$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: 9BNzJ0a8XgOgxZwhNM/1KWNy7ldc+upW5lQIKNrSeeU= Subject key identifier: DE:0A:94:BA:0D:C5:1E:F0:87:E7:35:65:EA:1C:82:0F:32:85:96:76 Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 03F7 Signing time: Wed 25 Mar 2026 00:08:18 +0000 Manifest this update: Wed 25 Mar 2026 00:08:18 +0000 Manifest next update: Wed 01 Apr 2026 00:08:18 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: o57YyV4N0go/gHDR6WgwzBlgZhtL3u052enOjxK/0qw=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: E0te7z7859at34MRFLNavnFyL+a8lv5dig7hn7bo8Ag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: Mar 25 00:08:18 2026 GMT Not After : Apr 1 00:08:18 2026 GMT Subject: CN=69c32772-332d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9a:d9:ed:01:08:13:15:c4:5a:70:b6:a2:4f: d6:c2:6f:ab:c3:d7:96:44:2a:0a:a3:bc:3b:97:cf: b5:ae:36:47:24:17:21:03:c4:ac:c1:ce:f0:c7:67: 1d:75:fa:bc:ec:b2:ee:8e:53:c6:74:0e:0d:d9:ee: 8d:dc:85:3d:05:73:c8:aa:b3:a0:2f:13:ff:fe:74: 8d:85:9d:9d:5d:66:d1:28:c4:57:73:22:2a:cc:c0: 07:8d:fc:26:71:8e:0d:83:7f:24:a8:d8:c5:c3:8b: ee:79:82:5d:b3:f0:cd:09:5f:69:88:9c:72:cc:dd: 23:1f:73:85:58:af:ec:fa:a9:f8:48:59:d2:98:94: fc:60:f0:e6:12:ed:da:36:55:2f:1e:23:31:56:0e: da:e6:b0:2c:cd:bb:9e:aa:d9:2e:ff:be:25:45:05: 14:d7:4d:0a:6f:c3:ae:74:c8:df:e8:99:0d:11:1e: 02:c0:b2:95:97:0c:80:8f:70:b7:bd:79:f9:16:46: ca:60:88:6f:b4:76:5e:ea:f7:83:d5:68:ae:08:47: f6:b5:89:c8:7c:b5:7c:af:9c:ee:68:fd:5c:ba:df: b4:8c:0a:01:fe:0c:5e:92:5a:69:c4:df:ef:97:57: 9b:e8:16:90:ba:bf:2d:b1:27:02:8b:02:69:70:b5: 6d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0A:94:BA:0D:C5:1E:F0:87:E7:35:65:EA:1C:82:0F:32:85:96:76 X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:20:f7:05:05:05:12:c0:5e:b2:d4:c4:27:94:ab:22:30:17: f9:8f:14:1e:5a:34:3a:c5:cd:01:07:a7:bd:a9:74:01:30:53: 04:51:d5:9f:05:ea:37:6a:95:6b:a3:19:22:ce:42:12:92:6e: 7f:ce:6f:53:80:01:b7:5b:9b:fa:fc:09:75:0b:cc:64:0d:5f: bc:92:20:24:a9:df:8a:54:89:b7:5b:96:24:1c:8f:62:41:7b: c3:e0:95:8d:53:af:d6:a3:3f:53:fe:da:57:dc:02:24:51:d2: 5a:12:92:9f:2b:ff:59:5f:5a:91:a4:30:63:a5:63:0d:10:dd: 0c:2f:da:66:cf:d1:9c:02:65:e8:c1:a0:bc:ef:1b:a6:4c:34: 81:99:65:e8:08:ab:b0:a5:75:62:cb:34:a2:35:c4:4a:59:a2: 39:dc:a0:f2:c5:c0:be:1c:50:2b:3f:ab:a0:99:41:2a:15:e8: a7:6c:29:b8:5f:66:85:2e:ac:74:d0:a3:b2:19:a5:f4:0c:b3: 41:80:10:79:53:59:d2:39:2d:4b:54:37:0f:5c:06:d4:19:04: 3d:97:7b:71:2c:62:7e:7d:2a:17:b2:11:f7:c0:84:c2:40:7b: e6:1c:7c:8a:0d:4e:65:3f:99:23:e6:19:18:0f:b7:3b:97:be: 79:85:87:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjYwMzI1MDAwODE4WhcNMjYwNDAxMDAwODE4WjAYMRYwFAYD VQQDEw02OWMzMjc3Mi0zMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZrZ7QEIExXEWnC2ok/Wwm+rw9eWRCoKo7w7l8+1rjZHJBchA8Sswc7wx2cd dfq87LLujlPGdA4N2e6N3IU9BXPIqrOgLxP//nSNhZ2dXWbRKMRXcyIqzMAHjfwm cY4Ng38kqNjFw4vueYJds/DNCV9piJxyzN0jH3OFWK/s+qn4SFnSmJT8YPDmEu3a NlUvHiMxVg7a5rAszbueqtku/74lRQUU100Kb8OudMjf6JkNER4CwLKVlwyAj3C3 vXn5FkbKYIhvtHZe6veD1WiuCEf2tYnIfLV8r5zuaP1cut+0jAoB/gxeklppxN/v l1eb6BaQur8tsScCiwJpcLVtCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN4KlLoN xR7wh+c1Zeocgg8yhZZ2MB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATCD3BQUFEsBestTEJ5SrIjAX+Y8UHlo0OsXNAQenval0ATBTBFHVnwXqN2qV a6MZIs5CEpJuf85vU4ABt1ub+vwJdQvMZA1fvJIgJKnfilSJt1uWJByPYkF7w+CV jVOv1qM/U/7aV9wCJFHSWhKSnyv/WV9akaQwY6VjDRDdDC/aZs/RnAJl6MGgvO8b pkw0gZll6AirsKV1Yss0ojXESlmiOdyg8sXAvhxQKz+roJlBKhXop2wpuF9mhS6s dNCjshml9AyzQYAQeVNZ0jktS1Q3D1wG1BkEPZd7cSxifn0qF7IR98CEwkB75hx8 ig1OZT+ZI+YZGA+3O5e+eYWHLQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:47:57 2026 by rpki-client