$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: 4yBNSHVdCgDnvRcqt00u/VvOs2UopiSwRar5lBoZRvg= Subject key identifier: 00:05:0E:4C:03:95:BB:30:AA:6C:09:7D:67:90:C7:A6:63:38:0E:5A Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0F05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0EE7 Signing time: Tue 24 Mar 2026 17:31:41 +0000 Manifest this update: Tue 24 Mar 2026 17:31:41 +0000 Manifest next update: Tue 31 Mar 2026 17:31:41 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: 23y5xXgtHlPa0EkocLSGiCP4cQXcQgXeBHItRlCKoE4=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: CNBlKRGQG6AMZt4K1SNsAWQxw9T+WIEHof1S1C1ZbKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3845 (0xf05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Mar 24 17:31:41 2026 GMT Not After : Mar 31 17:31:41 2026 GMT Subject: CN=69c2ca7d-208c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b0:60:d9:55:58:0a:1a:fd:fd:c4:45:95:2f: 8b:7e:06:52:98:76:ac:4d:1d:5c:00:05:e4:57:69: ba:0d:ae:22:05:5f:b8:54:66:b4:a9:ce:ab:28:14: f3:17:01:ab:71:5b:06:95:4b:4f:23:49:68:d9:a0: cc:c5:68:62:90:ac:04:39:0f:e7:aa:f4:c2:db:ef: 13:03:85:9f:06:72:be:55:30:1f:6a:76:0a:9e:a0: e8:9c:30:c9:62:e9:1a:19:67:ed:cd:cb:a7:9c:d8: c6:b9:0a:09:d7:51:ab:07:76:5b:0b:fa:a0:5b:8c: 62:e3:cc:fa:f3:40:6f:ce:f8:d8:7a:6a:ab:c5:13: 5d:aa:e9:06:fa:e2:70:94:bb:0b:fc:ed:b0:a9:07: 8e:88:49:8b:74:47:ea:7b:d8:a5:8a:5f:d3:c1:6d: 70:bd:e9:95:61:a4:fc:72:9b:e0:a1:ff:df:71:57: 0b:57:23:d2:d2:ca:72:36:f4:da:0e:e6:d9:ea:79: fe:18:3d:ab:a5:35:a0:f6:1d:fb:04:46:4b:52:8c: 6c:48:aa:76:48:6c:28:d2:93:ec:de:a8:bc:7b:7c: 9d:1d:49:f1:fe:2e:7f:31:77:f8:70:55:a1:61:32: f9:7f:ac:e7:fc:4b:5d:26:e2:e2:85:1d:97:a9:40: 3d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:05:0E:4C:03:95:BB:30:AA:6C:09:7D:67:90:C7:A6:63:38:0E:5A X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a4:fb:eb:15:ee:cd:a4:7a:05:80:87:b4:ec:97:6b:6d:28: 90:fa:a6:54:ff:e2:b2:96:77:6a:28:80:e3:43:25:06:3d:97: c9:ae:c4:f1:82:c5:8b:80:a7:ba:c6:f9:b3:26:78:20:06:ad: b1:b3:7c:0e:92:57:c6:be:a6:80:55:d8:87:82:28:70:54:b4: 22:50:16:64:b1:ff:c8:35:25:d5:63:b0:94:bc:22:98:a9:53: fd:21:f2:09:9c:08:01:28:db:18:25:d3:68:51:23:9b:65:c5: 7f:d1:03:72:d7:52:14:6e:80:05:9d:5d:fa:1a:8c:02:8b:d9: 7f:6a:7b:29:5f:de:bd:64:6a:5f:5d:1a:01:50:bf:d7:5d:9c: f1:d7:40:84:37:68:68:24:2b:46:3b:9b:18:59:6d:17:08:7f: 5f:71:e1:a3:8f:50:6d:63:ca:b6:df:c2:7a:65:e9:f6:b5:d1: 19:b9:01:9f:17:be:91:e0:c7:2a:e9:b4:95:07:1f:43:c4:2b: cb:c2:57:22:a7:92:6a:44:d1:3b:5f:ae:00:74:e3:30:a5:08: 1b:e1:c7:04:c0:3b:37:45:81:7b:ee:31:f9:7e:94:35:47:3b: c2:75:df:e7:d9:a4:a5:53:46:65:1c:3a:43:ba:36:06:1d:67: 38:cd:26:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjYwMzI0MTczMTQxWhcNMjYwMzMxMTczMTQxWjAYMRYwFAYD VQQDEw02OWMyY2E3ZC0yMDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi7Bg2VVYChr9/cRFlS+LfgZSmHasTR1cAAXkV2m6Da4iBV+4VGa0qc6rKBTz FwGrcVsGlUtPI0lo2aDMxWhikKwEOQ/nqvTC2+8TA4WfBnK+VTAfanYKnqDonDDJ YukaGWftzcunnNjGuQoJ11GrB3ZbC/qgW4xi48z680BvzvjYemqrxRNdqukG+uJw lLsL/O2wqQeOiEmLdEfqe9ilil/TwW1wvemVYaT8cpvgof/fcVcLVyPS0spyNvTa DubZ6nn+GD2rpTWg9h37BEZLUoxsSKp2SGwo0pPs3qi8e3ydHUnx/i5/MXf4cFWh YTL5f6zn/EtdJuLihR2XqUA9VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAAFDkwD lbswqmwJfWeQx6ZjOA5aMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOKT76xXuzaR6BYCHtOyXa20okPqmVP/ispZ3aiiA40MlBj2Xya7E8YLFi4Cn usb5syZ4IAatsbN8DpJXxr6mgFXYh4IocFS0IlAWZLH/yDUl1WOwlLwimKlT/SHy CZwIASjbGCXTaFEjm2XFf9EDctdSFG6ABZ1d+hqMAovZf2p7KV/evWRqX10aAVC/ 112c8ddAhDdoaCQrRjubGFltFwh/X3Hho49QbWPKtt/CemXp9rXRGbkBnxe+keDH Kum0lQcfQ8Qry8JXIqeSakTRO1+uAHTjMKUIG+HHBMA7N0WBe+4x+X6UNUc7wnXf 59mkpVNGZRw6Q7o2Bh1nOM0mrg== -----END CERTIFICATE-----Generated at Thu Mar 26 05:36:54 2026 by rpki-client