$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: k3klArzxIQrgUEeBMiJ6y290TwLqye9sXWpGK5/cNkg= Subject key identifier: FA:23:52:BF:60:87:3C:8E:ED:59:07:7B:22:14:7D:D3:3D:BC:A7:C0 Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 351E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 40F7 Signing time: Tue 24 Mar 2026 14:48:20 +0000 Manifest this update: Tue 24 Mar 2026 14:48:19 +0000 Manifest next update: Tue 31 Mar 2026 14:48:19 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: droGRW+ZKXUN9lom0EbPQHBdek6fVtB7k8wYpl6ITsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13598 (0x351e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Mar 24 14:48:19 2026 GMT Not After : Mar 31 14:48:19 2026 GMT Subject: CN=69c2a434-11b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f0:97:ec:6e:86:89:78:fc:02:23:2e:ed:d7: 9d:3d:55:1e:82:f8:76:ae:98:e1:25:66:50:16:fb: 62:f9:97:21:66:c6:34:d7:34:6a:57:bf:a2:6a:21: ae:3e:ee:f3:1e:3c:37:0f:f2:34:47:27:d1:2d:f3: 93:b4:65:4e:79:56:95:bd:d9:00:dd:57:75:0e:75: a9:80:34:8a:27:8b:6f:e7:c2:37:d7:88:73:98:02: 8b:21:f0:56:aa:c0:5e:18:b4:dc:58:76:50:9e:ae: ec:3a:a9:b8:b7:08:7f:b1:5c:41:dc:1c:d3:5c:af: 8e:a0:85:9d:26:56:2c:ca:45:41:9e:c9:e5:bf:80: b7:a9:d9:79:5e:1c:b7:ab:cc:a9:df:84:a7:8d:e8: 8f:ac:84:41:95:34:62:de:39:91:25:c6:4a:d8:61: dd:6f:4b:f9:f8:2f:39:c5:38:76:ec:d1:f0:ca:dc: d3:11:2e:19:e0:b8:08:70:c7:7b:fa:66:63:8f:50: 9d:d7:24:6a:6d:93:df:1b:a7:a5:db:a2:fc:32:de: 3e:67:b0:f0:6b:ca:5f:7c:f2:d6:93:af:41:dd:d0: e2:a3:15:80:8e:24:26:95:3d:21:ad:15:26:df:1a: 5d:2e:1e:64:bc:78:85:03:a6:7a:ec:cc:0b:39:e8: 12:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:23:52:BF:60:87:3C:8E:ED:59:07:7B:22:14:7D:D3:3D:BC:A7:C0 X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e8:8a:cf:ed:43:4b:33:b7:db:13:73:56:63:63:73:06:a4: 33:4f:a5:e6:52:5d:4b:2e:39:65:c2:ed:9d:4e:17:7b:8d:ad: c0:bf:10:6c:4b:f9:3b:bb:92:82:34:0b:23:b4:5d:14:61:fa: 3d:4d:f7:ae:b4:a5:ca:8d:5d:57:ee:ac:ab:32:33:4d:52:76: e3:da:9f:07:ee:99:bf:51:80:a6:c4:9b:1e:4f:48:81:80:9b: ef:83:78:17:66:fb:8d:44:c2:4a:8a:6a:10:8f:8d:5a:5a:42: f0:64:e4:92:69:67:0d:dd:06:32:1c:e1:1f:d1:bd:f5:6c:31: f4:54:70:c9:04:80:f1:df:fc:16:fa:8a:69:54:e0:a4:3f:ef: d8:74:b0:03:47:99:71:21:9c:5a:b5:15:ca:bb:1e:b1:09:0c: 86:a9:0b:24:fc:19:08:4b:5b:39:46:96:5f:c8:83:ec:19:e4: 44:7e:a8:a8:ef:16:bc:d4:8a:8e:be:a4:bd:07:11:39:d3:fd: dd:bb:7c:01:fd:2d:d8:61:20:cd:b4:7e:25:03:fc:96:c1:2c: 5a:5d:e9:e2:fb:59:f4:66:a4:38:95:2a:41:3a:ab:f1:97:45: e4:3c:5a:31:df:6f:61:c5:ab:0c:fe:02:7a:27:75:7a:2e:53: 8a:04:31:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjYwMzI0MTQ0ODE5WhcNMjYwMzMxMTQ0ODE5WjAYMRYwFAYD VQQDEw02OWMyYTQzNC0xMWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/CX7G6GiXj8AiMu7dedPVUegvh2rpjhJWZQFvti+ZchZsY01zRqV7+iaiGu Pu7zHjw3D/I0RyfRLfOTtGVOeVaVvdkA3Vd1DnWpgDSKJ4tv58I314hzmAKLIfBW qsBeGLTcWHZQnq7sOqm4twh/sVxB3BzTXK+OoIWdJlYsykVBnsnlv4C3qdl5Xhy3 q8yp34SnjeiPrIRBlTRi3jmRJcZK2GHdb0v5+C85xTh27NHwytzTES4Z4LgIcMd7 +mZjj1Cd1yRqbZPfG6el26L8Mt4+Z7Dwa8pffPLWk69B3dDioxWAjiQmlT0hrRUm 3xpdLh5kvHiFA6Z67MwLOegSDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPojUr9g hzyO7VkHeyIUfdM9vKfAMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi+iKz+1DSzO32xNzVmNjcwakM0+l5lJdSy45ZcLtnU4Xe42twL8QbEv5O7uS gjQLI7RdFGH6PU33rrSlyo1dV+6sqzIzTVJ249qfB+6Zv1GApsSbHk9IgYCb74N4 F2b7jUTCSopqEI+NWlpC8GTkkmlnDd0GMhzhH9G99Wwx9FRwyQSA8d/8FvqKaVTg pD/v2HSwA0eZcSGcWrUVyrsesQkMhqkLJPwZCEtbOUaWX8iD7BnkRH6oqO8WvNSK jr6kvQcROdP93bt8Af0t2GEgzbR+JQP8lsEsWl3p4vtZ9GakOJUqQTqr8ZdF5Dxa Md9vYcWrDP4Ceid1ei5TigQxqw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:13:12 2026 by rpki-client