$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: REkzsYqHiSoQffnpmfVWkhIYQY3BIsieuD7BwS0if8A= Subject key identifier: F5:31:E9:79:36:14:C9:66:F4:9B:33:C8:32:65:7C:8A:C6:CC:49:9C Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0DBB Signing time: Tue 24 Mar 2026 17:45:45 +0000 Manifest this update: Tue 24 Mar 2026 17:45:44 +0000 Manifest next update: Tue 31 Mar 2026 17:45:44 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: VDgx0rGgy+BZ64CTt9Da+Rbm76yC4+QQRfcR8g/UdP4=) 2: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: 2tWM8vEG9F+dRzyZM43QfG2NHqOSxdnWZ0mFUqy61lM=) 3: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: FAOH2k3QSSS7t1HJ3yvrPUgVPiND+/x5TUDnE1klS5s=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: n+1VIRJou+nBlWU6Es4cxB80UK2IiCMsqRaa75g/YvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3540 (0xdd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Mar 24 17:45:44 2026 GMT Not After : Mar 31 17:45:44 2026 GMT Subject: CN=69c2cdc9-a554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:df:1a:3a:96:97:cb:92:ec:91:c8:3c:93:ac: e6:27:f5:5f:01:fe:16:dc:e9:98:98:64:b4:4f:80: 74:28:30:6d:76:66:ae:da:00:ae:2b:a2:a5:af:02: b4:3a:66:db:74:fe:37:93:89:ef:47:08:ad:98:01: 48:1b:44:05:06:10:63:67:cf:ab:aa:45:06:00:d0: f6:94:2e:71:9e:27:d2:2d:41:14:ee:c1:12:be:b6: 13:a2:45:d1:bf:50:65:2e:87:29:6a:ab:ce:6a:72: b7:b3:fd:9f:bf:c5:03:28:1d:1f:b2:eb:2b:9b:b4: 41:3a:39:2f:50:0b:bd:76:d8:7b:f7:57:cf:48:64: 4c:75:92:4e:db:c4:77:fe:63:12:51:7a:ff:f5:e7: 4f:23:ca:c5:4a:8c:7a:63:a5:e4:f3:fd:af:41:0c: 2f:b3:f3:e8:73:0e:6f:cd:04:50:ec:ce:5d:14:8a: a7:88:62:e0:06:65:69:73:7b:97:90:5f:3d:9f:b2: 82:b2:94:60:1a:0c:ba:b0:f8:00:a9:de:20:90:1f: 4f:e5:c5:f9:64:d4:68:8c:f9:24:70:37:b1:59:e6: 6a:ab:b1:3c:a8:ff:d7:df:f1:12:ad:6f:23:1a:fa: 62:22:a7:78:ca:1c:51:4a:80:60:68:3a:bc:63:74: 56:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:31:E9:79:36:14:C9:66:F4:9B:33:C8:32:65:7C:8A:C6:CC:49:9C X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:1a:01:03:66:ce:83:72:94:20:92:b0:ab:c5:18:ff:c1:e8: f4:63:e3:f4:a4:a4:ed:c6:c2:d0:24:35:fe:8c:e4:aa:ad:94: c9:e9:de:21:cf:5b:11:32:83:e9:22:db:2a:a8:d1:7e:b5:bd: db:fd:c2:ad:1d:6f:d4:cc:8a:f9:a0:b7:96:6d:e0:de:b6:05: e5:78:81:08:18:98:a0:7e:f5:c9:c6:37:c9:e6:0a:48:3f:0b: d8:f9:15:ec:59:2e:9a:cc:cf:9d:49:29:f0:8c:dc:bd:3c:c1: 16:ff:a6:2c:00:47:cc:90:7a:38:b6:6e:9f:ce:a6:30:2d:79: 38:3f:19:66:04:23:82:1f:92:a0:b0:88:3e:b6:c3:8c:c1:e8: 99:ca:92:20:d3:71:cc:35:8a:54:2b:51:36:fd:8f:bf:ea:0b: a6:44:fd:74:bb:98:da:a6:77:65:ef:a9:78:bb:58:c8:d4:7f: ab:8b:a2:c5:1e:df:05:12:6d:54:06:4f:68:42:1e:5e:c7:c5: 4d:0c:91:fd:27:43:f8:96:bd:38:50:b5:4c:49:3c:f7:d1:34: 31:57:2d:3f:48:90:6f:7a:b7:45:17:35:cb:7e:83:93:c2:fe: b1:d2:1f:88:93:ac:63:a9:5c:05:c1:2f:0d:56:ca:f0:f9:49: 6c:53:81:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjYwMzI0MTc0NTQ0WhcNMjYwMzMxMTc0NTQ0WjAYMRYwFAYD VQQDEw02OWMyY2RjOS1hNTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN8aOpaXy5Lskcg8k6zmJ/VfAf4W3OmYmGS0T4B0KDBtdmau2gCuK6KlrwK0 OmbbdP43k4nvRwitmAFIG0QFBhBjZ8+rqkUGAND2lC5xnifSLUEU7sESvrYTokXR v1BlLocpaqvOanK3s/2fv8UDKB0fsusrm7RBOjkvUAu9dth791fPSGRMdZJO28R3 /mMSUXr/9edPI8rFSox6Y6Xk8/2vQQwvs/Pocw5vzQRQ7M5dFIqniGLgBmVpc3uX kF89n7KCspRgGgy6sPgAqd4gkB9P5cX5ZNRojPkkcDexWeZqq7E8qP/X3/ESrW8j GvpiIqd4yhxRSoBgaDq8Y3RWkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPUx6Xk2 FMlm9JszyDJlfIrGzEmcMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiRoBA2bOg3KUIJKwq8UY/8Ho9GPj9KSk7cbC0CQ1/ozkqq2UyeneIc9bETKD 6SLbKqjRfrW92/3CrR1v1MyK+aC3lm3g3rYF5XiBCBiYoH71ycY3yeYKSD8L2PkV 7FkumszPnUkp8IzcvTzBFv+mLABHzJB6OLZun86mMC15OD8ZZgQjgh+SoLCIPrbD jMHomcqSINNxzDWKVCtRNv2Pv+oLpkT9dLuY2qZ3Ze+peLtYyNR/q4uixR7fBRJt VAZPaEIeXsfFTQyR/SdD+Ja9OFC1TEk899E0MVctP0iQb3q3RRc1y36Dk8L+sdIf iJOsY6lcBcEvDVbK8PlJbFOBkg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:03:01 2026 by rpki-client