$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: D0BLe5/y8c3LFn4QXRafzZRsPBURsHMV64BK0PCnRSU= Subject key identifier: 03:C4:B4:42:60:B0:2C:F2:3A:A3:4C:57:E8:88:DF:42:A5:97:86:0C Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 0168 Signing time: Wed 25 Mar 2026 04:05:30 +0000 Manifest this update: Wed 25 Mar 2026 04:05:30 +0000 Manifest next update: Wed 01 Apr 2026 04:05:30 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: qWdijDcb8x31u1SNA8j53rb7tDG85jCP0Bq3MT/X0/U=) 2: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: lKWlhkDzF9OVoFvxt7VRR1SGwqDcOQ0oVF6cpYeoRqg=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: MyKXaMqltZFXiixTNcH59rzs6UiHqOhJV/ggBk4xR00=) 4: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: C1YgA2mgyvjCutK+smCWFY6hevh0ShUwDKL03UM7rbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Mar 25 04:05:30 2026 GMT Not After : Apr 1 04:05:30 2026 GMT Subject: CN=69c35f0a-c3f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:36:a7:a5:7a:14:d1:16:e2:8c:cd:cb:9b:de: 73:c7:0d:ad:cd:bb:f3:30:ea:71:68:3f:a4:d6:22: cd:e4:39:2d:42:d0:af:c5:a9:8a:b3:79:5e:f6:a9: 73:ac:2b:c4:45:5c:93:4b:39:d9:c6:71:fc:4e:3f: 0c:1b:29:69:34:15:3f:ce:bb:81:61:9e:c0:41:3e: 64:92:f7:e5:9a:d7:79:88:53:d8:7e:f6:8d:c9:d1: d7:07:f7:ce:d7:1f:cd:76:d8:2c:22:8a:2c:e1:b1: cd:1d:98:76:1d:4a:58:17:47:ed:ef:db:71:66:03: 49:7e:be:1c:b8:93:47:04:56:16:ce:1b:2b:c7:e4: f3:f9:27:f1:40:0c:2c:3b:b4:50:9f:85:3b:2a:12: c1:14:87:ae:34:cb:31:18:98:53:64:72:4d:ee:2a: a4:b2:c3:6f:02:2f:8c:63:c0:dd:97:78:20:38:4a: d8:b2:a4:3e:a8:9b:e9:21:f3:a0:f2:71:f6:bf:e4: 96:40:42:05:17:4b:53:c2:ae:b0:9c:67:ab:cd:3c: 4a:ff:0a:ab:0f:62:0e:39:62:b9:d3:32:99:4b:7d: db:f7:a1:1c:1d:ae:6d:28:a2:a8:cc:38:96:95:50: 10:bc:34:7c:8c:32:ba:f9:80:98:6d:3c:d2:78:4b: a5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C4:B4:42:60:B0:2C:F2:3A:A3:4C:57:E8:88:DF:42:A5:97:86:0C X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:10:20:11:e6:60:93:8f:ab:ac:24:87:ff:4a:1f:c1:f3:c4: 63:72:93:5c:c6:3f:6b:83:82:79:38:f2:2d:02:f0:c2:1c:02: 95:c2:5e:63:fe:06:f1:d4:a0:d3:ab:d3:40:14:34:37:18:48: 74:2b:6c:ee:5e:be:70:7c:ca:93:d7:b5:5e:8f:7f:4d:71:87: 65:7f:18:3a:b9:cf:74:89:04:5c:b9:ed:be:32:2c:b4:67:c1: d1:11:d3:fc:da:aa:ad:fb:30:73:55:63:12:d1:0d:21:b0:e8: 56:16:2e:c5:c6:b7:09:22:cb:39:8d:c1:f5:e3:74:ae:d7:9d: 3f:93:3f:92:81:1a:c6:68:b3:3c:ff:e6:08:be:26:dd:58:35: c1:48:1d:5b:22:4e:21:78:d5:64:61:8d:b2:2e:40:95:47:d8: 43:e3:84:19:81:48:f6:41:54:77:ad:f1:4f:98:9f:3d:31:d1: 53:03:79:5f:4d:c5:5e:5f:fb:eb:f8:72:36:0c:26:db:5e:bb: 5b:de:f2:b0:88:13:02:85:3d:d2:c6:b2:e5:fd:5d:a1:e3:bd: bf:a1:98:4c:2c:5d:67:84:22:13:ff:9c:cc:6f:ba:97:c9:e4: a3:69:fa:a2:95:43:bf:49:9d:31:27:73:91:2b:47:65:c4:86: a3:f1:4c:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjYwMzI1MDQwNTMwWhcNMjYwNDAxMDQwNTMwWjAYMRYwFAYD VQQDEw02OWMzNWYwYS1jM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjanpXoU0RbijM3Lm95zxw2tzbvzMOpxaD+k1iLN5DktQtCvxamKs3le9qlz rCvERVyTSznZxnH8Tj8MGylpNBU/zruBYZ7AQT5kkvflmtd5iFPYfvaNydHXB/fO 1x/NdtgsIoos4bHNHZh2HUpYF0ft79txZgNJfr4cuJNHBFYWzhsrx+Tz+SfxQAws O7RQn4U7KhLBFIeuNMsxGJhTZHJN7iqkssNvAi+MY8Ddl3ggOErYsqQ+qJvpIfOg 8nH2v+SWQEIFF0tTwq6wnGerzTxK/wqrD2IOOWK50zKZS33b96EcHa5tKKKozDiW lVAQvDR8jDK6+YCYbTzSeEulxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAPEtEJg sCzyOqNMV+iI30Kll4YMMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqRAgEeZgk4+rrCSH/0ofwfPEY3KTXMY/a4OCeTjyLQLwwhwClcJeY/4G8dSg 06vTQBQ0NxhIdCts7l6+cHzKk9e1Xo9/TXGHZX8YOrnPdIkEXLntvjIstGfB0RHT /Nqqrfswc1VjEtENIbDoVhYuxca3CSLLOY3B9eN0rtedP5M/koEaxmizPP/mCL4m 3Vg1wUgdWyJOIXjVZGGNsi5AlUfYQ+OEGYFI9kFUd63xT5ifPTHRUwN5X03FXl/7 6/hyNgwm2167W97ysIgTAoU90say5f1doeO9v6GYTCxdZ4QiE/+czG+6l8nko2n6 opVDv0mdMSdzkStHZcSGo/FMdw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:36:32 2026 by rpki-client