$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: NT87d4ZQf7HAYCoH91VorVmCw/HXaOPDM3PnxUbmAtI= Subject key identifier: DE:20:DD:44:59:43:C6:5D:D8:3B:AC:7F:2F:B0:9C:0E:CD:1F:64:16 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 0189 Signing time: Wed 25 Mar 2026 03:47:48 +0000 Manifest this update: Wed 25 Mar 2026 03:47:48 +0000 Manifest next update: Wed 01 Apr 2026 03:47:48 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: ObuedwA3t0eBgWKWUQqTQ1KuxIuvmKIBI9ZTkHaV/ho=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: UQkvKEtmPCHJz+Q8ZNQvg67RXBCPC2Ebr74K46kUePA=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: LEeEoPnurqHLkUUVSu9yJBsBMhkrOlJ07WCt3kv1lkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Mar 25 03:47:48 2026 GMT Not After : Apr 1 03:47:48 2026 GMT Subject: CN=69c35ae4-6191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:06:63:a7:0e:0c:55:de:c9:f1:f0:a8:07:6a: c5:5a:96:b4:d9:b1:1a:3a:c7:27:2c:43:93:7b:e6: bd:ec:96:e2:f5:a7:58:a9:e9:fb:91:c7:0a:54:03: 35:df:0d:62:b0:14:ff:ac:a2:70:99:51:ee:8a:4c: 43:dc:cd:fd:24:9c:df:73:02:8b:65:bb:35:9d:7e: 75:a3:e6:47:a7:32:f2:28:90:18:44:87:b0:d9:6c: 79:a9:0f:f5:ea:97:1b:15:4d:f8:27:d0:a3:c8:10: 28:e6:e6:d0:46:eb:70:18:6c:70:a3:74:33:3b:a7: 50:25:91:37:3b:70:7d:ad:c5:d7:92:fa:47:c3:ba: a0:d7:5c:a8:98:0b:a5:37:ed:b1:12:6f:fa:b5:0e: 70:37:6d:24:9c:6f:b9:be:eb:68:66:93:a5:f1:aa: e3:d2:8f:f9:f7:e3:e8:bf:a8:61:44:1f:fd:c6:ff: bc:3a:db:93:06:ac:cb:e7:16:dd:4d:53:f5:b6:35: a5:66:bd:fb:68:ad:07:73:4a:6e:2c:23:4d:58:ef: 2c:fd:6c:c7:9d:60:ab:2c:2b:4f:6c:94:5f:25:4f: 3c:d8:a9:6e:fb:50:73:83:cd:a1:92:8c:76:68:12: 9f:5e:13:5f:13:f4:26:31:c7:32:ec:f0:50:e0:51: 78:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:20:DD:44:59:43:C6:5D:D8:3B:AC:7F:2F:B0:9C:0E:CD:1F:64:16 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:47:72:93:7e:49:f4:1c:ea:25:ee:c4:0d:1a:df:97:17:81: 28:2d:5b:1b:b9:13:81:1a:5d:c9:05:bd:f8:88:8a:b5:7d:a6: c7:3e:3a:9a:3a:7e:3f:ff:9f:d6:91:dc:be:99:62:4c:2a:f1: f2:af:a6:ec:f8:35:60:3c:bf:50:6e:09:46:25:9a:38:1b:2b: b0:3e:f5:af:9f:80:25:96:ff:fb:59:af:8c:80:25:02:d4:d5: 73:c5:c5:52:d9:89:4c:b9:8c:6b:e5:08:f4:d3:b1:d4:1a:9f: 3b:1e:a6:00:fb:72:e5:f8:bd:a1:71:9f:34:fc:17:29:f6:42: d6:69:60:2c:9c:0f:42:3f:ab:0b:95:73:e1:11:fc:4f:a8:a1: 18:40:76:d6:88:e6:ef:86:3e:b0:1e:a8:37:5e:fe:91:4d:43: d9:32:90:72:1d:db:e7:7d:9b:26:2a:b0:d6:dd:3a:2a:df:09: 93:e7:13:42:4e:fe:a7:79:44:4b:5d:40:a6:a3:f8:3b:42:66: 0d:dd:5b:cb:9f:25:fd:e8:a2:a7:e9:46:5c:02:8d:c9:fa:22: 18:d4:b9:38:f5:41:a7:97:b3:84:c2:95:09:23:32:99:0d:48: d8:e5:92:ef:fd:b2:f4:2c:47:c0:8e:b3:c5:6f:fa:f7:bf:a8: 5f:0a:42:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjYwMzI1MDM0NzQ4WhcNMjYwNDAxMDM0NzQ4WjAYMRYwFAYD VQQDEw02OWMzNWFlNC02MTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgZjpw4MVd7J8fCoB2rFWpa02bEaOscnLEOTe+a97Jbi9adYqen7kccKVAM1 3w1isBT/rKJwmVHuikxD3M39JJzfcwKLZbs1nX51o+ZHpzLyKJAYRIew2Wx5qQ/1 6pcbFU34J9CjyBAo5ubQRutwGGxwo3QzO6dQJZE3O3B9rcXXkvpHw7qg11yomAul N+2xEm/6tQ5wN20knG+5vutoZpOl8arj0o/59+Pov6hhRB/9xv+8OtuTBqzL5xbd TVP1tjWlZr37aK0Hc0puLCNNWO8s/WzHnWCrLCtPbJRfJU882Klu+1Bzg82hkox2 aBKfXhNfE/QmMccy7PBQ4FF4sQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN4g3URZ Q8Zd2Dusfy+wnA7NH2QWMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPUdyk35J9BzqJe7EDRrflxeBKC1bG7kTgRpdyQW9+IiKtX2mxz46mjp+P/+f 1pHcvpliTCrx8q+m7Pg1YDy/UG4JRiWaOBsrsD71r5+AJZb/+1mvjIAlAtTVc8XF UtmJTLmMa+UI9NOx1BqfOx6mAPty5fi9oXGfNPwXKfZC1mlgLJwPQj+rC5Vz4RH8 T6ihGEB21ojm74Y+sB6oN17+kU1D2TKQch3b532bJiqw1t06Kt8Jk+cTQk7+p3lE S11ApqP4O0JmDd1by58l/eiip+lGXAKNyfoiGNS5OPVBp5ezhMKVCSMymQ1I2OWS 7/2y9CxHwI6zxW/697+oXwpCfQ== -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:20 2026 by rpki-client