$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: iBGM7LFmjSs6DPn+ZXgpZ6JsQ0cZmD1eH1n83Kx7R04= Subject key identifier: DC:19:F6:00:9D:0F:45:22:D4:EB:2B:F8:07:62:09:51:4E:5C:DB:B7 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 3525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 5460 Signing time: Tue 24 Mar 2026 15:02:12 +0000 Manifest this update: Tue 24 Mar 2026 15:02:12 +0000 Manifest next update: Tue 31 Mar 2026 15:02:12 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: ie08Pmk9dm8BfnDDIYXQjyK7DEhkL3nG5gJfQW8ndOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13605 (0x3525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Mar 24 15:02:12 2026 GMT Not After : Mar 31 15:02:12 2026 GMT Subject: CN=69c2a774-b190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e6:c4:53:31:1e:a9:e4:84:7e:d6:6e:6f:50: a1:1d:15:48:9c:c5:56:91:0b:fc:69:5c:18:10:b8: c0:4b:43:c9:30:ae:cc:a9:ca:c7:1f:ca:48:e6:d0: 31:6d:ef:a8:35:49:cd:7e:7c:50:9b:98:9f:09:12: 20:3b:43:c0:5e:e6:d8:d1:1d:b8:23:3b:0e:7a:e1: 49:e3:23:21:7e:3a:a8:27:12:32:7d:33:6b:f7:dc: 4e:f9:b0:24:c5:16:4a:0b:fc:ba:47:44:b0:82:ce: d5:10:2b:19:4c:91:61:20:fe:b5:40:5d:a0:c7:25: ea:85:07:28:26:3d:a5:55:2e:8f:f2:f6:96:82:f4: cd:c5:1d:dc:78:29:2b:39:4b:d7:bd:86:04:40:c7: d2:ab:05:8b:02:63:0a:6f:30:4a:7f:2a:57:21:3e: fb:71:64:3c:35:58:88:d7:81:8e:ef:e1:70:42:e6: 22:33:1d:d4:75:21:65:11:ff:50:04:6b:4f:4d:3f: d1:25:32:99:d6:79:08:e9:bb:e4:5b:07:e7:ce:05: c7:c9:fb:4e:67:82:e9:86:45:f2:be:f5:93:15:ad: 60:39:cc:4a:9b:47:15:40:84:b4:5a:bd:46:45:fc: 4b:5d:d0:5e:2b:fb:ea:52:b5:f3:16:d1:b7:52:dc: 6a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:19:F6:00:9D:0F:45:22:D4:EB:2B:F8:07:62:09:51:4E:5C:DB:B7 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:d8:05:07:c2:15:a0:8b:84:37:20:68:50:38:dc:19:69:47: c6:2c:c7:4d:e0:a8:78:7a:e9:df:fa:87:06:24:40:6c:29:8f: 0a:63:10:b2:2c:1f:f2:36:a2:25:e5:40:e0:f4:3d:7b:d3:66: ac:9d:cf:f8:95:75:ed:18:3d:59:57:f5:e3:79:9f:63:d1:de: a4:0b:b9:bb:3c:dd:cb:c8:d9:cb:e4:12:7e:e4:cb:68:b0:52: 3a:69:4a:38:12:fe:d7:48:eb:c2:f3:2c:b6:ca:9b:24:41:6e: 87:41:0c:40:62:df:93:22:af:00:e0:2f:f7:46:c5:0d:ae:d5: 38:68:57:3d:ec:a4:1d:61:6a:82:f3:0c:29:6a:b8:ad:3f:9e: 7a:b1:37:a5:f7:98:0f:a5:f1:33:16:eb:da:3d:71:29:64:0d: 75:87:62:24:87:a0:aa:38:96:6c:2c:8c:9e:7d:60:55:95:7b: bb:c4:a3:5b:f6:3a:b0:59:9c:54:5e:7a:07:43:18:eb:e9:50: 9a:37:01:07:60:c3:d1:fc:a7:16:a0:f8:04:60:48:16:29:2c: 71:0d:63:05:c6:4c:36:44:20:87:2d:eb:c1:1c:00:d2:32:85: 4b:57:95:d9:ef:7f:3a:c1:3d:3b:3b:1e:58:78:fd:b7:88:65: 8e:a7:47:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjYwMzI0MTUwMjEyWhcNMjYwMzMxMTUwMjEyWjAYMRYwFAYD VQQDEw02OWMyYTc3NC1iMTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+bEUzEeqeSEftZub1ChHRVInMVWkQv8aVwYELjAS0PJMK7MqcrHH8pI5tAx be+oNUnNfnxQm5ifCRIgO0PAXubY0R24IzsOeuFJ4yMhfjqoJxIyfTNr99xO+bAk xRZKC/y6R0Swgs7VECsZTJFhIP61QF2gxyXqhQcoJj2lVS6P8vaWgvTNxR3ceCkr OUvXvYYEQMfSqwWLAmMKbzBKfypXIT77cWQ8NViI14GO7+FwQuYiMx3UdSFlEf9Q BGtPTT/RJTKZ1nkI6bvkWwfnzgXHyftOZ4LphkXyvvWTFa1gOcxKm0cVQIS0Wr1G RfxLXdBeK/vqUrXzFtG3UtxqTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNwZ9gCd D0Ui1Osr+AdiCVFOXNu3MB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKdgFB8IVoIuENyBoUDjcGWlHxizHTeCoeHrp3/qHBiRAbCmPCmMQsiwf8jai JeVA4PQ9e9NmrJ3P+JV17Rg9WVf143mfY9HepAu5uzzdy8jZy+QSfuTLaLBSOmlK OBL+10jrwvMstsqbJEFuh0EMQGLfkyKvAOAv90bFDa7VOGhXPeykHWFqgvMMKWq4 rT+eerE3pfeYD6XxMxbr2j1xKWQNdYdiJIegqjiWbCyMnn1gVZV7u8SjW/Y6sFmc VF56B0MY6+lQmjcBB2DD0fynFqD4BGBIFikscQ1jBcZMNkQghy3rwRwA0jKFS1eV 2e9/OsE9OzseWHj9t4hljqdHvQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:35:33 2026 by rpki-client