$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: o7fLjh/GC61KhotpfVlgChJ5i5dtgmDwOL44FWvGYTs= Subject key identifier: 3F:6C:25:8A:08:D3:4A:E1:E5:D2:09:4F:00:EC:EF:E3:63:0D:DA:38 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1BE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1BDE Signing time: Tue 24 Mar 2026 16:09:08 +0000 Manifest this update: Tue 24 Mar 2026 16:09:07 +0000 Manifest next update: Tue 31 Mar 2026 16:09:07 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: v539yvWiUBmQz7mtGnJZQWm2PgxJRE6NaKh65mfYoKg=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: Y6ha1LXXijatzuKxRvx5GL0m9bXoYJ6BXHEwlVlS+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7145 (0x1be9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Mar 24 16:09:07 2026 GMT Not After : Mar 31 16:09:07 2026 GMT Subject: CN=69c2b724-d0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:51:ad:f8:89:f6:39:5f:ca:5c:26:6f:56:e9: 0c:2f:85:cf:e9:6e:fe:41:ba:3f:10:aa:97:87:80: 96:5a:60:d1:8f:b4:7f:82:e2:ad:75:27:c2:4f:dd: d7:37:16:74:42:fd:41:0b:5e:14:0a:21:b7:31:09: 24:b8:00:9b:42:6d:24:1b:1e:68:e0:84:75:58:3f: 7a:1e:b3:c3:ba:63:96:44:14:fd:62:61:9d:4b:5f: 4b:38:a4:4d:68:3c:e2:8b:26:17:08:5d:a5:75:be: 4b:ed:8e:6f:51:7c:02:68:40:63:b3:dc:da:eb:7e: b9:fa:a1:29:f7:70:d3:b1:ed:03:4f:29:0c:50:2b: bd:be:e9:b2:1c:52:9d:87:ed:ca:7c:10:93:ca:5b: a6:31:68:6c:1b:da:15:cd:d1:23:55:f2:57:11:54: 0d:f8:bc:cd:70:a3:f3:48:b0:30:0e:70:20:cf:a9: f2:26:cb:c0:23:a6:54:be:fe:c4:98:df:ef:1b:a6: 05:e0:11:18:d9:2b:81:78:85:98:55:e9:05:92:11: 2f:5c:bb:01:69:37:0e:5b:e6:58:0f:4a:53:42:78: b6:bb:0e:b9:65:9e:ea:c2:e5:7e:07:29:6e:b3:01: 2e:ef:17:ec:d6:28:ab:45:64:e4:8c:93:d2:52:f4: 11:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6C:25:8A:08:D3:4A:E1:E5:D2:09:4F:00:EC:EF:E3:63:0D:DA:38 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1c:e6:d9:fd:37:d1:2a:31:01:4e:a8:dd:58:0d:07:5d:80: 39:18:b2:83:f1:3a:97:22:51:d5:b6:0e:9a:d5:96:42:46:fc: c8:47:06:cf:da:5c:10:71:90:63:cc:bd:34:fe:15:c7:83:23: 2a:7b:46:f2:51:93:bc:d8:e9:03:c5:0c:9b:db:ee:64:d6:a8: 59:8d:15:1c:3a:b4:e3:ec:d6:b4:4c:19:71:15:7a:db:21:8b: 06:6b:6e:ea:c4:13:f7:cb:ec:10:96:f3:66:ce:23:dd:be:5b: e6:e0:36:42:9b:76:ca:74:79:ec:2b:2d:3c:8e:6c:e6:ff:c4: bf:ec:c9:9c:da:31:20:b0:82:74:df:94:89:3b:99:42:c4:93: 4f:d8:44:93:77:b4:80:60:64:25:26:5e:74:d6:34:47:84:21: 17:f0:1c:b0:a7:40:c2:37:28:34:9e:7f:22:78:8b:ba:9c:b4: b0:dc:57:d5:d0:1f:69:83:a1:c6:73:1f:77:57:c2:0d:8a:53: 39:1c:0f:d1:8c:b2:47:7f:56:fb:64:6b:ed:bf:7e:19:28:e0: 63:0a:c8:c4:d7:fa:83:01:f1:ec:e2:8e:39:0f:77:1f:9a:36: 8f:0c:d6:85:b8:84:73:96:a6:4b:87:4f:f1:27:51:5a:82:88: 4e:6e:fd:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjYwMzI0MTYwOTA3WhcNMjYwMzMxMTYwOTA3WjAYMRYwFAYD VQQDEw02OWMyYjcyNC1kMGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FGt+In2OV/KXCZvVukML4XP6W7+Qbo/EKqXh4CWWmDRj7R/guKtdSfCT93X NxZ0Qv1BC14UCiG3MQkkuACbQm0kGx5o4IR1WD96HrPDumOWRBT9YmGdS19LOKRN aDziiyYXCF2ldb5L7Y5vUXwCaEBjs9za6365+qEp93DTse0DTykMUCu9vumyHFKd h+3KfBCTylumMWhsG9oVzdEjVfJXEVQN+LzNcKPzSLAwDnAgz6nyJsvAI6ZUvv7E mN/vG6YF4BEY2SuBeIWYVekFkhEvXLsBaTcOW+ZYD0pTQni2uw65ZZ7qwuV+Bylu swEu7xfs1iirRWTkjJPSUvQR2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD9sJYoI 00rh5dIJTwDs7+NjDdo4MB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhRzm2f030SoxAU6o3VgNB12AORiyg/E6lyJR1bYOmtWWQkb8yEcGz9pcEHGQ Y8y9NP4Vx4MjKntG8lGTvNjpA8UMm9vuZNaoWY0VHDq04+zWtEwZcRV62yGLBmtu 6sQT98vsEJbzZs4j3b5b5uA2Qpt2ynR57CstPI5s5v/Ev+zJnNoxILCCdN+UiTuZ QsSTT9hEk3e0gGBkJSZedNY0R4QhF/AcsKdAwjcoNJ5/IniLupy0sNxX1dAfaYOh xnMfd1fCDYpTORwP0YyyR39W+2Rr7b9+GSjgYwrIxNf6gwHx7OKOOQ93H5o2jwzW hbiEc5amS4dP8SdRWoKITm797w== -----END CERTIFICATE-----Generated at Thu Mar 26 09:57:06 2026 by rpki-client