$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft File: -E-7QV2aRUM2Lt9yZfU34s_5-CA.mft (raw, json) Hash identifier: DLB/1gmdcgnbU5LjHt2uKWtirh2uRY1MedM4MbZ6Quc= Subject key identifier: BA:2D:AF:DB:BA:CE:C6:EA:B4:87:28:41:A0:8D:AD:E6:D7:EA:69:72 Authority key identifier: F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 Certificate issuer: /CN=A91BCDC6/serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft Manifest number: 01C3 Signing time: Wed 25 Mar 2026 03:07:57 +0000 Manifest this update: Wed 25 Mar 2026 03:07:56 +0000 Manifest next update: Wed 01 Apr 2026 03:07:56 +0000 Files and hashes: 1: -E-7QV2aRUM2Lt9yZfU34s_5-CA.crl (hash: tbIrk3ydweAGRXXwNKUKp1eDtVl1UUMsVnH1JabWhso=) 2: 254E9F807D4A11EEABBD1328C4F9AE02.roa (hash: wgZY6CZu4QF64tBtckX4XM82ZwiMInYJliPcrt7Ct0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCDC6, serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Validity Not Before: Mar 25 03:07:56 2026 GMT Not After : Apr 1 03:07:56 2026 GMT Subject: CN=69c3518d-a57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7b:09:d5:e7:06:90:0d:68:35:dc:d8:c3:d8: 07:15:3d:5d:85:90:ac:13:3c:2a:12:93:ee:d6:40: 0f:9b:a3:ce:57:37:58:c3:81:57:5c:50:e9:95:ab: 2f:88:ac:7b:1f:e9:7d:07:6f:a0:78:40:4d:d3:e7: b9:70:e0:d0:f5:c7:f4:be:bc:55:5b:4d:a5:89:14: 8c:e0:c3:98:c5:15:6b:94:67:56:d9:2c:f5:90:d0: b2:35:fe:3f:30:28:4e:9f:97:56:9c:1a:7d:5a:94: cb:c5:11:4e:ff:80:fc:8f:20:37:82:cd:85:ec:1d: 60:9a:fe:db:0a:be:b6:a2:80:67:80:b3:65:78:1b: 17:6a:c2:64:c2:7a:ab:9b:97:3b:80:4c:11:c6:af: 26:47:72:63:b7:a5:3e:65:1f:c9:cf:79:7e:88:a5: 61:c9:ff:ce:d1:52:34:fe:d3:9b:1d:6b:26:ef:bc: 4d:b8:a0:7a:e5:09:78:6e:69:1f:12:fa:2f:e4:7d: 18:84:a6:fb:fd:2f:a5:a9:f4:f6:55:5f:e7:61:3f: f0:13:f0:21:7c:91:23:19:97:9e:57:0f:16:0c:f7: 2d:17:25:e3:93:01:80:86:c6:be:8e:41:c4:74:8f: fb:64:89:01:48:e2:78:f8:b4:a5:eb:78:ac:58:3a: 2c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2D:AF:DB:BA:CE:C6:EA:B4:87:28:41:A0:8D:AD:E6:D7:EA:69:72 X509v3 Authority Key Identifier: keyid:F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:8d:99:f7:2e:50:88:75:e6:9b:ec:cb:90:c1:03:94:e8:42: 33:b3:a9:50:d1:8b:4c:b2:99:64:34:46:b2:d0:bf:ec:e6:4a: 94:4a:dd:1f:82:1b:24:0b:98:e6:ff:f0:4b:af:d5:e2:60:99: d4:1f:da:ca:bb:44:8d:93:d1:42:0e:ad:b0:23:6d:b3:7a:d3: a4:2f:50:ba:e1:c8:11:3d:c6:2d:22:1c:f6:ad:22:49:f0:e4: a3:4b:ad:68:56:76:7f:f6:35:de:1d:93:f7:51:8a:34:92:19: 28:bb:f3:cf:26:85:d4:9d:77:9b:8e:73:33:a2:22:f4:b8:81: f1:53:a1:57:5c:d6:b5:cf:0d:13:75:dd:66:42:a4:7b:32:93: 60:9e:3a:0b:ce:7d:c2:1d:28:18:fb:f7:db:45:9b:e8:17:5d: 9c:eb:fb:7a:ac:08:f0:3b:eb:67:4a:e8:76:02:1e:11:4b:30: d3:70:8f:ab:ed:d8:3d:cd:eb:98:78:47:d7:2e:40:92:1f:9c: 31:4a:4b:d6:7f:be:fc:a8:72:0c:2a:16:22:cb:53:c2:6a:a5: 61:d0:96:b4:a6:ae:10:a2:b6:ac:7c:a5:bb:00:4b:7f:5f:35: 84:04:ea:cd:8a:72:4b:7b:f9:45:65:ef:48:f8:a4:a7:11:44: a4:cb:4d:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNEQzYxMTAvBgNVBAUTKEY4NEZCQjQxNUQ5QTQ1NDMzNjJFREY3MjY1RjUzN0Uy Q0ZGOUY4MjAwHhcNMjYwMzI1MDMwNzU2WhcNMjYwNDAxMDMwNzU2WjAYMRYwFAYD VQQDEw02OWMzNTE4ZC1hNTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3sJ1ecGkA1oNdzYw9gHFT1dhZCsEzwqEpPu1kAPm6POVzdYw4FXXFDplasv iKx7H+l9B2+geEBN0+e5cODQ9cf0vrxVW02liRSM4MOYxRVrlGdW2Sz1kNCyNf4/ MChOn5dWnBp9WpTLxRFO/4D8jyA3gs2F7B1gmv7bCr62ooBngLNleBsXasJkwnqr m5c7gEwRxq8mR3Jjt6U+ZR/Jz3l+iKVhyf/O0VI0/tObHWsm77xNuKB65Ql4bmkf Evov5H0YhKb7/S+lqfT2VV/nYT/wE/AhfJEjGZeeVw8WDPctFyXjkwGAhsa+jkHE dI/7ZIkBSOJ4+LSl63isWDosQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLotr9u6 zsbqtIcoQaCNrebX6mlyMB8GA1UdIwQYMBaAFPhPu0FdmkVDNi7fcmX1N+LP+fgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0RDNi84MDEyOEVDODdE NDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJVTTJMdDl5WmZVMzRzXzUt Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1FLTdRVjJhUlVNMkx0OXlaZlUzNHNfNS1DQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0RDNi84MDEyOEVDODdENDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJV TTJMdDl5WmZVMzRzXzUtQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC42Z9y5QiHXmm+zLkMEDlOhCM7OpUNGLTLKZZDRGstC/7OZKlErdH4IbJAuY 5v/wS6/V4mCZ1B/ayrtEjZPRQg6tsCNts3rTpC9QuuHIET3GLSIc9q0iSfDko0ut aFZ2f/Y13h2T91GKNJIZKLvzzyaF1J13m45zM6Ii9LiB8VOhV1zWtc8NE3XdZkKk ezKTYJ46C859wh0oGPv320Wb6BddnOv7eqwI8DvrZ0rodgIeEUsw03CPq+3YPc3r mHhH1y5Akh+cMUpL1n++/KhyDCoWIstTwmqlYdCWtKauEKK2rHyluwBLf181hATq zYpyS3v5RWXvSPikpxFEpMtNEg== -----END CERTIFICATE-----Generated at Thu Mar 26 11:31:22 2026 by rpki-client