$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: CllqJdV1kC34OGAUU2DfyH+XLoACstcbkGUCGdUFyE0= Subject key identifier: 84:33:57:8B:21:4E:63:71:11:B6:B7:20:0B:62:DA:28:4F:C8:F2:25 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 0140 Signing time: Fri 27 Mar 2026 04:50:52 +0000 Manifest this update: Fri 27 Mar 2026 04:50:51 +0000 Manifest next update: Fri 03 Apr 2026 04:50:51 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: FbzAb2gdXjb1h8f7GKN+0isJV5Xu34Yk84hqzev4hRA=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: 92+MCvev4Dufdf+wuDOQcin6Fkp7+RWjlESgBq/RGGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 04:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Mar 27 04:50:51 2026 GMT Not After : Apr 3 04:50:51 2026 GMT Subject: CN=69c60cac-f4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a4:db:13:d6:34:23:b9:34:ae:cd:56:64:8a: 49:38:59:72:53:84:04:ee:fc:63:2d:1e:4b:7d:63: d9:54:28:2b:5c:d7:19:7b:a9:65:05:79:27:f0:5a: 51:f8:1f:08:fd:a8:1b:eb:74:8c:ee:c1:91:8d:ad: e5:0b:83:59:75:5f:94:9b:ed:59:19:83:31:86:ec: 90:fc:0b:54:4f:3c:c2:f3:78:94:63:61:77:19:a2: df:24:4a:ca:b0:77:30:cb:ff:bd:12:c1:7b:26:be: 86:bc:1b:6e:b0:4c:16:43:7c:b0:06:55:3e:5f:be: 29:63:12:ef:87:23:1c:19:c9:3a:e1:58:1b:a0:b8: c9:f7:d9:bc:13:67:a0:e3:0a:5c:11:17:eb:a0:e3: 89:5a:c4:2e:b3:8d:6e:d0:39:f8:50:2e:8f:bf:39: 42:e5:c3:17:db:2e:b1:d5:9b:bf:56:67:af:d8:04: 0c:4c:ad:ff:97:66:87:d2:5a:2b:a1:b8:71:df:7d: 8e:9f:9f:92:3d:8e:0b:fe:4f:42:ca:0f:3e:3a:64: a5:87:e4:29:3d:e1:31:20:72:57:8f:c3:97:55:b0: 9d:4b:9e:f0:07:2f:d7:5b:28:ca:27:0a:37:f2:75: 50:ee:5e:9b:5a:97:d5:2e:89:9f:81:d1:e8:88:7c: c8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:33:57:8B:21:4E:63:71:11:B6:B7:20:0B:62:DA:28:4F:C8:F2:25 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e0:22:34:84:27:09:61:63:fc:ca:d4:35:5f:59:12:b4:38: 14:33:94:40:2b:1c:d2:d2:ba:e7:64:86:03:6b:2e:bc:db:a9: 05:31:62:9c:01:3c:06:70:44:04:08:94:39:79:98:17:06:75: fe:b8:62:a1:9d:50:51:b2:5b:40:30:f4:85:7a:cc:9d:6e:f0: ed:81:5c:66:71:79:f7:be:c0:b2:df:12:ea:cf:22:d4:66:3b: e5:af:a3:27:a8:c1:76:75:f1:e5:3f:02:d0:b9:72:51:35:a2: 95:b7:75:34:47:1f:e5:3c:e5:83:e9:ff:40:41:f8:60:61:b5: e7:13:8e:cf:d4:c2:e8:59:e6:ef:fd:86:30:fa:39:89:63:3c: 5f:1a:60:fd:39:23:35:cb:1a:a1:05:f3:b6:8e:6e:50:f5:0b: f1:ec:e0:29:90:e4:63:ae:3f:1e:96:c9:9a:53:1b:68:c0:3a: a1:8f:58:bf:f9:67:4b:2c:66:55:dd:81:1b:13:b2:d3:08:33: ee:61:b8:0d:c2:7c:24:de:c2:59:76:ec:e4:bf:02:b6:d4:c7: 70:bf:c8:a6:5d:14:48:25:d8:78:1a:9b:fc:5c:01:3c:78:2c: fc:1e:36:c7:ee:57:28:63:99:ff:34:7b:ed:ab:fb:0e:b2:93: 82:8f:ee:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjYwMzI3MDQ1MDUxWhcNMjYwNDAzMDQ1MDUxWjAYMRYwFAYD VQQDEw02OWM2MGNhYy1mNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKTbE9Y0I7k0rs1WZIpJOFlyU4QE7vxjLR5LfWPZVCgrXNcZe6llBXkn8FpR +B8I/agb63SM7sGRja3lC4NZdV+Um+1ZGYMxhuyQ/AtUTzzC83iUY2F3GaLfJErK sHcwy/+9EsF7Jr6GvBtusEwWQ3ywBlU+X74pYxLvhyMcGck64VgboLjJ99m8E2eg 4wpcERfroOOJWsQus41u0Dn4UC6PvzlC5cMX2y6x1Zu/Vmev2AQMTK3/l2aH0lor obhx332On5+SPY4L/k9Cyg8+OmSlh+QpPeExIHJXj8OXVbCdS57wBy/XWyjKJwo3 8nVQ7l6bWpfVLomfgdHoiHzIAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIQzV4sh TmNxEba3IAti2ihPyPIlMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKuAiNIQnCWFj/MrUNV9ZErQ4FDOUQCsc0tK652SGA2suvNupBTFinAE8BnBE BAiUOXmYFwZ1/rhioZ1QUbJbQDD0hXrMnW7w7YFcZnF5977Ast8S6s8i1GY75a+j J6jBdnXx5T8C0LlyUTWilbd1NEcf5Tzlg+n/QEH4YGG15xOOz9TC6Fnm7/2GMPo5 iWM8Xxpg/TkjNcsaoQXzto5uUPUL8ezgKZDkY64/HpbJmlMbaMA6oY9Yv/lnSyxm Vd2BGxOy0wgz7mG4DcJ8JN7CWXbs5L8CttTHcL/Ipl0USCXYeBqb/FwBPHgs/B42 x+5XKGOZ/zR77av7DrKTgo/uZQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:16:26 2026 by rpki-client