$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: 80vih5TKK9HPbUqry3gaZnLGzhnplPC8OGO+cT0Kx/M= Subject key identifier: 7E:40:74:96:9F:50:F6:4A:3C:BC:80:06:B5:31:5A:F3:32:39:A0:91 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 0187 Signing time: Wed 25 Mar 2026 03:53:27 +0000 Manifest this update: Wed 25 Mar 2026 03:53:27 +0000 Manifest next update: Wed 01 Apr 2026 03:53:27 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: jFGCznqkMutYwAmt47dbdkgN+G9nXg/7daoTexGu0Rs=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: 1AVC031hsrlcjlMHgOtfIB20iuFsoNxmwrDznlqN4TA=) 3: E608220401A611F1B4D1E4C1696F56BC.roa (hash: wawCQ6JRiOixGpvfc0LMo+4eb9Efwa6i/GrCB4BU3/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Mar 25 03:53:27 2026 GMT Not After : Apr 1 03:53:27 2026 GMT Subject: CN=69c35c37-8924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2d:67:6c:10:ad:f7:ec:cc:54:c7:d3:ac:7d: f5:35:21:c8:a3:59:06:4f:61:b7:0e:2e:2a:d8:b6: 70:1e:e9:ac:c3:bd:e0:1a:2d:63:ac:92:db:c3:7e: 3c:ba:1b:a8:ee:0c:46:18:dc:fc:31:ce:6c:a8:bb: 7b:ed:eb:ad:d2:aa:79:99:4f:07:ce:44:ac:91:8b: cc:51:73:cb:d7:68:48:eb:5b:5f:8c:5e:4b:50:72: a5:ad:4a:25:84:a3:1c:82:dd:b6:5c:55:19:c0:b2: 1a:4e:e1:df:81:00:ce:1a:44:8c:f6:5a:39:d2:37: 49:ef:e5:f8:d0:39:80:cc:28:ee:6c:0b:fd:1e:2b: 45:89:4e:fe:eb:50:82:4f:9a:c8:da:a8:df:c9:b9: 42:fc:c8:21:a6:1b:de:cd:20:02:4b:69:18:a4:a5: 1a:82:2b:52:ba:8d:20:21:16:db:e1:69:a6:2e:f4: b2:c6:09:f3:c4:05:a3:9d:44:55:b2:6c:94:d7:29: d0:70:95:94:df:90:92:ec:c4:ca:a6:3c:ce:08:ed: 88:dd:a1:f4:93:55:74:e6:61:c3:66:ea:ca:a5:b4: 22:e2:62:b0:12:13:67:9d:15:27:3d:91:eb:3a:d7: 6a:f2:68:5a:96:a3:7d:41:43:df:a6:22:06:b6:72: bd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:40:74:96:9F:50:F6:4A:3C:BC:80:06:B5:31:5A:F3:32:39:A0:91 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ee:39:1e:61:d4:07:b1:7d:29:46:7a:d6:bc:7a:7c:0c:c3: fc:2d:d7:bb:4e:c5:21:40:1c:ac:18:36:51:3a:c0:98:56:7c: d3:b1:de:27:16:ae:16:15:62:7b:6f:27:e4:55:47:f6:25:0c: f0:63:71:6c:0e:1e:0a:50:36:f8:cc:b7:b1:73:5f:7b:10:7c: de:d7:32:a5:79:1a:bb:bf:f0:23:79:d9:e7:bb:ba:59:dd:86: a1:e5:78:a1:f2:8b:8f:66:ff:a3:de:e7:9e:9c:11:7c:f0:d8: fa:1b:9e:a3:c3:1a:7b:11:63:39:8c:18:42:10:d0:f4:d2:0d: 4a:7b:15:85:75:de:61:dc:1d:f6:91:0c:84:20:c0:af:85:0a: ed:b1:b6:0e:d6:57:0c:16:2d:a8:a2:49:8a:b0:9c:75:5b:9e: 04:2e:ab:13:ee:ed:58:46:88:16:01:3f:51:6d:8d:10:1c:00: 08:33:3b:e6:fd:a7:48:e3:cc:0c:3c:53:52:ec:df:9c:ec:1e: ed:38:20:81:28:11:87:1e:3a:26:4f:61:0e:a6:bf:25:c1:d5: 83:77:ad:08:85:99:56:a3:07:24:bb:bf:61:a1:7c:19:03:e0: 91:65:95:75:09:f6:4e:e4:ca:dc:e6:96:73:5f:18:e6:a7:ae: d1:35:0a:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjYwMzI1MDM1MzI3WhcNMjYwNDAxMDM1MzI3WjAYMRYwFAYD VQQDEw02OWMzNWMzNy04OTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3C1nbBCt9+zMVMfTrH31NSHIo1kGT2G3Di4q2LZwHumsw73gGi1jrJLbw348 uhuo7gxGGNz8Mc5sqLt77eut0qp5mU8HzkSskYvMUXPL12hI61tfjF5LUHKlrUol hKMcgt22XFUZwLIaTuHfgQDOGkSM9lo50jdJ7+X40DmAzCjubAv9HitFiU7+61CC T5rI2qjfyblC/MghphvezSACS2kYpKUagitSuo0gIRbb4WmmLvSyxgnzxAWjnURV smyU1ynQcJWU35CS7MTKpjzOCO2I3aH0k1V05mHDZurKpbQi4mKwEhNnnRUnPZHr Otdq8mhalqN9QUPfpiIGtnK9LQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH5AdJaf UPZKPLyABrUxWvMyOaCRMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXO45HmHUB7F9KUZ61rx6fAzD/C3Xu07FIUAcrBg2UTrAmFZ807HeJxauFhVi e28n5FVH9iUM8GNxbA4eClA2+My3sXNfexB83tcypXkau7/wI3nZ57u6Wd2GoeV4 ofKLj2b/o97nnpwRfPDY+hueo8MaexFjOYwYQhDQ9NINSnsVhXXeYdwd9pEMhCDA r4UK7bG2DtZXDBYtqKJJirCcdVueBC6rE+7tWEaIFgE/UW2NEBwACDM75v2nSOPM DDxTUuzfnOwe7TgggSgRhx46Jk9hDqa/JcHVg3etCIWZVqMHJLu/YaF8GQPgkWWV dQn2TuTK3OaWc18Y5qeu0TUK+g== -----END CERTIFICATE-----Generated at Thu Mar 26 11:17:45 2026 by rpki-client