$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft File: vAWTxH2s9senekHgfeuaBhYxpIQ.mft (raw, json) Hash identifier: lFCU7tYwjvBgtZuX746GdKKipPSuQa1YFNI238fm3w8= Subject key identifier: 09:14:B6:0D:22:C1:DC:9E:A5:25:83:D1:80:B9:A0:9A:0B:B3:C7:B5 Authority key identifier: BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 Certificate issuer: /CN=A91D0B40/serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft Manifest number: 014A Signing time: Wed 25 Mar 2026 04:28:20 +0000 Manifest this update: Wed 25 Mar 2026 04:28:20 +0000 Manifest next update: Wed 01 Apr 2026 04:28:20 +0000 Files and hashes: 1: vAWTxH2s9senekHgfeuaBhYxpIQ.crl (hash: 78ez6f87+s7B6rEL/vL5CRsBn2c2Gw1Ok5JZRgaRAVQ=) 2: 18EDF038F73711F08BB88460376F56BC.roa (hash: t0hU3N1FD9zGsJ+FgYlfZfoiq30HXBUy+L5k5O72B6Y=) 3: 0D5C00AC38E311EF99F62432C4F9AE02.roa (hash: 7GwFFdoT7KOBgirzydveTXZ4xE9VjgyouWwohS4qo9U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:28:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B40, serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Validity Not Before: Mar 25 04:28:20 2026 GMT Not After : Apr 1 04:28:20 2026 GMT Subject: CN=69c36464-0b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:dc:88:f3:e4:7a:dc:56:5c:b1:f4:b1:9c: ba:ec:7b:f7:9a:fc:9b:0c:12:2a:fa:59:49:7d:33: fb:bf:fd:ba:75:a4:c6:cd:3e:ec:8b:83:79:de:91: 81:3a:60:cc:dc:06:e7:f0:00:72:54:36:31:9d:21: e0:ec:6c:25:2e:26:7f:03:c0:85:a6:c3:48:c2:14: f3:56:f9:32:0d:c4:9e:d1:63:4a:e1:e7:b6:e6:12: eb:cc:3d:b3:91:f7:ff:3f:8d:f9:06:13:4b:d2:3f: 89:4f:16:50:9d:bf:71:02:82:1f:c9:ef:c7:89:b2: 6b:b5:0c:12:c6:80:8b:e1:c0:2d:f3:6d:87:84:2b: 97:30:f2:21:40:f0:1a:dc:c3:f6:37:fe:47:58:b6: 6b:ae:c5:60:95:27:d3:40:84:c0:07:28:dc:47:1e: 11:2f:3c:b3:d9:ab:48:29:a4:37:58:93:72:a7:5f: 64:19:0e:09:7e:98:26:48:85:0a:9a:c7:5b:c6:29: be:1b:46:38:c3:7f:2e:30:a6:1e:26:1e:f2:f1:dd: fb:c2:13:db:9b:11:e3:19:f8:d1:f1:54:74:73:03: c9:ef:96:1b:41:48:74:c8:2c:9b:4d:de:ae:95:8c: db:11:db:34:70:c6:4b:47:cc:4e:e1:66:38:1b:32: 51:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:14:B6:0D:22:C1:DC:9E:A5:25:83:D1:80:B9:A0:9A:0B:B3:C7:B5 X509v3 Authority Key Identifier: keyid:BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:62:73:2e:4f:23:48:94:a5:e5:cf:26:97:61:a0:5c:77:d3: 37:49:2f:f7:32:2a:ea:11:05:90:50:7f:85:c0:0c:af:3b:65: 92:c2:be:12:63:5d:63:40:07:2b:e5:35:83:c5:fb:64:01:a6: 3c:ce:a9:31:3c:94:64:7d:00:77:36:14:f1:b4:e8:63:31:74: 09:fe:57:e2:40:3f:72:15:ff:6e:0d:0d:6f:77:2a:a9:6a:6d: 81:c6:c9:de:ef:5f:e2:8a:32:63:77:92:ff:5e:fa:42:de:cc: 33:ac:d2:98:23:d6:a6:de:a9:72:a1:0a:f6:36:3b:0b:37:6c: b9:bb:11:e7:ba:7f:a8:f4:1f:32:66:84:0e:ca:9d:d6:db:54: 20:5f:4b:0f:ad:7d:93:09:5b:b9:6a:03:d0:10:38:5e:47:41: 00:fd:db:4b:26:a9:9a:1a:09:ad:7d:cf:72:ea:01:4d:5b:ac: a3:e5:bd:33:f3:64:2e:10:ed:79:43:2a:d9:37:a9:53:51:d7: 27:a4:cc:b4:4d:4f:f7:d8:2d:df:c5:84:16:b1:95:86:af:09: 0b:fc:dd:ad:38:54:df:1b:b5:02:1c:d8:26:4e:a9:bd:dc:92: b3:d9:7f:e5:b9:0e:c4:be:ee:ec:52:b3:27:65:34:1b:16:58: e0:3d:cc:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNDAxMTAvBgNVBAUTKEJDMDU5M0M0N0RBQ0Y2QzdBNzdBNDFFMDdERUI5QTA2 MTYzMUE0ODQwHhcNMjYwMzI1MDQyODIwWhcNMjYwNDAxMDQyODIwWjAYMRYwFAYD VQQDEw02OWMzNjQ2NC0wYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJTciPPketxWXLH0sZy67Hv3mvybDBIq+llJfTP7v/26daTGzT7si4N53pGB OmDM3Abn8AByVDYxnSHg7GwlLiZ/A8CFpsNIwhTzVvkyDcSe0WNK4ee25hLrzD2z kff/P435BhNL0j+JTxZQnb9xAoIfye/HibJrtQwSxoCL4cAt822HhCuXMPIhQPAa 3MP2N/5HWLZrrsVglSfTQITAByjcRx4RLzyz2atIKaQ3WJNyp19kGQ4JfpgmSIUK msdbxim+G0Y4w38uMKYeJh7y8d37whPbmxHjGfjR8VR0cwPJ75YbQUh0yCybTd6u lYzbEds0cMZLR8xO4WY4GzJRbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAkUtg0i wdyepSWD0YC5oJoLs8e1MB8GA1UdIwQYMBaAFLwFk8R9rPbHp3pB4H3rmgYWMaSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI0MC8yODQwQzhBNjM4 RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlzZW5la0hnZmV1YUJoWXhw SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZBV1R4SDJzOXNlbmVrSGdmZXVhQmhZeHBJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI0MC8yODQwQzhBNjM4RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlz ZW5la0hnZmV1YUJoWXhwSVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbGJzLk8jSJSl5c8ml2GgXHfTN0kv9zIq6hEFkFB/hcAMrztlksK+EmNdY0AH K+U1g8X7ZAGmPM6pMTyUZH0AdzYU8bToYzF0Cf5X4kA/chX/bg0Nb3cqqWptgcbJ 3u9f4ooyY3eS/176Qt7MM6zSmCPWpt6pcqEK9jY7CzdsubsR57p/qPQfMmaEDsqd 1ttUIF9LD619kwlbuWoD0BA4XkdBAP3bSyapmhoJrX3PcuoBTVuso+W9M/NkLhDt eUMq2TepU1HXJ6TMtE1P99gt38WEFrGVhq8JC/zdrThU3xu1AhzYJk6pvdySs9l/ 5bkOxL7u7FKzJ2U0GxZY4D3MYQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:39:16 2026 by rpki-client