$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: dzulU2UyEL6SqOK5pwOIwx8hrG40Fu+JHzptnrfn+BI= Subject key identifier: C3:07:53:FE:7F:84:65:5E:B9:42:83:DC:F0:93:FD:F2:A1:FC:31:FC Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 03CD Signing time: Wed 25 Mar 2026 00:17:17 +0000 Manifest this update: Wed 25 Mar 2026 00:17:17 +0000 Manifest next update: Wed 01 Apr 2026 00:17:17 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: 3dAT/ycdmr11dtMIVmxyIvQ0xZuOz8lmu56EdAq/DHU=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: wKVvfJXDJ+GEw46MkJTvDGmaoIKWVTsB347F+vgLfNU=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: JU2R1iWegqyOEY3wh1qfZrk7NhgHNN+31mJpziiTlZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Mar 25 00:17:17 2026 GMT Not After : Apr 1 00:17:17 2026 GMT Subject: CN=69c3298d-057e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:67:4f:43:ea:b2:c7:b2:91:34:42:2a:ef: 46:2e:19:af:1f:40:2c:c9:8b:68:05:2e:61:2b:6d: c2:ba:05:09:66:75:3f:a6:90:e3:46:51:c9:f3:53: a1:b2:4d:71:03:7d:a1:49:dc:b6:7d:ec:19:9d:8e: 4a:1e:ba:35:e9:95:f7:f0:f3:0c:4c:07:51:bd:be: 75:57:03:d0:73:1b:a2:dd:4b:4d:d4:e7:9a:40:ed: 75:12:55:77:87:bb:e1:c7:38:5e:2b:80:3f:c2:b1: ae:be:d8:1c:4e:e0:13:7b:72:6e:f7:c6:c6:ed:20: f9:f5:ad:d4:47:28:8c:95:a1:c3:a1:44:58:c2:ae: 72:3e:e2:f8:1a:ca:ec:77:b5:b1:59:39:e9:61:a0: 49:f9:dd:a7:57:4d:e1:d9:1a:fc:8b:cc:4b:3a:51: 8b:88:f6:e9:38:f1:bf:bd:95:f2:ad:f6:74:52:a9: 7d:6b:7b:16:d2:ae:45:5d:15:35:21:93:19:7b:85: 0d:dc:af:1f:20:e8:cc:a9:4a:84:ce:0a:00:78:9a: ca:25:c1:5a:ea:de:08:f9:9a:c4:eb:0d:7c:06:96: 7a:4e:38:d6:2a:aa:d5:6b:5c:3c:a3:e1:08:62:a6: 81:28:11:b6:d8:3e:b8:00:1e:d8:16:a5:ee:49:89: 27:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:07:53:FE:7F:84:65:5E:B9:42:83:DC:F0:93:FD:F2:A1:FC:31:FC X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a2:2a:bb:4d:04:73:58:fb:f8:19:35:88:02:11:50:e4:10: 1d:67:f5:90:61:c2:39:0c:89:41:ff:2a:24:1e:2c:ab:b4:d0: 36:9d:48:01:43:a5:4d:42:a7:0e:e9:10:e4:74:d3:c1:07:23: cf:96:3a:d2:f5:17:a3:4c:68:fb:1f:bc:23:d4:be:09:3d:49: 70:85:44:93:c0:db:bc:5b:3d:7e:4c:98:84:ed:74:c5:e8:0a: f7:ba:1b:4c:95:16:a2:94:c3:92:f2:09:cf:6a:a5:91:9f:0b: 2a:1a:61:98:f0:84:9a:d6:54:5c:bc:b2:5d:95:0d:f5:df:27: 4d:e8:06:a1:39:f0:e1:55:7c:26:1a:28:e6:e0:6c:d8:80:a5: f9:e4:2c:22:9f:da:84:78:37:48:12:7f:04:a2:32:fb:98:ef: 99:28:bb:8e:a3:f1:57:a7:5a:f7:69:db:6e:3e:89:04:49:72: 1e:60:35:a3:ba:6f:31:bb:dc:bc:78:40:a8:4c:ea:91:f1:4c: ed:2a:12:4c:84:73:5c:81:2c:b7:7d:dd:1d:84:82:54:b7:73: a8:04:93:3c:87:44:7c:47:d2:60:32:d3:a3:38:09:32:e0:d7: 16:80:81:1a:f2:4a:2a:8d:7e:eb:f0:d8:09:38:21:a0:f6:05: 8a:d1:59:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjYwMzI1MDAxNzE3WhcNMjYwNDAxMDAxNzE3WjAYMRYwFAYD VQQDEw02OWMzMjk4ZC0wNTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKlnT0PqsseykTRCKu9GLhmvH0AsyYtoBS5hK23CugUJZnU/ppDjRlHJ81Oh sk1xA32hSdy2fewZnY5KHro16ZX38PMMTAdRvb51VwPQcxui3UtN1OeaQO11ElV3 h7vhxzheK4A/wrGuvtgcTuATe3Ju98bG7SD59a3URyiMlaHDoURYwq5yPuL4Gsrs d7WxWTnpYaBJ+d2nV03h2Rr8i8xLOlGLiPbpOPG/vZXyrfZ0Uql9a3sW0q5FXRU1 IZMZe4UN3K8fIOjMqUqEzgoAeJrKJcFa6t4I+ZrE6w18BpZ6TjjWKqrVa1w8o+EI YqaBKBG22D64AB7YFqXuSYkn+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMMHU/5/ hGVeuUKD3PCT/fKh/DH8MB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKqIqu00Ec1j7+Bk1iAIRUOQQHWf1kGHCOQyJQf8qJB4sq7TQNp1IAUOlTUKn DukQ5HTTwQcjz5Y60vUXo0xo+x+8I9S+CT1JcIVEk8DbvFs9fkyYhO10xegK97ob TJUWopTDkvIJz2qlkZ8LKhphmPCEmtZUXLyyXZUN9d8nTegGoTnw4VV8Jhoo5uBs 2ICl+eQsIp/ahHg3SBJ/BKIy+5jvmSi7jqPxV6da92nbbj6JBElyHmA1o7pvMbvc vHhAqEzqkfFM7SoSTIRzXIEst33dHYSCVLdzqASTPIdEfEfSYDLTozgJMuDXFoCB GvJKKo1+6/DYCTghoPYFitFZOg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:18:02 2026 by rpki-client