$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: oNl2QfybbxMuczSFOSdQ4wYesZiZDlpofGqEJfwP3iM= Subject key identifier: 12:07:11:EA:97:7C:F9:13:B2:F9:1B:54:DD:25:85:0A:7F:38:46:72 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 0A03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 09B0 Signing time: Tue 24 Mar 2026 19:51:10 +0000 Manifest this update: Tue 24 Mar 2026 19:51:09 +0000 Manifest next update: Tue 31 Mar 2026 19:51:09 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: /EOE/jIwoQXsVWhLCXn2/rBWbUmcgtRbClZ63u1r/UQ=) 2: 6B7D02AEB4A111F08515F713C4F9AE02.roa (hash: ulWIfqdJr6ntDd6TjrpkKwlsqm1SN8sn6R41Xf/9HLA=) 3: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: L3Dmx9Q6rp+c2LYX0mlHLJbQy9LLuzJCP1KPZL9Zf1c=) 4: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: IaL/27r4Dy/gX1kTRMSIJ7SMPPv2obxa5XypxjD+sxo=) 5: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: 0lBq0SGiP1c8blhjOrvjM798+Bu1Avf9FFAjpcPU9lM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Mar 24 19:51:09 2026 GMT Not After : Mar 31 19:51:09 2026 GMT Subject: CN=69c2eb2d-05cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:29:fc:7b:0e:c4:4a:3e:d9:a1:78:f9:df:b9: c3:51:6f:e0:41:c4:47:9c:5b:97:7b:1b:7e:d1:40: 2d:0e:d6:45:b8:d4:d8:b6:17:eb:8d:0a:6e:3f:33: a4:84:c1:bc:b2:dd:b8:46:41:fb:9c:ca:06:64:50: 7a:1d:11:6d:a7:8f:8a:65:e5:b5:68:bc:fc:fc:53: 13:f5:9b:63:70:65:7f:df:ca:b0:14:5d:7b:0a:a9: b4:0f:23:3a:60:1b:c0:30:45:49:45:fa:2b:bf:fd: ba:a3:83:f4:81:ec:6b:0e:3f:b1:52:e9:f4:09:5b: cb:c2:25:38:44:cd:f4:9e:e3:56:25:28:c4:34:4d: c7:aa:c1:e1:36:a0:1e:58:11:89:57:29:b9:8d:1c: 54:ec:b9:35:16:77:d8:d3:21:94:90:b0:0e:51:6f: 82:c6:3d:14:00:83:fc:8d:49:3c:7d:1d:04:3d:d7: 97:95:04:e3:e0:94:f7:e0:11:c3:5d:d2:96:1f:7d: 78:b0:d5:83:18:c8:ba:26:07:90:44:7e:9f:12:f6: 4d:d4:63:3b:de:a1:9b:80:31:40:0f:d7:c6:1f:95: 5a:fb:a5:27:1a:66:dd:2b:1f:5f:17:b3:f6:01:d7: a1:93:ca:3f:ab:08:d0:14:3c:42:f3:db:40:33:35: 95:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:07:11:EA:97:7C:F9:13:B2:F9:1B:54:DD:25:85:0A:7F:38:46:72 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:fc:5c:a0:8e:22:20:7b:4e:2a:f4:e2:a4:ec:85:ad:55:85: 14:30:a2:90:17:ae:b6:7e:95:ee:33:e9:7b:76:ef:32:22:e3: 0c:db:38:99:23:72:7d:dc:82:b1:06:86:e3:8c:77:a0:3a:36: c3:e8:02:5e:57:45:ab:77:2b:d6:17:2a:3f:0d:82:86:28:0c: e6:73:7f:13:3a:f2:f8:c3:10:b4:6d:d8:79:d0:b2:ce:9b:89: ff:41:64:10:61:c4:ab:55:b1:bc:e0:63:e0:10:37:d2:bb:fc: 49:71:d1:af:19:4e:a6:bd:4f:e1:55:a0:53:96:23:ca:9a:12: 62:d6:22:18:47:1a:97:32:af:5c:35:52:bd:4b:79:70:10:24: 0c:83:2a:e0:d8:6c:a9:3e:3d:f0:a5:60:41:67:8e:65:6d:e8: a3:68:d3:a1:c9:c7:f4:cc:1c:68:af:a7:0f:91:ca:a2:35:36: 3f:78:64:dc:4b:1b:84:84:d6:8d:6f:08:1d:95:7e:8c:45:fa: d0:0f:37:ff:d7:af:e6:78:15:a5:c8:23:bc:cb:19:0f:1a:9b: c3:45:8f:cb:41:c7:3f:e9:35:1f:fb:e2:f2:b5:d9:60:a4:e2: e5:34:41:d3:5b:5d:1e:49:1f:27:73:d5:ef:d7:06:e5:4b:c4: ea:fe:2b:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjYwMzI0MTk1MTA5WhcNMjYwMzMxMTk1MTA5WjAYMRYwFAYD VQQDEw02OWMyZWIyZC0wNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyn8ew7ESj7ZoXj537nDUW/gQcRHnFuXext+0UAtDtZFuNTYthfrjQpuPzOk hMG8st24RkH7nMoGZFB6HRFtp4+KZeW1aLz8/FMT9ZtjcGV/38qwFF17Cqm0DyM6 YBvAMEVJRforv/26o4P0gexrDj+xUun0CVvLwiU4RM30nuNWJSjENE3HqsHhNqAe WBGJVym5jRxU7Lk1FnfY0yGUkLAOUW+Cxj0UAIP8jUk8fR0EPdeXlQTj4JT34BHD XdKWH314sNWDGMi6JgeQRH6fEvZN1GM73qGbgDFAD9fGH5Va+6UnGmbdKx9fF7P2 Adehk8o/qwjQFDxC89tAMzWVYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBIHEeqX fPkTsvkbVN0lhQp/OEZyMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHfxcoI4iIHtOKvTipOyFrVWFFDCikBeutn6V7jPpe3bvMiLjDNs4mSNyfdyC sQaG44x3oDo2w+gCXldFq3cr1hcqPw2ChigM5nN/Ezry+MMQtG3YedCyzpuJ/0Fk EGHEq1WxvOBj4BA30rv8SXHRrxlOpr1P4VWgU5YjypoSYtYiGEcalzKvXDVSvUt5 cBAkDIMq4NhsqT498KVgQWeOZW3oo2jTocnH9MwcaK+nD5HKojU2P3hk3EsbhITW jW8IHZV+jEX60A83/9ev5ngVpcgjvMsZDxqbw0WPy0HHP+k1H/vi8rXZYKTi5TRB 01tdHkkfJ3PV79cG5UvE6v4rLA== -----END CERTIFICATE-----Generated at Thu Mar 26 03:37:16 2026 by rpki-client