$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: TKgJKNFtYSNS1tVdWe+i7xeNprh06LzF0dSuH4XqEnY= Subject key identifier: 42:A3:6E:EB:C8:F9:25:C1:B4:04:BE:FB:A0:3D:B7:20:79:83:31:80 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 085B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 084F Signing time: Tue 24 Mar 2026 20:33:13 +0000 Manifest this update: Tue 24 Mar 2026 20:33:13 +0000 Manifest next update: Tue 31 Mar 2026 20:33:13 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: Qe94sAPREy+NMMPiuFtbEfI/Ro16ri/LnBNNHGHWzfQ=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: pEoVeSKvZWCj0YeLOAFbn4+nyrnm4dpfDhs+6j8mLhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Mar 24 20:33:13 2026 GMT Not After : Mar 31 20:33:13 2026 GMT Subject: CN=69c2f509-9bd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:67:2c:74:bc:e0:4b:72:c4:b6:2c:39:9d:84: c4:aa:3b:b9:04:51:6f:f3:cf:75:31:f9:1e:59:6d: 6d:cc:b5:60:95:d2:6b:1d:f8:50:af:dc:4b:ac:b1: 0a:e2:2f:fb:26:0a:ce:ee:e4:ab:8d:5f:8f:6a:94: f1:21:15:1f:ef:b8:ea:fb:7d:4a:c0:45:5e:08:9c: 14:7f:41:13:35:8b:12:11:05:ad:73:39:64:52:ff: 66:73:84:14:1e:9e:59:9a:29:1c:dc:fd:66:40:63: 61:3e:a9:25:79:07:f5:41:c5:13:d0:aa:01:05:f9: 72:a0:1e:b7:58:40:67:68:17:bc:d1:91:86:f8:a3: c8:ed:2b:0b:1b:96:0e:7d:14:b3:45:b6:65:7a:c5: a3:2c:68:60:a0:1c:f2:78:49:a1:e8:9c:73:31:c3: 87:fb:60:5e:dc:f3:38:2d:0c:67:c9:d6:89:ce:7d: 67:53:22:4a:1d:0c:bf:a9:ad:d1:f6:85:8d:bb:b7: 40:c4:b7:aa:ee:5d:ca:47:85:c5:05:63:c2:a3:e1: 0d:08:14:77:51:95:44:3c:4c:c7:ec:84:10:62:36: d3:26:b1:50:7d:c9:cd:5e:3b:12:7e:27:29:1f:62: 66:95:f1:22:24:1d:62:df:46:a1:5f:46:d0:4c:72: 7f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A3:6E:EB:C8:F9:25:C1:B4:04:BE:FB:A0:3D:B7:20:79:83:31:80 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:50:20:1b:14:d8:91:0a:97:49:6d:33:8e:dc:3b:42:04:53: 11:ae:28:1d:40:22:6f:f6:2c:e6:35:9c:55:08:2b:4e:95:20: df:b8:ea:3e:3c:b7:f4:27:b5:3b:14:91:f1:c7:4f:a4:ef:77: e2:2d:5e:e7:83:e2:3c:90:cc:20:11:f3:7b:c7:70:9c:1e:d2: e1:bc:0c:06:ab:cb:2b:a5:e4:42:ce:35:10:68:18:93:1a:05: 13:cd:0b:d8:c3:60:3a:1f:26:d0:db:9a:21:7f:74:c1:1e:1f: e5:f2:4a:91:52:6e:c4:bf:cc:1d:cd:99:6a:73:f1:57:e8:86: 9e:b0:ca:85:c3:6f:0d:3a:6e:e4:76:62:1d:5f:6e:7f:9b:35: 12:06:fb:2d:4a:67:66:36:e7:be:fe:db:35:09:8f:1f:3b:88: bf:a8:5c:8a:6f:26:34:09:bd:d2:2e:b5:85:9e:da:60:ce:d5: 41:f6:cb:e7:c3:c1:5d:bd:8c:7a:dc:64:4d:eb:b2:71:75:f4: d6:f9:1f:7d:f7:a9:f8:7d:dc:a6:ef:a4:ad:a1:0f:9a:c6:ae: b0:fe:2b:35:03:f8:33:67:e2:b8:0f:38:8c:7b:5c:26:a2:03: 2e:55:68:39:3c:10:5a:a7:96:4f:93:bf:31:5a:e3:d4:06:df: 33:50:d0:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjYwMzI0MjAzMzEzWhcNMjYwMzMxMjAzMzEzWjAYMRYwFAYD VQQDEw02OWMyZjUwOS05YmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mcsdLzgS3LEtiw5nYTEqju5BFFv8891MfkeWW1tzLVgldJrHfhQr9xLrLEK 4i/7JgrO7uSrjV+PapTxIRUf77jq+31KwEVeCJwUf0ETNYsSEQWtczlkUv9mc4QU Hp5Zmikc3P1mQGNhPqkleQf1QcUT0KoBBflyoB63WEBnaBe80ZGG+KPI7SsLG5YO fRSzRbZlesWjLGhgoBzyeEmh6JxzMcOH+2Be3PM4LQxnydaJzn1nUyJKHQy/qa3R 9oWNu7dAxLeq7l3KR4XFBWPCo+ENCBR3UZVEPEzH7IQQYjbTJrFQfcnNXjsSficp H2JmlfEiJB1i30ahX0bQTHJ/CwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEKjbuvI +SXBtAS++6A9tyB5gzGAMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgFAgGxTYkQqXSW0zjtw7QgRTEa4oHUAib/Ys5jWcVQgrTpUg37jqPjy39Ce1 OxSR8cdPpO934i1e54PiPJDMIBHze8dwnB7S4bwMBqvLK6XkQs41EGgYkxoFE80L 2MNgOh8m0NuaIX90wR4f5fJKkVJuxL/MHc2ZanPxV+iGnrDKhcNvDTpu5HZiHV9u f5s1Egb7LUpnZjbnvv7bNQmPHzuIv6hcim8mNAm90i61hZ7aYM7VQfbL58PBXb2M etxkTeuycXX01vkfffep+H3cpu+kraEPmsausP4rNQP4M2fiuA84jHtcJqIDLlVo OTwQWqeWT5O/MVrj1AbfM1DQsQ== -----END CERTIFICATE-----Generated at Thu Mar 26 05:33:01 2026 by rpki-client