$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: isN2UNx0Gd2kjFYfPC9s6+0GEfxeR/BS1K9TWY5TL7U= Subject key identifier: 4C:A1:10:63:9B:AD:89:CF:3B:2F:E8:51:14:BC:DA:2A:A6:1E:01:B5 Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 0421 Signing time: Fri 27 Mar 2026 00:09:56 +0000 Manifest this update: Fri 27 Mar 2026 00:09:56 +0000 Manifest next update: Fri 03 Apr 2026 00:09:56 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: QREEItG4MaPJvNoiCpidNn2jOumBmt9WxYVTW37kvX4=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: OiBvrzdUg3NqY/AvkOcWY8IElMaVk3LH+da3dKWzBQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Mar 27 00:09:56 2026 GMT Not After : Apr 3 00:09:56 2026 GMT Subject: CN=69c5cad4-d7ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:38:76:b7:72:4b:6f:39:97:e5:c1:bb:e3:0a: f9:7d:b1:2b:ac:71:4a:be:69:db:c2:29:3a:2d:e2: b9:61:89:91:85:2f:a5:58:4a:65:df:13:da:2c:f2: db:dc:46:72:53:05:1a:c2:20:95:a0:41:74:10:41: bc:61:72:8b:af:ce:56:e0:95:5d:ea:8f:51:51:7b: e7:99:5b:94:e3:aa:da:e5:51:77:01:f7:7a:86:b9: fb:fa:9c:ad:e9:ba:09:ba:5c:02:64:99:8b:1a:d3: 76:ed:a8:d9:3e:9f:bf:9f:f2:4c:b2:ad:a8:68:eb: bb:9d:66:93:2c:f2:5b:15:ec:0f:fd:de:44:d3:a6: 11:fa:b2:88:e3:64:54:97:da:6b:9c:27:b5:5e:43: f2:11:9d:5b:b5:ad:90:32:45:9c:8a:b2:44:18:2f: f6:d0:30:d5:7b:51:ac:fd:9f:30:ff:af:13:31:63: b7:12:28:43:20:99:c0:d4:22:98:99:e2:2e:6c:9e: 6e:34:d9:55:a7:c6:d5:dd:88:39:87:93:ff:eb:15: dd:07:cf:e2:ad:3d:d1:09:a7:cc:93:14:75:d8:0a: 3d:33:50:90:30:ba:84:84:31:ce:03:b7:df:c7:a3: 16:9f:f1:3d:1e:c3:04:e2:c9:c3:5d:8d:39:b8:2b: eb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A1:10:63:9B:AD:89:CF:3B:2F:E8:51:14:BC:DA:2A:A6:1E:01:B5 X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ed:7b:03:f3:e9:4b:f1:70:ee:7f:a6:1a:0c:a4:e6:2b:29: c7:17:30:69:d8:bd:0d:27:1b:83:38:f9:b3:b1:04:a5:5f:c9: 85:05:02:a5:54:69:3a:b2:d8:29:28:0e:86:33:54:2d:c4:a9: 78:39:11:c6:0f:01:27:38:3b:f8:75:25:4b:b1:bd:9c:41:59: 65:9c:7f:8b:f3:8d:3e:57:23:79:fb:19:9d:82:09:6f:4b:5a: aa:ad:5a:c2:d8:8e:aa:19:55:ee:cc:13:11:fd:1d:d6:c1:7f: 24:f5:c0:84:b2:55:4b:a2:01:ee:f5:d8:6e:3e:8b:88:f9:f3: b4:55:f4:f1:7b:52:fb:41:ff:20:62:d3:36:b3:87:6f:c9:01: 4e:1d:e2:80:80:fb:aa:e6:f9:00:92:b2:b6:04:b4:ff:5d:29: 3e:74:bd:49:b2:ee:0c:49:2a:fb:cb:ad:78:19:46:a1:ad:d1: 89:fc:6a:41:71:c4:c7:d1:2e:ce:e0:93:f4:a6:65:f7:cb:2a: 8a:8d:73:78:e1:05:08:10:58:db:44:77:63:3c:2e:a1:51:16: 5c:c2:c0:24:79:b3:37:86:fa:79:3b:99:29:49:a3:73:ec:87: b3:7a:90:1e:4d:3f:3a:63:21:03:d9:f4:50:1f:de:c5:8c:6f: 10:4c:18:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjYwMzI3MDAwOTU2WhcNMjYwNDAzMDAwOTU2WjAYMRYwFAYD VQQDEw02OWM1Y2FkNC1kN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zh2t3JLbzmX5cG74wr5fbErrHFKvmnbwik6LeK5YYmRhS+lWEpl3xPaLPLb 3EZyUwUawiCVoEF0EEG8YXKLr85W4JVd6o9RUXvnmVuU46ra5VF3Afd6hrn7+pyt 6boJulwCZJmLGtN27ajZPp+/n/JMsq2oaOu7nWaTLPJbFewP/d5E06YR+rKI42RU l9prnCe1XkPyEZ1bta2QMkWcirJEGC/20DDVe1Gs/Z8w/68TMWO3EihDIJnA1CKY meIubJ5uNNlVp8bV3Yg5h5P/6xXdB8/irT3RCafMkxR12Ao9M1CQMLqEhDHOA7ff x6MWn/E9HsME4snDXY05uCvrPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEyhEGOb rYnPOy/oURS82iqmHgG1MB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAse17A/PpS/Fw7n+mGgyk5ispxxcwadi9DScbgzj5s7EEpV/JhQUCpVRpOrLY KSgOhjNULcSpeDkRxg8BJzg7+HUlS7G9nEFZZZx/i/ONPlcjefsZnYIJb0taqq1a wtiOqhlV7swTEf0d1sF/JPXAhLJVS6IB7vXYbj6LiPnztFX08XtS+0H/IGLTNrOH b8kBTh3igID7qub5AJKytgS0/10pPnS9SbLuDEkq+8uteBlGoa3RifxqQXHEx9Eu zuCT9KZl98sqio1zeOEFCBBY20R3YzwuoVEWXMLAJHmzN4b6eTuZKUmjc+yHs3qQ Hk0/OmMhA9n0UB/exYxvEEwY1g== -----END CERTIFICATE-----Generated at Sat Mar 28 10:36:50 2026 by rpki-client