$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.mft File: 8eD9e9rxcZiQ9rJJs7xBghS6iss.mft (raw, json) Hash identifier: fgGQ8kTQ4pKVuTiQ533iTqVz/bOoQv5a7+TKSD/gB7A= Subject key identifier: FA:DD:63:9D:69:BC:C9:13:7E:68:10:10:70:E9:26:0B:16:01:61:D5 Authority key identifier: F1:E0:FD:7B:DA:F1:71:98:90:F6:B2:49:B3:BC:41:82:14:BA:8A:CB Certificate issuer: /CN=A91C9706/serialNumber=F1E0FD7BDAF1719890F6B249B3BC418214BA8ACB Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/8eD9e9rxcZiQ9rJJs7xBghS6iss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.mft Manifest number: 15 Signing time: Wed 25 Mar 2026 08:14:25 +0000 Manifest this update: Wed 25 Mar 2026 08:14:24 +0000 Manifest next update: Wed 01 Apr 2026 08:14:24 +0000 Files and hashes: 1: 8eD9e9rxcZiQ9rJJs7xBghS6iss.crl (hash: Al68b8JEPmkZnm+dEwCW0BSrcWe6JCyKWukN9L949Bc=) 2: B7B7EE46118411F1951E019C333D8C67.roa (hash: nTrTUgHl4VUdhScRvQ7M38Aw7fBG/zsPSb6R6Q8BgHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.crl rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/8eD9e9rxcZiQ9rJJs7xBghS6iss.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9706, serialNumber=F1E0FD7BDAF1719890F6B249B3BC418214BA8ACB Validity Not Before: Mar 25 08:14:24 2026 GMT Not After : Apr 1 08:14:24 2026 GMT Subject: CN=69c39961-39d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:93:20:03:5f:ce:a9:ed:e1:97:2a:4d:d6:6b: 2c:45:86:a2:45:a0:f4:3b:c0:73:d4:16:3e:ef:6f: 26:6d:e3:c9:d1:fe:5c:ed:4f:96:59:3a:7f:c7:08: 42:b8:50:c1:70:6e:59:cd:5d:9f:5b:c3:6f:96:6f: b8:75:76:91:a2:bb:70:31:c1:76:5a:23:1c:ff:d6: 25:4f:da:61:6d:61:79:fe:d4:8a:35:c8:ee:96:c1: 03:52:02:69:73:ed:6d:0f:d8:5a:8b:7e:f1:03:47: d1:06:08:3d:fc:a8:d8:70:66:b6:6f:5f:ae:c1:71: a4:ff:fb:20:5b:3c:64:d0:9d:fa:1e:73:93:a1:cc: 99:dc:96:5e:f8:0f:1b:1f:33:dd:d3:83:84:07:ba: da:7e:b7:e4:e5:db:1f:76:88:a2:1c:48:5a:01:47: a1:5d:7a:e7:7b:67:92:fd:17:2c:88:01:0d:c2:85: 6c:eb:39:c4:ac:bc:83:06:2c:17:ff:a3:1e:68:89: 2c:77:49:35:2b:76:05:11:cf:ea:e2:38:34:e5:56: e6:91:f2:9a:10:77:f5:bc:b4:8b:3b:1a:6b:78:7f: 07:a5:80:86:70:a9:e1:fe:2e:14:1f:88:6a:0c:ca: ca:47:90:b6:25:f9:eb:0b:fd:7b:90:15:bf:23:9c: 60:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:DD:63:9D:69:BC:C9:13:7E:68:10:10:70:E9:26:0B:16:01:61:D5 X509v3 Authority Key Identifier: keyid:F1:E0:FD:7B:DA:F1:71:98:90:F6:B2:49:B3:BC:41:82:14:BA:8A:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/8eD9e9rxcZiQ9rJJs7xBghS6iss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9706/F888443A114711F18BB454AF223D8C67/8eD9e9rxcZiQ9rJJs7xBghS6iss.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:08:a5:19:ca:4b:b9:40:d6:d8:e7:92:90:38:00:94:68:fa: 97:ac:90:5b:7b:b1:fc:35:d8:fe:df:0a:14:0b:1b:fa:54:dd: 00:f6:01:88:01:8d:bd:ed:47:bb:8f:4a:2c:44:d3:7d:2c:e1: 11:3d:a3:f3:a6:a3:9e:6b:46:19:3f:73:d6:4c:4f:e3:1e:0e: a4:64:c6:5b:67:7a:de:9d:e4:c5:d5:b8:04:f4:26:a5:58:30: a7:f1:a8:e8:90:a9:e7:5c:b8:d6:9b:f9:d6:79:1c:0a:7b:4d: 7d:03:41:94:70:4a:a3:18:c4:ae:05:f5:c5:9e:50:ca:1f:1d: 88:07:37:f1:32:d6:d7:5c:e4:39:42:a9:92:f5:a6:48:ec:40: b6:b2:39:03:66:8f:c2:3a:b1:6d:70:4a:36:1c:56:61:75:40: 9d:1c:07:a2:be:00:ba:0f:3a:66:b6:34:98:d1:86:d0:b0:5f: 0e:11:54:41:29:2d:d3:9f:58:f4:e8:a2:5b:78:a2:31:4e:99: 50:3b:c8:71:85:a8:bc:0e:3b:ac:be:75:ae:e4:16:5f:e4:3d: be:e2:a6:6c:e7:d0:59:cb:4f:ac:7e:88:4b:ee:73:47:2d:44: 22:ad:b2:7c:05:ce:bd:27:bf:6c:8c:ca:d5:ef:0a:16:49:50: 76:ef:0f:8d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OTcwNjExMC8GA1UEBRMoRjFFMEZEN0JEQUYxNzE5ODkwRjZCMjQ5QjNCQzQxODIx NEJBOEFDQjAeFw0yNjAzMjUwODE0MjRaFw0yNjA0MDEwODE0MjRaMBgxFjAUBgNV BAMTDTY5YzM5OTYxLTM5ZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjkyADX86p7eGXKk3WayxFhqJFoPQ7wHPUFj7vbyZt48nR/lztT5ZZOn/HCEK4 UMFwblnNXZ9bw2+Wb7h1dpGiu3AxwXZaIxz/1iVP2mFtYXn+1Io1yO6WwQNSAmlz 7W0P2FqLfvEDR9EGCD38qNhwZrZvX67BcaT/+yBbPGTQnfoec5OhzJncll74Dxsf M93Tg4QHutp+t+Tl2x92iKIcSFoBR6Fdeud7Z5L9FyyIAQ3ChWzrOcSsvIMGLBf/ ox5oiSx3STUrdgURz+riODTlVuaR8poQd/W8tIs7Gmt4fwelgIZwqeH+LhQfiGoM yspHkLYl+esL/XuQFb8jnGAHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU+t1jnWm8 yRN+aBAQcOkmCxYBYdUwHwYDVR0jBBgwFoAU8eD9e9rxcZiQ9rJJs7xBghS6issw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5NzA2L0Y4ODg0NDNBMTE0 NzExRjE4QkI0NTRBRjIyM0Q4QzY3LzhlRDllOXJ4Y1ppUTlySkpzN3hCZ2hTNmlz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvOGVEOWU5cnhjWmlROXJKSnM3eEJnaFM2aXNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 NzA2L0Y4ODg0NDNBMTE0NzExRjE4QkI0NTRBRjIyM0Q4QzY3LzhlRDllOXJ4Y1pp UTlySkpzN3hCZ2hTNmlzcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAvCKUZyku5QNbY55KQOACUaPqXrJBbe7H8Ndj+3woUCxv6VN0A9gGIAY297Ue7 j0osRNN9LOERPaPzpqOea0YZP3PWTE/jHg6kZMZbZ3reneTF1bgE9CalWDCn8ajo kKnnXLjWm/nWeRwKe019A0GUcEqjGMSuBfXFnlDKHx2IBzfxMtbXXOQ5QqmS9aZI 7EC2sjkDZo/COrFtcEo2HFZhdUCdHAeivgC6DzpmtjSY0YbQsF8OEVRBKS3Tn1j0 6KJbeKIxTplQO8hxhai8DjusvnWu5BZf5D2+4qZs59BZy0+sfohL7nNHLUQirbJ8 Bc69J79sjMrV7woWSVB27w+N -----END CERTIFICATE-----Generated at Thu Mar 26 00:28:14 2026 by rpki-client