$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft File: M-VCXQNo-C_4W5uEf0EjitWNTlA.mft (raw, json) Hash identifier: GwQM3HeMjIjbS6mSxelMIF+ATFJkYAKXi4u8oYwPK4k= Subject key identifier: DE:DA:F3:2A:F8:7D:E5:E1:94:2F:32:51:E0:85:CD:BE:33:4B:2E:CA Authority key identifier: 33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 Certificate issuer: /CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft Manifest number: 019F Signing time: Wed 25 Mar 2026 03:34:45 +0000 Manifest this update: Wed 25 Mar 2026 03:34:44 +0000 Manifest next update: Wed 01 Apr 2026 03:34:44 +0000 Files and hashes: 1: M-VCXQNo-C_4W5uEf0EjitWNTlA.crl (hash: mw7Q4hFU9CyIhx6bflvmMxSXbhjXM7c1ADd91YTI/J0=) 2: D677E18AB9AF11EE97EEDB49C4F9AE02.roa (hash: 4BM5LIM23GXw5AfkXFzMdqX+Y7TcpkGGG81Gw9eoyBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Validity Not Before: Mar 25 03:34:44 2026 GMT Not After : Apr 1 03:34:44 2026 GMT Subject: CN=69c357d5-1963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:55:5a:24:70:84:21:ec:ed:0a:b5:c8:ad:7a: 4a:7d:1c:bc:db:60:3b:b4:1a:ed:e9:0b:61:03:50: 50:82:66:c4:c2:18:3e:10:45:8f:97:a0:83:2a:0a: f6:6f:b5:1a:89:33:7b:b2:07:8f:dc:f8:4f:47:9c: 2e:e8:48:18:9e:28:2a:6b:41:87:52:6b:53:3a:67: 02:13:1b:47:e4:6b:e5:4b:23:7f:6c:b3:0c:57:57: 03:7d:3e:33:01:3a:e0:03:52:cc:e3:a3:10:db:90: 54:2d:46:d9:20:d2:58:1c:c7:af:4d:c4:99:23:bf: 95:13:ac:1c:02:a5:7a:50:8c:51:e7:7c:82:0c:cd: 20:99:60:3f:ab:10:10:0c:3f:db:17:19:43:ac:a5: 50:fd:69:76:8e:e6:26:c7:08:a8:4b:22:0a:32:a6: ed:b7:22:01:9b:fe:4f:d1:10:4d:bd:5f:c3:65:b5: 2d:93:ca:dd:24:d5:b6:81:ea:ce:18:19:94:48:78: 74:55:d9:d0:28:80:58:d5:38:17:52:e3:e1:ff:3f: 97:9a:59:07:47:fa:e6:af:bc:b1:bb:3c:c3:6f:22: 26:ac:04:c8:8e:34:13:5c:76:f5:fb:9d:b9:f8:8d: 39:cd:eb:71:44:d9:b6:13:24:ae:f1:e9:05:10:88: 51:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:DA:F3:2A:F8:7D:E5:E1:94:2F:32:51:E0:85:CD:BE:33:4B:2E:CA X509v3 Authority Key Identifier: keyid:33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:47:f6:6c:da:a5:ed:bc:db:03:da:d8:b4:73:a3:0c:20:8e: c0:7e:81:ff:47:c0:d0:99:e9:9c:7b:0b:b8:71:71:d7:35:f6: c2:df:9c:ff:b6:08:6e:28:97:c3:c5:a0:7c:24:e2:c5:b4:96: 44:1a:94:be:b6:be:c6:f0:c2:80:7a:30:d9:d1:19:e8:ce:c7: 54:1a:99:2c:02:09:18:dc:58:82:4c:33:24:25:63:be:bb:7b: 72:fe:30:79:32:7f:aa:c9:43:4e:e5:65:6c:f1:5f:2e:58:6d: 0a:01:33:93:ab:b2:2c:7e:fd:ed:2d:bc:1a:50:5e:fa:63:ce: 20:ac:ce:d1:e8:35:bf:98:e5:56:54:64:23:ac:8a:3b:da:aa: 92:51:eb:a9:b1:b8:c2:e1:33:96:73:6a:3a:8a:ec:13:70:b6: 1e:29:80:a9:1a:2f:08:9f:23:56:d3:86:ab:e2:9f:45:0c:e0: a2:95:da:9f:11:44:f3:1d:c3:2c:33:79:4f:3b:14:8c:54:69: 8e:67:00:c0:90:2a:d1:77:eb:18:4d:24:81:62:d0:52:08:d9: 1a:31:1c:ee:25:e4:bd:dc:e9:15:10:14:e1:33:2f:be:96:fa: c5:a7:d2:9e:5b:3f:11:66:5a:fb:83:18:6e:a7:ee:ae:12:e5: 99:95:1d:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDMzRTU0MjVEMDM2OEY4MkZGODVCOUI4NDdGNDEyMzhB RDU4RDRFNTAwHhcNMjYwMzI1MDMzNDQ0WhcNMjYwNDAxMDMzNDQ0WjAYMRYwFAYD VQQDEw02OWMzNTdkNS0xOTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VVaJHCEIeztCrXIrXpKfRy822A7tBrt6QthA1BQgmbEwhg+EEWPl6CDKgr2 b7UaiTN7sgeP3PhPR5wu6EgYnigqa0GHUmtTOmcCExtH5GvlSyN/bLMMV1cDfT4z ATrgA1LM46MQ25BULUbZINJYHMevTcSZI7+VE6wcAqV6UIxR53yCDM0gmWA/qxAQ DD/bFxlDrKVQ/Wl2juYmxwioSyIKMqbttyIBm/5P0RBNvV/DZbUtk8rdJNW2gerO GBmUSHh0VdnQKIBY1TgXUuPh/z+XmlkHR/rmr7yxuzzDbyImrATIjjQTXHb1+525 +I05zetxRNm2EySu8ekFEIhRLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN7a8yr4 feXhlC8yUeCFzb4zSy7KMB8GA1UdIwQYMBaAFDPlQl0DaPgv+FubhH9BI4rVjU5Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS81RkI3REMwOEI5 QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1DXzRXNXVFZjBFaml0V05U bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00tVkNYUU5vLUNfNFc1dUVmMEVqaXRXTlRsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS81RkI3REMwOEI5QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1D XzRXNXVFZjBFaml0V05UbEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZUf2bNql7bzbA9rYtHOjDCCOwH6B/0fA0JnpnHsLuHFx1zX2wt+c/7YIbiiX w8WgfCTixbSWRBqUvra+xvDCgHow2dEZ6M7HVBqZLAIJGNxYgkwzJCVjvrt7cv4w eTJ/qslDTuVlbPFfLlhtCgEzk6uyLH797S28GlBe+mPOIKzO0eg1v5jlVlRkI6yK O9qqklHrqbG4wuEzlnNqOorsE3C2HimAqRovCJ8jVtOGq+KfRQzgopXanxFE8x3D LDN5TzsUjFRpjmcAwJAq0XfrGE0kgWLQUgjZGjEc7iXkvdzpFRAU4TMvvpb6xafS nls/EWZa+4MYbqfurhLlmZUdOA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:23:18 2026 by rpki-client