$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: bByOMI1r2AkeIAqYNIjo06z7sjENpTJ6/pVc9ARtJf8= Subject key identifier: 4B:C1:4A:54:BB:98:07:F3:A2:6B:3B:F6:6F:0F:D8:1C:7F:F8:85:74 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 358E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 3553 Signing time: Tue 24 Mar 2026 14:43:24 +0000 Manifest this update: Tue 24 Mar 2026 14:43:24 +0000 Manifest next update: Tue 31 Mar 2026 14:43:24 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: 2L1ba71RymQVhsclnrk2xhK7L+nRidVTGk72qxedCfA=) 2: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: 1fzcpx/xvt8MI/rxgZvshROVbIS3fA549ggTMJ5QBwA=) 3: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM=) 4: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: tHNQzy8hGbC74qvfPySY/DdlrWAoieO3qDg8gWPCkbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13710 (0x358e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Mar 24 14:43:24 2026 GMT Not After : Mar 31 14:43:24 2026 GMT Subject: CN=69c2a30c-4208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a8:13:d4:3f:ff:c7:84:7a:41:08:99:fb:ca: d9:36:f2:2a:b8:11:b1:12:9d:0a:42:dd:b7:91:0f: 92:77:7e:42:95:fa:73:74:10:59:51:68:50:24:74: 3e:09:c2:32:07:99:9c:98:67:83:7a:16:67:49:bd: 4d:d3:c2:c2:89:5f:37:f1:9f:28:56:3e:92:26:c4: 0f:1b:9d:66:69:b1:62:30:2d:65:ec:72:13:6a:81: 9c:32:e8:59:2e:52:7c:13:fb:dc:7d:b0:31:be:23: fd:89:4d:69:82:4f:30:02:b1:a6:de:a8:9f:0b:2c: 8c:a8:ab:81:a7:51:34:f6:b1:f6:68:e0:dd:6b:e7: fd:32:a3:f4:8d:e9:b9:bd:57:10:7b:50:a8:07:f5: cb:b9:b8:ba:9f:50:7e:40:c1:96:33:ec:b5:a0:b5: 49:9e:54:36:7e:f9:e9:c6:88:43:03:e2:45:9d:fa: c0:c8:80:53:66:2e:74:8f:ec:47:dc:a2:0b:c3:cf: 42:6e:91:88:c3:65:ae:f2:8c:24:a0:d0:53:20:d5: 17:2c:2e:ca:b5:02:4f:ca:27:a3:79:88:fc:86:2f: dd:06:42:18:04:d8:06:68:6d:63:71:f5:81:bd:06: c6:78:00:f7:b0:ff:66:57:1c:36:42:0d:ee:5e:2c: 1b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C1:4A:54:BB:98:07:F3:A2:6B:3B:F6:6F:0F:D8:1C:7F:F8:85:74 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:2c:9b:2b:c7:63:54:ef:2b:4d:b5:72:59:67:d5:6b:d4:7f: fe:f8:f2:55:75:24:35:6f:0b:c6:44:53:d5:63:17:4e:63:dd: 0a:7f:8d:4d:e7:b8:ce:49:b2:64:6a:17:e3:a6:bf:0c:72:28: ff:24:9c:2a:1e:a7:29:e3:4c:67:63:d0:29:e8:53:af:4f:11: 31:99:b4:0f:ed:fb:41:4c:9d:10:44:af:7e:01:0d:36:02:3c: 8a:ad:17:ed:42:20:9b:a5:da:ac:31:c8:2a:6e:47:26:db:e3: 8f:04:04:43:d7:93:24:c1:be:69:8f:a7:be:21:38:40:d2:07: 81:ff:ec:f9:bc:85:bc:83:d4:c1:c9:38:97:a2:76:b3:00:a0: 5b:ce:a7:ec:49:2b:9d:92:18:af:92:90:27:b4:17:a7:dd:80: 71:91:0d:e6:94:34:10:8e:8a:3d:8d:6f:3a:d6:a6:56:23:56: 05:93:54:7f:ef:60:e5:b6:1b:cd:cb:a0:d2:32:72:04:1a:01: 1b:46:ae:19:4b:f4:02:be:6c:b3:39:bb:2b:8f:b7:14:6a:e7: d0:a1:99:ce:40:1f:be:88:76:66:57:50:9d:57:df:82:41:a3: 62:82:3a:76:ed:0b:f1:20:35:85:5a:ec:13:cc:94:ec:36:7f: 07:6b:41:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjYwMzI0MTQ0MzI0WhcNMjYwMzMxMTQ0MzI0WjAYMRYwFAYD VQQDEw02OWMyYTMwYy00MjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6gT1D//x4R6QQiZ+8rZNvIquBGxEp0KQt23kQ+Sd35ClfpzdBBZUWhQJHQ+ CcIyB5mcmGeDehZnSb1N08LCiV838Z8oVj6SJsQPG51mabFiMC1l7HITaoGcMuhZ LlJ8E/vcfbAxviP9iU1pgk8wArGm3qifCyyMqKuBp1E09rH2aODda+f9MqP0jem5 vVcQe1CoB/XLubi6n1B+QMGWM+y1oLVJnlQ2fvnpxohDA+JFnfrAyIBTZi50j+xH 3KILw89CbpGIw2Wu8owkoNBTINUXLC7KtQJPyiejeYj8hi/dBkIYBNgGaG1jcfWB vQbGeAD3sP9mVxw2Qg3uXiwbFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEvBSlS7 mAfzoms79m8P2Bx/+IV0MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQSybK8djVO8rTbVyWWfVa9R//vjyVXUkNW8LxkRT1WMXTmPdCn+NTee4zkmy ZGoX46a/DHIo/yScKh6nKeNMZ2PQKehTr08RMZm0D+37QUydEESvfgENNgI8iq0X 7UIgm6XarDHIKm5HJtvjjwQEQ9eTJMG+aY+nviE4QNIHgf/s+byFvIPUwck4l6J2 swCgW86n7EkrnZIYr5KQJ7QXp92AcZEN5pQ0EI6KPY1vOtamViNWBZNUf+9g5bYb zcug0jJyBBoBG0auGUv0Ar5sszm7K4+3FGrn0KGZzkAfvoh2ZldQnVffgkGjYoI6 du0L8SA1hVrsE8yU7DZ/B2tBAw== -----END CERTIFICATE-----Generated at Thu Mar 26 14:56:25 2026 by rpki-client