$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: /BFOX7hucMc8cmDTw6UaRWNnBcPrQ31Nyq5GJVTZmhk= Subject key identifier: 54:B8:95:4C:97:B4:43:43:36:BC:D5:00:82:EE:54:0A:0F:4C:60:A7 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: 0129 Signing time: Wed 25 Mar 2026 04:50:36 +0000 Manifest this update: Wed 25 Mar 2026 04:50:35 +0000 Manifest next update: Wed 01 Apr 2026 04:50:35 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: A2Dmt4gNv6lHNdVslEkVk7RMCxfrYmaHuw5kfb28ruA=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: Cz53IM9XrwFo5eiOhKbMpefJ/4LPJaT0jFu6dU8OhL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Mar 25 04:50:35 2026 GMT Not After : Apr 1 04:50:35 2026 GMT Subject: CN=69c3699c-e3cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9c:d3:36:a1:d2:75:28:07:13:15:ab:59:24: a4:ed:42:eb:08:35:d7:b8:84:f1:1a:ba:a0:2f:77: dc:ad:61:61:33:a3:e8:84:2d:05:39:b0:49:97:67: 02:91:d9:e7:b4:ed:6d:a1:99:6e:92:e1:b3:e1:93: d5:36:4f:d7:d1:3c:b0:2e:22:f3:7c:09:09:d9:ed: da:5b:14:03:b1:3c:4e:ac:64:8f:50:0d:5d:dc:55: 51:a4:aa:45:6e:23:4c:7a:82:ad:e7:1d:23:bd:39: d6:11:5f:11:67:fd:ea:d9:45:2f:7b:f3:44:23:f3: 8f:ad:cc:d0:06:c6:04:7b:59:d1:5c:9a:e1:79:c6: 4e:53:88:b7:10:42:bf:ae:f1:cf:d0:47:b5:38:07: 7a:8c:d3:36:12:4f:77:09:55:dc:e6:bb:a8:d8:8f: e5:f1:30:e6:a0:8b:ed:06:12:2f:ac:51:a2:df:89: be:62:c0:a6:a5:ed:8f:2f:dc:af:1c:1d:6e:a1:74: 09:29:f2:c7:32:8a:7d:b1:66:f3:b8:e6:7b:0f:cd: 93:10:b9:cb:f6:da:56:32:3a:a5:7d:52:a7:f4:3b: fd:d7:e8:0c:97:19:30:f3:32:aa:7b:5c:57:6d:d6: f9:c8:7a:3d:1b:03:cd:34:f3:ae:02:5a:ea:c1:d4: 1b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B8:95:4C:97:B4:43:43:36:BC:D5:00:82:EE:54:0A:0F:4C:60:A7 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:2c:dd:12:b5:95:81:6d:10:e7:1a:27:62:ee:98:e9:f3:07: fe:6d:78:1b:bb:b0:ca:54:01:4e:94:ed:e7:5a:ec:3c:2c:4b: e6:fc:a6:dc:0b:cb:92:a3:43:e1:cc:b5:37:30:af:d9:ba:45: c2:27:80:16:03:f7:df:0c:ff:c3:a6:ae:92:76:41:67:91:7a: 94:e8:66:de:0a:59:40:4d:54:c8:b7:50:ae:e4:5d:3c:1a:ad: c1:53:a7:d1:23:de:f5:be:6c:50:c4:cd:ca:fc:5b:14:fe:78: 7b:d8:c6:cb:62:78:96:ae:97:85:2e:95:16:56:c2:97:fc:70: 36:cb:ee:c4:09:1b:ea:6a:02:b2:c8:3c:46:87:ba:c1:c7:36: cb:e3:b0:63:ba:d0:9a:ff:a9:15:61:9d:29:3b:cd:6f:16:5c: d7:fc:02:5b:65:a7:39:a8:f8:d2:ea:3d:3d:1e:df:b3:db:07: f8:f4:1b:e4:2d:76:40:28:8a:e0:d5:6c:b8:b1:98:c9:d1:e8: 50:7a:3b:70:c3:96:00:b2:0f:c5:db:46:b9:51:bd:b8:80:d3: 7f:e9:26:47:f3:28:21:2a:33:38:96:b2:8a:bb:3d:f9:59:f6: d5:b5:06:1e:a9:70:ef:d6:7e:d0:fc:a7:d3:66:31:87:d9:15: c8:58:a3:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjYwMzI1MDQ1MDM1WhcNMjYwNDAxMDQ1MDM1WjAYMRYwFAYD VQQDEw02OWMzNjk5Yy1lM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZzTNqHSdSgHExWrWSSk7ULrCDXXuITxGrqgL3fcrWFhM6PohC0FObBJl2cC kdnntO1toZlukuGz4ZPVNk/X0TywLiLzfAkJ2e3aWxQDsTxOrGSPUA1d3FVRpKpF biNMeoKt5x0jvTnWEV8RZ/3q2UUve/NEI/OPrczQBsYEe1nRXJrhecZOU4i3EEK/ rvHP0Ee1OAd6jNM2Ek93CVXc5ruo2I/l8TDmoIvtBhIvrFGi34m+YsCmpe2PL9yv HB1uoXQJKfLHMop9sWbzuOZ7D82TELnL9tpWMjqlfVKn9Dv91+gMlxkw8zKqe1xX bdb5yHo9GwPNNPOuAlrqwdQbgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFS4lUyX tENDNrzVAILuVAoPTGCnMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFizdErWVgW0Q5xonYu6Y6fMH/m14G7uwylQBTpTt51rsPCxL5vym3AvLkqND 4cy1NzCv2bpFwieAFgP33wz/w6auknZBZ5F6lOhm3gpZQE1UyLdQruRdPBqtwVOn 0SPe9b5sUMTNyvxbFP54e9jGy2J4lq6XhS6VFlbCl/xwNsvuxAkb6moCssg8Roe6 wcc2y+OwY7rQmv+pFWGdKTvNbxZc1/wCW2WnOaj40uo9PR7fs9sH+PQb5C12QCiK 4NVsuLGYydHoUHo7cMOWALIPxdtGuVG9uIDTf+kmR/MoISozOJayirs9+Vn21bUG Hqlw79Z+0Pyn02Yxh9kVyFijeg== -----END CERTIFICATE-----Generated at Thu Mar 26 11:19:07 2026 by rpki-client