$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft File: 7w5JMvxot1LjQokiqT5mq-MfNDE.mft (raw, json) Hash identifier: 4FjkLSpjB0SOUIzsIUHxmtS9ysM9+tZcVrIsfu9VhAM= Subject key identifier: C9:10:0A:09:61:AE:42:1F:F4:C6:04:13:D2:71:9D:3F:80:45:CF:4F Authority key identifier: EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 Certificate issuer: /CN=A91B4B33/serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft Manifest number: 0153 Signing time: Wed 25 Mar 2026 04:18:22 +0000 Manifest this update: Wed 25 Mar 2026 04:18:21 +0000 Manifest next update: Wed 01 Apr 2026 04:18:21 +0000 Files and hashes: 1: 7w5JMvxot1LjQokiqT5mq-MfNDE.crl (hash: v8eEbJYXcd3ufPS/owDTkXaBR/h4OEiWpmN1NxvZG0s=) 2: 80741B04221F11EF92A42E1AC4F9AE02.roa (hash: swG/TJNzvtXbusBEGiNOYHB9K0pajP/QlCliJ4S76lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4B33, serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Validity Not Before: Mar 25 04:18:21 2026 GMT Not After : Apr 1 04:18:21 2026 GMT Subject: CN=69c3620e-75a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fb:19:cf:e2:8d:c2:93:f5:9e:88:e5:3c:dc: cb:38:fc:b5:d3:a5:e4:9f:53:0a:ee:f9:ec:48:ef: e3:18:b7:ff:31:a5:f0:06:95:12:ef:67:5e:3d:89: 5b:b7:31:2f:5e:2a:fc:59:27:5c:c5:df:7a:7c:f1: a4:00:21:72:74:e4:78:bb:c7:05:7c:5e:b1:0b:9e: 8b:0a:13:c3:7b:3d:a1:45:d4:66:b3:79:c5:d5:e0: 36:b7:e5:49:ae:59:19:37:df:1f:17:cb:aa:4c:d6: e1:25:80:ee:92:b3:f0:04:2e:9c:58:6b:c7:94:b5: 9c:e1:3a:1e:df:3f:c1:aa:75:23:b9:29:3e:0b:1d: 22:94:9c:db:cb:18:40:31:e0:2f:5a:dd:06:b7:29: 57:10:3d:7c:0b:01:46:cd:d1:02:60:ff:fd:01:f3: b8:af:c1:77:13:34:94:e5:d9:1e:d3:e5:c5:d8:5a: 77:c7:23:95:c7:46:a5:95:bf:e4:e6:d2:6b:15:93: 57:9f:11:9a:f8:84:85:b1:d3:37:f1:e9:d2:10:54: 89:39:ce:20:f6:39:c7:7d:36:7d:ab:f4:62:56:d4: 43:a8:2a:c2:11:4c:95:cf:e8:45:8f:48:75:c1:6c: 4c:44:3b:8e:b7:3c:aa:6d:0b:d8:ec:5b:95:0c:32: 58:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:10:0A:09:61:AE:42:1F:F4:C6:04:13:D2:71:9D:3F:80:45:CF:4F X509v3 Authority Key Identifier: keyid:EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:86:35:d6:00:4e:a6:b5:0c:81:53:b5:58:a3:e8:b2:65:44: 22:51:1e:11:f4:38:ce:fb:72:2b:e6:19:e8:55:3a:f1:cf:4a: e4:6e:17:1b:ad:54:59:f8:eb:fe:a5:29:53:45:3c:c6:4b:c3: da:71:0a:5d:dc:fb:ca:ac:53:a4:3e:cc:bb:92:c3:ce:9e:b5: 70:e7:c0:83:8c:c8:66:7f:d7:4f:68:11:75:06:5c:8a:15:6a: 19:b9:5e:2a:7c:eb:91:f6:2a:8b:ea:60:67:ef:c4:18:21:e0: c6:77:99:76:6d:fe:f7:0e:fa:4b:31:a1:e6:fc:78:18:d6:7b: 16:6e:99:6f:28:55:f7:54:4e:e8:d1:3d:18:0f:2a:42:81:64: b0:f1:e4:e7:4d:37:65:07:08:24:04:f0:2b:22:b9:98:26:21: 8d:21:ba:5b:1b:62:23:0a:24:bc:f5:59:02:d5:27:21:84:30: 82:1f:a8:27:2d:fd:ea:f4:20:a6:a0:f3:e2:0c:61:22:e1:ea: 27:18:84:1c:e7:93:d1:9a:e2:42:f1:ed:08:04:da:51:49:d5: 66:75:50:7d:cb:29:90:cc:2d:1d:f5:61:76:41:ad:81:30:10: 52:dd:60:50:04:01:84:fe:e7:29:b9:59:f3:1f:ea:aa:ec:83: b6:33:8c:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRCMzMxMTAvBgNVBAUTKEVGMEU0OTMyRkM2OEI3NTJFMzQyODkyMkE5M0U2NkFC RTMxRjM0MzEwHhcNMjYwMzI1MDQxODIxWhcNMjYwNDAxMDQxODIxWjAYMRYwFAYD VQQDEw02OWMzNjIwZS03NWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/sZz+KNwpP1nojlPNzLOPy106Xkn1MK7vnsSO/jGLf/MaXwBpUS72dePYlb tzEvXir8WSdcxd96fPGkACFydOR4u8cFfF6xC56LChPDez2hRdRms3nF1eA2t+VJ rlkZN98fF8uqTNbhJYDukrPwBC6cWGvHlLWc4Toe3z/BqnUjuSk+Cx0ilJzbyxhA MeAvWt0GtylXED18CwFGzdECYP/9AfO4r8F3EzSU5dke0+XF2Fp3xyOVx0allb/k 5tJrFZNXnxGa+ISFsdM38enSEFSJOc4g9jnHfTZ9q/RiVtRDqCrCEUyVz+hFj0h1 wWxMRDuOtzyqbQvY7FuVDDJYlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMkQCglh rkIf9MYEE9JxnT+ARc9PMB8GA1UdIwQYMBaAFO8OSTL8aLdS40KJIqk+ZqvjHzQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEIzMy8xQUNFN0QwNDIy MUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3QxTGpRb2tpcVQ1bXEtTWZO REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzd3NUpNdnhvdDFMalFva2lxVDVtcS1NZk5ERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEIzMy8xQUNFN0QwNDIyMUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3Qx TGpRb2tpcVQ1bXEtTWZOREUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFoY11gBOprUMgVO1WKPosmVEIlEeEfQ4zvtyK+YZ6FU68c9K5G4XG61UWfjr /qUpU0U8xkvD2nEKXdz7yqxTpD7Mu5LDzp61cOfAg4zIZn/XT2gRdQZcihVqGble KnzrkfYqi+pgZ+/EGCHgxneZdm3+9w76SzGh5vx4GNZ7Fm6ZbyhV91RO6NE9GA8q QoFksPHk5003ZQcIJATwKyK5mCYhjSG6WxtiIwokvPVZAtUnIYQwgh+oJy396vQg pqDz4gxhIuHqJxiEHOeT0ZriQvHtCATaUUnVZnVQfcspkMwtHfVhdkGtgTAQUt1g UAQBhP7nKblZ8x/qquyDtjOMCw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:56:16 2026 by rpki-client