$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: CQP/B/VQyHNjI3l5K760OrGtNlbjgKwOLsMkl8SHndY= Subject key identifier: C7:B6:A9:69:5F:11:9E:EB:2A:9F:2D:02:28:8C:2E:0E:91:81:10:AD Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 0935 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 0928 Signing time: Tue 24 Mar 2026 20:00:21 +0000 Manifest this update: Tue 24 Mar 2026 20:00:20 +0000 Manifest next update: Tue 31 Mar 2026 20:00:20 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: VZN7ImfwbMPhigHEimUNKp/r7P46VIalDp1PUDI/0YE=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: zpylNEe89CbqVMFt1Qej/SgQec1Qy8+/AmkFsaHZ4JI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2357 (0x935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Mar 24 20:00:20 2026 GMT Not After : Mar 31 20:00:20 2026 GMT Subject: CN=69c2ed55-0bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:76:9e:a6:15:05:95:70:91:ae:bb:74:3d:49: 48:23:c3:b4:b3:f7:f1:3b:aa:e2:b1:64:54:76:d2: dd:82:4a:b8:7c:9d:3a:22:84:db:fe:34:62:be:99: 21:b8:5d:76:3e:8f:b4:e9:57:1d:59:2d:28:28:4c: d5:d2:7c:12:57:9a:da:b3:02:f7:b3:9b:84:63:20: 06:22:e3:cd:c7:65:c8:d9:57:79:45:a5:22:80:83: bc:a2:15:bd:df:a8:89:28:51:ba:e1:33:25:73:1c: 87:d0:7a:06:0a:e9:13:fc:b1:c2:e1:ad:3d:36:a6: df:63:90:16:17:e3:67:3b:a3:b8:43:01:c2:5b:b1: 6b:11:00:2b:f1:43:df:e7:05:17:d3:2c:d0:c9:a8: 04:06:d5:a3:db:76:32:29:b8:08:b8:94:04:17:9b: a2:32:51:54:1a:85:7a:c3:47:af:d0:72:be:c9:7a: 93:ff:24:c3:30:22:e3:2f:62:51:a8:ad:93:2b:b9: 89:df:51:d2:d1:9f:f4:b2:2b:88:56:ee:c5:bd:7e: ae:5e:a9:49:38:c4:0c:9a:c7:68:b0:5a:59:1f:3e: 37:c9:ca:fa:3e:f2:54:d1:7a:10:21:d9:82:0a:75: 08:d8:02:a0:66:1b:83:17:5e:9a:67:5d:c7:4a:87: 06:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B6:A9:69:5F:11:9E:EB:2A:9F:2D:02:28:8C:2E:0E:91:81:10:AD X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d6:dd:ce:24:80:83:ba:50:72:d9:0d:b9:d9:83:44:2f:e1: ca:ce:cc:ea:d2:06:fd:91:a2:b9:45:8d:ea:44:eb:b8:cc:6f: cc:70:bd:cf:55:da:cc:90:bd:7d:e6:28:3d:7b:2f:23:93:fc: 26:3e:6a:21:63:0f:19:7a:ac:ae:67:96:9d:ba:22:7e:21:cf: 1a:11:47:9a:14:a1:12:bd:9f:db:03:47:c1:dd:04:6f:b3:fc: fa:3c:22:81:e9:1b:2b:85:0e:cd:20:6c:29:a6:a4:36:cc:91: 1b:b3:6d:9f:d0:c9:f6:90:68:ab:f1:b4:ef:8a:53:4a:6d:61: 43:0d:57:f3:c8:00:61:81:99:a2:99:48:a5:2f:81:20:00:88: 1e:9f:87:b9:c8:d6:96:a0:88:c5:2a:14:ce:21:61:f0:a2:de: b4:c7:4f:1e:89:a6:ab:c3:f8:56:5a:a3:7a:31:20:a6:19:dc: 84:8c:39:7d:4c:ee:ef:1c:1c:0d:1c:18:29:fb:bb:d3:a4:ab: 04:be:87:42:31:55:cd:60:e9:68:c3:19:82:78:66:91:69:5b: ee:84:5f:cb:1b:38:83:9c:9a:45:58:44:3d:04:c5:09:a4:e6: 58:92:ff:2d:e5:cc:01:60:30:e9:c7:97:d3:76:6b:29:29:76: 0c:73:31:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjYwMzI0MjAwMDIwWhcNMjYwMzMxMjAwMDIwWjAYMRYwFAYD VQQDEw02OWMyZWQ1NS0wYmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3aephUFlXCRrrt0PUlII8O0s/fxO6risWRUdtLdgkq4fJ06IoTb/jRivpkh uF12Po+06VcdWS0oKEzV0nwSV5raswL3s5uEYyAGIuPNx2XI2Vd5RaUigIO8ohW9 36iJKFG64TMlcxyH0HoGCukT/LHC4a09NqbfY5AWF+NnO6O4QwHCW7FrEQAr8UPf 5wUX0yzQyagEBtWj23YyKbgIuJQEF5uiMlFUGoV6w0ev0HK+yXqT/yTDMCLjL2JR qK2TK7mJ31HS0Z/0siuIVu7FvX6uXqlJOMQMmsdosFpZHz43ycr6PvJU0XoQIdmC CnUI2AKgZhuDF16aZ13HSocGqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMe2qWlf EZ7rKp8tAiiMLg6RgRCtMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPdbdziSAg7pQctkNudmDRC/hys7M6tIG/ZGiuUWN6kTruMxvzHC9z1XazJC9 feYoPXsvI5P8Jj5qIWMPGXqsrmeWnboifiHPGhFHmhShEr2f2wNHwd0Eb7P8+jwi gekbK4UOzSBsKaakNsyRG7Ntn9DJ9pBoq/G074pTSm1hQw1X88gAYYGZoplIpS+B IACIHp+HucjWlqCIxSoUziFh8KLetMdPHommq8P4VlqjejEgphnchIw5fUzu7xwc DRwYKfu706SrBL6HQjFVzWDpaMMZgnhmkWlb7oRfyxs4g5yaRVhEPQTFCaTmWJL/ LeXMAWAw6ceX03ZrKSl2DHMxlg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:04:02 2026 by rpki-client