$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: LzrzbJQB3S7e1AErsGH28Jv/EpSEgGUu7S234F6mVqw= Subject key identifier: 54:45:6E:88:5E:79:1B:63:0F:9A:0D:02:DC:93:28:7C:1B:1D:4F:9B Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0DFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0DD0 Signing time: Thu 26 Mar 2026 17:51:29 +0000 Manifest this update: Thu 26 Mar 2026 17:51:29 +0000 Manifest next update: Thu 02 Apr 2026 17:51:29 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: ySKvyutSbNTm7nfHlpvuYMVsEi2sD88U2UEOfFvDQrE=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: h/EzL6m4kKSsLLi32KOt8BdjgRY3aECQIU78ROu0rg0=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: gxwmxGG8uXjmf7OQYav7fi+LEJxCykIRMPfMDhbn+Lk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3583 (0xdff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Mar 26 17:51:29 2026 GMT Not After : Apr 2 17:51:29 2026 GMT Subject: CN=69c57221-639c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:1b:c1:6a:f4:29:91:74:a3:93:c1:b2:9e:4a: 7a:94:a9:50:8f:e3:2c:d2:29:ab:18:33:60:00:72: 60:37:46:f5:56:4d:be:d9:08:3f:33:6d:25:12:ec: 05:cd:2a:0e:32:24:1c:1c:6a:f8:7b:0d:32:58:e6: c6:a7:d3:6b:74:e1:e4:3e:aa:1f:fc:a5:c2:0e:dd: d4:43:73:93:12:d6:91:04:d7:4e:41:8e:0d:e4:d1: aa:82:06:32:7a:63:b8:9d:31:77:9f:a8:49:05:20: 4b:8d:d7:31:17:a9:73:19:b2:20:04:42:a2:1f:69: 75:f4:ef:2c:1f:40:be:94:aa:b5:9e:41:0e:1a:ce: db:4b:2b:c6:b9:a9:f2:0d:48:2c:6b:24:b1:c2:0e: 06:d4:e2:c4:81:ab:bf:07:e4:19:40:89:d1:ad:ca: 07:42:69:b8:d9:ec:00:9d:d5:ef:4d:71:d8:c2:ec: 56:e5:7e:22:6d:3f:b0:42:48:ae:9f:48:02:5b:5b: 7f:9d:65:6e:45:8d:f9:9b:f6:4c:11:e1:94:15:7c: a8:e2:50:c0:97:99:24:aa:47:7a:f6:a5:f8:aa:bf: 33:f3:d0:c4:bf:2e:a3:78:57:cd:2c:8c:e8:f7:22: b9:c5:46:9e:0a:1e:79:7d:c7:97:cd:e4:ce:2c:ad: ce:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:45:6E:88:5E:79:1B:63:0F:9A:0D:02:DC:93:28:7C:1B:1D:4F:9B X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:a1:61:9d:a9:06:7d:e7:49:a2:eb:ee:75:d4:ed:19:28:84: 15:aa:be:3d:a8:bc:c0:3d:fe:7f:f5:b1:cf:80:78:f8:bb:b5: f4:c4:53:48:3f:c7:4c:94:69:33:53:ca:a9:23:63:7f:74:51: 03:95:59:e0:56:cd:cb:7a:d9:01:fb:ff:2a:41:35:6a:29:1e: 71:d9:43:66:56:fb:4b:51:32:c6:63:d5:bf:39:15:af:aa:74: e4:6f:d3:e9:7a:23:82:fa:d2:8b:78:29:7c:a7:06:3d:2a:20: 85:1d:19:dd:13:50:ca:f6:ec:2f:82:75:a8:c3:9f:25:6a:7b: a3:e3:14:01:aa:f5:26:44:fa:14:b6:cd:ac:81:4e:8f:e0:43: 70:51:97:73:56:a0:d9:77:34:76:e8:a1:4d:9a:e3:de:bb:0a: 22:b8:c0:38:69:3d:82:14:e6:f8:7d:d3:33:c2:7f:34:e0:a5: d6:08:3e:1a:82:f9:da:db:0f:6e:13:f1:6a:8a:18:73:7d:e1: fc:2c:ca:c0:b4:3a:3b:83:b2:62:cd:b0:2f:f0:a9:b9:a4:01: 57:02:17:ef:72:b7:bd:84:00:05:1b:89:dc:a0:58:db:45:d8: 55:a0:0b:21:56:ef:c1:88:25:7c:46:24:6e:66:df:b6:90:3e: 37:6c:0a:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwMzI2MTc1MTI5WhcNMjYwNDAyMTc1MTI5WjAYMRYwFAYD VQQDEw02OWM1NzIyMS02MzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8RvBavQpkXSjk8Gynkp6lKlQj+Ms0imrGDNgAHJgN0b1Vk2+2Qg/M20lEuwF zSoOMiQcHGr4ew0yWObGp9NrdOHkPqof/KXCDt3UQ3OTEtaRBNdOQY4N5NGqggYy emO4nTF3n6hJBSBLjdcxF6lzGbIgBEKiH2l19O8sH0C+lKq1nkEOGs7bSyvGuany DUgsaySxwg4G1OLEgau/B+QZQInRrcoHQmm42ewAndXvTXHYwuxW5X4ibT+wQkiu n0gCW1t/nWVuRY35m/ZMEeGUFXyo4lDAl5kkqkd69qX4qr8z89DEvy6jeFfNLIzo 9yK5xUaeCh55fceXzeTOLK3OswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFRFbohe eRtjD5oNAtyTKHwbHU+bMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc6FhnakGfedJouvuddTtGSiEFaq+Pai8wD3+f/Wxz4B4+Lu19MRTSD/HTJRp M1PKqSNjf3RRA5VZ4FbNy3rZAfv/KkE1aikecdlDZlb7S1EyxmPVvzkVr6p05G/T 6XojgvrSi3gpfKcGPSoghR0Z3RNQyvbsL4J1qMOfJWp7o+MUAar1JkT6FLbNrIFO j+BDcFGXc1ag2Xc0duihTZrj3rsKIrjAOGk9ghTm+H3TM8J/NOCl1gg+GoL52tsP bhPxaooYc33h/CzKwLQ6O4OyYs2wL/CpuaQBVwIX73K3vYQABRuJ3KBY20XYVaAL IVbvwYglfEYkbmbftpA+N2wKRw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:14:05 2026 by rpki-client