$ rpki-client -vvf rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft File: IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft (raw, json) Hash identifier: w80TJfYEpWqpWidr+qpsGOfjaI9yjRpbwR8QLRcwWQM= Subject key identifier: 12:20:35:AF:80:92:6D:AD:22:EC:F9:FF:36:D6:99:3A:4D:E5:A1:12 Authority key identifier: 20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 Certificate issuer: /CN=A91B40B2/serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft Manifest number: 35 Signing time: Wed 25 Mar 2026 07:47:08 +0000 Manifest this update: Wed 25 Mar 2026 07:47:07 +0000 Manifest next update: Wed 01 Apr 2026 07:47:07 +0000 Files and hashes: 1: IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl (hash: Hc5SF9P6NdiEF9+SZFB1i4OLinDAjqaZy3EYd+uwqhY=) 2: 78211876DA3811F080F82F148DD3641D.roa (hash: iQuCstGoIK1MPnU6/cDDIt+974fe7iZAlTkSxssvjXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B40B2, serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Validity Not Before: Mar 25 07:47:07 2026 GMT Not After : Apr 1 07:47:07 2026 GMT Subject: CN=69c392fc-04ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1e:26:b4:89:09:5c:67:cd:08:82:f3:c0:87: a2:c4:d0:a2:a8:41:a9:c5:92:e4:9f:66:95:f3:93: 86:81:2d:da:6b:41:11:47:c5:df:35:16:7a:2b:40: 53:05:d9:45:e4:ff:97:55:49:2a:f6:63:35:89:0a: d5:47:0d:c0:d5:d2:60:16:01:ea:27:7f:8b:9b:36: 24:54:b6:d3:aa:25:b0:3b:ab:48:28:ad:53:5a:a3: 37:80:86:a8:3b:45:3e:55:1d:50:bc:0e:07:ab:7b: 4d:f1:7e:ed:3e:d0:de:f6:1d:22:3d:a7:87:e0:10: f6:9e:81:8b:10:af:db:5e:ae:20:0b:0a:30:b1:82: 54:69:97:9f:53:ad:e2:bf:81:72:17:62:8a:b2:d1: b7:52:ab:68:02:ec:f4:9a:6b:10:b3:a9:74:48:64: 44:f7:8e:7b:14:95:17:64:27:42:f8:dc:02:70:bf: bf:ec:3d:73:51:6e:a2:ff:26:20:56:09:dc:6d:e6: 23:78:8a:87:24:a4:50:11:7a:2a:76:56:06:39:62: 99:b0:ba:39:0f:3a:f0:ad:ed:05:95:ee:35:c1:94: 1f:d9:7a:ea:28:33:06:08:d3:35:63:d4:8f:cc:e2: a7:d3:c4:d0:90:c5:14:5f:f5:eb:dd:38:14:87:59: f0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:20:35:AF:80:92:6D:AD:22:EC:F9:FF:36:D6:99:3A:4D:E5:A1:12 X509v3 Authority Key Identifier: keyid:20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:8e:2b:54:0f:82:b0:d3:db:57:60:07:3d:2b:10:47:07:8f: 89:32:d2:4f:4f:e3:65:c6:50:e9:16:2f:74:3f:36:f8:a6:35: 4d:49:63:b4:72:04:ad:d1:5f:7f:b6:de:28:25:29:cb:44:cd: a4:05:05:46:08:1f:ee:36:6c:98:d4:57:89:60:e9:de:06:8f: c7:35:b9:b0:bc:72:41:f5:b6:2f:ab:8b:e9:bc:aa:7f:13:6b: 71:e5:b5:3d:41:bb:3e:83:35:77:71:16:f3:01:fe:64:53:b3: c6:f8:8a:7e:ee:ee:68:c4:c7:30:07:9c:d8:da:74:49:c2:0e: 83:15:23:92:14:b8:d1:33:9f:66:c7:9e:14:16:cd:a0:65:6a: 2f:21:2a:ae:cd:48:9e:1a:5a:d1:94:69:62:ba:05:5f:f8:47: c1:e6:b8:21:8f:5d:c4:af:1f:7e:4f:c6:fe:c4:2e:d6:64:1c: ef:93:22:41:8b:1a:56:79:27:e0:3d:a1:27:ff:f6:bf:63:ed: 49:c1:35:4f:55:5e:5e:19:8e:26:d1:8a:71:c9:91:ce:a0:27: f2:ae:e1:cc:d1:4f:e4:9b:9e:10:f4:19:14:5e:6a:c4:dd:f6: d1:bc:e7:26:b1:0a:4a:4b:85:7f:58:d9:59:41:02:bb:c2:ec: 79:70:e8:3f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDBCMjExMC8GA1UEBRMoMjBGM0JCRDQ5OEY0M0M5NzkxM0VFMUI5OTQyOURCODkw QjQ3NjJCMDAeFw0yNjAzMjUwNzQ3MDdaFw0yNjA0MDEwNzQ3MDdaMBgxFjAUBgNV BAMTDTY5YzM5MmZjLTA0ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiHia0iQlcZ80IgvPAh6LE0KKoQanFkuSfZpXzk4aBLdprQRFHxd81FnorQFMF 2UXk/5dVSSr2YzWJCtVHDcDV0mAWAeonf4ubNiRUttOqJbA7q0gorVNaozeAhqg7 RT5VHVC8Dgere03xfu0+0N72HSI9p4fgEPaegYsQr9teriALCjCxglRpl59TreK/ gXIXYoqy0bdSq2gC7PSaaxCzqXRIZET3jnsUlRdkJ0L43AJwv7/sPXNRbqL/JiBW Cdxt5iN4iockpFAReip2VgY5YpmwujkPOvCt7QWV7jXBlB/ZeuooMwYI0zVj1I/M 4qfTxNCQxRRf9evdOBSHWfDBAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUEiA1r4CS ba0i7Pn/NtaZOk3loRIwHwYDVR0jBBgwFoAUIPO71Jj0PJeRPuG5lCnbiQtHYrAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MEIyL0QxNDZFNEYwREEz NjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEplUlB1RzVsQ25iaVF0SFly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSVBPNzFKajBQSmVSUHVHNWxDbmJpUXRIWXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MEIyL0QxNDZFNEYwREEzNjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEpl UlB1RzVsQ25iaVF0SFlyQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCxjitUD4Kw09tXYAc9KxBHB4+JMtJPT+NlxlDpFi90Pzb4pjVNSWO0cgSt0V9/ tt4oJSnLRM2kBQVGCB/uNmyY1FeJYOneBo/HNbmwvHJB9bYvq4vpvKp/E2tx5bU9 Qbs+gzV3cRbzAf5kU7PG+Ip+7u5oxMcwB5zY2nRJwg6DFSOSFLjRM59mx54UFs2g ZWovISquzUieGlrRlGliugVf+EfB5rghj13Erx9+T8b+xC7WZBzvkyJBixpWeSfg PaEn//a/Y+1JwTVPVV5eGY4m0YpxyZHOoCfyruHM0U/km54Q9BkUXmrE3fbRvOcm sQpKS4V/WNlZQQK7wux5cOg/ -----END CERTIFICATE-----Generated at Thu Mar 26 12:55:02 2026 by rpki-client