$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: 30tlYqcumXZ7tsKH1upgPFxGZKgHxiXUsMRw5W9yCyI= Subject key identifier: 69:5F:F6:68:35:6F:06:17:EF:47:6F:9E:64:6C:D6:C2:D9:54:9F:7A Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 3532 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 3529 Signing time: Tue 24 Mar 2026 14:56:36 +0000 Manifest this update: Tue 24 Mar 2026 14:56:36 +0000 Manifest next update: Tue 31 Mar 2026 14:56:36 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: XJdDBNwgsEC/MNwscpiYDjHYCz/XzLHFc+/SMTm7+Q4=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: OrYwlHpiSmZNjD507c7+5SVsF6TOXtHT7d2m6BJQ+nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13618 (0x3532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Mar 24 14:56:36 2026 GMT Not After : Mar 31 14:56:36 2026 GMT Subject: CN=69c2a624-c0a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c2:6c:fe:c8:d0:8d:f5:89:ae:89:82:eb:70: 42:3f:c6:0c:0c:97:cf:d6:58:42:51:72:89:b5:81: e8:c7:0d:a1:41:ef:cd:27:f2:3f:8e:d3:2b:0f:cc: 70:1c:e1:86:aa:f2:13:67:48:bc:3c:37:92:47:82: f7:c7:49:71:9d:93:83:32:c9:87:11:e2:b9:98:17: c5:81:16:29:24:03:19:26:8d:8f:05:17:f6:93:e3: c6:d0:d7:77:03:a7:94:9d:00:94:a0:10:b1:0b:22: 0d:e6:86:49:77:20:3e:84:e7:e0:3d:0f:a8:ad:6f: a4:aa:b7:38:ba:da:3a:31:b2:5a:20:f2:74:fa:ef: db:ed:df:51:4c:4e:2f:45:f4:9e:f5:17:26:66:2b: 8d:f5:ea:4b:df:c8:53:d5:18:03:b3:fa:7b:a6:69: 6b:44:f8:6f:89:4c:e8:7c:72:a6:ea:c3:d4:43:dd: f3:ea:2c:4f:f5:99:68:dc:6f:0a:b8:01:40:38:13: 73:6f:71:18:18:28:9f:41:39:c1:18:ec:58:96:15: 24:a4:74:19:54:10:bd:1c:e9:77:36:ba:21:90:e9: 0c:66:e0:5b:e0:12:0e:93:b6:70:52:2f:b4:7a:00: 3d:e9:b0:59:d2:ef:06:b3:04:84:f9:55:6e:63:d0: 65:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5F:F6:68:35:6F:06:17:EF:47:6F:9E:64:6C:D6:C2:D9:54:9F:7A X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:88:6a:89:16:1e:ce:c5:48:37:35:e8:95:23:3b:16:57:b5: ca:3a:8a:c7:e3:29:00:b4:b4:13:fe:36:9f:e5:86:58:6a:e9: bf:aa:17:34:fb:6f:5f:6b:20:f3:07:6d:02:b4:a5:43:0d:ff: e7:18:d3:7e:1f:f5:4e:7c:7b:bb:ef:01:95:ca:84:7e:79:d2: 60:bb:46:ab:01:36:ef:22:92:e1:0b:32:8f:32:59:87:e0:cc: b4:33:97:5b:c6:39:5a:14:dc:1a:47:4a:e8:f8:24:30:46:ae: af:3b:67:ca:72:bc:25:71:bf:07:5e:a8:4a:bd:2d:3f:0d:10: 69:24:d0:1a:53:25:51:d4:e3:c9:92:28:43:2c:cc:6b:c1:e1: 91:dc:de:f8:56:fc:e8:85:c7:e9:c0:80:61:7a:b6:f6:4c:5d: 98:70:fe:57:bc:d7:92:25:b3:0f:78:a7:c1:1b:54:41:5c:e0: f3:14:06:63:ab:58:a3:92:41:42:52:b9:0e:2b:d5:86:d1:3f: 05:9c:ee:90:fe:b7:66:33:18:cf:8f:6a:a1:57:d1:3f:99:6b: ae:7b:a2:8c:28:9c:16:1c:5b:d3:f5:0e:c8:cb:71:52:2d:0b: 7a:a4:9f:0e:c5:f0:d5:8f:b1:0c:aa:dc:90:ab:99:07:a9:4c: 16:2c:3d:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjYwMzI0MTQ1NjM2WhcNMjYwMzMxMTQ1NjM2WjAYMRYwFAYD VQQDEw02OWMyYTYyNC1jMGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8Js/sjQjfWJromC63BCP8YMDJfP1lhCUXKJtYHoxw2hQe/NJ/I/jtMrD8xw HOGGqvITZ0i8PDeSR4L3x0lxnZODMsmHEeK5mBfFgRYpJAMZJo2PBRf2k+PG0Nd3 A6eUnQCUoBCxCyIN5oZJdyA+hOfgPQ+orW+kqrc4uto6MbJaIPJ0+u/b7d9RTE4v RfSe9RcmZiuN9epL38hT1RgDs/p7pmlrRPhviUzofHKm6sPUQ93z6ixP9Zlo3G8K uAFAOBNzb3EYGCifQTnBGOxYlhUkpHQZVBC9HOl3NrohkOkMZuBb4BIOk7ZwUi+0 egA96bBZ0u8GswSE+VVuY9BlfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGlf9mg1 bwYX70dvnmRs1sLZVJ96MB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL4hqiRYezsVINzXolSM7Fle1yjqKx+MpALS0E/42n+WGWGrpv6oXNPtvX2sg 8wdtArSlQw3/5xjTfh/1Tnx7u+8BlcqEfnnSYLtGqwE27yKS4QsyjzJZh+DMtDOX W8Y5WhTcGkdK6PgkMEaurztnynK8JXG/B16oSr0tPw0QaSTQGlMlUdTjyZIoQyzM a8Hhkdze+Fb86IXH6cCAYXq29kxdmHD+V7zXkiWzD3inwRtUQVzg8xQGY6tYo5JB QlK5DivVhtE/BZzukP63ZjMYz49qoVfRP5lrrnuijCicFhxb0/UOyMtxUi0LeqSf DsXw1Y+xDKrckKuZB6lMFiw9+w== -----END CERTIFICATE-----Generated at Thu Mar 26 08:53:41 2026 by rpki-client