$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: lLoIC1AGvLcZmLaFTevYvJYoToKKHD3lljD+MtUucLA= Subject key identifier: 1D:33:B5:9D:0D:6D:19:08:3F:1D:29:7E:32:94:E7:65:7B:A7:87:BE Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0CDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0CC8 Signing time: Tue 24 Mar 2026 18:14:05 +0000 Manifest this update: Tue 24 Mar 2026 18:14:05 +0000 Manifest next update: Tue 31 Mar 2026 18:14:05 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: VJ63Ohz5iSHWubKY6Os9eR+rWZtWgASAePK5gf6OA+s=) 2: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: OtV6b8befwkPsOuYarHGh5SRZOjkzLz1qANk490i9b8=) 3: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: PLVzOLnz/S3yAyLEYTQXk6jeemE0Coa5Zb4ZLWaW+pE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:14:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3292 (0xcdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Mar 24 18:14:05 2026 GMT Not After : Mar 31 18:14:05 2026 GMT Subject: CN=69c2d46d-94ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6f:91:5d:2d:6d:bd:22:89:cd:6a:a8:bc:07: c1:08:fa:02:e3:42:0b:77:94:7f:07:90:20:20:03: d0:db:6c:29:63:8a:a0:97:81:f4:17:0a:bf:48:b2: e7:aa:89:4b:77:ac:8d:46:d6:60:66:62:31:49:4c: c8:ce:86:e3:51:e5:1b:ba:4b:93:e7:ab:87:77:6e: da:8b:96:3c:5e:de:53:a1:7c:e5:40:b0:3c:f9:98: 52:f0:e1:99:1f:b7:b7:99:ed:2a:d1:46:34:eb:fb: 29:2a:4f:fc:11:32:f6:9f:5d:1a:71:b2:54:97:25: b8:02:cf:ab:ec:c9:06:37:ae:76:44:8a:e9:ea:f4: 62:8f:6f:f8:2f:1d:4b:4c:e5:3d:b2:b2:a0:bd:34: 14:4b:15:30:27:6d:81:97:87:71:c4:98:fe:27:81: 81:58:d1:9c:dc:84:3f:bd:65:67:79:1f:4a:13:2b: 3f:64:cd:1f:d8:a9:19:cb:d7:b0:24:82:63:9d:0a: 18:b2:3e:1c:d3:10:1f:6f:a6:3c:5c:88:60:d7:96: f4:01:85:1c:93:00:2d:1e:11:3f:2e:f9:67:fc:b2: ce:af:7c:77:36:6e:86:93:b9:db:c8:a0:79:a6:d8: 8b:45:6a:67:a0:3d:58:aa:4b:d5:ac:3d:37:4a:6f: 57:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:33:B5:9D:0D:6D:19:08:3F:1D:29:7E:32:94:E7:65:7B:A7:87:BE X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:23:72:42:a4:1f:68:15:c8:1e:03:36:95:3f:0e:c9:54:9f: 12:cb:97:71:9c:49:63:92:5f:65:43:a2:f7:4e:8c:43:5b:5c: b9:c2:27:a2:76:3d:24:f8:24:6b:f3:84:04:d7:26:77:8d:71: 9f:d2:d5:7b:1d:24:ca:22:06:6b:d1:4c:98:98:db:9d:e4:4b: ff:4f:77:cc:9a:3f:48:40:f7:38:68:b9:c4:a6:a5:c2:03:02: 46:cf:b2:f4:68:e3:64:a8:4e:29:f1:e2:1f:b4:e8:b8:6f:42: a6:8e:77:10:b0:ee:fb:01:4a:66:7b:6b:f4:f6:a9:a3:bd:97: e5:c8:83:d3:74:64:fb:42:0b:78:23:f3:5d:df:f4:df:d7:bc: 00:ae:43:2b:34:5f:16:83:9c:d8:c3:5f:13:ad:9e:17:08:00: cd:01:97:f7:0f:80:07:22:1f:67:61:ca:5d:31:63:bc:02:46: 82:48:b0:f6:b4:73:65:7b:72:fc:e4:a3:cb:64:47:f1:ac:10: f4:b3:6c:fd:03:90:7c:a7:5d:1c:97:33:4b:f5:fb:17:6f:7a: 29:0f:8d:3c:a0:d9:e8:ff:83:76:38:ed:07:80:84:ce:0f:c9: 38:6f:d5:f5:18:de:49:6e:9b:f9:ed:e5:19:27:bb:be:e5:8b: 97:a8:3c:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjYwMzI0MTgxNDA1WhcNMjYwMzMxMTgxNDA1WjAYMRYwFAYD VQQDEw02OWMyZDQ2ZC05NGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW+RXS1tvSKJzWqovAfBCPoC40ILd5R/B5AgIAPQ22wpY4qgl4H0Fwq/SLLn qolLd6yNRtZgZmIxSUzIzobjUeUbukuT56uHd27ai5Y8Xt5ToXzlQLA8+ZhS8OGZ H7e3me0q0UY06/spKk/8ETL2n10acbJUlyW4As+r7MkGN652RIrp6vRij2/4Lx1L TOU9srKgvTQUSxUwJ22Bl4dxxJj+J4GBWNGc3IQ/vWVneR9KEys/ZM0f2KkZy9ew JIJjnQoYsj4c0xAfb6Y8XIhg15b0AYUckwAtHhE/Lvln/LLOr3x3Nm6Gk7nbyKB5 ptiLRWpnoD1YqkvVrD03Sm9XPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB0ztZ0N bRkIPx0pfjKU52V7p4e+MB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMCNyQqQfaBXIHgM2lT8OyVSfEsuXcZxJY5JfZUOi906MQ1tcucInonY9JPgk a/OEBNcmd41xn9LVex0kyiIGa9FMmJjbneRL/093zJo/SED3OGi5xKalwgMCRs+y 9GjjZKhOKfHiH7TouG9Cpo53ELDu+wFKZntr9Papo72X5ciD03Rk+0ILeCPzXd/0 39e8AK5DKzRfFoOc2MNfE62eFwgAzQGX9w+AByIfZ2HKXTFjvAJGgkiw9rRzZXty /OSjy2RH8awQ9LNs/QOQfKddHJczS/X7F296KQ+NPKDZ6P+DdjjtB4CEzg/JOG/V 9RjeSW6b+e3lGSe7vuWLl6g8sg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:30:20 2026 by rpki-client