$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft File: CJx_ANge3WTbq20DcSKyoh8NO-Y.mft (raw, json) Hash identifier: MZV+pR4FErniSPWknreQou4c27ZUCxkxroO2iMW8GTE= Subject key identifier: 45:B6:AA:B0:6A:0E:39:46:A4:D1:D8:B3:D2:D7:6D:99:9F:24:E0:4E Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft Manifest number: 028B Signing time: Wed 25 Mar 2026 01:10:37 +0000 Manifest this update: Wed 25 Mar 2026 01:10:36 +0000 Manifest next update: Wed 01 Apr 2026 01:10:36 +0000 Files and hashes: 1: CJx_ANge3WTbq20DcSKyoh8NO-Y.crl (hash: j3biJz/5i4xLprnWTFNtme8JSxid1nQUtBW7+yzg5Nc=) 2: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (hash: /7MGslQwso9cFChdoF6CBy4SyQMQh62viBjTl25dnDQ=) 3: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (hash: //LaDwZuynrCgMu5CfMjESDm6KeQCJ8rranq0x2DlD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Mar 25 01:10:36 2026 GMT Not After : Apr 1 01:10:36 2026 GMT Subject: CN=69c3360d-3854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:9f:85:d0:5f:cb:d5:13:e4:c0:11:78:50:30: 3e:5a:a0:1f:ff:0e:d6:cf:24:d7:01:dd:85:7a:67: 34:60:a7:14:cd:6a:94:51:90:8d:e3:27:52:f3:5d: 0e:93:6c:26:71:3f:ae:4f:7b:0b:2a:6b:80:10:c6: 54:89:f1:22:03:54:a0:c0:fa:df:78:c2:3c:a1:d3: 24:2a:3f:3a:9c:39:e5:3e:04:b7:30:5e:7a:5f:1c: 34:19:60:69:47:f7:6e:bb:e7:b3:3e:2e:c7:ed:7d: d2:59:de:30:5e:60:55:e9:86:71:85:3d:93:b9:d4: eb:b8:b6:3b:d0:0d:31:7a:36:cb:de:68:d4:5f:f6: c4:dd:ee:8d:41:05:ad:9e:2c:32:dc:c0:c1:a7:c0: bb:f6:92:5a:e9:71:54:60:0a:db:06:c6:12:af:7f: e3:27:0f:ae:d9:53:e0:b0:27:9c:8d:c3:71:fb:ab: 06:85:bb:a2:07:06:3f:47:85:ed:ba:ed:f5:76:6f: 36:05:59:b4:a7:2d:7c:b4:37:54:da:78:ee:50:8d: 2e:fa:c2:75:9f:16:01:b9:d9:c7:83:d5:65:3f:ba: 6a:5b:1c:78:8f:fb:04:02:70:55:80:3a:d8:5e:b1: 18:af:26:df:c5:f5:14:21:64:ce:24:99:c0:bd:52: 84:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B6:AA:B0:6A:0E:39:46:A4:D1:D8:B3:D2:D7:6D:99:9F:24:E0:4E X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:07:c4:20:4d:87:2a:2f:08:1d:78:ab:45:23:57:5a:f7:9c: ea:47:94:02:4d:8b:e1:f9:15:38:9c:5c:71:10:a7:64:36:04: ba:fc:38:d6:c9:c7:e0:83:24:92:15:ee:31:1f:3e:99:4c:24: 2a:dc:2e:88:ad:d0:4c:3f:04:a3:91:05:43:96:8d:c3:35:30: 16:77:88:40:dc:e9:ef:e6:1c:9d:4a:29:e7:66:eb:32:01:eb: e0:cd:4f:00:97:04:a8:26:0c:b7:7b:00:90:1d:e9:ad:fd:44: 26:f7:04:ea:ce:ba:2e:c5:45:d8:46:51:60:f4:9b:59:6d:bf: ec:15:23:85:7a:48:80:62:40:63:25:51:13:8d:73:51:97:fd: d0:41:4a:80:e0:97:2b:96:f2:f0:50:e0:4a:b9:96:42:52:9e: b8:24:4e:8a:46:84:20:74:23:4f:7e:6e:7d:3f:87:b5:8a:09: 6e:de:e9:9e:d0:6b:cc:03:92:15:c3:a2:e0:9d:ef:64:d8:ff: 0c:e7:a8:97:c2:56:fa:ab:0e:7e:fa:89:b7:f6:77:1c:78:4b: 96:24:c3:6a:b8:8d:a7:6c:66:a6:ba:35:bb:33:01:88:56:a1: 81:10:62:be:69:37:83:1a:f0:45:9b:20:03:4a:e6:a9:24:97: 98:1d:39:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjYwMzI1MDExMDM2WhcNMjYwNDAxMDExMDM2WjAYMRYwFAYD VQQDEw02OWMzMzYwZC0zODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAip+F0F/L1RPkwBF4UDA+WqAf/w7WzyTXAd2Femc0YKcUzWqUUZCN4ydS810O k2wmcT+uT3sLKmuAEMZUifEiA1SgwPrfeMI8odMkKj86nDnlPgS3MF56Xxw0GWBp R/duu+ezPi7H7X3SWd4wXmBV6YZxhT2TudTruLY70A0xejbL3mjUX/bE3e6NQQWt niwy3MDBp8C79pJa6XFUYArbBsYSr3/jJw+u2VPgsCecjcNx+6sGhbuiBwY/R4Xt uu31dm82BVm0py18tDdU2njuUI0u+sJ1nxYBudnHg9VlP7pqWxx4j/sEAnBVgDrY XrEYrybfxfUUIWTOJJnAvVKEQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEW2qrBq DjlGpNHYs9LXbZmfJOBOMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjVGMi80QUVFRDkxQzQzQjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNX VGJxMjBEY1NLeW9oOE5PLVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYgfEIE2HKi8IHXirRSNXWvec6keUAk2L4fkVOJxccRCnZDYEuvw41snH4IMk khXuMR8+mUwkKtwuiK3QTD8Eo5EFQ5aNwzUwFneIQNzp7+YcnUop52brMgHr4M1P AJcEqCYMt3sAkB3prf1EJvcE6s66LsVF2EZRYPSbWW2/7BUjhXpIgGJAYyVRE41z UZf90EFKgOCXK5by8FDgSrmWQlKeuCROikaEIHQjT35ufT+HtYoJbt7pntBrzAOS FcOi4J3vZNj/DOeol8JW+qsOfvqJt/Z3HHhLliTDariNp2xmpro1uzMBiFahgRBi vmk3gxrwRZsgA0rmqSSXmB05gg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:27:04 2026 by rpki-client