$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: KYKrD2G1pxasNN5P9P2QSjMY+yYes1sy54spKj+YD4g= Subject key identifier: 7A:8D:8C:02:D1:9F:22:74:CB:74:A0:80:A2:78:92:0D:BB:0B:FE:25 Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 08F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 08E5 Signing time: Tue 24 Mar 2026 20:07:52 +0000 Manifest this update: Tue 24 Mar 2026 20:07:52 +0000 Manifest next update: Tue 31 Mar 2026 20:07:52 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: 2yDcYaVNFHwbNGEDEMiO7pDwLwh/9dL6zbjmokPw+BQ=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: 4jcjYW/0FMetLdx19LfkYx1V1hLHWxOLQGODOyvAQC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2290 (0x8f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: Mar 24 20:07:52 2026 GMT Not After : Mar 31 20:07:52 2026 GMT Subject: CN=69c2ef18-55f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f7:7e:0e:4a:b2:99:62:55:90:1c:00:f0:53: e5:34:1a:12:28:a9:c1:87:3d:dc:c9:49:07:8b:80: 0f:bb:da:1e:33:1d:60:99:5b:2a:95:07:7a:06:fd: 50:29:e8:57:2f:3e:71:17:7d:4b:6b:d2:b4:c8:1a: 32:c2:41:38:a7:8a:db:48:e6:8b:c8:ea:d5:23:dd: 8a:ff:93:a0:dc:da:de:ca:b4:46:e2:4e:96:30:8d: 6e:22:37:0a:c8:22:b6:77:84:dd:48:14:04:23:91: ba:07:59:d8:d9:3f:d9:4f:75:df:96:ff:f4:d0:1d: ad:30:78:34:81:b1:aa:29:d2:98:81:a4:bd:ba:68: b3:00:e7:3f:cb:ef:9d:91:8c:ac:46:12:e1:c6:93: 50:23:75:46:7d:b4:5a:4e:31:17:51:92:f2:48:ee: 9d:af:19:d4:4a:61:7d:d3:e3:70:c2:e9:a2:02:16: 0f:ca:c7:11:32:e6:b4:f0:73:89:8b:51:5d:06:ea: 0e:3c:3f:64:72:61:b7:6b:f0:7b:ae:26:c9:f2:54: 7a:93:c9:4d:11:af:76:bb:b7:f1:8f:24:b4:47:45: 3e:c6:a0:f1:ec:f9:4f:33:dd:e9:86:c8:56:09:94: 0c:ca:82:4d:d2:d0:8f:9e:ba:88:8e:16:61:4b:fd: 2b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8D:8C:02:D1:9F:22:74:CB:74:A0:80:A2:78:92:0D:BB:0B:FE:25 X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:62:a2:ad:d8:01:58:67:cc:50:81:3d:ae:16:ed:ad:a5:db: a1:48:16:8a:05:9a:8d:06:66:ca:28:92:60:24:41:11:e4:31: 9d:bf:5c:54:f6:83:a7:b0:d2:0c:99:b5:2d:2d:58:82:97:d2: 6b:93:00:99:12:18:8a:17:f8:89:ed:50:a4:86:f6:a7:ea:f4: d7:99:9a:62:f9:07:78:7a:50:7c:ad:17:64:33:cd:c8:5c:b7: 4c:e5:94:d3:8f:12:ba:f3:05:77:45:bb:e3:2e:bb:03:62:45: 78:c3:a1:14:6a:11:60:5f:16:5c:d8:a8:5d:86:c7:3a:6f:94: 73:44:7f:38:fc:4e:47:6c:4e:58:4d:93:c9:4c:f6:a6:b9:ca: a9:fc:80:ff:d8:55:7a:3e:c9:7c:c4:e2:99:48:cd:8d:3e:6c: 68:90:32:8d:d9:d1:ff:4b:7e:6a:a7:a6:f0:c7:92:6d:c4:e4: 80:e2:a3:9d:47:75:58:98:ea:74:54:45:e8:10:31:44:29:26: 25:17:07:ef:39:7e:e2:3a:63:54:f5:35:91:79:ef:2a:a1:da: a7:5a:6d:4e:a8:41:34:7d:a3:da:6a:bf:8d:23:88:7a:e0:8c: ca:d4:5a:c9:05:8a:d8:bd:37:a9:5f:89:cb:2d:af:0d:6d:ec: bd:aa:20:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjYwMzI0MjAwNzUyWhcNMjYwMzMxMjAwNzUyWjAYMRYwFAYD VQQDEw02OWMyZWYxOC01NWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/d+DkqymWJVkBwA8FPlNBoSKKnBhz3cyUkHi4APu9oeMx1gmVsqlQd6Bv1Q KehXLz5xF31La9K0yBoywkE4p4rbSOaLyOrVI92K/5Og3NreyrRG4k6WMI1uIjcK yCK2d4TdSBQEI5G6B1nY2T/ZT3Xflv/00B2tMHg0gbGqKdKYgaS9umizAOc/y++d kYysRhLhxpNQI3VGfbRaTjEXUZLySO6drxnUSmF90+NwwumiAhYPyscRMua08HOJ i1FdBuoOPD9kcmG3a/B7ribJ8lR6k8lNEa92u7fxjyS0R0U+xqDx7PlPM93phshW CZQMyoJN0tCPnrqIjhZhS/0rLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHqNjALR nyJ0y3SggKJ4kg27C/4lMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA12KirdgBWGfMUIE9rhbtraXboUgWigWajQZmyiiSYCRBEeQxnb9cVPaDp7DS DJm1LS1YgpfSa5MAmRIYihf4ie1QpIb2p+r015maYvkHeHpQfK0XZDPNyFy3TOWU 048SuvMFd0W74y67A2JFeMOhFGoRYF8WXNioXYbHOm+Uc0R/OPxOR2xOWE2TyUz2 prnKqfyA/9hVej7JfMTimUjNjT5saJAyjdnR/0t+aqem8MeSbcTkgOKjnUd1WJjq dFRF6BAxRCkmJRcH7zl+4jpjVPU1kXnvKqHap1ptTqhBNH2j2mq/jSOIeuCMytRa yQWK2L03qV+Jyy2vDW3svaogYw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:37:28 2026 by rpki-client