$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: Es72AwQAAPsqfI0ANoimEoWhamy0+6AVad8N0i5KWVY= Subject key identifier: 0F:20:C4:CB:AF:26:FC:28:39:15:AA:3C:C8:94:E1:7B:A8:1E:D8:5B Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 031B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 030F Signing time: Wed 25 Mar 2026 00:49:58 +0000 Manifest this update: Wed 25 Mar 2026 00:49:57 +0000 Manifest next update: Wed 01 Apr 2026 00:49:57 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: JYaeMb549nD4MXblFm9RDQ9kLit6AHczdd2hsYYU6d0=) 2: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: h4h9VFlilMq7CKoOcwRr0fslyRPoCa6/sTUwfmGzOxg=) 3: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: VgeFEtMT/M7sth0/aY0YUIbWeg643mp39smFMavgcMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 795 (0x31b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Mar 25 00:49:57 2026 GMT Not After : Apr 1 00:49:57 2026 GMT Subject: CN=69c33136-b02d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:52:e0:cc:f0:8e:77:cd:7d:f8:de:89:e1:29: 3c:ef:b7:52:1b:4c:57:11:e9:6b:79:e5:8c:04:55: 04:39:f7:f8:44:07:81:5d:25:15:6f:c3:b3:c6:b1: 05:03:58:36:ae:55:5e:33:c2:35:80:93:ac:7f:05: 3f:38:cc:57:79:bd:b2:d3:55:9a:02:61:0e:2b:ee: 02:ab:05:73:87:a7:37:eb:00:3b:33:c7:0a:46:5e: 8e:72:21:e7:0a:f8:97:cf:6e:10:00:03:f4:f5:70: 5e:96:4f:35:f8:cc:4b:14:2d:f5:91:1e:00:b3:f6: be:cc:e1:44:4f:83:8e:90:01:a2:35:76:99:55:12: d0:5c:20:68:a0:c1:fe:83:24:6d:b4:41:ef:08:2d: d2:36:27:9d:04:80:00:98:ca:c7:b8:9b:61:ed:ad: 20:ee:91:ad:64:97:e5:c3:c3:c0:75:66:59:5f:27: 68:d9:46:e5:50:87:f4:93:0c:42:4d:d4:d1:28:03: b5:3c:bd:78:74:16:ea:a0:22:b0:db:92:64:14:80: bc:eb:48:34:69:08:cf:5f:e0:ab:6d:06:cf:13:3a: 24:02:ec:86:f6:9f:79:f3:f6:bf:c6:9f:4a:74:63: 6b:cd:de:3d:2a:47:0a:77:a6:75:59:bb:fc:7f:c8: ff:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:20:C4:CB:AF:26:FC:28:39:15:AA:3C:C8:94:E1:7B:A8:1E:D8:5B X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:33:8f:34:ec:2d:1f:b8:d1:c4:83:ce:45:ef:11:3a:d2:73: 73:29:e1:31:5e:ac:44:f4:9f:c6:07:3a:cd:24:79:bc:56:42: 15:40:f7:b0:8f:de:8b:34:21:96:1f:50:ce:18:ed:c2:8e:ae: 5f:42:42:93:1d:3d:d1:c2:e0:12:d7:d6:ef:c3:52:84:7f:fe: 65:bf:60:6c:5d:60:10:d0:4e:3f:7c:a6:de:04:6e:16:63:f1: 9b:f4:d2:f0:8f:80:16:4f:92:38:89:f4:62:15:44:39:65:1c: 59:b4:bf:e5:fb:fe:59:32:3a:b7:a6:02:00:5f:68:46:e4:a4: 92:96:f7:6f:8c:7d:0e:be:e9:1a:73:2d:65:12:02:05:d0:5b: 86:ae:b0:dd:c7:97:8e:8f:9f:35:10:94:70:a1:3c:66:c9:e4: 02:81:2c:3c:f8:e9:29:1c:b0:ba:5e:5b:1f:13:e4:82:0b:31: ae:30:a9:34:86:3e:64:aa:0e:b8:a0:73:05:9a:c3:78:d9:18: 93:df:a7:26:18:19:90:da:a7:f8:52:98:9e:dd:06:de:1c:00: d6:d2:70:c5:4e:7f:83:96:40:03:7f:b1:07:b6:c7:6b:9a:a7: 19:fd:f9:6e:b5:86:b2:bd:43:e3:0e:77:14:a9:2d:10:cb:fc: e0:57:9f:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjYwMzI1MDA0OTU3WhcNMjYwNDAxMDA0OTU3WjAYMRYwFAYD VQQDEw02OWMzMzEzNi1iMDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFLgzPCOd819+N6J4Sk877dSG0xXEelreeWMBFUEOff4RAeBXSUVb8OzxrEF A1g2rlVeM8I1gJOsfwU/OMxXeb2y01WaAmEOK+4CqwVzh6c36wA7M8cKRl6OciHn CviXz24QAAP09XBelk81+MxLFC31kR4As/a+zOFET4OOkAGiNXaZVRLQXCBooMH+ gyRttEHvCC3SNiedBIAAmMrHuJth7a0g7pGtZJflw8PAdWZZXydo2UblUIf0kwxC TdTRKAO1PL14dBbqoCKw25JkFIC860g0aQjPX+CrbQbPEzokAuyG9p958/a/xp9K dGNrzd49KkcKd6Z1Wbv8f8j/YwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA8gxMuv JvwoORWqPMiU4XuoHthbMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFzOPNOwtH7jRxIPORe8ROtJzcynhMV6sRPSfxgc6zSR5vFZCFUD3sI/eizQh lh9Qzhjtwo6uX0JCkx090cLgEtfW78NShH/+Zb9gbF1gENBOP3ym3gRuFmPxm/TS 8I+AFk+SOIn0YhVEOWUcWbS/5fv+WTI6t6YCAF9oRuSkkpb3b4x9Dr7pGnMtZRIC BdBbhq6w3ceXjo+fNRCUcKE8ZsnkAoEsPPjpKRywul5bHxPkggsxrjCpNIY+ZKoO uKBzBZrDeNkYk9+nJhgZkNqn+FKYnt0G3hwA1tJwxU5/g5ZAA3+xB7bHa5qnGf35 brWGsr1D4w53FKktEMv84Fef1A== -----END CERTIFICATE-----Generated at Thu Mar 26 16:29:47 2026 by rpki-client