$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft File: JSnIA8s451HjaWq3li2CMUX81lk.mft (raw, json) Hash identifier: N0O4sI8Ci3FThw+QI6B+pmBkfDnUhfrNHk+IRhGa7l0= Subject key identifier: F0:D2:89:D6:8A:DC:55:F3:75:78:74:59:2A:E4:CA:B9:13:7B:D4:4C Authority key identifier: 25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 Certificate issuer: /CN=A91B6CE4/serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Certificate serial: 136A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft Manifest number: 135A Signing time: Tue 24 Mar 2026 16:52:59 +0000 Manifest this update: Tue 24 Mar 2026 16:52:58 +0000 Manifest next update: Tue 31 Mar 2026 16:52:58 +0000 Files and hashes: 1: JSnIA8s451HjaWq3li2CMUX81lk.crl (hash: Z0oC6LFHE6IhFAm1uCGgD1IqmD8dPyi2IeWmmEqpIiE=) 2: B3D4AEB8BFC011E8A7F4204CC4F9AE02.roa (hash: 7RR7Eg0wKm27NUGXm8j0ljoSWx4fgcR/0JinjGBY2bk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4970 (0x136a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6CE4, serialNumber=2529C803CB38E751E3696AB7962D823145FCD659 Validity Not Before: Mar 24 16:52:58 2026 GMT Not After : Mar 31 16:52:58 2026 GMT Subject: CN=69c2c16a-b802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5c:ce:c1:23:33:24:7a:d1:e7:49:6f:e0:3c: 60:20:9b:65:3f:d2:65:78:eb:2a:c8:c1:01:18:8d: 05:14:c3:a4:fb:8c:8b:36:d1:26:55:a4:45:f4:34: 27:93:32:9c:63:6f:20:e5:6b:f0:cd:bc:f8:6c:03: df:c0:20:03:dc:10:c7:36:a0:70:9c:a8:73:dd:38: 28:ac:a0:7e:be:2e:63:f1:eb:21:10:24:78:83:50: 54:9a:db:3d:b8:a2:d8:b1:2f:cc:cb:ac:a6:13:bf: 99:7c:9c:2c:f3:d4:89:f5:e7:4b:88:c5:83:67:81: 40:a0:a5:72:c5:13:af:db:96:8a:0f:d7:86:cb:f1: b5:53:ca:6a:00:39:5a:16:c1:44:35:a0:9d:f6:93: 39:d9:7b:44:16:04:a6:cf:a1:2f:1e:6e:b3:f5:0b: f8:6b:6e:22:e3:6f:f3:e5:7b:fc:09:40:85:67:14: c2:88:a4:7d:ae:77:84:95:5d:a7:59:ae:76:6c:4a: 6f:90:71:e9:b5:bb:ec:ee:7d:11:26:e7:fc:d3:70: e4:e0:1a:1d:13:1b:9d:0f:d4:f6:28:0a:1a:f5:6e: ee:c5:2b:c9:d0:83:9d:23:d6:4e:77:b1:89:8d:79: 5d:ab:27:51:05:d2:95:78:bf:38:1d:ca:82:b7:b8: 93:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D2:89:D6:8A:DC:55:F3:75:78:74:59:2A:E4:CA:B9:13:7B:D4:4C X509v3 Authority Key Identifier: keyid:25:29:C8:03:CB:38:E7:51:E3:69:6A:B7:96:2D:82:31:45:FC:D6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSnIA8s451HjaWq3li2CMUX81lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6CE4/08ED1788BFC011E8A6A8554BC4F9AE02/JSnIA8s451HjaWq3li2CMUX81lk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:50:41:3b:4d:66:17:b2:ac:8a:a4:2f:f5:ef:78:c7:54:5f: f2:20:64:bd:56:21:91:17:07:8d:80:9c:7b:1a:c4:b6:31:7b: dc:a8:83:20:97:24:c2:bb:f8:0f:2c:bc:7d:d9:a7:f9:1a:3c: 85:b9:14:74:3c:65:55:ac:d7:34:88:4d:15:88:74:b4:ed:55: 48:57:d5:0a:4c:75:cd:8d:e0:a0:ab:19:0b:4c:6f:d1:4f:d1: 29:d5:bd:02:15:70:e6:9b:69:02:e1:45:88:ea:78:bb:ca:09: 9f:6d:70:3e:eb:c8:4a:a6:24:4b:b6:62:02:8d:1e:5d:7b:26: 1a:e2:a9:08:2e:a2:60:98:6f:43:c1:f7:b5:a8:ad:88:d2:34: ca:f5:95:3b:74:6b:ed:99:77:69:fe:bb:17:77:87:0c:db:78: d5:c4:2f:24:ff:65:fd:85:7f:f3:f2:5f:bf:bf:dc:45:0f:68: 4a:57:be:15:21:5d:f7:f7:d8:bc:1c:2f:ed:e1:02:99:d2:97: 31:99:79:41:a1:80:96:3d:24:80:0f:74:45:e0:75:ed:fd:be: 76:9b:ae:0c:fb:5b:ad:1f:19:1b:1c:79:f3:47:8b:5b:a9:82: 36:6c:86:5a:af:79:63:a0:da:d9:55:47:8c:c4:2c:e8:99:17: ea:dc:aa:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDRTQxMTAvBgNVBAUTKDI1MjlDODAzQ0IzOEU3NTFFMzY5NkFCNzk2MkQ4MjMx NDVGQ0Q2NTkwHhcNMjYwMzI0MTY1MjU4WhcNMjYwMzMxMTY1MjU4WjAYMRYwFAYD VQQDEw02OWMyYzE2YS1iODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVzOwSMzJHrR50lv4DxgIJtlP9JleOsqyMEBGI0FFMOk+4yLNtEmVaRF9DQn kzKcY28g5Wvwzbz4bAPfwCAD3BDHNqBwnKhz3TgorKB+vi5j8eshECR4g1BUmts9 uKLYsS/My6ymE7+ZfJws89SJ9edLiMWDZ4FAoKVyxROv25aKD9eGy/G1U8pqADla FsFENaCd9pM52XtEFgSmz6EvHm6z9Qv4a24i42/z5Xv8CUCFZxTCiKR9rneElV2n Wa52bEpvkHHptbvs7n0RJuf803Dk4BodExudD9T2KAoa9W7uxSvJ0IOdI9ZOd7GJ jXldqydRBdKVeL84HcqCt7iTUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPDSidaK 3FXzdXh0WSrkyrkTe9RMMB8GA1UdIwQYMBaAFCUpyAPLOOdR42lqt5YtgjFF/NZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkNFNC8wOEVEMTc4OEJG QzAxMUU4QTZBODU1NEJDNEY5QUUwMi9KU25JQThzNDUxSGphV3EzbGkyQ01VWDgx bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTbklBOHM0NTFIamFXcTNsaTJDTVVYODFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkNFNC8wOEVEMTc4OEJGQzAxMUU4QTZBODU1NEJDNEY5QUUwMi9KU25JQThzNDUx SGphV3EzbGkyQ01VWDgxbGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZlBBO01mF7KsiqQv9e94x1Rf8iBkvVYhkRcHjYCcexrEtjF73KiDIJckwrv4 Dyy8fdmn+Ro8hbkUdDxlVazXNIhNFYh0tO1VSFfVCkx1zY3goKsZC0xv0U/RKdW9 AhVw5ptpAuFFiOp4u8oJn21wPuvISqYkS7ZiAo0eXXsmGuKpCC6iYJhvQ8H3tait iNI0yvWVO3Rr7Zl3af67F3eHDNt41cQvJP9l/YV/8/Jfv7/cRQ9oSle+FSFd9/fY vBwv7eECmdKXMZl5QaGAlj0kgA90ReB17f2+dpuuDPtbrR8ZGxx580eLW6mCNmyG Wq95Y6Da2VVHjMQs6JkX6tyqtg== -----END CERTIFICATE-----Generated at Thu Mar 26 05:36:28 2026 by rpki-client