$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft File: r_h3chh1NYXDiOm4HDkGa9ONtZI.mft (raw, json) Hash identifier: jxYplzz6tK0/dVUd3Lc0XQl4QLivxFu9p50lcqSMqkk= Subject key identifier: EB:23:49:3F:C2:9E:03:C1:C9:19:E6:F9:57:96:A1:1B:20:2A:23:C4 Authority key identifier: AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 Certificate issuer: /CN=A91CB3FE/serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft Manifest number: A1 Signing time: Wed 25 Mar 2026 06:32:45 +0000 Manifest this update: Wed 25 Mar 2026 06:32:45 +0000 Manifest next update: Wed 01 Apr 2026 06:32:45 +0000 Files and hashes: 1: r_h3chh1NYXDiOm4HDkGa9ONtZI.crl (hash: mkwgKDTg3/O5ehhTJPGIpW5AxMIuH0znTjxFDglAENo=) 2: AFD61B9C36A311F08A82A258C4F9AE02.roa (hash: pJSESHzyh46NJYdnq5GWolfK6jlgGJK8T3PBPiUJbVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3FE, serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Validity Not Before: Mar 25 06:32:45 2026 GMT Not After : Apr 1 06:32:45 2026 GMT Subject: CN=69c3818d-0565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:07:d3:4c:6f:15:75:78:3e:e5:35:6b:f6:48: 89:dc:3c:d6:27:ca:16:51:a5:9f:85:2d:4a:76:55: a1:10:81:50:ec:e0:8a:e5:d9:de:c9:2e:da:3f:32: 8b:f1:2c:e4:be:7d:24:af:06:61:a7:e0:85:6c:08: 53:6b:9c:20:3e:3a:d7:f0:24:f1:c9:d0:1f:f2:5d: e3:47:df:57:09:a5:82:7a:15:35:31:17:32:8a:1a: e0:f5:13:82:e1:57:e1:d5:23:ac:8a:4b:8a:6f:c2: b6:4c:49:3a:0a:a0:cd:ca:ed:81:24:db:33:2c:e1: be:2a:e5:d9:fa:ae:10:12:b1:54:c6:8d:a9:ab:9a: e9:e2:c3:5d:67:c3:2d:f8:8a:0a:32:a0:d9:63:ce: 1c:57:7e:cf:a6:bd:3f:0c:04:53:4f:c1:1c:f3:5a: 99:6d:9f:45:1c:ca:b3:d2:5d:45:86:25:18:56:db: a8:1b:5f:a6:32:90:68:66:b5:44:36:af:26:ba:8c: 47:c1:c9:9b:ef:05:cc:50:ae:94:1b:99:87:e7:18: bb:0b:9f:cc:b0:d2:81:42:20:8e:ad:39:d3:32:4a: 92:0f:a4:f3:d6:77:81:41:e3:aa:df:d0:ea:aa:3b: 1c:71:c4:48:94:64:9a:07:64:8a:50:9b:2c:1c:76: 2f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:23:49:3F:C2:9E:03:C1:C9:19:E6:F9:57:96:A1:1B:20:2A:23:C4 X509v3 Authority Key Identifier: keyid:AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e2:7f:a3:ce:24:d4:6b:35:70:43:74:70:39:82:57:d5:5a: 79:8d:dd:67:90:e3:b3:96:6f:32:fe:5e:82:57:0a:41:c2:0b: d0:86:47:03:b9:ae:cb:0f:6c:cd:f9:d5:1e:27:41:c6:55:fe: 87:ad:db:54:dc:05:2a:3a:7d:b1:ac:52:3d:2d:cb:5b:68:c3: 25:63:0e:32:38:d9:b7:b8:78:66:cb:e5:fb:be:7c:ca:72:10: e2:d3:3c:78:99:91:54:ab:7a:ae:2c:0a:61:1b:d1:8f:d4:ad: c5:e6:aa:87:f3:b2:36:b1:82:97:fa:cf:b3:8e:37:51:7d:31: 8a:58:b0:a9:2a:5d:bf:88:c3:16:83:6e:32:a5:a5:d8:57:41: 40:9a:4d:68:89:e9:d6:dc:a1:a1:50:d5:89:77:e9:95:04:aa: 6a:b5:57:1b:8e:0a:02:46:3e:97:e4:a6:54:4c:28:2b:51:a8: 81:9d:31:0c:6b:7d:ba:26:ef:06:3f:4a:91:a4:6c:76:43:f7: 2b:d0:c5:e0:f0:db:3a:1c:d8:2f:29:e8:1c:44:97:24:90:a1: 5f:7b:8b:29:dd:07:2f:9c:67:21:51:9b:5c:5d:63:cc:dc:a9: 98:4c:40:d3:5b:2e:40:31:c9:9f:ec:4b:cb:45:0a:a0:c1:9d: ab:9d:d4:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzRkUxMTAvBgNVBAUTKEFGRjg3NzcyMTg3NTM1ODVDMzg4RTlCODFDMzkwNjZC RDM4REI1OTIwHhcNMjYwMzI1MDYzMjQ1WhcNMjYwNDAxMDYzMjQ1WjAYMRYwFAYD VQQDEw02OWMzODE4ZC0wNTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QfTTG8VdXg+5TVr9kiJ3DzWJ8oWUaWfhS1KdlWhEIFQ7OCK5dneyS7aPzKL 8Szkvn0krwZhp+CFbAhTa5wgPjrX8CTxydAf8l3jR99XCaWCehU1MRcyihrg9ROC 4Vfh1SOsikuKb8K2TEk6CqDNyu2BJNszLOG+KuXZ+q4QErFUxo2pq5rp4sNdZ8Mt +IoKMqDZY84cV37Ppr0/DARTT8Ec81qZbZ9FHMqz0l1FhiUYVtuoG1+mMpBoZrVE Nq8muoxHwcmb7wXMUK6UG5mH5xi7C5/MsNKBQiCOrTnTMkqSD6Tz1neBQeOq39Dq qjscccRIlGSaB2SKUJssHHYv5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOsjST/C ngPByRnm+VeWoRsgKiPEMB8GA1UdIwQYMBaAFK/4d3IYdTWFw4jpuBw5BmvTjbWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNGRS8yQTU2ODc4MjM2 QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5ZWERpT200SERrR2E5T050 WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaDNjaGgxTllYRGlPbTRIRGtHYTlPTnRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjNGRS8yQTU2ODc4MjM2QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5Z WERpT200SERrR2E5T050WkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAduJ/o84k1Gs1cEN0cDmCV9VaeY3dZ5Djs5ZvMv5eglcKQcIL0IZHA7muyw9s zfnVHidBxlX+h63bVNwFKjp9saxSPS3LW2jDJWMOMjjZt7h4Zsvl+758ynIQ4tM8 eJmRVKt6riwKYRvRj9Stxeaqh/OyNrGCl/rPs443UX0xiliwqSpdv4jDFoNuMqWl 2FdBQJpNaInp1tyhoVDViXfplQSqarVXG44KAkY+l+SmVEwoK1GogZ0xDGt9uibv Bj9KkaRsdkP3K9DF4PDbOhzYLynoHESXJJChX3uLKd0HL5xnIVGbXF1jzNypmExA 01suQDHJn+xLy0UKoMGdq53UqQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:27:00 2026 by rpki-client