$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft File: EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft (raw, json) Hash identifier: BmNF0jjGH40W0FnuOUN+yxZGPmHmkHMY7arTwScXJbs= Subject key identifier: BC:05:60:A4:42:78:7E:C9:AF:3A:F0:B8:2E:E6:75:1E:4F:D7:95:44 Authority key identifier: 11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 Certificate issuer: /CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft Manifest number: 0208 Signing time: Wed 25 Mar 2026 02:25:56 +0000 Manifest this update: Wed 25 Mar 2026 02:25:56 +0000 Manifest next update: Wed 01 Apr 2026 02:25:56 +0000 Files and hashes: 1: EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl (hash: jgLnvn3GSScNwP3D1lF3LiR/4Wct9l3A8bR7CFSDuxw=) 2: 32D39C06224511EE81776175C4F9AE02.roa (hash: 8Uc+YYik3ZmK9iVFDft8xCOteri5jMjslFS1i1Q8LVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD844, serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Validity Not Before: Mar 25 02:25:56 2026 GMT Not After : Apr 1 02:25:56 2026 GMT Subject: CN=69c347b4-094e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:05:ce:9f:8a:88:31:1a:75:f9:97:52:92:7e: af:5d:56:54:f7:fa:d0:25:8e:f2:08:07:4d:42:65: 7d:3b:c1:e0:a9:7a:a3:75:03:6e:be:2f:ff:c2:07: 48:5f:50:b2:60:21:2e:6e:40:84:84:fe:c8:f9:5e: e6:6f:4f:40:74:35:e6:9a:92:41:6d:f8:44:fe:d2: 8e:40:72:bd:9e:45:4d:26:32:ac:e1:46:11:63:98: 65:fe:9b:85:fc:72:d3:32:68:d1:fe:51:25:60:93: 4d:93:b3:98:2b:44:e0:65:88:0c:9b:c1:99:4b:ee: 5e:20:1b:27:e7:93:28:7e:08:0d:66:21:4f:80:cb: 2c:6a:d4:2a:e1:03:f9:53:ef:c2:55:c1:01:58:a6: 50:a0:b1:f4:63:b1:54:c3:0c:97:e5:51:12:b8:e9: e5:ba:f0:85:0f:18:9c:f5:82:d3:e4:67:f7:6c:1a: 91:6d:1d:f0:02:42:5a:e2:3d:4f:5d:c3:71:19:76: 62:19:2a:86:8b:d4:a2:f5:84:f4:c8:fd:f7:c0:b0: 78:02:ea:a8:87:34:96:13:ef:80:32:d4:f3:b2:9e: 13:42:dd:36:e3:00:cc:08:48:0e:d2:a0:2c:83:eb: e2:77:2a:27:67:20:4e:50:d3:7d:b7:71:7e:18:6a: 19:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:05:60:A4:42:78:7E:C9:AF:3A:F0:B8:2E:E6:75:1E:4F:D7:95:44 X509v3 Authority Key Identifier: keyid:11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:fd:99:3e:59:4e:32:1f:12:50:75:06:19:4c:0f:2b:3c:59: f7:f9:4f:3a:32:56:7d:3e:37:12:d6:f6:85:34:b7:02:9f:25: 8f:99:31:ea:23:bc:73:80:a2:48:6f:98:ab:98:34:34:b4:cd: 65:fe:c4:20:70:4a:7d:82:ef:fa:f3:ef:f9:82:b3:f6:74:95: de:43:df:db:4f:ba:0d:f0:6a:77:22:59:b2:65:51:9f:27:94: 3e:fe:27:8a:0d:ae:a4:ce:60:6b:5c:f9:88:31:f1:0d:ea:ab: 66:22:27:12:31:07:90:48:ce:ea:53:42:e7:a9:b8:39:26:cd: 0f:ba:0c:81:3f:3f:6b:2a:7b:e6:e0:84:2d:73:06:27:26:b7: 30:55:88:fd:65:76:49:8f:18:66:f9:ed:03:58:83:38:c0:34: 9b:16:77:c7:ed:33:eb:c2:4d:2a:3d:f5:f9:ab:58:c9:7b:22: 96:73:9d:e2:14:77:72:e3:ef:5e:83:c3:8e:b8:b7:7a:d1:89: c1:13:55:48:dd:43:bb:00:2e:0e:f4:c1:f3:be:c5:9d:df:ce: 5a:39:05:ac:30:ac:d7:42:0f:0f:b4:24:3b:bc:90:f6:5a:27: de:82:71:81:da:ff:4f:a1:35:1b:76:a5:67:aa:90:fb:27:74: fa:a6:85:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4NDQxMTAvBgNVBAUTKDExNjREQTYwNDM0REVFNUVCMTRCQjUzRDRCNTk0RTY2 NURGMjZGRjYwHhcNMjYwMzI1MDIyNTU2WhcNMjYwNDAxMDIyNTU2WjAYMRYwFAYD VQQDEw02OWMzNDdiNC0wOTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQXOn4qIMRp1+ZdSkn6vXVZU9/rQJY7yCAdNQmV9O8HgqXqjdQNuvi//wgdI X1CyYCEubkCEhP7I+V7mb09AdDXmmpJBbfhE/tKOQHK9nkVNJjKs4UYRY5hl/puF /HLTMmjR/lElYJNNk7OYK0TgZYgMm8GZS+5eIBsn55MofggNZiFPgMssatQq4QP5 U+/CVcEBWKZQoLH0Y7FUwwyX5VESuOnluvCFDxic9YLT5Gf3bBqRbR3wAkJa4j1P XcNxGXZiGSqGi9Si9YT0yP33wLB4AuqohzSWE++AMtTzsp4TQt024wDMCEgO0qAs g+vidyonZyBOUNN9t3F+GGoZMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLwFYKRC eH7JrzrwuC7mdR5P15VEMB8GA1UdIwQYMBaAFBFk2mBDTe5esUu1PUtZTmZd8m/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDg0NC83ODc2OTQ3NDE2 NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjdsNnhTN1U5UzFsT1psM3li X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXVGFZRU5ON2w2eFM3VTlTMWxPWmwzeWJfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDg0NC83ODc2OTQ3NDE2NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjds NnhTN1U5UzFsT1psM3liX1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARf2ZPllOMh8SUHUGGUwPKzxZ9/lPOjJWfT43Etb2hTS3Ap8lj5kx6iO8c4Ci SG+Yq5g0NLTNZf7EIHBKfYLv+vPv+YKz9nSV3kPf20+6DfBqdyJZsmVRnyeUPv4n ig2upM5ga1z5iDHxDeqrZiInEjEHkEjO6lNC56m4OSbND7oMgT8/ayp75uCELXMG Jya3MFWI/WV2SY8YZvntA1iDOMA0mxZ3x+0z68JNKj31+atYyXsilnOd4hR3cuPv XoPDjri3etGJwRNVSN1DuwAuDvTB877Fnd/OWjkFrDCs10IPD7QkO7yQ9lon3oJx gdr/T6E1G3alZ6qQ+yd0+qaF7A== -----END CERTIFICATE-----Generated at Thu Mar 26 20:42:51 2026 by rpki-client