$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: zo7v/mkFXFqQYGK8/3/bCO3Yg6x6SLt+aW9yCbnkFoU= Subject key identifier: 1C:4D:D5:D7:C6:12:E8:28:AE:C9:53:64:AD:52:DC:33:57:E8:ED:75 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0D81 Signing time: Tue 24 Mar 2026 17:49:55 +0000 Manifest this update: Tue 24 Mar 2026 17:49:54 +0000 Manifest next update: Tue 31 Mar 2026 17:49:54 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: 7EmOcMp6djmnUWELc6+wEHe/DpTv8qjpJCVVI5/9rM8=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: 4+Ac/qmp1PMvnSJouQnIg3+M0ch95gCYSQtb1scOlcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3472 (0xd90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Mar 24 17:49:54 2026 GMT Not After : Mar 31 17:49:54 2026 GMT Subject: CN=69c2cec3-bd8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c5:b3:5f:c9:5c:d2:04:17:50:e9:62:e2:cc: 4e:39:19:d2:95:90:00:b4:91:8c:81:89:fe:ab:13: a5:37:65:02:6d:52:a2:ef:05:c8:46:f8:1f:8d:ba: 1b:31:fb:52:39:0a:e5:d3:e1:0c:fe:9a:85:a3:22: b6:9d:b2:9a:65:36:dc:4b:6b:07:30:93:74:86:4a: e9:8c:cc:48:e2:5d:63:47:cf:1b:eb:ed:37:e1:8b: 4f:44:67:b1:a5:32:7d:c2:0c:9f:b9:36:e4:dc:62: 87:fe:92:4c:a1:09:fe:b6:98:bd:c8:c1:56:75:1f: 26:b9:1a:75:69:8e:0a:58:ed:86:75:ce:4d:9c:c3: c2:47:80:86:ad:50:ee:45:b7:b1:16:0c:ac:34:e7: 43:bf:72:5c:cd:8e:63:30:4d:75:31:e1:b0:9c:fe: af:fc:c4:ab:0f:79:2a:74:b8:ad:e6:0b:f5:02:ac: ec:da:d1:48:10:95:78:d4:4f:e9:59:ac:1d:bb:b9: 16:2d:b2:bc:e7:7b:80:7d:2f:37:c3:4b:1f:74:c3: aa:9e:50:ef:23:3f:16:4f:44:78:63:c5:b5:22:b1: e4:9b:56:4d:2f:4f:74:28:c2:8f:68:86:f8:8d:34: c2:f8:ee:c8:63:03:04:5c:bc:95:fc:55:3b:7a:d3: fd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4D:D5:D7:C6:12:E8:28:AE:C9:53:64:AD:52:DC:33:57:E8:ED:75 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:9e:80:ac:80:59:7b:65:4e:c3:14:80:53:1b:9c:a0:9d:89: be:b6:3f:56:3f:de:a5:75:dd:98:b8:22:cd:ce:fc:41:57:ca: 82:11:b9:43:47:39:4b:2b:5b:d3:ba:a4:e2:92:02:ab:83:56: 10:c7:e0:38:20:a3:06:e1:78:c6:3e:80:42:68:d9:29:df:6d: 0e:54:10:98:ae:08:6d:b7:35:79:bb:58:ea:3f:3a:99:92:47: a1:d4:84:c4:4c:0c:4c:ff:e3:61:c1:80:ff:87:0c:f4:ab:2e: eb:2b:ab:87:44:f4:2a:fd:d1:a2:60:b9:da:4c:e4:ce:0c:00: ef:f3:42:44:5c:d5:ac:0e:4a:b4:4f:a5:af:5c:6d:a3:bd:51: ba:86:0e:db:b3:00:b9:16:83:9b:71:3c:81:0e:69:02:ed:d8: 5a:5a:83:37:73:6b:7d:eb:45:ec:83:3d:09:79:a7:32:b3:33: f3:15:2c:70:5a:87:60:5e:14:d6:d5:a8:36:bf:d7:28:ca:05: 05:33:c5:38:53:33:3b:c8:f9:f3:ec:f1:e0:fb:89:9a:30:60: a8:8e:83:64:34:b9:e7:be:e1:54:ab:68:c5:a4:0c:9c:0f:eb: 04:41:5b:ac:b2:62:3b:e8:11:27:13:63:8c:62:da:d3:a2:9f: 67:6e:e8:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjYwMzI0MTc0OTU0WhcNMjYwMzMxMTc0OTU0WjAYMRYwFAYD VQQDEw02OWMyY2VjMy1iZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcWzX8lc0gQXUOli4sxOORnSlZAAtJGMgYn+qxOlN2UCbVKi7wXIRvgfjbob MftSOQrl0+EM/pqFoyK2nbKaZTbcS2sHMJN0hkrpjMxI4l1jR88b6+034YtPRGex pTJ9wgyfuTbk3GKH/pJMoQn+tpi9yMFWdR8muRp1aY4KWO2Gdc5NnMPCR4CGrVDu RbexFgysNOdDv3JczY5jME11MeGwnP6v/MSrD3kqdLit5gv1Aqzs2tFIEJV41E/p Wawdu7kWLbK853uAfS83w0sfdMOqnlDvIz8WT0R4Y8W1IrHkm1ZNL090KMKPaIb4 jTTC+O7IYwMEXLyV/FU7etP9KQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBxN1dfG EugorslTZK1S3DNX6O11MB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPZ6ArIBZe2VOwxSAUxucoJ2JvrY/Vj/epXXdmLgizc78QVfKghG5Q0c5Sytb 07qk4pICq4NWEMfgOCCjBuF4xj6AQmjZKd9tDlQQmK4Ibbc1ebtY6j86mZJHodSE xEwMTP/jYcGA/4cM9Ksu6yurh0T0Kv3RomC52kzkzgwA7/NCRFzVrA5KtE+lr1xt o71RuoYO27MAuRaDm3E8gQ5pAu3YWlqDN3NrfetF7IM9CXmnMrMz8xUscFqHYF4U 1tWoNr/XKMoFBTPFOFMzO8j58+zx4PuJmjBgqI6DZDS5577hVKtoxaQMnA/rBEFb rLJiO+gRJxNjjGLa06KfZ27oqQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:37:19 2026 by rpki-client