$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: 1Caq+OxtjSbTpf7XL5ntJXG4Ey//HSMGSiGwqwn137I= Subject key identifier: 68:E5:62:23:44:A8:9E:57:B0:A1:9A:8A:55:E6:03:6E:70:0B:82:8C Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 0277 Signing time: Wed 25 Mar 2026 01:27:29 +0000 Manifest this update: Wed 25 Mar 2026 01:27:29 +0000 Manifest next update: Wed 01 Apr 2026 01:27:29 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: Z6o8UaAXUYq/gwo6OcDeCdqshDp28lcZ3lcdTzKJafA=) 2: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: niAe7uFd21HH6WERU7iTs3hEOi8m5PmAvBhzB5K4rB0=) 3: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: P6xx3LV0yIZz7Bt3wASwzM1QkFL56uH39jrYrM1xsJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Mar 25 01:27:29 2026 GMT Not After : Apr 1 01:27:29 2026 GMT Subject: CN=69c33a01-ad33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:27:0d:4c:15:99:dc:0f:57:74:8e:a7:47:43: 4b:58:1f:fe:bc:2f:f8:b1:f2:7a:ce:95:9b:05:55: aa:92:7f:94:6d:16:11:9d:9e:eb:21:8a:7d:00:47: 02:3b:31:c5:02:97:bc:ea:a8:74:87:55:54:60:58: 13:83:de:f1:0e:87:6b:ad:3d:a1:aa:2f:03:88:1b: 65:4e:ba:7d:f8:d9:6b:13:7a:d1:2f:d2:dc:41:57: b6:89:c4:28:c2:32:d0:b6:90:bc:5e:5f:b0:98:4d: 15:f0:64:fd:08:a2:da:4a:11:9b:fb:2b:b5:dd:97: 77:4e:cf:a4:19:c4:ef:5f:f7:c7:a1:72:99:47:d2: 2f:dd:db:45:95:3b:4e:87:5e:55:66:a0:54:3b:b8: 0c:8d:3e:cf:14:17:12:73:35:dc:6d:b1:09:eb:8e: 0f:6b:2f:d3:c4:c6:d6:7e:d3:d8:bc:f6:70:0a:53: f0:24:92:55:18:59:61:f6:d4:ce:9d:17:3f:4d:bd: d9:23:f6:ca:ec:6b:e9:e0:34:a1:e0:a8:9f:32:8e: ab:3d:8b:8d:0d:5d:07:81:60:b0:e9:dd:ee:84:ea: cd:32:0e:b6:2b:f3:85:b5:69:d4:2f:22:aa:47:31: aa:a5:71:91:47:b4:dd:4b:b0:35:78:9f:f8:19:aa: d5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E5:62:23:44:A8:9E:57:B0:A1:9A:8A:55:E6:03:6E:70:0B:82:8C X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:52:9b:ab:6b:f9:61:42:61:37:73:6c:2d:ef:b9:3a:4c:47: 4e:fc:0b:65:14:13:10:28:40:59:9e:a1:a2:d7:eb:fd:2a:7a: f9:e3:e5:43:ce:f5:a1:af:25:e2:18:0c:36:4c:3a:c7:66:6c: 24:1c:67:51:41:7b:ca:66:43:6f:4d:4f:d4:4f:c8:ba:c9:0d: 00:d5:e8:c7:35:ed:8f:6c:ca:3c:a8:be:27:6f:25:75:99:49: f2:17:6c:1c:8f:b0:61:be:57:ee:11:11:9b:29:29:7e:00:d4: ca:0c:96:61:ef:67:10:76:20:74:40:99:a2:46:79:b3:61:b1: 43:67:9f:42:92:6d:a0:72:90:87:8a:81:2a:39:6f:a5:eb:9a: db:fe:90:89:a0:ec:6e:22:48:2d:ef:3c:cd:22:da:50:c6:ae: e7:cd:d9:b1:99:09:c9:80:d4:a8:d2:97:1c:d4:7c:5a:d3:78: 51:72:64:95:32:8d:af:b9:72:8a:82:23:3b:a9:93:4a:c2:dc: 7b:58:01:26:5c:16:e8:46:98:4d:4c:06:f9:71:e5:a9:bc:9b: 64:38:6c:f7:fe:4c:45:7b:ec:30:a5:f5:75:1f:49:5d:8e:85: a6:e4:aa:12:4d:47:46:9b:e4:ae:ab:07:54:d5:bc:7d:9a:56: 45:cb:28:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjYwMzI1MDEyNzI5WhcNMjYwNDAxMDEyNzI5WjAYMRYwFAYD VQQDEw02OWMzM2EwMS1hZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ScNTBWZ3A9XdI6nR0NLWB/+vC/4sfJ6zpWbBVWqkn+UbRYRnZ7rIYp9AEcC OzHFApe86qh0h1VUYFgTg97xDodrrT2hqi8DiBtlTrp9+NlrE3rRL9LcQVe2icQo wjLQtpC8Xl+wmE0V8GT9CKLaShGb+yu13Zd3Ts+kGcTvX/fHoXKZR9Iv3dtFlTtO h15VZqBUO7gMjT7PFBcSczXcbbEJ644Pay/TxMbWftPYvPZwClPwJJJVGFlh9tTO nRc/Tb3ZI/bK7Gvp4DSh4KifMo6rPYuNDV0HgWCw6d3uhOrNMg62K/OFtWnULyKq RzGqpXGRR7TdS7A1eJ/4GarVswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGjlYiNE qJ5XsKGailXmA25wC4KMMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAClKbq2v5YUJhN3NsLe+5OkxHTvwLZRQTEChAWZ6hotfr/Sp6+ePlQ871oa8l 4hgMNkw6x2ZsJBxnUUF7ymZDb01P1E/IuskNANXoxzXtj2zKPKi+J28ldZlJ8hds HI+wYb5X7hERmykpfgDUygyWYe9nEHYgdECZokZ5s2GxQ2efQpJtoHKQh4qBKjlv peua2/6QiaDsbiJILe88zSLaUMau583ZsZkJyYDUqNKXHNR8WtN4UXJklTKNr7ly ioIjO6mTSsLce1gBJlwW6EaYTUwG+XHlqbybZDhs9/5MRXvsMKX1dR9JXY6FpuSq Ek1HRpvkrqsHVNW8fZpWRcsoqg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:40:00 2026 by rpki-client