$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: xvAU2DcsCyxzIjCFdPeOTGKtUJ/kFwsJU6HIJJQOl38= Subject key identifier: 9B:79:11:BE:13:95:AA:85:1C:A6:EB:16:9C:38:8B:AB:D2:C9:1F:B7 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 35E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 357D Signing time: Tue 24 Mar 2026 14:51:47 +0000 Manifest this update: Tue 24 Mar 2026 14:51:46 +0000 Manifest next update: Tue 31 Mar 2026 14:51:46 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: j/xQ20uV9BDZxzmN+7eg5TY6Lzal2e4CDIRuFz8BD5I=) 2: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: usfpiMLWoGDExv0ZzDkffe8BVX1FZLRCU+Dn0/pmF+g=) 3: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 81ReA4BHk/lxP9lEIuQUr4XFnT42WFD0y3bTKzIXKJE=) 4: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: DAjpYy2F7JuENdM1mCWzZ4UuisI9F+H32xQyrUo660o=) 5: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: qLKIOz6Oedhwx38zJO/77LtAdjmKeuJ/j9qSOecidn0=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: UKXFh7gTm0rXHnOIQY0kDYmGOiQsiOQkbThjpV/y9Uk=) 7: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: 8UZTwXBUXA7yxIQmBCYd7utQyxqxmd+gxoz97Gybm9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13800 (0x35e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Mar 24 14:51:46 2026 GMT Not After : Mar 31 14:51:46 2026 GMT Subject: CN=69c2a503-9626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:aa:48:0d:8f:b9:d1:19:38:fc:86:e5:69:31: 2d:a7:95:31:bf:8f:f2:15:db:c6:6a:de:64:35:18: 26:9e:8c:28:c6:80:21:95:2e:5c:af:1b:5d:65:68: 8a:f9:00:87:30:fe:1a:55:92:f7:2e:be:9f:b3:86: ea:75:ed:82:87:7f:b5:06:d1:81:9e:8c:31:22:ff: 71:24:38:58:fc:fd:d9:33:25:e6:9d:a7:73:09:6e: f8:51:ba:26:d8:b4:a3:df:fe:54:a4:a1:48:37:d4: 92:49:86:65:ff:ff:9b:bd:d2:17:c6:e1:95:3c:6c: 72:c0:fc:00:20:99:07:87:e7:13:94:49:52:c8:ac: 0e:c5:b6:00:48:e0:0a:37:9c:17:a8:8d:a1:74:7f: f8:65:47:22:1b:cc:d9:22:1c:27:ce:a4:28:8d:77: 79:1d:35:d8:75:1e:5e:d1:9f:ea:66:98:f9:5b:dc: 60:53:a7:57:51:06:98:83:26:88:54:9e:ea:27:fb: 96:c9:b6:b0:f3:89:41:7c:3d:25:28:82:fd:3f:8a: 27:61:86:af:d6:e2:9f:57:88:af:57:1f:3a:2e:90: cf:28:b9:3e:de:5a:60:db:fd:a5:9e:0a:e2:7a:3f: eb:f0:0d:a0:34:77:a8:10:09:5b:a7:34:76:d8:2b: 76:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:79:11:BE:13:95:AA:85:1C:A6:EB:16:9C:38:8B:AB:D2:C9:1F:B7 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:c5:d4:ab:22:03:bb:ff:42:5a:a9:e1:6f:f2:1e:9e:a7:a0: 91:be:ab:fa:9a:58:b9:9a:28:71:d9:20:d0:50:19:64:17:f1: 36:45:d7:dd:32:78:7d:f2:73:01:5d:9e:e5:6f:a0:da:9a:9e: 6a:21:65:cf:ba:25:84:21:8f:42:fa:0e:ec:32:f1:62:6f:7e: bd:af:35:77:88:8d:4a:b3:3c:64:4c:49:a6:a4:a2:6b:b9:20: 1e:53:9e:08:8f:59:20:fd:98:66:b6:8a:ed:5e:a1:88:dd:5c: 01:4a:53:2e:da:09:36:a8:82:8d:83:c9:c1:df:72:59:39:84: 16:f6:23:0c:3e:10:67:81:ff:4c:e1:0b:da:91:10:a6:d7:bc: c0:c5:8b:9e:5f:ab:2c:16:a5:f7:7f:4d:b1:e0:b7:ee:6c:6a: 71:ca:ad:36:5e:f1:0b:9d:a6:a6:b4:40:a5:91:22:a7:e4:1a: 68:8c:1b:22:f4:03:66:b8:01:c4:a3:a3:cb:0b:4b:00:75:b5: 81:49:d6:10:9a:ae:3b:e0:7c:4d:21:fe:c7:95:eb:c3:6c:22: f7:9d:84:fc:72:6b:84:cd:2d:8b:ab:10:37:04:c3:70:45:2c: 95:e1:94:03:a6:ae:5e:4c:ba:b0:10:f3:12:f6:54:07:e9:1f: f8:75:0b:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjYwMzI0MTQ1MTQ2WhcNMjYwMzMxMTQ1MTQ2WjAYMRYwFAYD VQQDEw02OWMyYTUwMy05NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7apIDY+50Rk4/IblaTEtp5Uxv4/yFdvGat5kNRgmnowoxoAhlS5crxtdZWiK +QCHMP4aVZL3Lr6fs4bqde2Ch3+1BtGBnowxIv9xJDhY/P3ZMyXmnadzCW74Ubom 2LSj3/5UpKFIN9SSSYZl//+bvdIXxuGVPGxywPwAIJkHh+cTlElSyKwOxbYASOAK N5wXqI2hdH/4ZUciG8zZIhwnzqQojXd5HTXYdR5e0Z/qZpj5W9xgU6dXUQaYgyaI VJ7qJ/uWybaw84lBfD0lKIL9P4onYYav1uKfV4ivVx86LpDPKLk+3lpg2/2lngri ej/r8A2gNHeoEAlbpzR22Ct2iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJt5Eb4T laqFHKbrFpw4i6vSyR+3MB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgcXUqyIDu/9CWqnhb/Ienqegkb6r+ppYuZoocdkg0FAZZBfxNkXX3TJ4ffJz AV2e5W+g2pqeaiFlz7olhCGPQvoO7DLxYm9+va81d4iNSrM8ZExJpqSia7kgHlOe CI9ZIP2YZraK7V6hiN1cAUpTLtoJNqiCjYPJwd9yWTmEFvYjDD4QZ4H/TOEL2pEQ pte8wMWLnl+rLBal939NseC37mxqccqtNl7xC52mprRApZEip+QaaIwbIvQDZrgB xKOjywtLAHW1gUnWEJquO+B8TSH+x5Xrw2wi952E/HJrhM0ti6sQNwTDcEUsleGU A6auXky6sBDzEvZUB+kf+HUL7A== -----END CERTIFICATE-----Generated at Thu Mar 26 06:51:23 2026 by rpki-client