$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: s7D16031YL2/37ACe775dU7mowhsUE5LOLVbrA0my/I= Subject key identifier: 0C:28:57:A8:A1:A7:F1:89:D5:0C:2F:11:7A:B0:68:41:07:CB:3E:02 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 0480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0553 Signing time: Tue 24 Mar 2026 23:46:05 +0000 Manifest this update: Tue 24 Mar 2026 23:46:05 +0000 Manifest next update: Tue 31 Mar 2026 23:46:05 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: 3Px+x6SURGU68IAz+/Hqwon/eRZzn773suZEDWXgyBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1152 (0x480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Mar 24 23:46:05 2026 GMT Not After : Mar 31 23:46:05 2026 GMT Subject: CN=69c3223d-cdaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:49:a7:ae:e9:3d:5b:5f:fa:29:00:ef:8e:ca: f8:45:b3:35:b9:c1:69:74:62:3b:39:f6:ae:b7:68: ec:05:c1:87:46:31:d5:ef:57:8c:27:11:d3:8b:34: 8f:a0:be:76:93:42:42:55:51:e0:27:60:39:9b:07: 8c:0f:d7:14:b3:2d:9b:ca:0e:17:53:d5:a1:55:19: c4:65:16:38:65:23:a7:cd:ba:d3:8f:69:75:18:96: 0b:80:3b:2c:48:b7:2e:30:55:01:ef:bc:57:9a:c4: 8a:e5:0c:9e:f6:90:74:e3:d0:e5:91:39:78:9b:24: 52:71:21:22:84:fc:10:4f:ab:45:33:ef:1d:bd:1f: 7f:40:d5:9e:a6:3a:3b:38:89:cf:49:ea:64:7f:55: 03:b3:dc:97:ed:14:25:0e:d9:ef:e6:0e:38:06:16: 59:d2:ad:de:16:7e:75:a0:58:15:df:d7:c0:08:8f: ee:91:fb:1c:1d:b5:2b:6a:72:42:0f:0e:be:4d:fc: 15:8d:40:02:3f:00:9e:ec:a5:0e:ef:e9:94:4b:d0: 14:d4:2b:75:59:14:35:0c:ae:08:a4:e2:b3:88:e2: c8:cc:91:f3:9a:02:6b:c0:1a:34:5c:e1:75:ef:75: a8:2b:a1:22:4f:38:cf:05:80:51:30:f7:a0:9d:74: 67:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:28:57:A8:A1:A7:F1:89:D5:0C:2F:11:7A:B0:68:41:07:CB:3E:02 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b7:00:22:79:58:9e:6b:7e:f5:e6:b4:2e:6f:53:12:2a:45: 7a:b0:e1:9f:5a:80:db:f0:61:c4:b2:b6:25:ba:46:25:33:98: b3:bc:87:81:94:23:00:22:ec:d0:a4:ec:56:06:fa:6b:3d:0e: 35:6e:b9:c4:fc:26:d8:7a:80:65:a4:d5:f4:b4:50:41:66:97: b5:ba:e0:1d:0a:92:ab:18:1a:e8:7a:db:47:a6:a5:4e:60:6d: 31:81:08:65:93:6b:df:1e:a4:1f:60:ab:ce:01:38:e5:da:3e: 55:7d:04:a5:e3:62:6c:1c:ca:b2:f4:b6:d3:47:f3:01:1f:29: e5:52:ca:19:aa:17:ee:b5:a3:e9:d4:47:69:ab:2d:c7:9f:0a: ac:71:dc:a5:56:79:28:8e:09:58:e8:97:0e:80:1d:4d:11:eb: c1:0b:75:74:f6:6e:bc:e8:de:b3:dc:64:06:01:9a:5f:ba:7f: cf:e5:73:f7:10:6f:62:df:f9:b9:3d:07:18:64:1c:c9:79:36: 5f:36:ab:cf:84:d8:df:37:fd:5c:01:9a:ac:99:4d:2a:96:b2: ae:41:d3:51:a4:79:0e:ab:da:76:42:5b:fb:39:12:f8:09:73: 2f:f3:d4:d7:98:d7:63:3c:01:68:1d:8a:5a:31:ac:dc:94:3d: fd:fe:77:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjYwMzI0MjM0NjA1WhcNMjYwMzMxMjM0NjA1WjAYMRYwFAYD VQQDEw02OWMzMjIzZC1jZGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkmnruk9W1/6KQDvjsr4RbM1ucFpdGI7Ofaut2jsBcGHRjHV71eMJxHTizSP oL52k0JCVVHgJ2A5mweMD9cUsy2byg4XU9WhVRnEZRY4ZSOnzbrTj2l1GJYLgDss SLcuMFUB77xXmsSK5Qye9pB049DlkTl4myRScSEihPwQT6tFM+8dvR9/QNWepjo7 OInPSepkf1UDs9yX7RQlDtnv5g44BhZZ0q3eFn51oFgV39fACI/ukfscHbUranJC Dw6+TfwVjUACPwCe7KUO7+mUS9AU1Ct1WRQ1DK4IpOKziOLIzJHzmgJrwBo0XOF1 73WoK6EiTzjPBYBRMPegnXRnZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAwoV6ih p/GJ1QwvEXqwaEEHyz4CMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp7cAInlYnmt+9ea0Lm9TEipFerDhn1qA2/BhxLK2JbpGJTOYs7yHgZQjACLs 0KTsVgb6az0ONW65xPwm2HqAZaTV9LRQQWaXtbrgHQqSqxga6HrbR6alTmBtMYEI ZZNr3x6kH2CrzgE45do+VX0EpeNibBzKsvS200fzAR8p5VLKGaoX7rWj6dRHaast x58KrHHcpVZ5KI4JWOiXDoAdTRHrwQt1dPZuvOjes9xkBgGaX7p/z+Vz9xBvYt/5 uT0HGGQcyXk2Xzarz4TY3zf9XAGarJlNKpayrkHTUaR5DqvadkJb+zkS+AlzL/PU 15jXYzwBaB2KWjGs3JQ9/f53lw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:29:29 2026 by rpki-client