$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft File: 8Cl9DkUxodYqla9dLyLvJAja0pw.mft (raw, json) Hash identifier: wzzDwhhDrT0GWwaDgvCq7KFRsPdBOYX0GPOvqa0lJTs= Subject key identifier: 76:E9:0D:75:D1:83:F8:4C:3B:0D:1B:D7:B1:3B:61:F7:35:E2:86:88 Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 0845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft Manifest number: 0830 Signing time: Tue 24 Mar 2026 20:42:20 +0000 Manifest this update: Tue 24 Mar 2026 20:42:19 +0000 Manifest next update: Tue 31 Mar 2026 20:42:19 +0000 Files and hashes: 1: 8Cl9DkUxodYqla9dLyLvJAja0pw.crl (hash: oIr8hCP8bQz9ehMJq5pAVm543Fw6L+E50qe0pG3Nlew=) 2: 5ECF5AFE37CC11F0AE950A5FC4F9AE02.roa (hash: rlg+gGkjSIov6YUxyCKFbKYRg4bl/u2eQA54uzAkE6Q=) 3: 23AF26C40C2B11EBAD607865C4F9AE02.roa (hash: Q6lv4o/3Jij+rHVdIBqh1xWcK9rJcZVqL65gj1LOUUI=) 4: DF3CAFC44D9E11F0B1307858C4F9AE02.roa (hash: +acs6cDfXRcUtwRZJW2mfAQSN9xt4ZIb9KF9+TPjR6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2117 (0x845) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Validity Not Before: Mar 24 20:42:19 2026 GMT Not After : Mar 31 20:42:19 2026 GMT Subject: CN=69c2f72c-f7bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fb:33:19:14:79:9d:3b:0a:8b:56:33:be:65: 6e:32:1d:bc:2b:04:6e:7e:96:25:35:f0:e0:da:1f: 7f:67:8d:27:ef:e5:3d:55:a0:9b:a2:7d:5b:41:56: 17:2d:97:34:3c:d5:55:8c:82:85:fe:b3:68:ff:34: 3b:a1:50:77:ce:22:b1:a6:9c:50:9f:59:71:28:ce: b3:29:75:04:bb:cb:22:3b:b3:2b:17:00:47:7d:76: 77:22:46:6a:ad:3d:ef:e5:23:9b:2a:17:fa:9b:3a: fc:38:ff:0a:68:4b:d3:ef:63:f6:66:28:d7:4f:14: 76:be:29:38:b2:fa:ec:0a:57:56:52:d1:94:41:e6: be:24:58:9c:72:c3:23:03:39:6f:86:83:45:cd:75: ee:af:2e:9c:28:d1:b3:54:ec:89:8f:b0:6d:55:92: 80:ab:07:b8:d4:5e:c9:2e:aa:7c:d0:20:ea:ea:cb: 34:a2:1e:04:0c:1c:d1:d7:7a:e4:38:ba:4f:21:ef: ec:c0:7b:a7:ed:62:a3:78:81:82:49:0d:f9:97:93: ff:3f:6e:3c:6a:b7:b7:53:ec:fa:d2:68:dc:14:fa: e0:eb:55:3f:43:f5:07:3d:83:98:72:7d:6d:d6:af: ae:36:5e:e5:75:82:5d:51:3a:c3:47:9c:11:dc:54: 47:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E9:0D:75:D1:83:F8:4C:3B:0D:1B:D7:B1:3B:61:F7:35:E2:86:88 X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c1:0b:28:32:0a:51:d2:d8:57:95:8b:1d:0d:fe:d6:bf:bf: b8:e1:88:87:4a:bb:dd:c0:84:64:88:2c:f2:fb:17:21:62:23: cc:2c:a4:47:49:00:e7:9a:c6:d7:35:e3:54:f2:05:3e:6d:7e: 1a:11:3a:70:c7:cf:3b:fd:30:3e:d6:51:27:b6:e0:e5:a3:b8: a3:30:79:ec:42:b2:c5:c9:97:ef:81:0d:32:d0:5a:3f:21:2e: 0d:2a:12:20:ee:d1:fc:2a:a5:bb:57:60:7e:95:97:a5:40:3c: f9:d1:45:b8:70:f3:df:bd:24:02:98:9b:b2:3f:e4:df:a9:da: 2a:e3:68:c1:5d:f2:5d:ed:cf:08:dc:9f:27:d7:3a:e5:25:f7: 97:92:a4:c8:26:13:0a:09:14:e6:6b:54:cd:88:14:ba:52:75: a7:c7:a0:7d:bb:84:ac:57:cb:9c:86:a6:fa:52:0e:bb:fb:6f: 9f:d8:d6:de:5c:bf:7b:9c:86:19:f6:30:e1:34:c2:92:e9:d2: 93:18:f0:d9:8e:2b:6c:e5:b5:25:aa:f1:2c:da:75:e3:65:86: 38:6d:67:0f:8d:1e:ae:75:2b:ba:73:20:c9:74:5e:6a:41:a5: 4e:41:f0:42:58:84:56:0c:c9:29:8e:53:29:ad:78:8d:4c:73: 61:99:a4:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjYwMzI0MjA0MjE5WhcNMjYwMzMxMjA0MjE5WjAYMRYwFAYD VQQDEw02OWMyZjcyYy1mN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PszGRR5nTsKi1YzvmVuMh28KwRufpYlNfDg2h9/Z40n7+U9VaCbon1bQVYX LZc0PNVVjIKF/rNo/zQ7oVB3ziKxppxQn1lxKM6zKXUEu8siO7MrFwBHfXZ3IkZq rT3v5SObKhf6mzr8OP8KaEvT72P2ZijXTxR2vik4svrsCldWUtGUQea+JFiccsMj AzlvhoNFzXXury6cKNGzVOyJj7BtVZKAqwe41F7JLqp80CDq6ss0oh4EDBzR13rk OLpPIe/swHun7WKjeIGCSQ35l5P/P248are3U+z60mjcFPrg61U/Q/UHPYOYcn1t 1q+uNl7ldYJdUTrDR5wR3FRHRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHbpDXXR g/hMOw0b17E7Yfc14oaIMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMxMi9BQTkyQjk3ODBDMjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9k WXFsYTlkTHlMdkpBamEwcHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUMELKDIKUdLYV5WLHQ3+1r+/uOGIh0q73cCEZIgs8vsXIWIjzCykR0kA55rG 1zXjVPIFPm1+GhE6cMfPO/0wPtZRJ7bg5aO4ozB57EKyxcmX74ENMtBaPyEuDSoS IO7R/Cqlu1dgfpWXpUA8+dFFuHDz370kApibsj/k36naKuNowV3yXe3PCNyfJ9c6 5SX3l5KkyCYTCgkU5mtUzYgUulJ1p8egfbuErFfLnIam+lIOu/tvn9jW3ly/e5yG GfYw4TTCkunSkxjw2Y4rbOW1JarxLNp142WGOG1nD40ernUrunMgyXReakGlTkHw QliEVgzJKY5TKa14jUxzYZmklQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:41:41 2026 by rpki-client