$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft File: JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft (raw, json) Hash identifier: 8uvhewWuvGDWtfnaLtWfEP7Lgu8fjNyP5zFMsVEBFic= Subject key identifier: 03:0D:81:E0:24:5A:D8:CB:3C:BF:BA:6C:C6:C5:63:99:17:8B:C1:D4 Authority key identifier: 24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA Certificate issuer: /CN=A91AC73E/serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Certificate serial: 055F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft Manifest number: 0555 Signing time: Thu 26 Mar 2026 23:12:02 +0000 Manifest this update: Thu 26 Mar 2026 23:12:02 +0000 Manifest next update: Thu 02 Apr 2026 23:12:02 +0000 Files and hashes: 1: JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl (hash: iZhgThct5kfxadyZ9wpvKyWZ01A7QpdGoyLBvoOKNG4=) 2: 020CA7B24E4C11EC8045E71EC4F9AE02.roa (hash: yt+ZtKnpbuqQeAQi0WMw2FAsGK7S+Q6MIWDK5QZrGws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC73E, serialNumber=243F2D44727F1D1B8079F4014F69F4A074D1F1EA Validity Not Before: Mar 26 23:12:02 2026 GMT Not After : Apr 2 23:12:02 2026 GMT Subject: CN=69c5bd42-c85d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:52:49:a6:34:84:45:63:31:10:ca:2d:ed:0a: 91:5d:20:41:fc:81:cc:55:6b:3e:00:d0:74:41:89: 68:7e:38:ed:13:e8:1a:ad:40:8f:63:e5:5b:08:c9: 5c:99:f5:8e:ff:4a:cf:94:9a:9b:4f:19:bf:22:0f: 11:3d:1d:86:df:09:1b:f8:58:2f:87:6a:12:03:28: 97:38:f5:71:0c:ca:25:67:c0:2f:de:c3:42:3a:b9: db:35:1b:fd:84:c2:83:e6:98:87:25:5c:48:c8:b0: 35:a5:7b:57:6c:47:c3:8f:1d:8b:74:e8:c6:1c:e4: 6c:8d:a9:42:8a:91:3c:f6:92:7c:04:95:e5:ed:d6: c0:02:92:29:80:de:db:cd:1d:d9:56:cf:ca:bb:85: 40:16:f7:3b:d1:2e:a0:76:69:90:17:59:85:c5:8d: 1e:ac:4e:3d:26:ec:36:80:9c:e9:39:98:b2:9a:ed: f0:e7:b9:67:6b:61:f0:aa:e8:fb:8c:ae:a3:fe:c0: c2:76:8a:aa:a4:64:63:85:19:5b:65:21:99:e0:d9: a8:2a:0d:5a:db:0e:b0:18:bc:60:48:b8:28:92:16: 17:ad:54:4d:3b:74:9d:77:5b:66:1e:f2:6c:86:58: 43:db:8d:67:a7:b5:51:b8:4b:52:f6:2a:3f:35:44: 13:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0D:81:E0:24:5A:D8:CB:3C:BF:BA:6C:C6:C5:63:99:17:8B:C1:D4 X509v3 Authority Key Identifier: keyid:24:3F:2D:44:72:7F:1D:1B:80:79:F4:01:4F:69:F4:A0:74:D1:F1:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD8tRHJ_HRuAefQBT2n0oHTR8eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC73E/445545622C9511ECBEBC4248C4F9AE02/JD8tRHJ_HRuAefQBT2n0oHTR8eo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:bb:02:72:28:ef:06:c9:99:6b:d8:2d:13:74:05:1e:96:97: a6:bd:5a:1c:f1:04:2f:8c:2e:0b:79:68:3e:9a:c1:ca:3a:6b: 7a:ff:c8:3c:f9:5e:49:68:60:c2:34:10:a3:f3:46:66:2f:9f: 92:42:f1:91:fa:c9:7d:1a:f7:dc:26:42:d1:80:43:db:13:78: d0:2b:57:2b:18:0b:fe:a8:fe:0f:d9:9e:b1:11:ec:a7:cd:38: db:86:3b:81:c1:82:19:a3:91:14:72:58:b4:fe:38:ec:21:fa: 57:77:2b:2a:6a:d8:9a:49:6b:2a:6d:9a:1a:a9:eb:6c:09:14: dd:e3:3a:78:86:ea:19:11:f2:63:c3:52:fc:f8:58:16:2d:3c: 26:d1:1a:25:e5:69:f7:cf:24:20:7f:b0:a8:b7:48:11:88:7a: 7c:03:61:33:3d:d8:9b:02:56:15:60:63:d9:4f:1d:e1:d2:c8: b2:a5:5f:99:13:19:44:f0:c0:66:42:38:c5:3f:1e:f7:b2:66: fb:86:ad:b4:b5:f5:81:56:59:5f:86:f5:48:8b:22:52:c4:ba: f4:47:bb:e3:16:47:66:64:51:3d:d4:0e:87:b5:79:97:a1:94: 73:43:dc:3e:ed:ce:ae:23:1b:40:d8:55:38:83:2f:2e:f9:db: 3c:ae:35:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3M0UxMTAvBgNVBAUTKDI0M0YyRDQ0NzI3RjFEMUI4MDc5RjQwMTRGNjlGNEEw NzREMUYxRUEwHhcNMjYwMzI2MjMxMjAyWhcNMjYwNDAyMjMxMjAyWjAYMRYwFAYD VQQDEw02OWM1YmQ0Mi1jODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVJJpjSERWMxEMot7QqRXSBB/IHMVWs+ANB0QYlofjjtE+garUCPY+VbCMlc mfWO/0rPlJqbTxm/Ig8RPR2G3wkb+Fgvh2oSAyiXOPVxDMolZ8Av3sNCOrnbNRv9 hMKD5piHJVxIyLA1pXtXbEfDjx2LdOjGHORsjalCipE89pJ8BJXl7dbAApIpgN7b zR3ZVs/Ku4VAFvc70S6gdmmQF1mFxY0erE49Juw2gJzpOZiymu3w57lna2Hwquj7 jK6j/sDCdoqqpGRjhRlbZSGZ4NmoKg1a2w6wGLxgSLgokhYXrVRNO3Sdd1tmHvJs hlhD241np7VRuEtS9io/NUQTMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAMNgeAk WtjLPL+6bMbFY5kXi8HUMB8GA1UdIwQYMBaAFCQ/LURyfx0bgHn0AU9p9KB00fHq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzczRS80NDU1NDU2MjJD OTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hSdUFlZlFCVDJuMG9IVFI4 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEOHRSSEpfSFJ1QWVmUUJUMm4wb0hUUjhlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzczRS80NDU1NDU2MjJDOTUxMUVDQkVCQzQyNDhDNEY5QUUwMi9KRDh0UkhKX0hS dUFlZlFCVDJuMG9IVFI4ZW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnrsCcijvBsmZa9gtE3QFHpaXpr1aHPEEL4wuC3loPprByjprev/IPPleSWhg wjQQo/NGZi+fkkLxkfrJfRr33CZC0YBD2xN40CtXKxgL/qj+D9mesRHsp80424Y7 gcGCGaORFHJYtP447CH6V3crKmrYmklrKm2aGqnrbAkU3eM6eIbqGRHyY8NS/PhY Fi08JtEaJeVp988kIH+wqLdIEYh6fANhMz3YmwJWFWBj2U8d4dLIsqVfmRMZRPDA ZkI4xT8e97Jm+4attLX1gVZZX4b1SIsiUsS69Ee74xZHZmRRPdQOh7V5l6GUc0Pc Pu3OriMbQNhVOIMvLvnbPK41Tw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:19:58 2026 by rpki-client