c:f1:8b:eb:6f:29:27:ff:7a:91:d0:1a:d6:0e:3c:3f: 6d:6f:ea:83:d9:6f:5f:6b:77:61:55:c0:ed:78:8a:79:b9:47: 95:91:42:ed:e5:ec:c7:cb:c9:a6:fa:e6:ee:23:49:e0:f7:15: 6c:43:26:42:64:d0:c4:5a:6d:9c:4c:d1:87:78:d5:c3:25:35: 4b:c5:47:39:83:be:c6:55:b6:5c:6d:8a:cd:11:b8:65:60:90: 86:3a:6d:0a:9e:d6:75:3f:21:cc:08:93:31:6b:af:ff:60:86: f7:ac:2c:74:3e:58:6d:3f:62:c8:4f:4e:03:98:fc:f5:44:b0: 8b:94:74:2b:e8:68:df:b9:b8:e0:34:35:41:7a:e4:5e:90:6c: 42:4f:f0:4a:5d:12:fa:78:07:62:f4:cb:c0:3f:9a:56:4b:f2: 7e:d6:a4:60:8e:97:1b:da:2a:50:aa:d7:42:f4:98:dc:16:e4: df:8f:7c:a6:07:b4:4f:13:7f:70:fe:31:a7:1c:06:a7:6f:e1: 8b:d0:ed:de:8b:4d:7d:ef:76:c5:33:75:ab:dc:26:bf:d8:58: ab:42:4d:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjYwMzI1MDE0MTM5WhcNMjYwNDAxMDE0MTM5WjAYMRYwFAYD VQQDEw02OWMzM2Q1My1hZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0boQDbDzepWVSZV++8gyXKIrwFStza78QUDDgRVDOVTE0KSTt+MiqOjxkmTD qHt8o7XJw0CsUmUqE2EFwsRR3V6s2qn8EGLW8SzYG4Dbz//xq+CKVb9UNoy6xDAt IQSm0FmFoQ/0CFm4O5RZhDMdLh6meme3nX+7agsqErQi0YzmK6ItNS5ipKKJ5vxJ OQ877NjUeL9l8WCisX+tkKdJVOqnvZ4ha5p6dG/hvqOO0j8Ib3xChqG6ZhzcfrAF RuArhEaJSgiHvuNjn/HBgSr6lqIJXGUYNDmQ8Rp5ujYdxstdUR/z02KwJkV33Gz7 bZ6qyudaginOQQoM9pj7kYb4uQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDvELttd jOsNwdzIXN6CsG5JhU4VMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAseVUgd9BeIL0IqW6uL5zM0ZTDugWIlqgHkNzglnBwJBcmyZiq5k88Yvrbykn /3qR0BrWDjw/bW/qg9lvX2t3YVXA7XiKeblHlZFC7eXsx8vJpvrm7iNJ4PcVbEMm QmTQxFptnEzRh3jVwyU1S8VHOYO+xlW2XG2KzRG4ZWCQhjptCp7WdT8hzAiTMWuv /2CG96wsdD5YbT9iyE9OA5j89USwi5R0K+ho37m44DQ1QXrkXpBsQk/wSl0S+ngH YvTLwD+aVkvyftakYI6XG9oqUKrXQvSY3Bbk3498pge0TxN/cP4xpxwGp2/hi9Dt 3otNfe92xTN1q9wmv9hYq0JNkw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:39:45 2026 by rpki-client