$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft File: VlIPoddulfCBm23dSWe0VQRphp0.mft (raw, json) Hash identifier: /MCVBJ9Sb7bo9vr06Ang4AumsE+EdKI84EXI3fmKHX8= Subject key identifier: 7E:3F:38:D6:A4:F9:50:F1:16:D9:77:A6:90:43:F6:AD:D6:C0:0B:8A Authority key identifier: 56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D Certificate issuer: /CN=A91A91CB/serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft Manifest number: D3 Signing time: Wed 25 Mar 2026 05:56:52 +0000 Manifest this update: Wed 25 Mar 2026 05:56:52 +0000 Manifest next update: Wed 01 Apr 2026 05:56:52 +0000 Files and hashes: 1: VlIPoddulfCBm23dSWe0VQRphp0.crl (hash: 9u5ifCBtejaMdaviJ/BYgH2x6Iyzc3BQx7w8KG8wnjI=) 2: EE8CD88EEA5A11EF922B276DC4F9AE02.roa (hash: hBcnC5PFlnMmxlDxFJ5KaA+un9OP3sAitrTcxqtGxZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Validity Not Before: Mar 25 05:56:52 2026 GMT Not After : Apr 1 05:56:52 2026 GMT Subject: CN=69c37924-26a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:9f:41:a2:ad:df:3e:7b:2c:d7:b2:cc:86:c1: 2f:a6:f0:65:42:64:ae:6d:ec:3e:6f:38:d1:98:1e: 64:a1:09:d4:8b:1e:1f:ee:be:33:01:a5:6d:74:2b: 14:36:ee:6a:50:bb:ed:1e:f3:ad:9c:4e:07:f6:f1: f3:e9:fd:fa:74:51:67:5c:dd:de:9a:d1:7e:56:cf: 07:43:7a:4c:35:d9:cb:ad:e8:f1:e0:7a:b0:aa:0e: 72:a2:e7:8a:57:ff:63:b6:c8:5d:60:e0:b3:2b:b8: b4:da:bf:85:62:fd:14:13:97:a7:2f:60:44:14:36: a2:80:7f:30:e2:03:56:4e:70:d3:da:6c:f6:5c:1a: 9a:6c:b7:7d:00:ed:10:bb:b9:6e:9b:22:09:48:ae: da:90:90:e8:2f:5d:f0:3f:eb:54:f7:c1:0e:f2:a6: ee:51:1c:47:eb:86:ad:5e:05:bc:50:f0:61:13:1f: 97:1a:57:bc:bd:ec:43:27:98:5b:ec:df:f0:88:a6: 17:83:82:10:44:c7:fe:6f:38:4f:e6:c6:b7:c1:b1: 66:c0:ca:af:ce:77:2f:4b:4b:91:e7:7b:54:32:d8: 9e:31:64:a8:98:27:fe:79:24:91:d4:6f:f6:e0:06: 06:f7:07:ba:ad:67:ff:4d:44:d0:93:83:0e:5b:e1: 89:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3F:38:D6:A4:F9:50:F1:16:D9:77:A6:90:43:F6:AD:D6:C0:0B:8A X509v3 Authority Key Identifier: keyid:56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:82:3d:52:fa:63:c5:56:09:10:1f:66:b8:8b:9c:6d:75:e1: b6:5d:d5:42:46:04:1d:77:7c:db:92:54:c2:d6:c4:d6:04:1d: 7d:6e:83:59:6b:f1:b3:9c:25:96:59:08:d3:0a:eb:ae:3d:50: 31:b1:92:5d:3c:c2:b1:57:22:8d:a0:42:2c:e4:ea:29:ec:b1: 6e:08:cb:a7:9e:3c:3c:b8:4d:76:6c:c1:5a:8f:61:98:aa:a1: 9c:94:cc:2b:ba:11:d0:cf:3a:6b:19:46:c8:1d:fc:f7:dd:0e: f0:69:6b:64:f7:86:f6:a6:58:58:f1:fc:00:0d:77:68:3e:ed: 2c:1a:9c:4f:ad:78:79:1c:97:b2:69:7a:8e:03:6e:dc:15:51: 75:85:8f:ad:6f:8f:cd:a9:fb:6c:b7:67:0f:f2:66:68:4e:f4: ac:22:1a:f2:ab:77:b9:a1:88:8f:1f:c1:a9:cf:90:19:55:33: 83:0e:10:59:f9:ef:9f:50:01:1f:2c:a9:c7:4c:cb:fc:62:32: 30:f3:c0:55:7f:39:80:25:08:31:5d:21:a2:37:fe:f0:d8:3a: ea:76:1a:f1:5c:b7:76:37:77:03:18:3a:15:1e:82:5b:43:02: dc:c9:c9:c5:58:b1:3c:37:44:29:5b:01:bc:e6:70:36:46:50: d0:15:77:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDU2NTIwRkExRDc2RTk1RjA4MTlCNkRERDQ5NjdCNDU1 MDQ2OTg2OUQwHhcNMjYwMzI1MDU1NjUyWhcNMjYwNDAxMDU1NjUyWjAYMRYwFAYD VQQDEw02OWMzNzkyNC0yNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjZ9Boq3fPnss17LMhsEvpvBlQmSubew+bzjRmB5koQnUix4f7r4zAaVtdCsU Nu5qULvtHvOtnE4H9vHz6f36dFFnXN3emtF+Vs8HQ3pMNdnLrejx4Hqwqg5youeK V/9jtshdYOCzK7i02r+FYv0UE5enL2BEFDaigH8w4gNWTnDT2mz2XBqabLd9AO0Q u7lumyIJSK7akJDoL13wP+tU98EO8qbuURxH64atXgW8UPBhEx+XGle8vexDJ5hb 7N/wiKYXg4IQRMf+bzhP5sa3wbFmwMqvzncvS0uR53tUMtieMWSomCf+eSSR1G/2 4AYG9we6rWf/TUTQk4MOW+GJLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH4/ONak +VDxFtl3ppBD9q3WwAuKMB8GA1UdIwQYMBaAFFZSD6HXbpXwgZtt3UlntFUEaYad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi81QjZGQTM2MEVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9WbElQb2RkdWxmQ0JtMjNkU1dlMFZRUnBo cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ZsSVBvZGR1bGZDQm0yM2RTV2UwVlFScGhwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi81QjZGQTM2MEVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9WbElQb2RkdWxm Q0JtMjNkU1dlMFZRUnBocDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcYI9UvpjxVYJEB9muIucbXXhtl3VQkYEHXd825JUwtbE1gQdfW6DWWvxs5wl llkI0wrrrj1QMbGSXTzCsVcijaBCLOTqKeyxbgjLp548PLhNdmzBWo9hmKqhnJTM K7oR0M86axlGyB38990O8GlrZPeG9qZYWPH8AA13aD7tLBqcT614eRyXsml6jgNu 3BVRdYWPrW+Pzan7bLdnD/JmaE70rCIa8qt3uaGIjx/Bqc+QGVUzgw4QWfnvn1AB Hyypx0zL/GIyMPPAVX85gCUIMV0hojf+8Ng66nYa8Vy3djd3Axg6FR6CW0MC3MnJ xVixPDdEKVsBvOZwNkZQ0BV39Q== -----END CERTIFICATE-----Generated at Thu Mar 26 17:20:26 2026 by rpki-client