$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft File: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft (raw, json) Hash identifier: 8eBnLAfXyEj5mgZw+k4vi25Pwo+I4uG+Pxda0UCTXQ8= Subject key identifier: 3E:24:62:95:C0:4C:71:3B:76:8C:56:9D:B2:3E:0D:38:C2:E6:49:CF Authority key identifier: 27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B Certificate issuer: /CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft Manifest number: 01CF Signing time: Wed 25 Mar 2026 03:00:09 +0000 Manifest this update: Wed 25 Mar 2026 03:00:08 +0000 Manifest next update: Wed 01 Apr 2026 03:00:08 +0000 Files and hashes: 1: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl (hash: SaEy5PFhtLAip+/GSUFLBgzN6F4yLa1Wh02JkWnie2w=) 2: D2FA5DBE6C1E11EEBB9EAB7AC4F9AE02.roa (hash: J6Y3ZNT+bC1GeTc3d3jK1qQ4TJKGsID3LkvkrzzuZw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCAF, serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Validity Not Before: Mar 25 03:00:08 2026 GMT Not After : Apr 1 03:00:08 2026 GMT Subject: CN=69c34fb9-6b15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:13:3c:cd:e8:84:50:b5:b2:64:28:0a:82:e4: c4:37:2f:6b:17:85:66:f0:f2:88:58:3a:ac:1f:b1: b5:09:21:39:d2:9f:f2:0c:eb:97:9d:5c:ee:c0:3d: f2:13:35:fb:75:41:3b:cd:85:93:5e:32:4b:d8:d6: 3a:77:62:30:43:5c:f7:e9:d3:7e:93:26:1b:82:41: f2:10:97:d1:30:f0:b1:c2:30:20:93:3c:e6:c7:44: 12:55:42:ae:53:95:13:5c:c3:4e:76:2f:70:bb:8e: ae:01:6d:33:72:b7:dc:d3:45:c8:98:03:89:f9:ae: 8b:d2:6d:dc:58:ce:cc:e0:09:b7:b4:66:ab:d3:c2: 5b:5f:c9:1b:22:26:db:47:45:15:69:8e:77:54:aa: 56:33:42:1a:c4:4e:a2:96:64:bb:61:36:01:a8:75: a6:d2:dc:74:ae:1b:ad:b2:f3:a7:a4:0d:d0:36:ff: fa:4b:09:83:90:a4:ce:e4:5f:80:8f:1a:c9:e5:fe: 68:fc:c9:a1:5f:01:f0:ef:f5:9a:fc:2d:3a:0e:05: 8a:65:e1:82:95:9e:e8:33:e8:e6:61:66:e8:1d:75: 0c:23:d6:88:f4:0c:2d:8a:d8:f6:f1:78:77:b1:ad: a0:81:c9:8a:d3:98:61:25:7f:3b:88:56:20:87:13: 5a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:24:62:95:C0:4C:71:3B:76:8C:56:9D:B2:3E:0D:38:C2:E6:49:CF X509v3 Authority Key Identifier: keyid:27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:76:b3:91:78:b9:57:3e:56:32:4c:fc:93:96:b3:87:f4:07: 42:72:f2:b3:f8:f0:ee:65:5b:2b:1c:06:7b:e1:e3:ae:9e:77: ad:c7:24:f9:d9:66:95:3b:92:b4:2d:1b:a2:8a:88:27:44:a6: f0:12:60:5a:1a:75:3e:78:93:9a:f8:6b:ac:00:20:95:90:70: 93:52:57:45:41:a5:79:39:0f:ff:cb:72:70:5b:a9:07:70:31: 1f:45:04:07:0b:6d:9e:97:d2:b1:e8:b6:29:95:1b:27:4a:7e: 3d:71:83:ce:9e:a7:23:b0:64:6b:16:3d:32:cd:99:56:4e:4c: 30:7c:b0:76:7a:10:3a:3b:79:15:ce:46:03:e5:02:13:70:bf: b8:e6:8f:2f:0b:d2:b4:45:ed:f5:b8:72:a0:c5:24:45:d0:6c: 00:f9:a7:60:07:39:76:7d:5d:63:01:8f:cc:b0:95:85:42:9a: 39:4b:34:52:fe:ee:f5:20:c0:90:f8:72:a1:df:a1:c8:5b:3b: d4:63:07:0c:e3:99:7b:71:83:53:bd:1e:6d:19:8d:8f:d2:7b: 38:24:52:b1:b6:99:30:18:22:32:37:bc:50:9e:11:b5:67:c0: 91:6f:2b:29:42:4d:0d:89:3e:60:77:3c:9a:41:7f:fe:da:0d: 06:a0:ca:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQUYxMTAvBgNVBAUTKDI3QjJFNjYyOTE0ODIyMTM2QjA5NjJEQkI1QkE0NDdD MjUzRjUyMUIwHhcNMjYwMzI1MDMwMDA4WhcNMjYwNDAxMDMwMDA4WjAYMRYwFAYD VQQDEw02OWMzNGZiOS02YjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBM8zeiEULWyZCgKguTENy9rF4Vm8PKIWDqsH7G1CSE50p/yDOuXnVzuwD3y EzX7dUE7zYWTXjJL2NY6d2IwQ1z36dN+kyYbgkHyEJfRMPCxwjAgkzzmx0QSVUKu U5UTXMNOdi9wu46uAW0zcrfc00XImAOJ+a6L0m3cWM7M4Am3tGar08JbX8kbIibb R0UVaY53VKpWM0IaxE6ilmS7YTYBqHWm0tx0rhutsvOnpA3QNv/6SwmDkKTO5F+A jxrJ5f5o/MmhXwHw7/Wa/C06DgWKZeGClZ7oM+jmYWboHXUMI9aI9Awtitj28Xh3 sa2ggcmK05hhJX87iFYghxNatQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD4kYpXA THE7doxWnbI+DTjC5knPMB8GA1UdIwQYMBaAFCey5mKRSCITawli27W6RHwlP1Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNBRi8wRjYxODg2QTZC MzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUloTnJDV0xidGJwRWZDVV9V aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3TG1ZcEZJSWhOckNXTGJ0YnBFZkNVX1Vocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNBRi8wRjYxODg2QTZCMzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUlo TnJDV0xidGJwRWZDVV9VaHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApHazkXi5Vz5WMkz8k5azh/QHQnLys/jw7mVbKxwGe+Hjrp53rcck+dlmlTuS tC0booqIJ0Sm8BJgWhp1PniTmvhrrAAglZBwk1JXRUGleTkP/8tycFupB3AxH0UE BwttnpfSsei2KZUbJ0p+PXGDzp6nI7BkaxY9Ms2ZVk5MMHywdnoQOjt5Fc5GA+UC E3C/uOaPLwvStEXt9bhyoMUkRdBsAPmnYAc5dn1dYwGPzLCVhUKaOUs0Uv7u9SDA kPhyod+hyFs71GMHDOOZe3GDU70ebRmNj9J7OCRSsbaZMBgiMje8UJ4RtWfAkW8r KUJNDYk+YHc8mkF//toNBqDKww== -----END CERTIFICATE-----Generated at Thu Mar 26 02:01:48 2026 by rpki-client