$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft File: JfnbYAet9vV-xO_3piv01C2nXsU.mft (raw, json) Hash identifier: o4VNxdGAIo9bmPeHgBm0cSQb6t1NPdK4P40S1POwZ0g= Subject key identifier: 9B:90:4A:83:C1:CE:80:52:A3:42:83:F7:C9:3E:CB:32:3D:9A:8A:33 Authority key identifier: 25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 Certificate issuer: /CN=A91D3F79/serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft Manifest number: 01C9 Signing time: Wed 25 Mar 2026 03:02:57 +0000 Manifest this update: Wed 25 Mar 2026 03:02:56 +0000 Manifest next update: Wed 01 Apr 2026 03:02:56 +0000 Files and hashes: 1: JfnbYAet9vV-xO_3piv01C2nXsU.crl (hash: UzwEKqaQ7sGeIYrg2LyFp5Ikr+o6t6jXqHuQHAfRrFk=) 2: F4CDCE666F1C11EE8CA3F26AC4F9AE02.roa (hash: mY3dtD5W8Iju1eIPL4linHM5QD9vvZCX/OXihI1ApCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F79, serialNumber=25F9DB6007ADF6F57EC4EFF7A62BF4D42DA75EC5 Validity Not Before: Mar 25 03:02:56 2026 GMT Not After : Apr 1 03:02:56 2026 GMT Subject: CN=69c35060-c4b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:52:8a:ca:1e:45:cf:f7:71:d2:35:fb:eb:07: d3:a6:7e:b5:6e:4b:b1:a3:8f:13:8e:f1:14:5e:e9: d1:ac:22:47:22:47:ed:0d:73:b7:84:ba:9b:c8:10: 6e:d5:b4:7e:f2:95:aa:2a:8b:fe:99:20:e2:62:c4: 9f:da:5e:a1:34:fa:40:75:59:e8:4f:11:a6:35:1d: 5e:17:c5:59:7e:61:f9:f7:ff:ad:eb:68:bb:88:0c: b0:c4:ce:7c:18:ce:89:d6:d4:80:d6:6c:f9:e1:7e: 95:3e:29:81:c2:15:2e:88:52:da:48:2e:8c:86:7a: 9a:d7:09:27:7c:b6:c6:f1:cb:26:34:d6:16:92:64: f8:14:78:84:51:e1:5d:0d:00:36:c7:36:e5:bd:dd: c3:92:a3:67:4e:f0:b6:db:26:59:0f:ad:cc:80:66: 5f:8a:dc:c1:3c:f3:1e:5c:05:bc:d5:2c:cb:42:47: 40:d7:0a:27:23:e8:b8:ed:9f:64:85:dc:e0:e3:e8: b9:1b:68:52:d5:e9:66:c4:57:ea:65:21:3a:0d:05: 82:31:71:c5:20:39:64:4e:b0:19:5e:48:9a:ea:0c: 9d:aa:31:9f:12:0e:a5:9e:15:91:b3:46:9f:06:74: b1:c6:9c:49:ee:4d:75:5d:23:ce:1a:cc:df:06:fb: 3b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:90:4A:83:C1:CE:80:52:A3:42:83:F7:C9:3E:CB:32:3D:9A:8A:33 X509v3 Authority Key Identifier: keyid:25:F9:DB:60:07:AD:F6:F5:7E:C4:EF:F7:A6:2B:F4:D4:2D:A7:5E:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JfnbYAet9vV-xO_3piv01C2nXsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F79/FA31A2B26F1A11EE8D32E064C4F9AE02/JfnbYAet9vV-xO_3piv01C2nXsU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d0:b2:25:82:be:14:a8:49:f3:f4:34:f3:d1:0c:fc:4e:ef: b0:87:14:cb:18:3f:9d:56:2c:b7:5c:85:7c:7c:c3:5a:98:1f: d1:ba:63:c5:37:12:93:4e:08:c6:0e:b0:f0:27:ea:50:bf:dc: 49:0b:ef:b4:ac:37:af:20:ad:ba:19:7d:16:44:fd:01:0f:56: d3:63:ad:99:f4:09:8f:44:89:94:72:be:15:0b:3b:2b:99:37: 18:10:54:3b:ca:18:ac:34:6d:0c:fa:26:e3:63:eb:65:2b:6b: 43:91:25:c9:bd:5f:2e:21:3d:63:36:7b:46:37:16:d2:80:de: 1a:e7:46:ec:d5:3a:85:59:15:bd:35:d0:f9:4b:98:e9:66:6d: ff:e1:bd:5d:04:97:80:1e:85:8e:08:e8:83:e7:5f:01:a2:fb: 55:89:ad:f4:2a:d5:3a:24:bc:39:de:9c:14:e9:e5:77:6e:7b: 39:e5:6e:89:08:8c:d2:81:03:28:b7:01:85:d3:ee:cd:8e:c1: 5d:92:83:bd:c8:83:e0:1b:0d:a3:cf:4f:91:83:c8:6a:65:33: f9:51:27:1e:c7:f6:9b:d6:47:83:a3:3b:32:9b:c6:18:49:ca: 36:86:db:7a:56:ed:10:2e:ac:d8:7e:9c:c1:d9:f9:3b:94:de: c3:84:e7:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGNzkxMTAvBgNVBAUTKDI1RjlEQjYwMDdBREY2RjU3RUM0RUZGN0E2MkJGNEQ0 MkRBNzVFQzUwHhcNMjYwMzI1MDMwMjU2WhcNMjYwNDAxMDMwMjU2WjAYMRYwFAYD VQQDEw02OWMzNTA2MC1jNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1KKyh5Fz/dx0jX76wfTpn61bkuxo48TjvEUXunRrCJHIkftDXO3hLqbyBBu 1bR+8pWqKov+mSDiYsSf2l6hNPpAdVnoTxGmNR1eF8VZfmH59/+t62i7iAywxM58 GM6J1tSA1mz54X6VPimBwhUuiFLaSC6Mhnqa1wknfLbG8csmNNYWkmT4FHiEUeFd DQA2xzblvd3DkqNnTvC22yZZD63MgGZfitzBPPMeXAW81SzLQkdA1wonI+i47Z9k hdzg4+i5G2hS1elmxFfqZSE6DQWCMXHFIDlkTrAZXkia6gydqjGfEg6lnhWRs0af BnSxxpxJ7k11XSPOGszfBvs77wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJuQSoPB zoBSo0KD98k+yzI9moozMB8GA1UdIwQYMBaAFCX522AHrfb1fsTv96Yr9NQtp17F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y3OS9GQTMxQTJCMjZG MUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2Vi14T18zcGl2MDFDMm5Y c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pmbmJZQWV0OXZWLXhPXzNwaXYwMUMyblhzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Y3OS9GQTMxQTJCMjZGMUExMUVFOEQzMkUwNjRDNEY5QUUwMi9KZm5iWUFldDl2 Vi14T18zcGl2MDFDMm5Yc1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHdCyJYK+FKhJ8/Q089EM/E7vsIcUyxg/nVYst1yFfHzDWpgf0bpjxTcSk04I xg6w8CfqUL/cSQvvtKw3ryCtuhl9FkT9AQ9W02OtmfQJj0SJlHK+FQs7K5k3GBBU O8oYrDRtDPom42PrZStrQ5Elyb1fLiE9YzZ7RjcW0oDeGudG7NU6hVkVvTXQ+UuY 6WZt/+G9XQSXgB6Fjgjog+dfAaL7VYmt9CrVOiS8Od6cFOnld257OeVuiQiM0oED KLcBhdPuzY7BXZKDvciD4BsNo89PkYPIamUz+VEnHsf2m9ZHg6M7MpvGGEnKNobb elbtEC6s2H6cwdn5O5Tew4TnpQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:28:55 2026 by rpki-client