$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: eTTUY1QRWAmO8TS3kqMvcLTcaHb9AHNAfwbsR+ZbmxY= Subject key identifier: C0:B8:97:72:1C:C5:89:B3:97:A2:64:03:0C:F2:82:D6:4A:91:25:3D Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 090D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 08EF Signing time: Thu 26 Mar 2026 20:15:21 +0000 Manifest this update: Thu 26 Mar 2026 20:15:20 +0000 Manifest next update: Thu 02 Apr 2026 20:15:20 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: d7gIwi+V9WOpF0dJLhbPDeJ0ChZd+UkWf7yzb5q9LoI=) 2: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: e1E68Ho50ngwWh9r7dC17sN0VAiVWs7P5I7wOcaITiM=) 3: C5E7AA2289A011F08D995D74C4F9AE02.roa (hash: O+J9NJa3UAiRFIsaF/1cDe44mda6RPgxat0aYJVT3MQ=) 4: ECE8975685D811F09A4FFA45C4F9AE02.roa (hash: fecuy51h04kA/93Fl9Jso7L2bJu10CuAwHp5PsU5FhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2317 (0x90d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Mar 26 20:15:20 2026 GMT Not After : Apr 2 20:15:20 2026 GMT Subject: CN=69c593d9-21ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3c:2f:54:4c:3c:c0:a8:ec:40:30:99:42:c7: 7d:8c:a5:98:b5:6c:f2:65:38:f3:13:63:50:9f:62: b5:cd:3d:39:23:d7:7c:43:f3:49:e7:74:4f:eb:ea: cb:14:ef:0c:e8:d3:c2:e7:7d:c6:34:a1:a1:64:c7: 19:1a:91:e9:a1:65:e8:8e:61:82:48:9f:b6:32:eb: f7:e2:c2:6c:d3:a7:0f:f7:06:10:35:a5:81:52:ae: 50:e6:f8:60:e4:83:b2:48:9b:28:af:fe:08:35:af: 97:e2:b8:dc:91:50:9c:41:58:90:39:db:74:0a:6f: 00:77:00:29:66:95:38:23:56:66:ca:60:6c:85:e7: 69:7a:59:27:26:d4:18:15:1f:f7:f8:cd:80:3b:c7: e4:fd:f4:56:c6:62:39:44:16:cf:97:96:90:b5:4b: 76:3a:c2:32:b6:91:b2:f7:b9:d0:c6:a3:7a:06:1e: 1f:41:28:5f:9a:7e:ed:4e:79:4d:67:27:ae:3a:62: 1e:3c:21:a6:b3:31:ad:0a:af:ef:38:86:63:bd:19: 25:fa:c5:bb:09:bf:05:a3:8d:98:3c:6e:53:5a:df: fe:ed:21:3c:0b:ca:01:fe:fa:b1:80:a4:2d:e1:7e: de:3c:8d:0b:2f:d6:4c:6f:4c:8e:ab:b2:e0:00:05: be:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B8:97:72:1C:C5:89:B3:97:A2:64:03:0C:F2:82:D6:4A:91:25:3D X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:33:da:d6:55:62:c3:4e:90:25:48:d6:50:e5:61:4e:c6:f2: 5b:bd:4f:b8:74:b5:4d:a4:3f:35:1c:22:8f:a1:85:fe:78:df: 36:c9:31:c7:79:57:65:3a:c5:9a:10:c5:b8:26:b7:b1:6e:90: 05:96:ab:e0:95:94:dc:ca:ef:67:a7:06:de:b2:49:ac:07:92: 9f:d1:99:fb:b0:55:3f:10:18:78:e4:ae:70:13:cd:bb:89:e1: bd:d8:6e:0d:5b:3e:cb:a0:23:0d:63:29:fb:87:86:02:2b:7e: c6:0f:3c:cd:fe:d6:d1:0c:42:13:30:39:ce:64:92:84:55:25: e2:79:c6:63:ea:18:cb:52:49:c7:cc:69:46:21:cd:a9:0f:1c: 99:ae:79:21:4e:59:ee:bb:cf:48:b4:c5:65:34:ed:40:0c:7f: 66:ec:7e:c5:0c:00:1c:64:2e:81:f2:d3:11:73:22:63:09:17: 99:20:cb:8f:10:ef:66:43:38:70:8e:23:c3:5a:13:63:48:82: b7:d0:5f:80:4f:77:01:33:36:7d:ea:01:6c:a6:6b:e4:1c:fc: ac:a3:5d:a2:c6:b4:79:c2:25:12:06:3e:fb:a0:8e:0a:c9:74: cd:7f:6c:c2:9e:e5:02:c2:ff:e5:a9:6f:c7:7b:3f:fe:f1:d1: 45:5d:b6:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjYwMzI2MjAxNTIwWhcNMjYwNDAyMjAxNTIwWjAYMRYwFAYD VQQDEw02OWM1OTNkOS0yMWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDwvVEw8wKjsQDCZQsd9jKWYtWzyZTjzE2NQn2K1zT05I9d8Q/NJ53RP6+rL FO8M6NPC533GNKGhZMcZGpHpoWXojmGCSJ+2Muv34sJs06cP9wYQNaWBUq5Q5vhg 5IOySJsor/4INa+X4rjckVCcQViQOdt0Cm8AdwApZpU4I1ZmymBshedpelknJtQY FR/3+M2AO8fk/fRWxmI5RBbPl5aQtUt2OsIytpGy97nQxqN6Bh4fQShfmn7tTnlN ZyeuOmIePCGmszGtCq/vOIZjvRkl+sW7Cb8Fo42YPG5TWt/+7SE8C8oB/vqxgKQt 4X7ePI0LL9ZMb0yOq7LgAAW+ZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMC4l3Ic xYmzl6JkAwzygtZKkSU9MB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxTPa1lViw06QJUjWUOVhTsbyW71PuHS1TaQ/NRwij6GF/njfNskxx3lXZTrF mhDFuCa3sW6QBZar4JWU3MrvZ6cG3rJJrAeSn9GZ+7BVPxAYeOSucBPNu4nhvdhu DVs+y6AjDWMp+4eGAit+xg88zf7W0QxCEzA5zmSShFUl4nnGY+oYy1JJx8xpRiHN qQ8cma55IU5Z7rvPSLTFZTTtQAx/Zux+xQwAHGQugfLTEXMiYwkXmSDLjxDvZkM4 cI4jw1oTY0iCt9BfgE93ATM2feoBbKZr5Bz8rKNdosa0ecIlEgY++6COCsl0zX9s wp7lAsL/5alvx3s//vHRRV22AA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:44:59 2026 by rpki-client