$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: 3xHVXQ0+0Sk4nJBTn/3pAIF6yLfTZRPVDxxOh1zmVw4= Subject key identifier: 6D:45:17:7C:69:8D:32:11:ED:EE:C7:EB:67:7A:0D:5B:71:ED:89:01 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 066C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 0661 Signing time: Thu 26 Mar 2026 22:28:15 +0000 Manifest this update: Thu 26 Mar 2026 22:28:14 +0000 Manifest next update: Thu 02 Apr 2026 22:28:14 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: s0f97yuQq+VZgcxCBpy6JQFEeHdsHRzt5rHHdojxbrs=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: cN1hwE7Kn24tcOs69ZtX9qTJpNy1aheRedD7/deVNQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1644 (0x66c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Mar 26 22:28:14 2026 GMT Not After : Apr 2 22:28:14 2026 GMT Subject: CN=69c5b2ff-c80d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:26:85:e4:02:28:7c:ad:89:db:b4:8a:43:a1: e1:bc:9b:31:bd:b1:15:f0:18:9e:e8:18:cc:00:50: 65:4b:c6:3a:e3:9b:40:c5:ee:1f:b8:65:be:84:0e: 5f:99:e3:67:d9:86:1e:45:6a:dc:c8:f0:9e:29:b2: a3:4f:c9:96:70:44:17:c7:63:71:c0:22:9c:d9:20: 21:11:7b:d0:91:70:14:26:3f:c3:94:cf:bc:9a:7c: 07:d3:f7:56:b9:a6:c6:2b:b5:ff:70:60:c5:ca:4f: 7a:13:3f:4a:c3:30:2a:37:71:ac:a2:ec:a3:14:a1: b6:91:bc:a1:98:a0:0c:4c:0e:e2:15:f1:02:f5:ae: 97:38:3b:c7:c5:31:79:fa:82:29:0c:05:a5:40:88: b5:5f:dc:d9:25:ea:f1:01:13:0a:13:a5:38:8f:07: 4c:48:14:85:ae:33:86:83:44:65:71:78:42:9f:a6: 30:96:07:40:cd:0f:c2:ff:7a:6a:b6:43:b2:11:45: 47:98:f0:1f:73:23:ed:37:db:6f:bf:54:15:7a:f1: 3f:9d:4b:d7:e4:6c:0f:c8:9a:11:1c:bd:80:89:a1: a8:ae:bf:ad:cd:0b:06:84:b0:93:01:25:a6:9f:a4: 89:d4:7f:cc:7b:c2:e1:b4:9d:00:0c:b1:1e:1e:fe: 90:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:45:17:7C:69:8D:32:11:ED:EE:C7:EB:67:7A:0D:5B:71:ED:89:01 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:64:16:bb:8d:1b:b7:ab:81:5b:58:b9:36:ca:42:58:a2:c2: 51:1e:28:bb:66:c8:40:6a:7f:b7:69:b2:92:32:36:90:81:cc: cb:e3:61:7b:4d:88:2b:72:58:75:b1:0b:df:a9:72:b4:d4:79: 76:d2:86:59:07:2d:a0:21:b9:56:ee:47:34:0b:0f:3d:33:d8: 08:53:f8:02:1f:be:1f:09:bf:47:85:98:51:57:dc:3d:5b:d6: 3e:d1:2f:ac:63:ac:aa:60:94:e9:5d:44:ce:8a:7a:16:12:1a: 68:98:7b:f3:ed:d3:e1:31:ff:6c:26:03:a3:3f:83:19:77:5a: 74:e0:0a:4f:56:74:3c:88:d6:a3:5b:3e:88:5b:cc:fd:4c:e3: 31:1f:9e:da:07:22:be:92:55:78:98:3c:f7:79:a3:0f:42:d5: c4:30:b5:cd:da:21:e6:4a:3e:61:b8:7f:6f:10:23:2c:35:e5: a1:b3:8d:e3:6c:66:ca:1c:89:47:c3:c0:d0:1c:db:37:63:27: 9f:0d:27:b9:b7:18:35:54:5a:32:b2:91:6c:ae:57:e3:15:bd: af:92:39:8b:58:c6:c4:b2:6d:ec:d7:db:2d:9d:65:b7:15:16: a1:02:79:c0:bc:75:d2:99:86:09:b3:de:f7:ca:4f:8f:db:7f: 74:26:2b:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjYwMzI2MjIyODE0WhcNMjYwNDAyMjIyODE0WjAYMRYwFAYD VQQDEw02OWM1YjJmZi1jODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSaF5AIofK2J27SKQ6HhvJsxvbEV8Bie6BjMAFBlS8Y645tAxe4fuGW+hA5f meNn2YYeRWrcyPCeKbKjT8mWcEQXx2NxwCKc2SAhEXvQkXAUJj/DlM+8mnwH0/dW uabGK7X/cGDFyk96Ez9KwzAqN3GsouyjFKG2kbyhmKAMTA7iFfEC9a6XODvHxTF5 +oIpDAWlQIi1X9zZJerxARMKE6U4jwdMSBSFrjOGg0RlcXhCn6YwlgdAzQ/C/3pq tkOyEUVHmPAfcyPtN9tvv1QVevE/nUvX5GwPyJoRHL2AiaGorr+tzQsGhLCTASWm n6SJ1H/Me8LhtJ0ADLEeHv6QcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG1FF3xp jTIR7e7H62d6DVtx7YkBMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARWQWu40bt6uBW1i5NspCWKLCUR4ou2bIQGp/t2mykjI2kIHMy+Nhe02IK3JY dbEL36lytNR5dtKGWQctoCG5Vu5HNAsPPTPYCFP4Ah++Hwm/R4WYUVfcPVvWPtEv rGOsqmCU6V1Ezop6FhIaaJh78+3T4TH/bCYDoz+DGXdadOAKT1Z0PIjWo1s+iFvM /UzjMR+e2gcivpJVeJg893mjD0LVxDC1zdoh5ko+Ybh/bxAjLDXlobON42xmyhyJ R8PA0BzbN2Mnnw0nubcYNVRaMrKRbK5X4xW9r5I5i1jGxLJt7NfbLZ1ltxUWoQJ5 wLx10pmGCbPe98pPj9t/dCYrHw== -----END CERTIFICATE-----Generated at Sat Mar 28 08:45:01 2026 by rpki-client