$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: atX+eJkHTpukkozuYO6BnkI2ar3kRhu0B1Wi2FKFEiM= Subject key identifier: F6:14:0E:12:10:55:3B:50:CB:E2:30:F5:19:47:BF:E6:D6:B0:8D:48 Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 3520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 3520 Signing time: Tue 24 Mar 2026 15:13:49 +0000 Manifest this update: Tue 24 Mar 2026 15:13:48 +0000 Manifest next update: Tue 31 Mar 2026 15:13:48 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: e8GFjsBR05XZ4vefyJOIaY8brO+W/wa8sLtIB8uy32c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13600 (0x3520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Mar 24 15:13:48 2026 GMT Not After : Mar 31 15:13:48 2026 GMT Subject: CN=69c2aa2d-5337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:24:0e:07:a5:02:de:2b:cb:10:12:ef:d8:57: 5c:03:23:8c:72:76:f3:78:d7:ec:65:2a:01:ef:34: c7:47:83:49:26:62:43:0b:f4:d3:2b:11:12:61:27: eb:d3:52:a6:35:40:a3:0a:9a:f7:2c:ca:1f:0b:46: 49:e1:2a:cb:6a:6e:e3:3e:a6:98:7e:de:a3:86:cd: 23:c9:f3:a2:a0:e6:48:3f:db:55:37:7d:bb:c5:bd: b0:ea:d8:43:68:71:d4:98:e4:73:76:0f:01:44:fb: 2a:c6:aa:1e:37:0f:c8:21:58:01:d9:3e:dd:93:86: 61:ac:31:7f:87:cb:f8:58:07:e6:12:52:7c:de:c4: e1:a1:6e:c8:a7:81:ce:eb:2c:cd:a6:29:ae:5b:bb: 63:89:cf:0c:06:55:74:bb:28:c3:8a:40:8d:b8:bc: c4:bd:31:5e:7c:40:72:e4:e9:06:80:1b:9f:b1:1a: 85:2b:f1:9e:8c:c3:f8:f1:20:36:8d:ac:4e:31:9d: 6a:e5:60:d3:f4:26:1e:5c:ef:1d:85:e9:df:16:af: 61:af:67:c4:09:27:07:ba:06:e6:bb:cd:28:93:03: fc:cf:f5:77:25:60:fc:1e:f8:a0:fc:5f:d4:76:9f: fa:d5:54:a3:70:5e:a4:a6:2e:7b:45:73:6a:6b:c4: e2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:14:0E:12:10:55:3B:50:CB:E2:30:F5:19:47:BF:E6:D6:B0:8D:48 X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:d6:4f:da:ba:0c:56:7b:55:a2:f4:d2:34:db:7b:09:eb:26: 5f:68:76:d8:c7:f5:4b:c1:9a:fa:9d:80:8b:9f:4f:cd:1b:25: d7:c9:46:f4:73:6c:c4:da:ed:ae:ac:79:55:ff:ba:92:b0:03: b2:11:54:e4:bd:bb:24:49:26:6e:4e:8c:10:27:f9:d3:b5:6d: d2:74:25:59:5b:26:df:8b:1a:49:71:81:e2:3d:43:15:0d:67: 0f:b3:28:5a:42:ec:80:fb:60:12:02:e8:32:9d:46:da:2d:5a: ea:86:0b:53:3a:2e:f1:3b:d4:03:fa:6b:4f:84:de:64:83:01: 28:78:a8:8d:64:d5:ee:9e:c4:d5:d7:46:3f:79:80:ae:10:a2: f4:e6:09:15:51:54:06:26:d9:d0:f4:d6:c4:8f:df:ba:66:0e: 20:af:13:22:2c:42:69:9a:26:a3:19:62:b4:b6:e8:62:64:33: 70:d5:bf:fd:9b:67:60:91:de:75:8c:e4:ed:02:93:92:8a:df: 1d:38:62:37:ae:d5:d1:2a:aa:51:d6:e5:62:f6:df:ea:5b:cd: e6:47:26:20:f3:d1:45:7a:ad:62:29:51:d8:12:2b:8b:86:7b: e0:c2:75:de:9f:11:4d:92:9d:e8:0a:c3:14:6f:ca:61:76:a9: 50:75:6a:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjYwMzI0MTUxMzQ4WhcNMjYwMzMxMTUxMzQ4WjAYMRYwFAYD VQQDEw02OWMyYWEyZC01MzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCQOB6UC3ivLEBLv2FdcAyOMcnbzeNfsZSoB7zTHR4NJJmJDC/TTKxESYSfr 01KmNUCjCpr3LMofC0ZJ4SrLam7jPqaYft6jhs0jyfOioOZIP9tVN327xb2w6thD aHHUmORzdg8BRPsqxqoeNw/IIVgB2T7dk4ZhrDF/h8v4WAfmElJ83sThoW7Ip4HO 6yzNpimuW7tjic8MBlV0uyjDikCNuLzEvTFefEBy5OkGgBufsRqFK/GejMP48SA2 jaxOMZ1q5WDT9CYeXO8dhenfFq9hr2fECScHugbmu80okwP8z/V3JWD8Hvig/F/U dp/61VSjcF6kpi57RXNqa8Ti6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPYUDhIQ VTtQy+Iw9RlHv+bWsI1IMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFNZP2roMVntVovTSNNt7CesmX2h22Mf1S8Ga+p2Ai59PzRsl18lG9HNsxNrt rqx5Vf+6krADshFU5L27JEkmbk6MECf507Vt0nQlWVsm34saSXGB4j1DFQ1nD7Mo WkLsgPtgEgLoMp1G2i1a6oYLUzou8TvUA/prT4TeZIMBKHiojWTV7p7E1ddGP3mA rhCi9OYJFVFUBibZ0PTWxI/fumYOIK8TIixCaZomoxlitLboYmQzcNW//ZtnYJHe dYzk7QKTkorfHThiN67V0SqqUdblYvbf6lvN5kcmIPPRRXqtYilR2BIri4Z74MJ1 3p8RTZKd6ArDFG/KYXapUHVqmA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:43:13 2026 by rpki-client