$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: FMFGOAyZoOBD/aXTHKD53XLUWjjWxU+63j93zvGVSc4= Subject key identifier: 11:89:B9:28:25:B0:57:FD:F4:EC:D2:69:F1:94:6A:6D:C9:2B:87:DC Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0DBC Signing time: Thu 26 Mar 2026 17:50:29 +0000 Manifest this update: Thu 26 Mar 2026 17:50:28 +0000 Manifest next update: Thu 02 Apr 2026 17:50:28 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: l5/u7mkHAIqjN7QNXYeR0imgdE+odlp3hpAIlkzYe2A=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: FAOH2k3QSSS7t1HJ3yvrPUgVPiND+/x5TUDnE1klS5s=) 3: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: n+1VIRJou+nBlWU6Es4cxB80UK2IiCMsqRaa75g/YvY=) 4: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: 2tWM8vEG9F+dRzyZM43QfG2NHqOSxdnWZ0mFUqy61lM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3541 (0xdd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Mar 26 17:50:28 2026 GMT Not After : Apr 2 17:50:28 2026 GMT Subject: CN=69c571e4-3cd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:bd:5a:a2:b0:22:10:27:1b:9d:b1:7c:c2: 2c:98:ae:b1:8d:d5:ec:59:49:7b:36:b4:dd:fa:d1: a5:b3:ca:f5:01:ce:69:73:b7:a6:50:29:46:1c:55: 60:14:4a:e1:08:69:c8:85:d9:91:3d:ec:01:31:43: 70:1b:32:e6:7b:b0:c6:d4:37:c9:d6:bc:35:b9:3f: 6e:46:dc:4b:d7:b8:7a:a3:6a:1b:eb:8f:f8:7e:2d: 63:f3:a7:fa:bc:5a:f1:02:28:4a:7b:d9:dd:44:d0: cd:a5:47:de:3e:82:8f:b9:31:4f:32:4a:92:53:a1: 20:a3:85:a5:aa:e9:83:56:da:e7:37:51:81:02:18: d6:7c:32:af:b0:a7:3a:01:62:25:20:79:f6:6d:3c: 95:61:f9:db:a1:d2:b6:b1:c3:6c:f1:ae:92:03:21: 30:03:e1:ea:ab:7a:b8:bd:9b:36:87:b9:f0:71:b4: ba:75:cc:ed:f2:51:b8:81:54:4c:1d:2e:28:e5:e4: 01:f5:ff:8e:50:22:be:57:9b:59:c7:f3:78:ce:fe: ac:72:35:b5:24:74:18:45:a2:7a:09:ac:8c:c1:c1: 63:13:46:37:68:76:33:1e:9f:35:ce:09:66:22:76: 5d:98:eb:77:d4:39:7f:2f:fe:5b:99:4b:1e:b6:a4: ea:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:89:B9:28:25:B0:57:FD:F4:EC:D2:69:F1:94:6A:6D:C9:2B:87:DC X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:2f:86:54:53:64:6c:14:1a:95:8c:3f:41:91:8e:a9:05:9f: ab:35:7d:6e:11:7d:c8:d2:df:36:3d:ef:46:db:a8:a3:ee:4a: 3e:94:b8:f9:4c:dc:4c:7d:e8:f2:8f:09:df:d0:4e:c1:1a:d2: df:c6:4b:85:e8:56:2d:8d:ba:ff:ac:63:66:3a:e1:ce:00:08: 79:95:0f:b0:dd:91:a6:4d:0f:fa:10:98:b9:33:26:fe:e7:82: 7b:12:e3:af:ee:33:ab:d7:91:83:08:f1:69:fe:27:c9:7f:34: 09:e0:4c:20:2a:f7:a8:55:3d:e3:aa:1d:cd:ad:f8:aa:4b:b1: 0f:50:77:a9:72:20:42:e1:96:c4:5e:18:7b:2c:67:be:80:2c: eb:78:ec:f8:a3:a3:2a:42:2e:84:50:8e:d5:40:78:18:96:5d: 25:d8:f9:99:03:4f:4a:7c:02:b7:31:94:a3:30:af:a9:e5:78: b0:7d:fd:d6:63:f7:11:3f:ce:ab:5d:32:1d:cd:73:e4:b4:3a: 5e:84:5d:0d:87:57:7c:87:5f:a5:a3:8a:4d:95:40:21:0e:44: ac:bc:44:ee:4c:bb:8c:14:a5:08:6d:7d:ee:7b:71:a9:9b:24: e6:73:71:a9:f7:10:98:20:1a:f1:22:f5:14:f8:ae:c0:21:2a: f5:1b:ec:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjYwMzI2MTc1MDI4WhcNMjYwNDAyMTc1MDI4WjAYMRYwFAYD VQQDEw02OWM1NzFlNC0zY2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkG9WqKwIhAnG52xfMIsmK6xjdXsWUl7NrTd+tGls8r1Ac5pc7emUClGHFVg FErhCGnIhdmRPewBMUNwGzLme7DG1DfJ1rw1uT9uRtxL17h6o2ob64/4fi1j86f6 vFrxAihKe9ndRNDNpUfePoKPuTFPMkqSU6Ego4WlqumDVtrnN1GBAhjWfDKvsKc6 AWIlIHn2bTyVYfnbodK2scNs8a6SAyEwA+Hqq3q4vZs2h7nwcbS6dczt8lG4gVRM HS4o5eQB9f+OUCK+V5tZx/N4zv6scjW1JHQYRaJ6CayMwcFjE0Y3aHYzHp81zglm InZdmOt31Dl/L/5bmUsetqTqgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBGJuSgl sFf99OzSafGUam3JK4fcMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADy+GVFNkbBQalYw/QZGOqQWfqzV9bhF9yNLfNj3vRtuoo+5KPpS4+UzcTH3o 8o8J39BOwRrS38ZLhehWLY26/6xjZjrhzgAIeZUPsN2Rpk0P+hCYuTMm/ueCexLj r+4zq9eRgwjxaf4nyX80CeBMICr3qFU946odza34qkuxD1B3qXIgQuGWxF4Yeyxn voAs63js+KOjKkIuhFCO1UB4GJZdJdj5mQNPSnwCtzGUozCvqeV4sH391mP3ET/O q10yHc1z5LQ6XoRdDYdXfIdfpaOKTZVAIQ5ErLxE7ky7jBSlCG197ntxqZsk5nNx qfcQmCAa8SL1FPiuwCEq9RvsKA== -----END CERTIFICATE-----Generated at Thu Mar 26 23:44:39 2026 by rpki-client