$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: H3BCiN/LHV/vLj0jY2IKP+s8c8LwS+xaHggs0pErO7c= Subject key identifier: D3:ED:7A:A5:22:44:9C:78:91:F2:B1:DF:96:8F:64:D8:1D:D9:F2:0A Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1C78 Signing time: Tue 24 Mar 2026 16:06:56 +0000 Manifest this update: Tue 24 Mar 2026 16:06:55 +0000 Manifest next update: Tue 31 Mar 2026 16:06:55 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: mLtYnY+qYX6MPmyfll6Y8simXxjXxQHp95z9P9q8ICc=) 2: 65D82706BACE11F0AAEC4611C4F9AE02.roa (hash: sqvmzo0nBMsekrGisDm87YPLKEUsc2Q0u1zWWfR7WgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:06:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7304 (0x1c88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Mar 24 16:06:55 2026 GMT Not After : Mar 31 16:06:55 2026 GMT Subject: CN=69c2b6a0-154b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7d:cb:3b:59:4c:9c:d4:66:a4:cf:b4:a2:1c: 09:e9:b0:cc:26:17:72:05:59:7b:8c:d1:17:b4:ae: b6:e6:1d:bc:8c:85:0a:3a:23:a5:65:21:00:df:f8: 2e:91:df:0b:db:73:a6:60:ee:15:72:95:7b:47:56: 70:ef:c5:79:52:4f:ca:37:a1:8d:7d:50:25:70:65: 2f:4d:35:b6:bf:c5:60:49:64:f9:81:8e:8c:3c:66: 2e:dc:6a:04:27:8c:8c:80:ca:6d:41:0e:a9:21:c7: 50:68:62:c5:7c:97:95:c4:00:fc:a4:8c:ee:e1:0a: ec:b0:ab:de:4a:e1:6f:58:a0:91:5a:36:65:00:24: cf:ec:c8:5a:e5:65:e1:97:3e:bc:ee:f2:e3:dc:d4: e7:2f:11:af:cb:8a:a5:8d:c6:84:79:e9:48:14:d8: f9:8c:d0:0e:90:6c:b3:c9:c9:2d:fc:f2:11:db:f5: 30:4a:f7:c9:dd:42:4c:2c:33:46:ff:f1:73:86:e1: e0:28:2a:58:b9:c2:3d:a2:88:b1:37:a9:e3:e2:ff: 3d:f3:86:06:9c:63:96:2d:b2:e4:27:ae:ce:4f:81: a0:96:2f:f1:09:6d:1c:8d:d8:1b:ee:73:29:ad:c1: 9b:35:71:ad:e8:a3:5b:36:1e:e6:b9:7e:38:ef:29: 8e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:ED:7A:A5:22:44:9C:78:91:F2:B1:DF:96:8F:64:D8:1D:D9:F2:0A X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:58:88:8c:39:30:bc:bc:82:23:50:fe:cc:4d:47:94:21:57: 63:ab:c1:09:34:07:58:06:99:03:1d:c8:6a:b4:45:03:7c:58: c1:b4:22:3c:9f:08:19:2a:1a:0a:32:df:d7:9a:ef:df:d2:d1: 2d:ff:5e:90:c3:fe:e7:c6:6a:f8:96:7a:35:cb:36:69:ac:76: d2:12:c2:a7:35:6b:30:a8:fa:3e:5f:43:bd:b9:28:80:a5:51: 27:fb:7e:2c:a1:51:9c:1a:35:51:6b:98:70:03:35:78:63:32: 87:3e:e7:10:d5:fb:46:e5:ae:81:28:8d:da:65:26:3a:f9:b5: 42:02:d4:d1:b1:ad:28:f7:27:e6:a0:d9:c8:b5:02:ed:a6:01: 0b:65:41:b2:19:45:19:70:95:4a:83:29:5b:87:63:3e:80:b9: 9a:22:be:82:10:b7:f6:cc:eb:3b:ba:62:57:ba:3b:71:cd:de: e6:04:15:8f:df:52:85:24:9c:11:86:8d:bf:b8:71:fa:aa:53: 78:de:a7:63:df:8b:86:ae:48:08:88:03:2d:83:e2:de:8f:dc: 31:7c:bd:d9:46:6d:f3:74:9d:aa:bf:a7:c0:8a:c1:b0:59:ea: db:88:7d:21:b9:47:2b:ed:dd:84:a2:b3:9b:1c:da:fe:e2:71: 80:23:35:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjYwMzI0MTYwNjU1WhcNMjYwMzMxMTYwNjU1WjAYMRYwFAYD VQQDEw02OWMyYjZhMC0xNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX3LO1lMnNRmpM+0ohwJ6bDMJhdyBVl7jNEXtK625h28jIUKOiOlZSEA3/gu kd8L23OmYO4VcpV7R1Zw78V5Uk/KN6GNfVAlcGUvTTW2v8VgSWT5gY6MPGYu3GoE J4yMgMptQQ6pIcdQaGLFfJeVxAD8pIzu4QrssKveSuFvWKCRWjZlACTP7Mha5WXh lz687vLj3NTnLxGvy4qljcaEeelIFNj5jNAOkGyzyckt/PIR2/UwSvfJ3UJMLDNG //FzhuHgKCpYucI9ooixN6nj4v8984YGnGOWLbLkJ67OT4Ggli/xCW0cjdgb7nMp rcGbNXGt6KNbNh7muX447ymOuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNPteqUi RJx4kfKx35aPZNgd2fIKMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3ViIjDkwvLyCI1D+zE1HlCFXY6vBCTQHWAaZAx3IarRFA3xYwbQiPJ8IGSoa CjLf15rv39LRLf9ekMP+58Zq+JZ6Ncs2aax20hLCpzVrMKj6Pl9DvbkogKVRJ/t+ LKFRnBo1UWuYcAM1eGMyhz7nENX7RuWugSiN2mUmOvm1QgLU0bGtKPcn5qDZyLUC 7aYBC2VBshlFGXCVSoMpW4djPoC5miK+ghC39szrO7piV7o7cc3e5gQVj99ShSSc EYaNv7hx+qpTeN6nY9+Lhq5ICIgDLYPi3o/cMXy92UZt83Sdqr+nwIrBsFnq24h9 IblHK+3dhKKzmxza/uJxgCM1dA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:02 2026 by rpki-client