$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft File: 09eD7kxpu1Bj-1z1smKLx77DdIo.mft (raw, json) Hash identifier: lA6DH+SzrBNKk06OoTODEnU/Hc8yU4KUwNqaORcQpQQ= Subject key identifier: CF:03:C0:5B:01:02:A2:AA:E3:15:22:89:6F:2B:0B:1A:4F:83:E8:1E Authority key identifier: D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A Certificate issuer: /CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft Manifest number: 011A Signing time: Wed 25 Mar 2026 00:45:55 +0000 Manifest this update: Wed 25 Mar 2026 00:45:54 +0000 Manifest next update: Wed 01 Apr 2026 00:45:54 +0000 Files and hashes: 1: 09eD7kxpu1Bj-1z1smKLx77DdIo.crl (hash: y62MKRNMameX+q09gN1NautqjWFrKUs21DQ6NyYPC4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77, serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Validity Not Before: Mar 25 00:45:54 2026 GMT Not After : Apr 1 00:45:54 2026 GMT Subject: CN=69c33043-9371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a0:93:b9:2a:10:70:e9:65:59:09:0a:cb:f2: 5e:4e:c8:fd:77:5a:7b:03:4d:38:30:e2:3c:bd:e9: e7:ae:69:1d:b3:09:2d:df:20:92:6d:48:17:d5:6f: 65:1c:ee:0d:cf:b7:dd:86:f0:a5:02:11:1f:22:45: 30:2d:f8:17:59:14:0d:60:2e:c8:6e:3b:a2:9c:96: 13:de:ed:74:13:bb:59:7e:76:c4:e0:79:fb:02:44: 48:73:5c:49:b6:78:62:7f:d9:ab:f4:7d:de:c5:73: 1d:4b:bd:c9:cd:3e:cb:ef:a5:66:77:1a:bc:06:d7: 83:d5:fc:c8:e9:e9:46:37:87:6b:3f:ba:93:00:69: e7:08:80:c8:23:76:13:c4:35:b4:4f:8b:06:78:39: 03:21:46:fa:7f:0f:7c:8a:58:9b:9a:e0:38:43:41: bc:7d:69:47:69:88:47:b5:ef:c6:9c:3d:a2:d1:a6: 46:08:4b:fa:9d:eb:33:a2:c2:9a:73:23:81:09:85: b5:d0:e8:6c:b1:61:67:14:9b:d7:70:32:ed:e9:cf: 46:ab:6f:36:b5:7c:1f:c4:6f:06:d6:fe:b2:eb:90: 04:cb:24:02:14:48:05:7f:8b:4e:2e:f3:96:d5:da: b1:82:27:0f:49:f7:03:63:37:33:c0:78:ea:94:b6: 14:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:03:C0:5B:01:02:A2:AA:E3:15:22:89:6F:2B:0B:1A:4F:83:E8:1E X509v3 Authority Key Identifier: keyid:D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:96:07:62:5a:36:6f:31:5a:34:6d:1f:5a:33:11:12:0f:c4: 1b:e5:83:7d:cf:70:ff:8d:b6:64:65:d2:9d:44:95:d3:c2:ea: 4d:1e:31:ee:cf:a0:02:3a:53:d1:9c:71:f4:b0:37:6a:08:2d: 9f:00:b6:aa:94:66:98:6e:c6:07:b3:d8:aa:96:1f:04:73:d5: a3:c3:86:98:8c:59:9f:e1:0b:ac:ae:6b:4a:c7:67:c8:b7:d8: 13:7b:39:99:14:bb:d7:54:d5:01:3f:bf:4c:ee:24:26:49:50: a7:c1:94:52:2e:5c:0a:f6:42:f6:76:63:e5:a9:fd:4e:4d:a2: 4f:51:b9:85:50:91:a4:c4:76:b5:7a:47:c7:da:05:fc:d8:3f: 4e:b6:b0:85:fa:a9:ee:30:6a:42:aa:36:bc:30:af:5d:a0:79: 34:6c:6b:e4:fb:dd:a1:a3:85:22:3d:11:c6:4f:d7:d7:e0:f7: 26:d3:f5:d0:ba:1c:61:74:16:95:b9:01:be:79:e4:1a:39:44: 07:29:9a:8d:68:75:54:9b:53:e6:ff:a0:68:f9:60:2d:ae:e4: 5c:58:db:41:41:04:f0:86:ae:d2:93:d0:cb:44:84:a7:bb:da: ff:78:51:c3:45:32:87:5b:9f:81:b2:41:49:b6:a3:63:84:f3: e6:73:37:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKEQzRDc4M0VFNEM2OUJCNTA2M0ZCNUNGNUIyNjI4QkM3 QkVDMzc0OEEwHhcNMjYwMzI1MDA0NTU0WhcNMjYwNDAxMDA0NTU0WjAYMRYwFAYD VQQDEw02OWMzMzA0My05MzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6CTuSoQcOllWQkKy/JeTsj9d1p7A004MOI8vennrmkdswkt3yCSbUgX1W9l HO4Nz7fdhvClAhEfIkUwLfgXWRQNYC7IbjuinJYT3u10E7tZfnbE4Hn7AkRIc1xJ tnhif9mr9H3exXMdS73JzT7L76Vmdxq8BteD1fzI6elGN4drP7qTAGnnCIDII3YT xDW0T4sGeDkDIUb6fw98ilibmuA4Q0G8fWlHaYhHte/GnD2i0aZGCEv6neszosKa cyOBCYW10OhssWFnFJvXcDLt6c9Gq282tXwfxG8G1v6y65AEyyQCFEgFf4tOLvOW 1dqxgicPSfcDYzczwHjqlLYUmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM8DwFsB AqKq4xUiiW8rCxpPg+geMB8GA1UdIwQYMBaAFNPXg+5MabtQY/tc9bJii8e+w3SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9BQjg1MzQ0MDdB M0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUxQmotMXoxc21LTHg3N0Rk SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA5ZUQ3a3hwdTFCai0xejFzbUtMeDc3RGRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUE3Ny9BQjg1MzQ0MDdBM0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUx QmotMXoxc21LTHg3N0RkSW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeZYHYlo2bzFaNG0fWjMREg/EG+WDfc9w/422ZGXSnUSV08LqTR4x7s+gAjpT 0Zxx9LA3aggtnwC2qpRmmG7GB7PYqpYfBHPVo8OGmIxZn+ELrK5rSsdnyLfYE3s5 mRS711TVAT+/TO4kJklQp8GUUi5cCvZC9nZj5an9Tk2iT1G5hVCRpMR2tXpHx9oF /Ng/Trawhfqp7jBqQqo2vDCvXaB5NGxr5PvdoaOFIj0Rxk/X1+D3JtP10LocYXQW lbkBvnnkGjlEBymajWh1VJtT5v+gaPlgLa7kXFjbQUEE8Iau0pPQy0SEp7va/3hR w0Uyh1ufgbJBSbajY4Tz5nM3mw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:02:21 2026 by rpki-client