$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft File: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft (raw, json) Hash identifier: gKCXkm+DFnHQ/eb210eTQ1BAnmppeIDFN91pcV8wW84= Subject key identifier: 0D:55:CF:3E:26:5B:08:F5:0B:1A:56:E3:0A:EB:15:47:50:B7:74:0B Authority key identifier: E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 Certificate issuer: /CN=A91B7F47/serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Certificate serial: 0E3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft Manifest number: 0E1A Signing time: Tue 24 Mar 2026 17:42:55 +0000 Manifest this update: Tue 24 Mar 2026 17:42:55 +0000 Manifest next update: Tue 31 Mar 2026 17:42:55 +0000 Files and hashes: 1: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl (hash: Ia81+vV2Cdr/IDnzK/u9uCcND42yFy3u1xz5PnVpuZU=) 2: A791AF14CF8211F0AAF9A481C4F9AE02.roa (hash: qBZYKamMj/oDU4E6eK9pTMccppq/DCgF8vxu2spcuiw=) 3: 8B41351885EB11F0B665685EC4F9AE02.roa (hash: nJEq5dcjdbygkdzbWZ20NZb/kFcLm8+8wcWhp21gyU8=) 4: 3E174B92CF8311F0BE74A724C4F9AE02.roa (hash: GBvJaOYF1545b8b+gOGrGQUjqqr8+5hiMjlmvxSFrPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3645 (0xe3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7F47, serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Validity Not Before: Mar 24 17:42:55 2026 GMT Not After : Mar 31 17:42:55 2026 GMT Subject: CN=69c2cd1f-a871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:21:3b:02:6e:83:08:23:28:11:64:de:0f:35: 34:da:b1:ac:6b:a0:db:ab:50:3c:61:e3:85:06:93: 9f:29:19:d3:a6:b7:c3:bd:73:c6:ff:14:2d:ea:a6: 1c:84:2e:a3:48:08:f1:55:d8:d6:14:b1:b5:c7:6f: 6e:f6:be:d3:1b:e8:b7:9a:37:bc:59:92:df:22:4f: c0:b0:83:cb:4c:7f:5d:c4:91:6b:23:0b:df:d8:49: ff:d2:b9:24:8e:c4:df:73:40:5a:f9:ad:7a:fb:8d: e2:a3:20:3b:8e:91:b8:20:75:9d:4e:de:d9:d5:d4: 7e:7e:11:0c:c7:3d:26:7b:8f:d3:22:5b:d0:85:52: 3d:67:d5:1e:dd:2f:20:c5:fe:da:aa:8c:08:e5:0b: b5:c2:24:32:8c:a1:e2:43:e6:09:db:9f:97:4f:49: 03:08:83:93:0f:1c:9c:51:74:dd:d6:20:6f:10:a0: b5:dd:e3:8f:14:8d:30:cd:72:fb:7a:b4:f6:80:3e: 4e:b4:dc:6d:03:89:f5:67:0c:24:ef:cd:b6:ca:ca: a7:6c:9d:b8:7f:2b:77:c1:ce:a8:8c:7d:21:ab:51: 22:5f:f3:73:fb:b4:ed:de:ce:b6:49:ea:11:01:ef: 69:55:fc:3e:68:7c:87:7a:be:02:1d:39:c5:93:c3: c6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:55:CF:3E:26:5B:08:F5:0B:1A:56:E3:0A:EB:15:47:50:B7:74:0B X509v3 Authority Key Identifier: keyid:E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:6d:cc:20:93:4f:8b:a0:86:90:0a:0f:79:84:18:ea:5a:42: 80:99:56:dc:63:cf:20:2f:8f:86:a1:1e:d7:91:9f:12:ec:5a: 51:5b:ef:be:4e:86:f3:df:d0:dd:f5:2c:44:d1:ec:8e:eb:ee: 70:60:5f:6f:f1:2a:9d:a2:a2:46:2b:0d:32:af:00:f7:e2:62: b4:8b:ab:4d:d3:f1:ba:c3:28:7e:31:d7:34:b3:6f:22:23:a6: 37:67:13:4b:17:dd:de:00:3b:94:e0:cc:d2:c9:34:a0:0e:8d: 30:f0:f9:a8:68:7c:43:c9:8a:15:69:d3:e3:c2:4e:21:53:c5: da:46:4e:92:ef:b8:28:8e:f8:ce:8a:20:b6:ed:ff:55:08:d2: 6a:be:67:f1:a4:cc:12:a7:04:0d:69:c6:9d:ad:08:58:52:87: 29:39:74:d3:a8:ab:f6:ab:83:4e:8d:6e:a1:c5:a3:72:84:00: f1:49:41:db:4d:89:71:02:da:f3:87:30:e9:d5:cd:ce:a0:1b: 53:98:e6:9b:d9:c4:a7:8d:9b:27:1c:27:6c:2e:3c:22:67:9b: 3d:fd:f1:00:83:12:e2:5b:ce:6f:18:23:60:05:39:b5:fb:ce: 9f:ad:33:02:ea:b2:d6:59:24:b3:b2:21:9d:0c:5d:5c:6f:c7: 19:c4:aa:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdGNDcxMTAvBgNVBAUTKEUzMEE0Q0RERjZDMjY5QUNCQTM5Q0E1OEFBOTU5MkQ4 OTg2NDAxRjQwHhcNMjYwMzI0MTc0MjU1WhcNMjYwMzMxMTc0MjU1WjAYMRYwFAYD VQQDEw02OWMyY2QxZi1hODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSE7Am6DCCMoEWTeDzU02rGsa6Dbq1A8YeOFBpOfKRnTprfDvXPG/xQt6qYc hC6jSAjxVdjWFLG1x29u9r7TG+i3mje8WZLfIk/AsIPLTH9dxJFrIwvf2En/0rkk jsTfc0Ba+a16+43ioyA7jpG4IHWdTt7Z1dR+fhEMxz0me4/TIlvQhVI9Z9Ue3S8g xf7aqowI5Qu1wiQyjKHiQ+YJ25+XT0kDCIOTDxycUXTd1iBvEKC13eOPFI0wzXL7 erT2gD5OtNxtA4n1Zwwk7822ysqnbJ24fyt3wc6ojH0hq1EiX/Nz+7Tt3s62SeoR Ae9pVfw+aHyHer4CHTnFk8PG4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA1Vzz4m Wwj1CxpW4wrrFUdQt3QLMB8GA1UdIwQYMBaAFOMKTN32wmmsujnKWKqVktiYZAH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0Y0Ny8zMzBBMDA4Q0NF NTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2FheTZPY3BZcXBXUzJKaGtB ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR3cE0zZmJDYWF5Nk9jcFlxcFdTMkpoa0FmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0Y0Ny8zMzBBMDA4Q0NFNTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2Fh eTZPY3BZcXBXUzJKaGtBZlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI23MIJNPi6CGkAoPeYQY6lpCgJlW3GPPIC+PhqEe15GfEuxaUVvvvk6G89/Q 3fUsRNHsjuvucGBfb/EqnaKiRisNMq8A9+JitIurTdPxusMofjHXNLNvIiOmN2cT Sxfd3gA7lODM0sk0oA6NMPD5qGh8Q8mKFWnT48JOIVPF2kZOku+4KI74zoogtu3/ VQjSar5n8aTMEqcEDWnGna0IWFKHKTl006ir9quDTo1uocWjcoQA8UlB202JcQLa 84cw6dXNzqAbU5jmm9nEp42bJxwnbC48ImebPf3xAIMS4lvObxgjYAU5tfvOn60z Auqy1lkks7IhnQxdXG/HGcSqNA== -----END CERTIFICATE-----Generated at Thu Mar 26 11:31:50 2026 by rpki-client