$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft File: r9CVWn3X-bDsKkShHZNyB8J1SmM.mft (raw, json) Hash identifier: kI0Q7ZKjpmOF9Lkbi9yBgF3Q3eUsqXKcZnQtv4smgCg= Subject key identifier: 79:BA:61:9F:77:84:06:58:E4:56:9D:87:44:D6:B1:38:0E:24:0E:1A Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 048E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft Manifest number: 0477 Signing time: Tue 24 Mar 2026 23:50:15 +0000 Manifest this update: Tue 24 Mar 2026 23:50:15 +0000 Manifest next update: Tue 31 Mar 2026 23:50:15 +0000 Files and hashes: 1: r9CVWn3X-bDsKkShHZNyB8J1SmM.crl (hash: ZQr5k1SJO0ALXnswr18l3U/fVnqzlHRDjs1dGmcGI2c=) 2: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (hash: cUenRyh3LsnCMH+orouodtGSeTE07G+8KCh7ABp0SpE=) 3: E69ABF78033911EFBE28FC1FC4F9AE02.roa (hash: zhOnzcs35kb8T2BpNLHNFY38V0O9Fl5sK2LedfhbYBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1166 (0x48e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: Mar 24 23:50:15 2026 GMT Not After : Mar 31 23:50:15 2026 GMT Subject: CN=69c32337-0e70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:47:5b:67:27:f1:61:d1:3d:c1:3e:05:07:dd: 39:97:d5:0d:bd:a3:ab:0a:51:c0:8c:61:53:7c:12: 43:69:62:4f:33:4b:bf:56:1e:3f:8c:85:76:4c:c6: a4:76:26:6c:eb:95:7a:3a:8a:2a:b2:14:fb:f1:8a: 24:70:eb:57:1f:0f:ad:97:34:32:f3:23:29:12:19: 48:4e:b2:f9:f3:22:24:f2:7a:e1:c4:3f:07:5f:00: 2b:53:de:ee:47:36:1e:ea:a6:72:d1:95:56:b0:e9: 9b:38:80:b7:71:3c:8c:de:bd:a6:3b:8b:13:e0:fb: c3:f8:6b:b6:99:5e:58:3c:f2:a8:bd:17:2e:f8:df: c4:21:47:db:85:f6:9d:a8:29:13:de:f9:ee:e0:41: 22:4e:da:8d:89:57:23:c0:08:e7:54:c1:4a:3b:51: 25:25:67:7a:37:e3:7c:26:a6:9e:a6:18:18:82:5e: 23:6d:d3:04:36:99:00:a2:40:55:26:e1:ab:55:cc: f9:19:fa:69:d4:1e:23:7c:e2:08:ff:7a:00:03:de: 84:87:3c:13:3e:dd:91:f8:cc:48:60:3c:99:3c:4d: d4:1d:13:c5:42:3d:25:07:1f:e6:dd:84:39:5f:48: f7:3d:6b:01:0b:f6:3b:f1:19:f5:14:32:16:f5:10: 6f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BA:61:9F:77:84:06:58:E4:56:9D:87:44:D6:B1:38:0E:24:0E:1A X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:d6:1b:50:82:a2:40:4e:fa:25:70:fd:bc:60:6c:c7:78:87: e9:9b:71:fd:b7:86:14:6b:f0:75:db:42:83:68:e1:7c:7a:bb: 76:8d:5e:15:9c:7e:a6:de:3f:f8:79:5b:05:92:46:a4:6e:1b: c0:0d:e3:53:e8:cb:9d:d3:b5:1f:f2:09:da:2f:7a:cd:54:f3: 2a:09:b5:d2:df:25:31:87:84:15:ec:0c:11:e6:f5:ee:40:1d: 44:2e:a7:56:78:f0:86:44:26:02:b4:42:ad:c7:bf:9c:fe:5f: af:c9:65:09:c0:08:10:83:0c:11:25:bc:7a:29:5f:a9:e6:c8: c3:76:b3:83:4f:72:bd:24:b5:d1:44:04:cd:17:55:17:ee:0d: a1:a2:97:2e:89:41:59:17:e1:4a:b9:e8:3c:e6:23:f4:11:ef: 76:b0:7c:cd:07:a6:dc:2a:1e:6a:27:eb:8e:3e:9b:57:5e:ce: 51:22:d5:ab:1c:0f:16:06:e8:26:98:b7:dc:e9:01:86:d1:33: 8d:cd:6b:01:bb:ba:61:1c:14:ea:90:8c:61:00:2c:40:43:2b: 37:4d:cb:22:0a:f1:19:73:94:f9:c7:f1:2b:c1:05:3c:11:25: 8d:da:ce:1d:ae:5d:e7:9b:27:a3:a3:f7:a5:4e:cf:f8:93:cb: 71:4f:13:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjYwMzI0MjM1MDE1WhcNMjYwMzMxMjM1MDE1WjAYMRYwFAYD VQQDEw02OWMzMjMzNy0wZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0dbZyfxYdE9wT4FB905l9UNvaOrClHAjGFTfBJDaWJPM0u/Vh4/jIV2TMak diZs65V6OooqshT78YokcOtXHw+tlzQy8yMpEhlITrL58yIk8nrhxD8HXwArU97u RzYe6qZy0ZVWsOmbOIC3cTyM3r2mO4sT4PvD+Gu2mV5YPPKovRcu+N/EIUfbhfad qCkT3vnu4EEiTtqNiVcjwAjnVMFKO1ElJWd6N+N8JqaephgYgl4jbdMENpkAokBV JuGrVcz5Gfpp1B4jfOII/3oAA96EhzwTPt2R+MxIYDyZPE3UHRPFQj0lBx/m3YQ5 X0j3PWsBC/Y78Rn1FDIW9RBvCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHm6YZ93 hAZY5Fadh0TWsTgOJA4aMB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTAxOC84ODM2RkE2MDhENEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1i RHNLa1NoSFpOeUI4SjFTbU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOdYbUIKiQE76JXD9vGBsx3iH6Ztx/beGFGvwddtCg2jhfHq7do1eFZx+pt4/ +HlbBZJGpG4bwA3jU+jLndO1H/IJ2i96zVTzKgm10t8lMYeEFewMEeb17kAdRC6n VnjwhkQmArRCrce/nP5fr8llCcAIEIMMESW8eilfqebIw3azg09yvSS10UQEzRdV F+4NoaKXLolBWRfhSrnoPOYj9BHvdrB8zQem3Coeaifrjj6bV17OUSLVqxwPFgbo Jpi33OkBhtEzjc1rAbu6YRwU6pCMYQAsQEMrN03LIgrxGXOU+cfxK8EFPBEljdrO Ha5d55sno6P3pU7P+JPLcU8T8g== -----END CERTIFICATE-----Generated at Thu Mar 26 14:15:37 2026 by rpki-client