$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: WmDYliFINndNmcvevlbZA88xc5eH+E0bC/7w8inmt/g= Subject key identifier: BF:8D:3E:43:CF:F0:58:22:CA:5D:18:4A:C6:2E:9A:BB:54:F2:EE:97 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 027F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 0279 Signing time: Wed 25 Mar 2026 01:21:30 +0000 Manifest this update: Wed 25 Mar 2026 01:21:29 +0000 Manifest next update: Wed 01 Apr 2026 01:21:29 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: Ly5v8BKNZxU1/jcA45K6YqpSY75uiLSFe35s9gagFUs=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: WcWgzJGh0m7kjX3X0vlH0++NcJ8zb8A6kxhRMuoMb8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Mar 25 01:21:29 2026 GMT Not After : Apr 1 01:21:29 2026 GMT Subject: CN=69c3389a-c5ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:ae:36:f3:42:c0:0a:06:1b:64:f6:9c:a8: 7b:0e:7c:06:a5:aa:50:b6:67:6a:83:45:f8:07:b9: 03:0f:c6:99:3d:a0:27:ea:ca:14:0c:88:a1:87:f5: a5:3a:f4:be:10:fa:e6:f0:28:d9:d2:36:dc:4a:e2: 4d:c9:7d:f6:e1:53:a2:7b:89:76:b0:74:81:12:e4: 2a:5c:9a:3c:51:c5:54:6f:05:fa:18:e4:9e:18:18: b1:85:8d:82:e9:17:06:75:88:ad:7a:23:5a:c3:ab: ae:66:a9:e4:c2:00:6b:41:44:77:12:bd:fc:2d:79: 53:d5:80:90:1a:92:ae:98:3d:c4:9d:85:3d:4d:0e: 48:04:5c:0f:a6:0d:48:60:5e:a4:3d:38:bf:f4:a9: 57:2b:05:a8:9f:3c:54:06:e9:8c:db:9e:c1:fb:02: 8a:49:56:66:2f:d0:7b:fd:f6:99:3e:f0:64:af:4e: df:99:3c:e2:e2:56:8c:2a:7b:cf:a5:a7:14:54:9c: 24:af:d3:e5:aa:b7:b4:37:fd:86:ba:8e:c3:8d:72: 68:4b:66:5e:0a:8d:eb:7c:bc:c3:7c:40:2a:6e:bc: a8:cd:91:2d:c1:f6:30:77:90:d3:fa:a2:f6:dc:67: d8:de:f0:5a:22:bf:20:4d:8d:58:e9:5a:7c:71:fc: 0a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8D:3E:43:CF:F0:58:22:CA:5D:18:4A:C6:2E:9A:BB:54:F2:EE:97 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:f9:64:63:a4:9f:76:9a:88:f9:fb:51:8b:88:6e:02:01:b0: 67:9a:c7:b3:70:fb:74:c4:8f:b1:c7:ad:40:20:55:46:fa:1f: e4:4e:76:90:ad:d2:82:7f:39:eb:b6:0a:f6:1e:76:eb:6f:1f: a9:fb:46:5c:20:4e:71:7a:96:6d:51:4d:4f:54:8a:d6:37:da: 73:c7:b2:32:9d:3e:e3:b7:c5:a0:d7:f1:e4:53:d5:00:6b:b3: 80:31:a0:ed:27:8c:f1:99:d9:55:08:97:76:30:f5:41:fd:fc: bd:8b:98:d1:cb:27:af:da:e5:a6:45:db:b9:d2:04:27:bd:fd: 38:88:ca:9e:4a:3e:35:ad:0a:6f:1d:98:36:0d:1b:8f:7b:f2: ea:a5:07:47:e5:e6:e7:84:a3:bb:ef:8c:be:f4:df:0e:19:6d: 85:b1:72:d7:40:a9:85:ca:a1:13:16:21:9c:d4:d5:13:d1:b4: 8e:3e:b6:15:d3:76:cf:52:98:5d:87:1a:ac:6a:32:84:6b:a4: a7:6e:10:dc:50:10:22:1a:61:50:04:53:75:71:f3:67:0e:19: 2a:ff:a1:8c:ee:0e:f0:29:b7:67:06:17:47:01:ef:ab:d1:cf: 70:ea:5c:b8:93:66:a2:d1:0c:ec:29:ac:64:eb:be:8c:16:67: 12:4b:c8:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjYwMzI1MDEyMTI5WhcNMjYwNDAxMDEyMTI5WjAYMRYwFAYD VQQDEw02OWMzMzg5YS1jNWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGyuNvNCwAoGG2T2nKh7DnwGpapQtmdqg0X4B7kDD8aZPaAn6soUDIihh/Wl OvS+EPrm8CjZ0jbcSuJNyX324VOie4l2sHSBEuQqXJo8UcVUbwX6GOSeGBixhY2C 6RcGdYiteiNaw6uuZqnkwgBrQUR3Er38LXlT1YCQGpKumD3EnYU9TQ5IBFwPpg1I YF6kPTi/9KlXKwWonzxUBumM257B+wKKSVZmL9B7/faZPvBkr07fmTzi4laMKnvP pacUVJwkr9Plqre0N/2Guo7DjXJoS2ZeCo3rfLzDfEAqbryozZEtwfYwd5DT+qL2 3GfY3vBaIr8gTY1Y6Vp8cfwKMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL+NPkPP 8Fgiyl0YSsYumrtU8u6XMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUflkY6SfdpqI+ftRi4huAgGwZ5rHs3D7dMSPscetQCBVRvof5E52kK3Sgn85 67YK9h52628fqftGXCBOcXqWbVFNT1SK1jfac8eyMp0+47fFoNfx5FPVAGuzgDGg 7SeM8ZnZVQiXdjD1Qf38vYuY0csnr9rlpkXbudIEJ739OIjKnko+Na0Kbx2YNg0b j3vy6qUHR+Xm54Sju++MvvTfDhlthbFy10CphcqhExYhnNTVE9G0jj62FdN2z1KY XYcarGoyhGukp24Q3FAQIhphUARTdXHzZw4ZKv+hjO4O8Cm3ZwYXRwHvq9HPcOpc uJNmotEM7CmsZOu+jBZnEkvIqA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:24:45 2026 by rpki-client