$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: 3Gjb7swRgGsM7ZOw6E/FjjEcO/AkLporz9aBjHo1Gog= Subject key identifier: 0B:7D:14:6C:95:AA:97:81:C7:3A:D2:65:77:F5:01:46:20:AE:4C:57 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0CB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0CAC Signing time: Thu 26 Mar 2026 18:24:26 +0000 Manifest this update: Thu 26 Mar 2026 18:24:26 +0000 Manifest next update: Thu 02 Apr 2026 18:24:26 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: FK0pBRL71k9rQJAfDf5KZWVgrQtPGo4oqEAeLNltt5g=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: P3cA4Ey/V8rl3zAePZZSJQ01VWq57x0zCe1ptcZIm4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Mar 26 18:24:26 2026 GMT Not After : Apr 2 18:24:26 2026 GMT Subject: CN=69c579da-f21f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:11:bd:8a:4f:14:45:b7:d6:61:29:06:17:df: 79:5b:89:8f:34:8f:4d:a2:dd:b0:97:57:70:c3:9c: aa:c7:24:b1:bb:a0:d0:2f:24:0c:ae:b3:88:f7:7b: a7:5a:85:3a:10:8f:4d:92:58:ea:7e:20:61:7a:4a: 5b:0e:61:a7:20:96:8b:f4:d7:25:bf:1b:1e:ba:e6: c9:a3:d0:b3:07:c9:c7:97:ba:84:ec:a2:63:ec:2c: 19:03:94:49:fd:ac:cf:e0:bb:ed:74:6b:c7:38:98: a2:8f:c8:2e:30:52:80:c3:d7:11:2d:f5:1e:9e:b1: 31:3b:da:fc:32:8e:df:7c:fa:75:63:56:71:79:6c: dc:79:6d:05:72:ea:51:a3:0b:2b:73:0c:34:e5:99: 3e:13:70:e7:42:81:a6:c3:ab:20:1f:14:0b:9c:74: 98:97:09:f7:85:80:1d:c8:6a:4b:24:a2:b2:6f:89: 5e:5b:bd:fb:d1:46:6e:c1:56:c1:e8:b1:9c:25:55: 20:43:e6:ad:44:95:74:2d:aa:fd:e0:2c:fe:ea:84: e8:a3:0f:2d:e4:7b:23:b0:f1:b0:00:44:ec:67:6a: 14:49:0e:a2:bb:b6:ae:5a:13:d1:29:c8:37:83:12: 4d:1c:e1:ca:53:d0:12:fc:af:7f:46:3b:f9:32:e0: ce:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7D:14:6C:95:AA:97:81:C7:3A:D2:65:77:F5:01:46:20:AE:4C:57 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:e1:de:33:dc:af:40:26:b9:11:b3:da:c0:97:05:28:58:c4: bf:e3:fc:0b:4a:b2:09:d3:8c:41:fc:26:4f:73:3c:3a:29:96: 23:8b:c8:15:a7:ad:c5:bc:a9:79:b2:89:73:4d:e8:6d:9d:5f: e3:d5:9c:6e:f7:49:5f:3f:cd:0b:e1:c4:e3:4c:08:32:77:79: b7:6f:e1:bf:dd:83:af:0d:9d:4d:30:59:27:16:9c:88:22:4f: d9:15:1f:f6:16:05:44:cc:c2:4f:20:a4:9e:ae:45:79:04:9d: 63:38:9d:f0:97:68:88:1a:d0:30:9b:fa:4f:7c:fb:63:a6:32: f4:62:41:54:b2:52:3d:56:36:84:1a:0e:4b:30:d4:d4:ad:2e: b8:d3:b9:46:26:ec:5c:5d:f7:61:73:fc:51:01:b2:82:d2:22: 0b:90:11:6e:78:19:54:d2:33:9c:3b:fd:4d:e4:be:93:06:5a: 59:e9:75:c1:64:a0:6d:70:05:d8:64:58:28:12:24:5c:04:3e: f7:44:d2:e3:e3:bc:80:bf:c0:75:b2:98:ab:26:51:2b:34:ff: 16:c0:53:a9:56:2f:19:b6:9e:ce:d6:a2:6a:13:1a:10:cd:08: 6f:0e:77:2f:32:65:e5:73:7c:be:b1:00:45:bc:00:a8:29:10: 1f:72:9b:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjYwMzI2MTgyNDI2WhcNMjYwNDAyMTgyNDI2WjAYMRYwFAYD VQQDEw02OWM1NzlkYS1mMjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxG9ik8URbfWYSkGF995W4mPNI9Not2wl1dww5yqxySxu6DQLyQMrrOI93un WoU6EI9NkljqfiBhekpbDmGnIJaL9NclvxseuubJo9CzB8nHl7qE7KJj7CwZA5RJ /azP4LvtdGvHOJiij8guMFKAw9cRLfUenrExO9r8Mo7ffPp1Y1ZxeWzceW0FcupR owsrcww05Zk+E3DnQoGmw6sgHxQLnHSYlwn3hYAdyGpLJKKyb4leW7370UZuwVbB 6LGcJVUgQ+atRJV0Lar94Cz+6oToow8t5HsjsPGwAETsZ2oUSQ6iu7auWhPRKcg3 gxJNHOHKU9AS/K9/Rjv5MuDOCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAt9FGyV qpeBxzrSZXf1AUYgrkxXMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACeHeM9yvQCa5EbPawJcFKFjEv+P8C0qyCdOMQfwmT3M8OimWI4vIFaetxbyp ebKJc03obZ1f49WcbvdJXz/NC+HE40wIMnd5t2/hv92Drw2dTTBZJxaciCJP2RUf 9hYFRMzCTyCknq5FeQSdYzid8JdoiBrQMJv6T3z7Y6Yy9GJBVLJSPVY2hBoOSzDU 1K0uuNO5RibsXF33YXP8UQGygtIiC5ARbngZVNIznDv9TeS+kwZaWel1wWSgbXAF 2GRYKBIkXAQ+90TS4+O8gL/AdbKYqyZRKzT/FsBTqVYvGbaeztaiahMaEM0Ibw53 LzJl5XN8vrEARbwAqCkQH3Kbng== -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:16 2026 by rpki-client