$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: /e+sPF6nJj2A6y7sJekzNUk3hl4K2y0iS1kLX9Ru6r4= Subject key identifier: 2B:C0:5F:90:93:16:FF:D9:8D:2D:42:C9:32:ED:9F:03:70:BB:44:D4 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 06A1 Signing time: Tue 24 Mar 2026 22:11:28 +0000 Manifest this update: Tue 24 Mar 2026 22:11:28 +0000 Manifest next update: Tue 31 Mar 2026 22:11:28 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: 8TbNFbCh0T/KhHQ7v0xDiL7pfTvusEs8+fG6weN4S1k=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: iGuCHDAUL0PXZn0ORHKJTEzzVOLk9UA+q1lRAx9/x7k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Mar 24 22:11:28 2026 GMT Not After : Mar 31 22:11:28 2026 GMT Subject: CN=69c30c10-0b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:17:4e:67:04:97:45:a2:69:dd:58:77:56:11: 77:cb:f9:bc:44:12:64:f1:42:1c:6a:3a:57:75:03: b5:04:c3:69:37:3e:c0:bd:8c:a7:9f:92:32:ea:5f: 74:1d:f6:81:c3:e1:74:ef:2a:e7:37:bb:e5:68:b9: db:6c:38:65:24:99:9d:39:b6:fb:6b:da:92:2d:31: ce:68:2b:5e:06:8d:a1:7c:d0:03:59:77:2b:7f:8f: 80:20:d2:e8:06:ef:93:e2:79:de:8e:4e:95:f1:f5: 0d:8f:e3:df:e8:95:7c:91:39:ae:e4:aa:8c:ee:bd: 83:98:52:62:d6:98:1b:2d:52:b8:ca:2a:e0:2d:4e: b9:a9:88:cd:07:c8:af:3d:3b:3f:ae:3f:10:21:f0: 23:7a:e2:37:c3:8c:34:99:57:d9:96:33:6c:ea:76: b0:63:64:5c:a4:6e:c1:32:4b:83:08:ad:2a:e0:45: ea:dc:23:ed:bd:ff:5b:8e:c7:26:6c:48:5a:bc:28: d7:ae:92:25:22:69:5a:15:07:8b:94:31:a3:bb:ef: 75:f2:34:5e:3b:71:86:13:e6:a3:69:44:9c:6f:cd: d9:8a:19:44:ae:cf:34:e8:34:a3:8d:d1:91:33:a6: 15:4f:08:b7:37:36:f5:6e:b5:18:c5:ae:fb:08:37: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C0:5F:90:93:16:FF:D9:8D:2D:42:C9:32:ED:9F:03:70:BB:44:D4 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a2:8a:49:fd:5a:fa:2d:37:ff:de:69:1b:1b:8e:59:39:63: 75:85:c7:4d:c7:97:89:56:0b:5a:04:9a:5c:25:13:16:19:4d: c0:2c:1e:b9:28:b2:76:dc:df:2d:28:2d:61:41:27:42:81:e3: 25:1d:7f:bd:77:3d:99:02:1d:9d:5a:1c:fb:93:e7:24:1d:a0: f3:0b:f7:6c:b9:9a:16:97:26:73:ba:9d:b0:4a:57:e2:18:6e: f6:b7:06:af:71:66:54:14:f1:6c:91:a4:51:57:a2:24:a8:ae: 13:93:aa:10:79:b2:67:20:46:f5:9f:66:41:fd:4f:d2:42:5d: 79:32:2c:66:0c:2d:60:72:a0:58:34:f8:c3:81:6e:38:51:c6: 2b:84:9e:e2:54:5c:67:7c:d3:b5:62:cd:6c:ef:d4:c0:e0:5b: 3a:dc:e0:6f:6f:5d:ea:ed:42:41:d7:8b:42:b4:08:bc:83:08: 45:47:69:fd:f4:ca:6f:ae:fb:00:08:66:56:ec:75:de:66:6d: bc:c2:8e:d7:06:18:27:9f:c4:e1:00:b5:ab:09:48:75:ce:2b: eb:d5:92:27:09:9f:10:11:aa:36:b5:15:65:ec:3b:55:cf:35: 31:ab:e2:ee:05:aa:80:eb:e0:a2:68:eb:75:79:17:24:b6:6e: f4:bf:a0:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjYwMzI0MjIxMTI4WhcNMjYwMzMxMjIxMTI4WjAYMRYwFAYD VQQDEw02OWMzMGMxMC0wYjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRdOZwSXRaJp3Vh3VhF3y/m8RBJk8UIcajpXdQO1BMNpNz7AvYynn5Iy6l90 HfaBw+F07yrnN7vlaLnbbDhlJJmdObb7a9qSLTHOaCteBo2hfNADWXcrf4+AINLo Bu+T4nnejk6V8fUNj+Pf6JV8kTmu5KqM7r2DmFJi1pgbLVK4yirgLU65qYjNB8iv PTs/rj8QIfAjeuI3w4w0mVfZljNs6nawY2RcpG7BMkuDCK0q4EXq3CPtvf9bjscm bEhavCjXrpIlImlaFQeLlDGju+918jReO3GGE+ajaUScb83ZihlErs806DSjjdGR M6YVTwi3Nzb1brUYxa77CDfmLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCvAX5CT Fv/ZjS1CyTLtnwNwu0TUMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnaKKSf1a+i03/95pGxuOWTljdYXHTceXiVYLWgSaXCUTFhlNwCweuSiydtzf LSgtYUEnQoHjJR1/vXc9mQIdnVoc+5PnJB2g8wv3bLmaFpcmc7qdsEpX4hhu9rcG r3FmVBTxbJGkUVeiJKiuE5OqEHmyZyBG9Z9mQf1P0kJdeTIsZgwtYHKgWDT4w4Fu OFHGK4Se4lRcZ3zTtWLNbO/UwOBbOtzgb29d6u1CQdeLQrQIvIMIRUdp/fTKb677 AAhmVux13mZtvMKO1wYYJ5/E4QC1qwlIdc4r69WSJwmfEBGqNrUVZew7Vc81Mavi 7gWqgOvgomjrdXkXJLZu9L+gCw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:53:22 2026 by rpki-client