$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: N179ktKiRPUu4XhpOAqixfiiP3EoD2zfn2hLo30qdPE= Subject key identifier: FC:D1:F3:30:FA:0C:CD:80:7D:9E:C5:A5:2D:CD:4E:EF:7E:60:52:B3 Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: EA Signing time: Wed 25 Mar 2026 05:36:21 +0000 Manifest this update: Wed 25 Mar 2026 05:36:20 +0000 Manifest next update: Wed 01 Apr 2026 05:36:20 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: XpKBeH/P0LRLa6CMdOJceJDmWVslhciL9/l5kqRL1vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Mar 25 05:36:20 2026 GMT Not After : Apr 1 05:36:20 2026 GMT Subject: CN=69c37455-3aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5f:0d:d4:f2:4a:70:7e:b7:27:34:78:7f:16: 40:ee:e7:50:39:ca:23:59:c1:cc:26:95:74:04:2c: 05:59:11:70:e5:c4:57:83:0c:72:a4:6b:7e:7c:99: 32:f6:a5:7e:d0:0b:f0:9d:4b:c3:90:c8:95:28:0a: 7b:1e:fc:49:06:0f:78:5e:28:b1:8f:4f:76:32:8d: 1a:6f:d7:8f:1a:be:75:22:3b:6e:b4:09:d1:3b:57: 51:24:00:02:50:cc:86:8f:c6:71:c0:f9:a1:b8:0a: 6e:88:9e:80:0b:37:50:04:75:82:51:57:5b:4a:d7: 50:07:2a:25:f0:16:78:c6:95:22:67:11:b9:4f:61: 70:ef:fd:72:b8:d7:dd:8d:07:6e:93:18:bc:6a:4e: 2d:24:a0:3d:d4:5a:6c:89:77:00:f9:93:17:3d:e2: 3c:24:05:bb:7c:4a:59:0b:75:dd:a5:98:55:03:3c: 5c:d9:23:c1:94:0f:35:75:e1:29:84:7f:67:0d:8f: 3e:ce:10:c3:0a:1b:4e:6b:cf:ca:48:4b:86:9e:52: bb:25:73:e2:1a:41:29:1d:3b:9a:3c:50:93:60:ec: 73:b9:a3:25:d4:1e:dc:05:6f:ea:8c:22:71:c3:40: 93:24:87:2c:27:75:7a:62:f1:2e:54:46:d4:f5:f1: 95:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D1:F3:30:FA:0C:CD:80:7D:9E:C5:A5:2D:CD:4E:EF:7E:60:52:B3 X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:a0:d7:b2:68:46:5f:1b:c1:2f:76:89:4c:9a:2a:e2:2e:b1: cf:26:c4:db:d3:61:70:95:5e:17:41:0c:ec:19:87:1a:2d:24: b3:9a:46:9a:16:0b:94:80:e5:6e:55:7e:8d:e4:f2:d1:e5:94: 56:81:b5:6f:08:0b:b1:56:a0:c4:4c:20:c4:b6:47:60:7a:97: 04:8f:1c:df:46:db:8a:2d:03:8a:1f:89:de:e7:76:9d:1d:13: d4:90:d5:ba:eb:94:be:37:b9:69:a8:cc:69:ed:3e:bf:3c:97: ec:30:65:01:c2:d0:75:09:49:09:f8:17:6e:74:19:4e:fc:8f: fd:c8:e7:34:0d:28:1b:5d:ff:5d:3b:1f:18:9c:0d:a9:fa:ef: 01:45:7f:d0:ef:bf:da:ff:6f:25:81:8f:00:da:ed:31:63:7a: c9:a4:ef:e5:16:92:3e:f4:83:db:a4:47:29:7b:9d:2d:9f:c3: 20:af:df:d8:c4:fa:0d:21:31:9f:25:06:0e:5a:b1:b0:17:c6: 3b:19:17:69:38:e0:72:63:43:33:5b:e2:0a:6a:4c:27:a6:52: fc:4b:92:3d:b5:5e:5e:0f:bf:3b:a3:86:66:4d:a0:f8:00:08: 38:ae:48:71:11:68:81:c3:8b:df:b9:70:93:62:db:4f:e8:12: ba:dd:d6:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyMDcxMTAvBgNVBAUTKDc3N0RCODk3NDU3MEU5QjZDMDRFMjY1N0U2RDBBNTAz N0M3MTg4NkIwHhcNMjYwMzI1MDUzNjIwWhcNMjYwNDAxMDUzNjIwWjAYMRYwFAYD VQQDEw02OWMzNzQ1NS0zYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F8N1PJKcH63JzR4fxZA7udQOcojWcHMJpV0BCwFWRFw5cRXgwxypGt+fJky 9qV+0AvwnUvDkMiVKAp7HvxJBg94Xiixj092Mo0ab9ePGr51IjtutAnRO1dRJAAC UMyGj8ZxwPmhuApuiJ6ACzdQBHWCUVdbStdQByol8BZ4xpUiZxG5T2Fw7/1yuNfd jQdukxi8ak4tJKA91FpsiXcA+ZMXPeI8JAW7fEpZC3XdpZhVAzxc2SPBlA81deEp hH9nDY8+zhDDChtOa8/KSEuGnlK7JXPiGkEpHTuaPFCTYOxzuaMl1B7cBW/qjCJx w0CTJIcsJ3V6YvEuVEbU9fGVqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPzR8zD6 DM2AfZ7FpS3NTu9+YFKzMB8GA1UdIwQYMBaAFHd9uJdFcOm2wE4mV+bQpQN8cYhr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjIwNy9CNDg4NjFDNkMy MjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZiYkFUaVpYNXRDbEEzeHhp R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjIwNy9CNDg4NjFDNkMyMjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZi YkFUaVpYNXRDbEEzeHhpR3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhqDXsmhGXxvBL3aJTJoq4i6xzybE29NhcJVeF0EM7BmHGi0ks5pGmhYLlIDl blV+jeTy0eWUVoG1bwgLsVagxEwgxLZHYHqXBI8c30bbii0Dih+J3ud2nR0T1JDV uuuUvje5aajMae0+vzyX7DBlAcLQdQlJCfgXbnQZTvyP/cjnNA0oG13/XTsfGJwN qfrvAUV/0O+/2v9vJYGPANrtMWN6yaTv5RaSPvSD26RHKXudLZ/DIK/f2MT6DSEx nyUGDlqxsBfGOxkXaTjgcmNDM1viCmpMJ6ZS/EuSPbVeXg+/O6OGZk2g+AAIOK5I cRFogcOL37lwk2LbT+gSut3WbQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:53:26 2026 by rpki-client