$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: elgqKeEyq4I2nR2ZkIAZamEF2arFg+vyEGy78Ir2wa0= Subject key identifier: 60:D6:9D:BA:EE:10:BA:38:74:87:AD:7E:9A:BD:66:2A:6A:FA:0F:29 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0CB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C95 Signing time: Tue 24 Mar 2026 18:25:41 +0000 Manifest this update: Tue 24 Mar 2026 18:25:40 +0000 Manifest next update: Tue 31 Mar 2026 18:25:40 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: hE10vv5kjeGuf2JREaZQfSHCc/ruYtu/VDVXBQnXxuE=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: rh5kanvG5QXPAMOrNiNLJLVHnbyU12f7aHXUzCF2hMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Mar 24 18:25:40 2026 GMT Not After : Mar 31 18:25:40 2026 GMT Subject: CN=69c2d725-7b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:a3:ef:8e:fb:d1:5f:93:ec:28:c8:55:a5: 0a:48:b9:de:e7:e3:97:7b:1e:29:5e:c1:57:52:08: 04:b5:15:f9:65:4a:4c:39:93:e0:33:d7:55:f6:9c: 59:48:a0:1c:33:8c:a7:09:f0:82:86:be:4d:fc:41: ea:1b:b9:fe:41:45:a6:74:b6:b5:eb:9b:a2:d5:44: 39:58:1e:99:b4:3e:82:1a:b8:e9:ae:ac:82:40:7e: d6:11:30:77:73:fa:81:df:b3:b4:13:48:cb:20:9e: 82:a3:24:00:da:71:c9:51:08:ee:28:dc:d4:df:6e: fb:1f:ed:05:14:3b:20:df:0b:74:19:b6:bc:f0:39: 4c:ce:fa:2d:d9:72:b2:19:9b:f0:8c:79:70:08:b5: 1a:74:3b:fc:d2:55:4d:77:66:03:46:86:73:8f:80: 8c:b2:21:e2:c7:65:05:35:3a:89:8b:d0:3a:70:da: 04:e7:cb:88:1f:21:54:23:17:0b:8e:bf:65:fc:26: 42:3b:30:90:66:16:c2:52:c6:05:24:10:8e:2c:7b: 64:15:58:46:6c:84:83:0f:d5:72:f5:d0:e4:17:0a: cc:fb:6a:8c:ed:e4:1a:ba:83:2f:eb:cc:a6:6b:40: 53:7d:86:8e:fb:83:af:3e:6f:2d:dd:fc:c5:d7:3e: 84:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D6:9D:BA:EE:10:BA:38:74:87:AD:7E:9A:BD:66:2A:6A:FA:0F:29 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:c6:e1:f6:0e:28:26:3d:11:fb:e2:84:30:47:d6:95:83:f6: 23:56:d1:20:40:50:ef:ea:6f:a6:a9:6e:63:4e:39:39:cd:55: 4d:9a:6b:2a:c9:c8:20:b0:23:4c:65:30:fa:10:0d:0e:3c:22: ef:2c:64:4a:8b:1e:14:30:47:46:eb:6c:b9:3f:bd:07:99:d8: d1:67:d7:d0:c9:8c:db:b8:bc:04:67:52:99:d4:4b:f7:bd:04: 45:6e:98:82:d3:bb:1c:49:76:23:c1:54:41:53:19:e5:81:9e: f2:c8:8c:55:f1:9c:2c:0e:be:fb:39:27:da:67:92:12:aa:3a: 87:69:fb:82:61:88:f3:6c:56:ff:cf:54:b4:4f:3e:1c:00:8d: 5b:f3:77:ee:5a:ee:ee:5c:51:88:3e:e9:56:03:f2:f8:bf:f5: 3e:d2:ff:67:02:98:6d:0b:04:b9:82:34:d9:91:85:01:de:55: 14:c8:b3:2e:1a:28:37:2a:c8:56:e4:f0:28:17:12:c6:18:6b: 51:ba:1a:9a:75:60:5c:08:52:fa:20:34:d8:14:36:09:38:4e: 60:42:72:0b:7e:0e:85:2a:a1:9d:e7:0f:99:f7:ad:82:3a:21: 43:e9:da:a1:ba:fe:03:9d:a1:f4:33:52:dd:f0:94:89:3e:48: 80:64:a6:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjYwMzI0MTgyNTQwWhcNMjYwMzMxMTgyNTQwWjAYMRYwFAYD VQQDEw02OWMyZDcyNS03Yjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU+j74770V+T7CjIVaUKSLne5+OXex4pXsFXUggEtRX5ZUpMOZPgM9dV9pxZ SKAcM4ynCfCChr5N/EHqG7n+QUWmdLa165ui1UQ5WB6ZtD6CGrjprqyCQH7WETB3 c/qB37O0E0jLIJ6CoyQA2nHJUQjuKNzU3277H+0FFDsg3wt0Gba88DlMzvot2XKy GZvwjHlwCLUadDv80lVNd2YDRoZzj4CMsiHix2UFNTqJi9A6cNoE58uIHyFUIxcL jr9l/CZCOzCQZhbCUsYFJBCOLHtkFVhGbISDD9Vy9dDkFwrM+2qM7eQauoMv68ym a0BTfYaO+4OvPm8t3fzF1z6E/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGDWnbru ELo4dIetfpq9Zipq+g8pMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQcbh9g4oJj0R++KEMEfWlYP2I1bRIEBQ7+pvpqluY045Oc1VTZprKsnIILAj TGUw+hANDjwi7yxkSoseFDBHRutsuT+9B5nY0WfX0MmM27i8BGdSmdRL970ERW6Y gtO7HEl2I8FUQVMZ5YGe8siMVfGcLA6++zkn2meSEqo6h2n7gmGI82xW/89UtE8+ HACNW/N37lru7lxRiD7pVgPy+L/1PtL/ZwKYbQsEuYI02ZGFAd5VFMizLhooNyrI VuTwKBcSxhhrUboamnVgXAhS+iA02BQ2CThOYEJyC34OhSqhnecPmfetgjohQ+na obr+A52h9DNS3fCUiT5IgGSmhg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:26:57 2026 by rpki-client