$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft File: s2uXFySjur2JC3VFmJM3IPly_q8.mft (raw, json) Hash identifier: MRVr8bpmLU2ZC/KO1Yc9tVvwvI/0Vd5Tjsq2esFeWrk= Subject key identifier: 90:1C:A8:D8:96:83:43:27:E9:4A:E3:72:4F:2B:7B:0F:3A:22:67:DB Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Certificate serial: 0C10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft Manifest number: 0BA3 Signing time: Tue 24 Mar 2026 19:01:56 +0000 Manifest this update: Tue 24 Mar 2026 19:01:56 +0000 Manifest next update: Tue 31 Mar 2026 19:01:56 +0000 Files and hashes: 1: s2uXFySjur2JC3VFmJM3IPly_q8.crl (hash: Lwda+2A95ybjabeIwd/nXq9OhQUpIK9BtFF8BYSi7/Y=) 2: 466891560ADA11ECBFAECB29C4F9AE02.roa (hash: uv7rdnmyI+gc1dDgRNGKvt12no6t8v6+Sh+LAKmYBS0=) 3: B66F0C58817111EFB121970CC4F9AE02.roa (hash: vY3JgYrHf50LIMon2cQ4xi3ayVXFANYUAF1HUUmukAc=) 4: A7470BFC33A711EBA4313B36C4F9AE02.roa (hash: ZCVyWhNkXCNm36AW8HvL8obBGE1kXtO5k/l1MbGslew=) 5: D992FDD49B4811EFA17EB17FC4F9AE02.roa (hash: FIe/ZxZ/czs73Iv9mGeR+sUl8NFbSaTBZOQUejuclqo=) 6: F1EB46D2717F11EEB3FA0A5EC4F9AE02.roa (hash: a5ETmaqpNy6qeOL+PmbuFg5Hvj7coJZt0e2vYVREM4A=) 7: C1ACB1E819EF11EC84DBF462C4F9AE02.roa (hash: /IKxncGwcVAUWd16lVeAqQuGXRqTtvt9Ll/KgYku0+M=) 8: 966FD4648D2411EF9914EF63C4F9AE02.roa (hash: w7eYnxJy/ErX8uBHC7lb97b71ahe13DgTz190X2OvQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE558, serialNumber=B36B971724A3BABD890B754598933720F972FEAF Validity Not Before: Mar 24 19:01:56 2026 GMT Not After : Mar 31 19:01:56 2026 GMT Subject: CN=69c2dfa4-f7f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:74:f4:cc:da:55:7a:b1:ff:95:80:11:f9:36: e6:50:6b:47:2b:16:57:8b:fe:d7:65:4a:12:e2:68: e5:ad:05:de:66:a9:3e:e6:29:46:ab:83:ec:e5:04: 0a:b9:bb:34:dc:f8:3c:1b:fd:07:b9:18:73:3e:c6: 63:db:cb:9b:2b:56:f1:9e:e2:ad:a4:5e:40:14:4e: e0:a7:df:c0:6d:22:02:3b:9e:4e:fc:01:aa:2c:5e: 3e:79:bc:2b:95:8a:b8:da:55:f5:3f:6d:ad:0b:de: b6:fa:a9:b0:e1:89:08:28:e6:66:b4:3d:4d:27:c2: e5:3a:13:0d:e3:c8:d4:44:f1:ab:fb:de:f2:61:0a: a6:1e:f6:a5:bc:41:88:44:a5:68:40:9e:44:89:3f: 62:35:0e:83:44:6d:8d:75:fa:bb:ef:f4:31:b7:15: 34:69:d3:40:2b:d4:09:5d:96:a4:35:ac:46:79:c3: 37:da:86:ae:e4:c6:20:0c:c5:10:4a:3e:a2:88:3d: 6e:ca:65:ee:db:c8:3f:e0:85:63:11:d5:ee:ff:b8: 55:1e:52:e1:32:01:ad:f4:c4:f0:5a:d4:5b:ff:07: 05:3f:99:9b:44:02:ea:b1:83:e7:fd:26:af:7a:75: e4:c6:9e:2b:95:e4:73:29:d1:0a:2e:7d:ad:68:24: 89:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:1C:A8:D8:96:83:43:27:E9:4A:E3:72:4F:2B:7B:0F:3A:22:67:DB X509v3 Authority Key Identifier: keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b5:24:47:df:a0:16:d3:01:fb:99:9e:0c:a3:24:d1:1b:6e: 72:5f:c5:6c:a8:98:18:fc:ba:9d:56:db:72:f6:b5:e0:7f:85: 38:00:10:0b:f0:e3:55:e5:d7:57:33:a4:b7:26:a3:80:ad:86: 18:0f:54:29:87:94:b1:f9:58:e5:66:43:22:77:b0:1a:06:f4: 24:34:95:17:d4:96:50:62:c8:60:63:26:76:50:f3:03:83:20: c2:8d:cb:a1:c4:10:74:0d:13:19:b6:2c:14:cc:c0:bc:b6:45: 62:92:ae:04:e1:b7:d5:1f:3c:79:1c:04:8c:01:a1:d8:5a:f7: 6c:23:77:c7:22:d2:c8:44:f8:77:bf:c6:d0:ef:4e:f6:53:cb: f4:8d:96:9e:c7:7a:80:d3:f5:57:40:6d:67:89:9c:61:10:cc: 99:58:52:1a:6c:69:52:dc:50:08:54:3c:cf:e8:8a:a0:6d:62: 74:fc:73:72:5a:4a:d7:97:05:9f:6b:f3:50:c7:b7:44:1e:ef: 75:98:91:b7:ea:b6:16:c6:02:55:c0:29:2d:dc:eb:85:7f:21: 9b:89:d5:6e:14:ab:c1:cd:f2:b8:26:6b:36:17:98:15:d4:22: e9:d5:12:f5:10:b2:4c:aa:47:c9:0e:71:75:63:c4:a6:76:14: d3:ed:d5:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1NTgxMTAvBgNVBAUTKEIzNkI5NzE3MjRBM0JBQkQ4OTBCNzU0NTk4OTMzNzIw Rjk3MkZFQUYwHhcNMjYwMzI0MTkwMTU2WhcNMjYwMzMxMTkwMTU2WjAYMRYwFAYD VQQDEw02OWMyZGZhNC1mN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3T0zNpVerH/lYAR+TbmUGtHKxZXi/7XZUoS4mjlrQXeZqk+5ilGq4Ps5QQK ubs03Pg8G/0HuRhzPsZj28ubK1bxnuKtpF5AFE7gp9/AbSICO55O/AGqLF4+ebwr lYq42lX1P22tC962+qmw4YkIKOZmtD1NJ8LlOhMN48jURPGr+97yYQqmHvalvEGI RKVoQJ5EiT9iNQ6DRG2Ndfq77/QxtxU0adNAK9QJXZakNaxGecM32oau5MYgDMUQ Sj6iiD1uymXu28g/4IVjEdXu/7hVHlLhMgGt9MTwWtRb/wcFP5mbRALqsYPn/Sav enXkxp4rleRzKdEKLn2taCSJvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJAcqNiW g0Mn6Urjck8rew86ImfbMB8GA1UdIwQYMBaAFLNrlxcko7q9iQt1RZiTNyD5cv6v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTU1OC8zREYxNEYwODUz OTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVyMkpDM1ZGbUpNM0lQbHlf cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MydVhGeVNqdXIySkMzVkZtSk0zSVBseV9xOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTU1OC8zREYxNEYwODUzOTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVy MkpDM1ZGbUpNM0lQbHlfcTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH7UkR9+gFtMB+5meDKMk0Rtucl/FbKiYGPy6nVbbcva14H+FOAAQC/DjVeXX VzOktyajgK2GGA9UKYeUsflY5WZDInewGgb0JDSVF9SWUGLIYGMmdlDzA4Mgwo3L ocQQdA0TGbYsFMzAvLZFYpKuBOG31R88eRwEjAGh2Fr3bCN3xyLSyET4d7/G0O9O 9lPL9I2Wnsd6gNP1V0BtZ4mcYRDMmVhSGmxpUtxQCFQ8z+iKoG1idPxzclpK15cF n2vzUMe3RB7vdZiRt+q2FsYCVcApLdzrhX8hm4nVbhSrwc3yuCZrNheYFdQi6dUS 9RCyTKpHyQ5xdWPEpnYU0+3VAw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:01:50 2026 by rpki-client