$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft File: p1cNzzcgqNWohWpLtlg_G66uAJM.mft (raw, json) Hash identifier: +dNXNsfAZGnyNuXfi6l1LABMuVt+0ZkrnyjCewcgFJ8= Subject key identifier: 00:BC:D7:62:22:9F:8C:B7:53:2C:93:A6:7B:CD:EE:6E:55:69:1E:D9 Authority key identifier: A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 Certificate issuer: /CN=A91B37E3/serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Certificate serial: 0D45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft Manifest number: 0D0D Signing time: Tue 24 Mar 2026 18:03:06 +0000 Manifest this update: Tue 24 Mar 2026 18:03:05 +0000 Manifest next update: Tue 31 Mar 2026 18:03:05 +0000 Files and hashes: 1: p1cNzzcgqNWohWpLtlg_G66uAJM.crl (hash: wuvKXVxgHJqo0+GrDHJ5/kuyJeUydpp0AgZ5yL+bad4=) 2: 4DC07014161411F1B995070A2E3D8C67.roa (hash: H0Jb9txtazlliAU6uAWUSrabDYFIpiBg6C2fr7jj4yU=) 3: 5B47C2265D8411F0BBB04858C4F9AE02.roa (hash: 5Gz1em/PdO/Bv/3TCy3czbXrmcPfmWaq1s4vYyqJQmE=) 4: 4F6721CEB84B11EAB6247B7AC4F9AE02.roa (hash: rZrIOdq3ol6lcEAYXeq2DsJFaFbmt+O1xVdoQjKA9Ic=) 5: 1994900403CE11EAA10C6A84C4F9AE02.roa (hash: +v702T+ecCOjmmS56vuMtDJ6RGqPmaswdGe/Ps9k7F8=) 6: 24252532B84711EA8A7F036DC4F9AE02.roa (hash: i9uCa/jnhktxFdjqViYAybuthNUR7oD6rAf8exjN1kI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3397 (0xd45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37E3, serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Validity Not Before: Mar 24 18:03:05 2026 GMT Not After : Mar 31 18:03:05 2026 GMT Subject: CN=69c2d1da-7634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cf:45:eb:41:49:70:3b:23:10:a2:27:54:5d: cf:6a:33:f1:98:48:90:27:03:ff:65:de:a1:ae:3a: f0:0f:89:c2:25:8d:cf:a1:c1:c4:07:04:47:bf:53: 94:f2:a9:c9:8f:77:b7:6a:31:df:f9:44:c2:32:74: f5:81:4e:04:c1:04:83:85:7f:db:e5:b8:57:4d:a2: 20:12:4a:95:fe:45:94:7d:57:7d:54:4a:11:2f:3c: 18:d1:75:7a:26:19:d3:a1:6c:b1:92:3f:61:09:f3: 15:e3:47:c7:fc:d6:54:63:82:92:6e:36:ff:f3:5e: a6:6b:43:53:74:3d:56:96:10:fd:b9:b1:86:ea:ed: be:60:f6:f9:fa:ee:83:86:44:65:7c:68:32:4e:01: 3d:67:47:66:f0:bd:c2:fd:e6:ca:4e:82:42:2d:8f: 17:4a:d7:b7:ea:21:52:8d:f4:50:3a:79:f8:ca:d0: c9:6f:0f:08:8e:22:c5:2d:3c:1a:29:08:1e:d7:bc: 2c:29:da:b5:d5:6c:1b:ec:91:4c:94:45:1b:62:b1: fc:22:0f:94:17:76:db:12:f5:05:97:dd:54:af:14: 36:80:9e:0a:cd:6a:bb:64:2e:dc:69:89:18:e2:58: 90:f9:e4:3f:55:0e:3d:ff:03:d1:76:1e:ea:94:47: bb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BC:D7:62:22:9F:8C:B7:53:2C:93:A6:7B:CD:EE:6E:55:69:1E:D9 X509v3 Authority Key Identifier: keyid:A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c6:2c:f6:b2:ad:a1:69:6d:dd:d1:3d:54:47:6d:f0:a7:35: da:fc:60:c4:c1:25:92:09:24:ec:d8:e0:2e:e6:c7:4c:0c:74: d5:7a:08:17:f8:3f:0b:3d:da:42:95:09:d1:d9:55:03:bc:48: 65:43:9b:37:7b:2e:0e:67:60:cd:f5:0c:04:bd:ae:2e:1b:30: e3:94:38:2e:ca:aa:c7:73:0b:90:11:65:7b:a0:a7:8a:0b:fc: e1:95:5e:35:31:23:fa:6f:d6:b0:72:e8:b9:aa:d4:9e:80:cf: ae:8a:7d:cc:3d:a0:e1:32:a5:01:01:d0:de:72:d2:77:88:e4: 8c:c7:b5:f4:d4:fd:31:c0:af:f3:da:a7:21:1a:6d:30:3e:35: e1:4b:b7:9d:f5:68:68:7f:da:9e:84:19:76:a9:2d:1d:59:ac: 45:2a:25:78:58:97:71:e6:95:19:ac:b8:f5:27:50:51:1b:35: d0:7e:75:2f:a9:cb:e0:89:1c:08:1b:01:73:f2:b1:aa:a3:40: f2:74:f4:06:08:e3:bb:99:ae:c0:fc:3b:15:08:ec:66:77:76: 51:68:b6:d5:19:99:df:09:f9:fb:df:bf:38:5a:38:5a:e6:33: ab:44:4a:08:8f:ba:0d:b7:9b:0a:1c:bc:ed:ce:2e:cf:7d:4e: ca:bf:3f:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3RTMxMTAvBgNVBAUTKEE3NTcwRENGMzcyMEE4RDVBODg1NkE0QkI2NTgzRjFC QUVBRTAwOTMwHhcNMjYwMzI0MTgwMzA1WhcNMjYwMzMxMTgwMzA1WjAYMRYwFAYD VQQDEw02OWMyZDFkYS03NjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs9F60FJcDsjEKInVF3PajPxmEiQJwP/Zd6hrjrwD4nCJY3PocHEBwRHv1OU 8qnJj3e3ajHf+UTCMnT1gU4EwQSDhX/b5bhXTaIgEkqV/kWUfVd9VEoRLzwY0XV6 JhnToWyxkj9hCfMV40fH/NZUY4KSbjb/816ma0NTdD1WlhD9ubGG6u2+YPb5+u6D hkRlfGgyTgE9Z0dm8L3C/ebKToJCLY8XSte36iFSjfRQOnn4ytDJbw8IjiLFLTwa KQge17wsKdq11Wwb7JFMlEUbYrH8Ig+UF3bbEvUFl91UrxQ2gJ4KzWq7ZC7caYkY 4liQ+eQ/VQ49/wPRdh7qlEe78wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAC812Ii n4y3UyyTpnvN7m5VaR7ZMB8GA1UdIwQYMBaAFKdXDc83IKjVqIVqS7ZYPxuurgCT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdFMy8wQUZFQTdDRTAz QTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FOV29oV3BMdGxnX0c2NnVB Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AxY056emNncU5Xb2hXcEx0bGdfRzY2dUFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdFMy8wQUZFQTdDRTAzQTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FO V29oV3BMdGxnX0c2NnVBSk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAesYs9rKtoWlt3dE9VEdt8Kc12vxgxMElkgkk7NjgLubHTAx01XoIF/g/Cz3a QpUJ0dlVA7xIZUObN3suDmdgzfUMBL2uLhsw45Q4Lsqqx3MLkBFle6Cnigv84ZVe NTEj+m/WsHLouarUnoDProp9zD2g4TKlAQHQ3nLSd4jkjMe19NT9McCv89qnIRpt MD414Uu3nfVoaH/anoQZdqktHVmsRSoleFiXceaVGay49SdQURs10H51L6nL4Ikc CBsBc/KxqqNA8nT0Bgjju5muwPw7FQjsZnd2UWi21RmZ3wn5+9+/OFo4WuYzq0RK CI+6DbebChy87c4uz31Oyr8/mQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:44:01 2026 by rpki-client