$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: rJMGWGZPiRHF3BUHEnMoxyGNr8kNPrmyfj+VZtmWzB0= Subject key identifier: 03:58:D4:CF:2D:A2:FC:59:30:14:60:6E:29:12:51:C2:51:A8:12:E4 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 07C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 07B7 Signing time: Tue 24 Mar 2026 21:10:04 +0000 Manifest this update: Tue 24 Mar 2026 21:10:04 +0000 Manifest next update: Tue 31 Mar 2026 21:10:04 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: LWo+vOcby7PZ5KEu4sDUfKikdxLHoihjgmee9i4W81s=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: m1LwxR5yBiEhYayYDDx+VeEVNC28wm7cqjOPRTGQW8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Mar 24 21:10:04 2026 GMT Not After : Mar 31 21:10:04 2026 GMT Subject: CN=69c2fdac-bde5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:90:7c:9e:a4:b5:92:a8:fc:be:2b:17:d2:e1: 1d:49:c7:81:4a:86:b4:7e:07:70:6b:46:7c:58:b1: ed:7d:40:57:91:75:16:6f:c9:af:d9:26:0c:13:38: 35:9d:2b:42:4c:06:ca:66:b2:e9:cd:b2:dd:e2:57: b4:d5:1a:4f:79:01:b4:e9:93:c3:e5:2d:ae:c2:64: d9:c5:52:5d:3b:89:82:ec:71:98:15:98:1c:a6:51: 12:d2:7e:cc:7a:3e:c0:92:09:9c:99:73:49:de:0c: d6:7a:18:83:f7:15:87:3a:be:d9:bc:ad:ea:ed:a1: b9:00:7d:0e:5f:95:da:59:19:a8:9e:4c:ed:4f:f3: 6b:03:ab:e0:a6:17:86:df:86:0a:85:86:46:a5:c0: f9:97:e3:c0:6e:f4:be:a9:ca:b2:2a:67:1f:b9:ae: 1d:1f:76:cd:75:80:af:1f:43:fb:69:3a:07:ca:99: 53:a2:a8:95:f1:aa:61:e1:e2:8d:0f:79:06:11:b5: a9:4c:ca:e3:5f:ce:de:0d:ab:3b:21:c1:5a:70:f1: 8c:35:4f:59:97:a1:9c:37:e4:b0:95:16:99:d0:a2: 3f:5d:f5:ad:b4:85:cf:af:c9:93:61:70:6e:92:88: b6:4b:8a:29:71:33:71:83:46:6c:07:d1:ac:e6:15: 6e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:58:D4:CF:2D:A2:FC:59:30:14:60:6E:29:12:51:C2:51:A8:12:E4 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:c8:ba:05:95:3e:17:b7:70:fc:6c:15:b1:b9:aa:64:1d:d4: a5:b3:ce:8d:95:ca:90:d3:55:83:62:4e:ce:2b:c0:f1:57:85: 05:74:b8:af:34:13:23:76:86:aa:94:a7:c7:32:d9:2b:b5:80: ca:12:8f:84:da:7d:93:86:7a:86:9a:51:a4:c0:1e:84:a6:f2: 94:4c:fc:bc:2b:9c:14:85:ba:54:c9:83:e7:a5:c7:84:2b:a0: ba:f1:a8:fd:b8:f4:de:66:36:08:73:a7:e1:f9:5d:d9:52:24: 0e:6d:eb:16:98:c0:61:b6:95:b6:e8:a8:a3:64:43:24:12:3f: 37:e0:60:29:5c:2d:f1:f0:7f:43:a4:c8:d2:81:a4:b1:8f:26: 95:ff:96:f2:de:63:61:67:4c:79:41:b3:f2:70:96:9d:e3:14: 95:ac:6c:f9:4a:52:08:2b:ff:e4:93:e5:b7:95:14:79:1d:8b: 04:4b:c0:bc:bc:54:13:41:46:19:eb:9a:d4:59:c5:bc:db:08: fd:5e:9d:5a:ed:00:14:27:9c:e1:12:9f:d9:e9:33:b8:9b:3c: 24:ee:7e:82:6b:0d:e8:fa:a8:01:2e:df:3e:db:b4:06:29:a7: c7:86:14:96:77:e0:4b:d3:7a:3e:06:22:24:a8:1c:62:30:b7: c3:bc:e6:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjYwMzI0MjExMDA0WhcNMjYwMzMxMjExMDA0WjAYMRYwFAYD VQQDEw02OWMyZmRhYy1iZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJB8nqS1kqj8visX0uEdSceBSoa0fgdwa0Z8WLHtfUBXkXUWb8mv2SYMEzg1 nStCTAbKZrLpzbLd4le01RpPeQG06ZPD5S2uwmTZxVJdO4mC7HGYFZgcplES0n7M ej7AkgmcmXNJ3gzWehiD9xWHOr7ZvK3q7aG5AH0OX5XaWRmonkztT/NrA6vgpheG 34YKhYZGpcD5l+PAbvS+qcqyKmcfua4dH3bNdYCvH0P7aToHyplToqiV8aph4eKN D3kGEbWpTMrjX87eDas7IcFacPGMNU9Zl6GcN+SwlRaZ0KI/XfWttIXPr8mTYXBu koi2S4opcTNxg0ZsB9Gs5hVuzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFANY1M8t ovxZMBRgbikSUcJRqBLkMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMci6BZU+F7dw/GwVsbmqZB3UpbPOjZXKkNNVg2JOzivA8VeFBXS4rzQTI3aG qpSnxzLZK7WAyhKPhNp9k4Z6hppRpMAehKbylEz8vCucFIW6VMmD56XHhCuguvGo /bj03mY2CHOn4fld2VIkDm3rFpjAYbaVtuioo2RDJBI/N+BgKVwt8fB/Q6TI0oGk sY8mlf+W8t5jYWdMeUGz8nCWneMUlaxs+UpSCCv/5JPlt5UUeR2LBEvAvLxUE0FG Geua1FnFvNsI/V6dWu0AFCec4RKf2ekzuJs8JO5+gmsN6PqoAS7fPtu0Bimnx4YU lnfgS9N6PgYiJKgcYjC3w7zmog== -----END CERTIFICATE-----Generated at Thu Mar 26 07:26:09 2026 by rpki-client