$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft File: vELDvIdcBnayn9eryfgbSpH9iok.mft (raw, json) Hash identifier: SvwxukqZQATpknF9jkgj6ds0ENYF4H2sJnSSpIcTTt4= Subject key identifier: DC:16:73:81:4A:E3:45:D1:80:32:E4:73:B0:25:E3:04:35:C5:DE:00 Authority key identifier: BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 Certificate issuer: /CN=A91B7D14/serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft Manifest number: 011F Signing time: Wed 25 Mar 2026 04:58:12 +0000 Manifest this update: Wed 25 Mar 2026 04:58:11 +0000 Manifest next update: Wed 01 Apr 2026 04:58:11 +0000 Files and hashes: 1: vELDvIdcBnayn9eryfgbSpH9iok.crl (hash: ArupUJfShaEX5b8cfGyUF0b7scO1fza1jLd8wdDwd4o=) 2: AAA33A7A74B011EF85E1C348C4F9AE02.roa (hash: FW4g/QhH4gL1hdaSiCtFk1K0xDP8/LV5Fbh+qpfxD0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D14, serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Validity Not Before: Mar 25 04:58:11 2026 GMT Not After : Apr 1 04:58:11 2026 GMT Subject: CN=69c36b64-5272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3d:b8:cd:61:e3:4c:40:ee:81:e2:59:82:d7: 9c:07:da:c7:25:25:7d:19:6d:90:23:c3:60:bf:68: 35:f0:78:df:1a:99:8f:37:2d:01:63:49:5a:6f:8d: 18:69:49:89:0b:7d:94:2a:6b:74:9e:ae:8e:30:e3: 68:b2:0f:f4:4a:54:f3:ce:26:77:a0:76:fe:8d:1b: 94:72:10:73:0d:54:66:70:f0:00:43:39:f2:50:6a: da:a6:39:01:bb:8f:82:39:d0:19:90:fd:0f:65:ce: 9e:49:65:14:88:e8:09:77:51:53:08:1f:ee:b2:c8: f7:63:ac:51:fc:07:7b:e8:d4:98:3a:79:29:35:f4: 53:d1:f1:57:d0:fb:4b:7e:17:a2:28:a1:72:d7:cb: fd:2c:5e:ea:87:4e:8d:b9:15:04:46:b2:5d:17:fa: 94:d5:10:43:f8:6d:68:30:36:47:b3:d8:cf:33:6d: 20:29:f7:5b:87:27:68:d7:fd:b1:cd:dc:b1:50:9a: 72:bd:02:ba:a8:03:db:27:f9:c1:d3:7e:f7:64:9c: 88:64:75:f0:a7:c4:e9:01:ea:bd:64:03:e3:73:7b: 6e:ec:9f:44:72:ae:a2:b5:44:fe:75:b0:05:32:cb: 74:a6:74:19:df:b3:20:c3:65:1b:f9:8f:c6:ea:ae: c3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:16:73:81:4A:E3:45:D1:80:32:E4:73:B0:25:E3:04:35:C5:DE:00 X509v3 Authority Key Identifier: keyid:BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a2:7a:fb:7f:e8:71:0c:c9:ba:17:31:c2:a6:f3:be:a6:5f: e6:dd:ce:c1:db:03:51:c3:22:36:0b:69:f3:11:ab:6b:35:68: 02:8a:fe:bd:cb:8b:0d:73:71:ce:ea:cb:10:ca:1e:18:9f:ff: 92:02:4e:85:c4:87:f0:9a:6a:e5:fa:b0:86:21:31:8b:5e:70: 83:3a:4a:93:1f:d4:df:68:bf:6e:13:45:c5:17:dd:ae:53:0f: 81:63:d3:50:4a:f8:0e:a3:36:4e:e4:0e:eb:89:7e:e8:ea:5a: 7c:4c:7e:da:7e:a5:1a:d7:77:6e:ad:eb:1b:d3:04:8f:4f:84: 8a:0c:ca:4e:31:fb:06:1e:41:7d:b8:e9:72:66:18:5a:b2:d3: d3:11:0e:a5:0b:d5:2c:6c:35:d8:4c:9c:b8:ce:3f:4e:2c:90: 8b:25:29:80:cf:31:c5:a1:d0:f1:2d:b7:4a:ec:ec:a1:2d:56: 52:99:3b:14:92:1a:4d:2d:8c:ac:59:d3:45:09:15:6b:5c:6f: 2d:7d:41:56:aa:c5:67:03:19:56:8b:ca:ea:37:49:49:d5:f5: 7b:ff:1c:58:74:ec:67:cc:73:99:50:46:b5:d5:8a:cf:dd:62: 91:96:4d:1f:37:40:6a:11:31:81:98:d8:47:5d:54:66:01:f5: b7:ad:b6:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEMTQxMTAvBgNVBAUTKEJDNDJDM0JDODc1QzA2NzZCMjlGRDdBQkM5RjgxQjRB OTFGRDhBODkwHhcNMjYwMzI1MDQ1ODExWhcNMjYwNDAxMDQ1ODExWjAYMRYwFAYD VQQDEw02OWMzNmI2NC01MjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2T24zWHjTEDugeJZgtecB9rHJSV9GW2QI8Ngv2g18HjfGpmPNy0BY0lab40Y aUmJC32UKmt0nq6OMONosg/0SlTzziZ3oHb+jRuUchBzDVRmcPAAQznyUGrapjkB u4+COdAZkP0PZc6eSWUUiOgJd1FTCB/ussj3Y6xR/Ad76NSYOnkpNfRT0fFX0PtL fheiKKFy18v9LF7qh06NuRUERrJdF/qU1RBD+G1oMDZHs9jPM20gKfdbhydo1/2x zdyxUJpyvQK6qAPbJ/nB0373ZJyIZHXwp8TpAeq9ZAPjc3tu7J9Ecq6itUT+dbAF Mst0pnQZ37Mgw2Ub+Y/G6q7DrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNwWc4FK 40XRgDLkc7Al4wQ1xd4AMB8GA1UdIwQYMBaAFLxCw7yHXAZ2sp/Xq8n4G0qR/YqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QxNC9DREIzQjlBQTc0 QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0JuYXluOWVyeWZnYlNwSDlp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZFTER2SWRjQm5heW45ZXJ5ZmdiU3BIOWlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QxNC9DREIzQjlBQTc0QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0Ju YXluOWVyeWZnYlNwSDlpb2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKqJ6+3/ocQzJuhcxwqbzvqZf5t3OwdsDUcMiNgtp8xGrazVoAor+vcuLDXNx zurLEMoeGJ//kgJOhcSH8Jpq5fqwhiExi15wgzpKkx/U32i/bhNFxRfdrlMPgWPT UEr4DqM2TuQO64l+6OpafEx+2n6lGtd3bq3rG9MEj0+EigzKTjH7Bh5BfbjpcmYY WrLT0xEOpQvVLGw12EycuM4/TiyQiyUpgM8xxaHQ8S23SuzsoS1WUpk7FJIaTS2M rFnTRQkVa1xvLX1BVqrFZwMZVovK6jdJSdX1e/8cWHTsZ8xzmVBGtdWKz91ikZZN HzdAahExgZjYR11UZgH1t622Ug== -----END CERTIFICATE-----Generated at Thu Mar 26 00:55:38 2026 by rpki-client