$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: pq5TFzmWO452tyPP9tnaYGHxMPfJwFuRw7zjRCNQiy8= Subject key identifier: 0C:C0:52:D3:0A:74:3C:31:72:74:CD:0F:D4:D9:8A:5A:C9:70:F2:2C Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 1806 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1CA5 Signing time: Tue 24 Mar 2026 16:26:36 +0000 Manifest this update: Tue 24 Mar 2026 16:26:36 +0000 Manifest next update: Tue 31 Mar 2026 16:26:36 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: WXA3hSw/Ez+ugHxeRxbAt2wTXEoQ8xAGQEVqARzLZx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6150 (0x1806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Mar 24 16:26:36 2026 GMT Not After : Mar 31 16:26:36 2026 GMT Subject: CN=69c2bb3c-16e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2a:3e:3f:2c:4d:e4:99:7e:ce:ea:89:ab:46: ad:0a:bc:5d:36:01:3e:8d:ec:2b:de:49:69:0a:88: 3f:d2:42:a6:76:d8:74:bc:69:1a:55:8e:73:b0:42: b5:4e:74:fb:36:98:bd:58:30:9f:2e:b3:85:88:e5: 48:61:12:54:58:cb:57:cb:b6:fc:4b:99:1f:c5:a6: 8c:04:30:68:f4:af:9c:22:3a:2b:db:46:95:f0:c6: be:36:53:f4:d0:7c:4b:9a:78:1f:12:b5:56:64:68: 1d:0a:8f:a2:47:fe:1f:90:e9:75:b1:c0:a5:3c:bd: b5:b7:17:73:ea:37:b8:0a:70:44:bf:ff:d7:13:91: c2:37:93:c7:44:ff:e3:f1:95:d2:ca:a9:06:97:17: 5f:e1:a9:8c:ba:1b:e3:29:dc:a2:61:b7:29:08:26: 45:16:39:4e:43:f9:00:b6:c0:f0:67:31:1a:97:d7: 5a:4b:fc:f8:62:8d:7b:2d:db:74:96:af:f7:8d:eb: fb:9b:e8:03:61:63:b6:bf:43:9c:68:0a:90:e2:2e: 1b:25:79:71:da:16:88:31:83:ea:0b:30:3d:56:1d: 0f:26:89:12:1a:83:a3:f1:cf:42:26:26:ef:05:6c: e2:da:a9:4d:03:47:6e:22:d2:47:65:35:47:6f:a7: 61:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C0:52:D3:0A:74:3C:31:72:74:CD:0F:D4:D9:8A:5A:C9:70:F2:2C X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:6e:69:a1:d1:bf:21:0f:96:c0:90:6b:99:83:d9:bc:73:bd: 7e:fc:7a:4e:e5:db:0b:80:e9:a8:00:56:6e:26:70:ab:1d:45: e0:e2:70:76:81:81:00:a0:14:28:68:e9:c8:36:31:81:34:1d: 27:e7:cd:54:87:e2:62:01:8e:3c:6c:96:61:e6:16:94:a3:48: b4:92:40:fd:96:eb:b7:46:5b:77:d4:05:3c:78:75:b4:f9:b7: 94:40:9f:b1:57:a3:92:77:d4:11:50:b9:32:d1:c1:a2:c0:e0: b2:0a:d7:94:25:33:20:1a:7a:33:5c:ff:7b:f0:88:86:12:2a: 9e:38:62:36:6c:db:ac:cb:47:6f:11:27:cc:96:d5:95:9c:b6: 39:2b:17:e1:7c:e3:e1:26:ec:e4:4f:c5:6e:ca:e2:96:1e:60: 59:bd:6c:cd:7d:54:fe:84:58:9f:8d:80:08:07:4d:96:a4:eb: 19:cd:30:57:20:cf:ab:1f:de:18:33:38:84:99:be:26:50:06: e8:31:ee:36:58:be:99:d9:5f:e5:cb:e8:e7:f6:b1:6e:98:cc: 38:17:ff:52:b0:54:32:2a:c7:8a:0f:de:00:5b:93:7d:d7:ee: 16:ec:5e:fd:a1:dd:53:4f:c9:58:5c:2b:41:55:8f:e6:38:6a: f2:8f:e6:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjYwMzI0MTYyNjM2WhcNMjYwMzMxMTYyNjM2WjAYMRYwFAYD VQQDEw02OWMyYmIzYy0xNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyo+PyxN5Jl+zuqJq0atCrxdNgE+jewr3klpCog/0kKmdth0vGkaVY5zsEK1 TnT7Npi9WDCfLrOFiOVIYRJUWMtXy7b8S5kfxaaMBDBo9K+cIjor20aV8Ma+NlP0 0HxLmngfErVWZGgdCo+iR/4fkOl1scClPL21txdz6je4CnBEv//XE5HCN5PHRP/j 8ZXSyqkGlxdf4amMuhvjKdyiYbcpCCZFFjlOQ/kAtsDwZzEal9daS/z4Yo17Ldt0 lq/3jev7m+gDYWO2v0OcaAqQ4i4bJXlx2haIMYPqCzA9Vh0PJokSGoOj8c9CJibv BWzi2qlNA0duItJHZTVHb6dh3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAzAUtMK dDwxcnTND9TZilrJcPIsMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiW5podG/IQ+WwJBrmYPZvHO9fvx6TuXbC4DpqABWbiZwqx1F4OJwdoGBAKAU KGjpyDYxgTQdJ+fNVIfiYgGOPGyWYeYWlKNItJJA/Zbrt0Zbd9QFPHh1tPm3lECf sVejknfUEVC5MtHBosDgsgrXlCUzIBp6M1z/e/CIhhIqnjhiNmzbrMtHbxEnzJbV lZy2OSsX4Xzj4Sbs5E/Fbsrilh5gWb1szX1U/oRYn42ACAdNlqTrGc0wVyDPqx/e GDM4hJm+JlAG6DHuNli+mdlf5cvo5/axbpjMOBf/UrBUMirHig/eAFuTfdfuFuxe /aHdU0/JWFwrQVWP5jhq8o/mQw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:00 2026 by rpki-client