$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft File: cJbvn454MDQ56aHksDgYgaQy9Ns.mft (raw, json) Hash identifier: kcIEbTFL46CRAFQOE1g/8EYAHh9xl3dqVwLQmPkKpdA= Subject key identifier: C4:6F:A1:FC:35:29:C4:A2:56:97:C9:E5:56:A2:34:26:8B:4D:69:ED Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 0438 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft Manifest number: 0431 Signing time: Tue 24 Mar 2026 23:58:19 +0000 Manifest this update: Tue 24 Mar 2026 23:58:19 +0000 Manifest next update: Tue 31 Mar 2026 23:58:19 +0000 Files and hashes: 1: cJbvn454MDQ56aHksDgYgaQy9Ns.crl (hash: WCTUBDlGLMvYfCJsR92M9pZCitHHSpr0CWiWMLZdBto=) 2: AFED106A9E1511ECA4B98E73C4F9AE02.roa (hash: N5pLAxbLKv/PfC6YhIk0Oi5t9BhybE4dFuDmSAT9hEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1080 (0x438) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A, serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Mar 24 23:58:19 2026 GMT Not After : Mar 31 23:58:19 2026 GMT Subject: CN=69c3251b-cb27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:81:70:21:32:0c:b7:6e:3a:98:9b:69:81:bc: 31:8d:bb:fe:22:0a:8c:56:15:2f:c6:72:97:b7:69: df:b6:a2:fb:01:c4:03:86:e2:19:1c:54:f3:b6:87: 60:4c:4c:60:15:a7:55:ac:e4:89:91:f4:e3:1a:5e: 00:af:59:8f:39:a9:56:45:d4:84:af:e1:82:3f:1d: 96:63:6c:5e:3f:dc:86:20:bd:c1:68:49:47:64:d3: f9:1e:ee:37:20:90:e6:80:3d:36:c2:f9:8c:b2:d6: 39:9a:47:78:b2:b3:d2:54:9d:04:83:75:83:f8:c5: d3:83:10:3d:b5:4a:7f:e0:48:50:b4:24:b0:d4:e5: f7:4d:60:5b:b9:cd:ff:ff:61:0c:50:fd:b4:c9:5e: f7:6d:92:18:6b:42:68:f8:28:27:9b:01:f8:4c:4e: 1d:60:6f:f6:b0:6d:6f:fb:78:08:c4:b6:21:ae:9e: 68:a2:7d:9f:89:34:ea:a0:e1:35:94:12:c8:26:e8: de:eb:8b:a2:10:29:70:83:e5:7d:89:dc:b2:5f:67: 64:10:8c:6e:b2:db:e3:7b:d1:f9:a8:31:3b:66:bd: 49:ae:7f:c9:c9:f7:a4:c7:77:69:9b:43:41:c0:b5: c0:db:8d:63:c4:a2:fd:58:85:5b:86:7a:ca:94:82: d2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6F:A1:FC:35:29:C4:A2:56:97:C9:E5:56:A2:34:26:8B:4D:69:ED X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ef:23:d6:d5:6d:e3:17:ae:d1:6e:7a:40:1b:7d:9f:2c:fc: 6d:b5:17:c5:03:2a:84:32:3a:18:da:44:99:09:9c:59:4c:a9: 59:f1:8b:a6:c5:85:da:88:ed:4e:20:47:a8:62:c5:1b:9b:4d: c1:67:d1:f4:e6:3d:b0:ba:e8:0a:a5:01:d9:ab:85:c7:1e:d5: 98:02:27:5d:68:c6:5e:9a:99:d8:96:8c:b5:5d:ec:da:10:86: e1:c0:43:7f:96:a8:f1:ac:f0:66:a9:0f:14:83:90:62:19:84: f6:16:4f:11:6b:da:50:80:5f:84:9a:07:ea:96:ea:97:b1:08: 2d:97:c2:c0:a5:ea:54:91:53:09:8a:44:92:e7:7b:98:94:49: 19:f6:9e:f8:63:a9:eb:aa:59:3b:b1:bf:25:6e:ef:4d:aa:f4: 60:dc:2f:da:43:44:b6:0a:e1:6a:c6:1f:c4:f1:c5:f9:e9:59: 4e:55:16:04:fb:79:50:8d:78:48:37:90:53:6d:cd:d8:5a:d7: 1c:64:53:08:07:fd:d2:fa:77:8a:50:70:cc:26:67:89:7b:26: 07:b8:f9:80:58:f6:c9:5c:c9:ea:04:34:cf:5f:f9:87:23:97: c8:2b:b4:0f:f2:d0:7f:96:c5:b9:4d:9a:10:b9:c6:4e:8c:ea: 13:d8:4b:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjYwMzI0MjM1ODE5WhcNMjYwMzMxMjM1ODE5WjAYMRYwFAYD VQQDEw02OWMzMjUxYi1jYjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoFwITIMt246mJtpgbwxjbv+IgqMVhUvxnKXt2nftqL7AcQDhuIZHFTztodg TExgFadVrOSJkfTjGl4Ar1mPOalWRdSEr+GCPx2WY2xeP9yGIL3BaElHZNP5Hu43 IJDmgD02wvmMstY5mkd4srPSVJ0Eg3WD+MXTgxA9tUp/4EhQtCSw1OX3TWBbuc3/ /2EMUP20yV73bZIYa0Jo+CgnmwH4TE4dYG/2sG1v+3gIxLYhrp5oon2fiTTqoOE1 lBLIJuje64uiEClwg+V9idyyX2dkEIxustvje9H5qDE7Zr1Jrn/Jyfekx3dpm0NB wLXA241jxKL9WIVbhnrKlILSyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMRvofw1 KcSiVpfJ5VaiNCaLTWntMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEY4QS83MjE5NUFENDlFMTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1E UTU2YUhrc0RnWWdhUXk5TnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKe8j1tVt4xeu0W56QBt9nyz8bbUXxQMqhDI6GNpEmQmcWUypWfGLpsWF2ojt TiBHqGLFG5tNwWfR9OY9sLroCqUB2auFxx7VmAInXWjGXpqZ2JaMtV3s2hCG4cBD f5ao8azwZqkPFIOQYhmE9hZPEWvaUIBfhJoH6pbql7EILZfCwKXqVJFTCYpEkud7 mJRJGfae+GOp66pZO7G/JW7vTar0YNwv2kNEtgrhasYfxPHF+elZTlUWBPt5UI14 SDeQU23N2FrXHGRTCAf90vp3ilBwzCZniXsmB7j5gFj2yVzJ6gQ0z1/5hyOXyCu0 D/LQf5bFuU2aELnGTozqE9hLcg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:14:45 2026 by rpki-client