$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft File: CuIi7F4XpuYytVnUnFse8zLaQ8s.mft (raw, json) Hash identifier: t89tNxC983dkkT6jkmaM905Bg/AXa6EUGj7uJM2kkRA= Subject key identifier: 95:0A:BC:C6:CB:F3:DE:81:A8:D6:60:01:66:0E:A7:7F:68:F0:B1:01 Authority key identifier: 0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB Certificate issuer: /CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Certificate serial: 07A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft Manifest number: 0772 Signing time: Tue 24 Mar 2026 21:25:42 +0000 Manifest this update: Tue 24 Mar 2026 21:25:42 +0000 Manifest next update: Tue 31 Mar 2026 21:25:42 +0000 Files and hashes: 1: CuIi7F4XpuYytVnUnFse8zLaQ8s.crl (hash: Zrx6HWHG9HNy/GxyAvHdWgWgF5M/bUjxtQiF6hAnj6Y=) 2: F097281C169A11EF8927EC2DC4F9AE02.roa (hash: KirEUGjAdAYwlJ1vX/xexGJU4YLpCT+izGcMYNz9uNQ=) 3: F6AFB162F66B11F08367D08E6F6F56BC.roa (hash: rB+Tmv1oKzF3mo1fo+ketSQWRb1QMSjxzFBO+4UsFGI=) 4: DA45147EB35E11EE8EED0E37C4F9AE02.roa (hash: Bluwv17U0E3bQxLMX6DjEXL7fkRDMsWwu/v38ekvil0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1952 (0x7a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C04, serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Validity Not Before: Mar 24 21:25:42 2026 GMT Not After : Mar 31 21:25:42 2026 GMT Subject: CN=69c30156-3b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:28:42:97:3d:bb:df:fd:fa:bc:3c:f8:e6:66: 46:dc:a2:5b:c0:60:cb:dc:d3:bd:7c:e8:98:83:31: b6:0e:d9:70:47:84:b9:20:a8:d4:a2:fe:7c:b7:32: 06:1e:64:02:d1:2e:89:10:9c:db:e0:7b:c9:ca:91: 93:c7:f3:b1:f8:82:b0:76:08:23:76:fa:ea:0c:d5: ce:10:db:35:bc:87:5c:da:8a:8c:66:06:10:77:84: c6:cf:eb:72:19:7b:ea:a2:32:c5:4d:a1:bc:d3:a7: ca:b0:bb:24:89:1e:20:e1:2d:0a:55:a0:2b:1b:2a: 25:5e:88:77:e0:3c:23:2c:31:ed:4f:92:fd:4a:b3: 16:0a:6b:52:34:99:a8:bc:90:e1:17:56:0e:94:70: 8b:9a:d3:9b:c6:df:be:e7:bc:76:51:87:0d:09:23: 19:b4:9d:0f:86:b3:b7:4e:ce:78:1f:64:df:53:25: 05:a4:26:50:8c:76:73:78:44:9d:d6:43:e5:a6:2a: 62:9c:5d:16:56:18:fe:d9:a0:e1:03:46:c0:8c:14: 8d:68:83:24:93:d9:8c:00:8a:d2:84:24:b9:ff:91: 5a:e1:58:ce:2c:1d:47:ac:65:0b:1e:e2:66:ef:a2: 6c:c3:e8:84:20:55:81:fe:3d:ef:fc:12:ac:23:7b: 99:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0A:BC:C6:CB:F3:DE:81:A8:D6:60:01:66:0E:A7:7F:68:F0:B1:01 X509v3 Authority Key Identifier: keyid:0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:f8:ef:e9:25:c4:35:52:2b:b1:7b:9a:6a:c4:ee:08:38:14: a6:7b:66:66:62:f1:ab:5e:69:67:02:97:a8:11:95:a8:43:f3: 3e:3b:0d:27:ab:22:d9:55:1b:b7:20:32:cb:c5:48:28:4f:6b: b3:85:1c:01:e8:0f:4d:59:6f:db:d0:50:c6:8c:43:50:6d:f8: f6:c1:f2:cd:5a:30:ac:d0:ce:74:ac:03:13:40:cc:85:a2:55: 63:26:c6:26:ef:0e:93:0b:d6:9b:ca:a9:6c:0d:77:cf:44:f6: b7:fa:d6:6c:1b:2c:c1:96:7e:dd:32:02:54:ed:ce:49:94:c0: 9b:3e:fc:02:52:3d:16:57:ec:eb:97:ff:45:93:0f:95:98:cd: 2b:0e:cc:aa:ce:6b:74:a9:38:35:f8:83:48:ef:c5:f5:c3:21: 5a:cd:f8:0a:47:b8:42:89:73:fe:e5:06:a1:41:22:f6:66:59: bc:e6:e8:45:95:c2:95:6a:fd:92:13:db:80:e3:da:ad:bb:a4: a0:ef:8d:1f:20:2c:5e:cd:32:79:31:7e:a9:10:22:3b:6d:88: 81:22:52:c0:b4:a8:c2:ed:b3:5c:9f:0e:33:fa:16:ef:e5:f2: 2c:5d:de:c4:8b:0e:05:fb:ca:6a:86:14:98:9f:47:97:8a:13: df:7e:2e:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDMDQxMTAvBgNVBAUTKDBBRTIyMkVDNUUxN0E2RTYzMkI1NTlENDlDNUIxRUYz MzJEQTQzQ0IwHhcNMjYwMzI0MjEyNTQyWhcNMjYwMzMxMjEyNTQyWjAYMRYwFAYD VQQDEw02OWMzMDE1Ni0zYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtChClz273/36vDz45mZG3KJbwGDL3NO9fOiYgzG2DtlwR4S5IKjUov58tzIG HmQC0S6JEJzb4HvJypGTx/Ox+IKwdggjdvrqDNXOENs1vIdc2oqMZgYQd4TGz+ty GXvqojLFTaG806fKsLskiR4g4S0KVaArGyolXoh34DwjLDHtT5L9SrMWCmtSNJmo vJDhF1YOlHCLmtObxt++57x2UYcNCSMZtJ0PhrO3Ts54H2TfUyUFpCZQjHZzeESd 1kPlpipinF0WVhj+2aDhA0bAjBSNaIMkk9mMAIrShCS5/5Fa4VjOLB1HrGULHuJm 76Jsw+iEIFWB/j3v/BKsI3uZkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJUKvMbL 896BqNZgAWYOp39o8LEBMB8GA1UdIwQYMBaAFAriIuxeF6bmMrVZ1JxbHvMy2kPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0MwNC9BMERCMzU1MjVG QjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1WXl0Vm5VbkZzZTh6TGFR OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N1SWk3RjRYcHVZeXRWblVuRnNlOHpMYVE4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0MwNC9BMERCMzU1MjVGQjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1 WXl0Vm5VbkZzZTh6TGFROHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARvjv6SXENVIrsXuaasTuCDgUpntmZmLxq15pZwKXqBGVqEPzPjsNJ6si2VUb tyAyy8VIKE9rs4UcAegPTVlv29BQxoxDUG349sHyzVowrNDOdKwDE0DMhaJVYybG Ju8OkwvWm8qpbA13z0T2t/rWbBsswZZ+3TICVO3OSZTAmz78AlI9Flfs65f/RZMP lZjNKw7Mqs5rdKk4NfiDSO/F9cMhWs34Cke4Qolz/uUGoUEi9mZZvOboRZXClWr9 khPbgOParbukoO+NHyAsXs0yeTF+qRAiO22IgSJSwLSowu2zXJ8OM/oW7+XyLF3e xIsOBfvKaoYUmJ9Hl4oT334uVg== -----END CERTIFICATE-----Generated at Thu Mar 26 08:54:51 2026 by rpki-client