$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: MEhC2MjbmNU4/RTyzZWqfg+0IKGR6YOjeqwpq5q1aqM= Subject key identifier: 24:A6:A6:31:EE:67:1D:C3:19:2E:DF:EA:29:CB:06:5F:C5:13:C2:37 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 0A54 Signing time: Tue 24 Mar 2026 19:28:43 +0000 Manifest this update: Tue 24 Mar 2026 19:28:42 +0000 Manifest next update: Tue 31 Mar 2026 19:28:42 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: TCWF9Vbhf/Q/1FLyfGseIlkKMzXqjFx5xEJCgylTZII=) 2: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: nPdlPveaGEn/o0RAhqipdNtydGVDIBxlaIUin+YvoPY=) 3: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: 8uX/hlFjGe/V8LokTmcu8tEggMYCwiDilR7VyuWjQ5g=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: tAcZwWZwhXU4QpEPlt2t2XMLszlvvkM98qyIqRR6Ejk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2673 (0xa71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Mar 24 19:28:42 2026 GMT Not After : Mar 31 19:28:42 2026 GMT Subject: CN=69c2e5eb-983f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ae:9b:28:9e:4b:c9:ec:0d:b9:02:97:15:f7: 08:e9:15:90:10:45:f6:38:28:49:ae:df:0a:1d:7b: 48:0e:e9:41:1f:67:30:0b:9a:73:6d:2e:bf:7a:16: 20:18:2c:77:98:1b:9a:50:a7:e6:06:63:31:72:d7: 22:9c:96:06:82:89:8f:04:e5:c1:c5:69:77:00:3e: 19:38:6b:74:e6:8c:6c:16:17:32:d8:b5:56:ee:8d: f6:76:9d:09:9a:8a:85:32:d8:c7:6d:af:25:ae:87: ff:ad:3d:3b:dc:d0:31:44:4d:60:00:d5:84:78:c4: 14:9a:0b:00:41:54:d6:95:5a:89:93:a5:ce:0c:88: 26:98:cf:8f:d9:32:9e:5d:26:ab:ff:4f:df:a0:cf: 58:29:5e:3f:84:8a:d4:61:e6:a5:dd:c9:ff:a8:9d: dd:5b:d3:d4:47:95:6e:19:0d:b5:18:b9:1d:c9:ef: 62:fd:37:6e:b7:09:25:c3:10:88:8f:bf:4e:e9:0b: c6:af:17:f7:f6:45:ec:ea:19:fc:88:fb:e7:83:a7: c8:90:e3:9b:5e:3f:66:f5:20:6a:22:e7:6b:0e:b8: 1d:90:9e:7a:43:d3:da:7a:95:a7:3a:05:2f:1a:b5: e6:80:6a:2b:95:61:f9:a8:67:21:69:82:59:8e:b2: 59:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A6:A6:31:EE:67:1D:C3:19:2E:DF:EA:29:CB:06:5F:C5:13:C2:37 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:ae:59:6a:20:5d:f3:32:d5:ed:d9:c5:59:28:a0:e8:c9:9e: ae:cb:3f:00:09:60:39:94:f0:ab:65:16:03:af:80:d7:0e:13: b8:88:e6:83:68:83:1b:53:1d:17:70:e0:42:9d:ed:0b:aa:16: 28:04:37:12:5c:c7:23:56:6c:f5:52:fa:23:6e:1f:b4:31:9f: e4:b0:71:37:9f:60:93:64:20:da:67:c2:41:0c:b1:60:65:71: 41:a6:85:a2:49:81:5c:a8:99:af:a1:d3:45:36:8e:ed:b0:c6: c0:4d:f4:fd:3e:1b:17:0a:27:9e:9c:62:93:fa:72:2e:f5:55: fd:ce:bd:04:d0:ae:15:a8:c9:c4:0a:2d:c2:d4:aa:c3:49:ce: ac:b6:5d:1d:5d:42:df:86:b5:98:54:19:74:ae:fc:ac:2e:5b: 0e:83:4b:c9:27:13:54:8c:02:d2:53:04:af:bb:a4:ba:97:45: fc:0c:8d:19:8a:51:e4:b1:a9:04:8a:c1:8e:f7:28:c3:6c:66: d0:e5:16:f3:ac:7d:02:21:7c:8f:60:67:a1:34:35:19:48:04: dc:b6:4f:0a:d2:26:2a:f4:4c:89:7b:cb:7e:ed:f3:ad:b2:89: af:f6:a3:ca:47:32:44:49:7d:fa:78:b6:76:ec:7b:38:c8:64: b1:99:df:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjYwMzI0MTkyODQyWhcNMjYwMzMxMTkyODQyWjAYMRYwFAYD VQQDEw02OWMyZTVlYi05ODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK6bKJ5LyewNuQKXFfcI6RWQEEX2OChJrt8KHXtIDulBH2cwC5pzbS6/ehYg GCx3mBuaUKfmBmMxctcinJYGgomPBOXBxWl3AD4ZOGt05oxsFhcy2LVW7o32dp0J moqFMtjHba8lrof/rT073NAxRE1gANWEeMQUmgsAQVTWlVqJk6XODIgmmM+P2TKe XSar/0/foM9YKV4/hIrUYeal3cn/qJ3dW9PUR5VuGQ21GLkdye9i/TdutwklwxCI j79O6QvGrxf39kXs6hn8iPvng6fIkOObXj9m9SBqIudrDrgdkJ56Q9PaepWnOgUv GrXmgGorlWH5qGchaYJZjrJZgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCSmpjHu Zx3DGS7f6inLBl/FE8I3MB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARa5ZaiBd8zLV7dnFWSig6Mmerss/AAlgOZTwq2UWA6+A1w4TuIjmg2iDG1Md F3DgQp3tC6oWKAQ3ElzHI1Zs9VL6I24ftDGf5LBxN59gk2Qg2mfCQQyxYGVxQaaF okmBXKiZr6HTRTaO7bDGwE30/T4bFwonnpxik/pyLvVV/c69BNCuFajJxAotwtSq w0nOrLZdHV1C34a1mFQZdK78rC5bDoNLyScTVIwC0lMEr7ukupdF/AyNGYpR5LGp BIrBjvcow2xm0OUW86x9AiF8j2BnoTQ1GUgE3LZPCtImKvRMiXvLfu3zrbKJr/aj ykcyREl9+ni2dux7OMhksZnfEg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:12:26 2026 by rpki-client