$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: fYPUz55K6ln3RimHnS+JPx8BT9Fw/2wkmQxXZN+6ETA= Subject key identifier: 71:6E:42:E4:33:75:88:A4:CF:F2:DC:DC:83:B2:E7:2D:75:04:C9:F9 Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0DF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0DE4 Signing time: Tue 24 Mar 2026 17:43:48 +0000 Manifest this update: Tue 24 Mar 2026 17:43:48 +0000 Manifest next update: Tue 31 Mar 2026 17:43:48 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: edewDivo6Z7JYSXZhn9TZ5ZR42Q5JD/I9aDBYKI3AZg=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: egC6j0/L+vNrahwqS7R8sgu3NxXeX9dmJPD7oQ0uOyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3572 (0xdf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Mar 24 17:43:48 2026 GMT Not After : Mar 31 17:43:48 2026 GMT Subject: CN=69c2cd54-9d36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8c:a7:a1:c3:b3:e2:e9:ba:83:c2:3e:c5:d9: a7:25:cf:f3:d0:b1:31:47:d8:06:ce:82:94:f7:39: e3:0f:0a:64:84:a8:04:e2:3d:60:5d:bc:d3:0f:00: 85:06:f0:e3:82:0c:9e:f3:3d:75:bf:b2:b1:c4:e6: 9e:63:3e:f2:ba:7f:15:44:03:bf:c9:e1:3c:2c:cd: 02:c5:8e:a0:60:10:46:1f:41:87:66:94:4e:36:ff: d3:64:f7:83:34:72:72:f7:21:f8:13:f7:a6:ee:f3: 62:1d:3e:ae:00:4d:e3:5b:43:f6:e4:9d:de:89:4f: 16:b2:76:a6:68:6c:65:ef:3c:58:5a:8e:57:f7:cc: 14:6a:3e:3c:cc:76:92:b6:84:d4:77:4f:4b:35:b3: cf:51:df:39:5e:a1:30:45:0d:e1:26:35:fe:69:96: 18:28:82:ac:28:9a:64:bb:5f:39:20:f3:91:c2:74: ea:32:46:44:1b:ba:41:59:09:75:e2:e3:31:75:81: 84:e1:19:70:25:e6:15:87:10:f6:a7:7d:95:56:03: da:bd:bd:88:fd:d3:ce:ea:6e:e3:cd:37:23:15:b1: 0f:0b:53:52:ec:3b:4d:a3:f5:a4:0a:ed:1c:32:06: 7d:8a:98:ed:35:c9:e8:3d:03:3b:9a:de:25:64:8d: 76:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6E:42:E4:33:75:88:A4:CF:F2:DC:DC:83:B2:E7:2D:75:04:C9:F9 X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:34:48:73:00:ff:27:4f:aa:44:bf:9f:a0:07:22:e2:26:af: 77:f2:32:54:43:89:6a:2b:39:22:74:ca:27:0a:1a:2e:9a:77: 6d:f7:21:91:82:6b:a0:ca:83:83:c0:6f:d6:06:eb:a8:f8:43: c1:12:2b:17:b8:af:74:4a:5d:a8:3b:00:b5:bb:79:9e:f9:44: 0a:37:65:5f:0c:30:c7:48:7c:27:a0:49:2e:81:bb:19:9f:09: ba:4d:ed:b9:fd:59:fa:95:af:93:48:bd:7a:54:f6:36:52:74: 96:c8:cd:93:66:61:55:bd:c6:fc:88:5a:e2:4a:0b:a6:f3:3e: 2c:05:4e:53:44:07:1c:4b:e4:c5:fa:19:c0:56:b5:d1:a2:24: 36:2a:c9:f9:96:4f:fc:18:d3:3f:94:08:ca:ee:e3:b1:3d:94: 63:fe:65:a0:c1:fd:e5:f3:9a:52:3a:1a:46:10:30:93:33:a0: 92:5b:69:fb:86:23:60:24:38:1b:49:d2:4c:42:51:d0:b9:b9: 2e:6a:4b:6b:7a:fd:d1:aa:06:1d:72:a3:2d:6a:2b:2d:0d:4c: e8:79:ff:79:a6:df:e4:ba:b8:50:3f:21:9c:ee:be:a6:99:42: 97:14:27:32:ab:aa:5b:8e:9f:5c:93:55:ed:82:9e:be:94:cf: b3:9c:5c:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjYwMzI0MTc0MzQ4WhcNMjYwMzMxMTc0MzQ4WjAYMRYwFAYD VQQDEw02OWMyY2Q1NC05ZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6IynocOz4um6g8I+xdmnJc/z0LExR9gGzoKU9znjDwpkhKgE4j1gXbzTDwCF BvDjggye8z11v7KxxOaeYz7yun8VRAO/yeE8LM0CxY6gYBBGH0GHZpRONv/TZPeD NHJy9yH4E/em7vNiHT6uAE3jW0P25J3eiU8WsnamaGxl7zxYWo5X98wUaj48zHaS toTUd09LNbPPUd85XqEwRQ3hJjX+aZYYKIKsKJpku185IPORwnTqMkZEG7pBWQl1 4uMxdYGE4RlwJeYVhxD2p32VVgPavb2I/dPO6m7jzTcjFbEPC1NS7DtNo/WkCu0c MgZ9ipjtNcnoPQM7mt4lZI12JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFuQuQz dYikz/Lc3IOy5y11BMn5MB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIjRIcwD/J0+qRL+foAci4iavd/IyVEOJais5InTKJwoaLpp3bfchkYJroMqD g8Bv1gbrqPhDwRIrF7ivdEpdqDsAtbt5nvlECjdlXwwwx0h8J6BJLoG7GZ8Juk3t uf1Z+pWvk0i9elT2NlJ0lsjNk2ZhVb3G/Iha4koLpvM+LAVOU0QHHEvkxfoZwFa1 0aIkNirJ+ZZP/BjTP5QIyu7jsT2UY/5loMH95fOaUjoaRhAwkzOgkltp+4YjYCQ4 G0nSTEJR0Lm5LmpLa3r90aoGHXKjLWorLQ1M6Hn/eabf5Lq4UD8hnO6+pplClxQn MquqW46fXJNV7YKevpTPs5xcgQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:18:26 2026 by rpki-client