$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: qLTvHYvbshRZFN8/woVJvVNhIE3nZkBg8ikI6TZJL4Y= Subject key identifier: A5:0B:30:E5:DE:0D:5E:D2:7C:3D:45:12:8E:EA:DB:99:16:1A:43:A8 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0F71 Signing time: Tue 24 Mar 2026 17:36:58 +0000 Manifest this update: Tue 24 Mar 2026 17:36:58 +0000 Manifest next update: Tue 31 Mar 2026 17:36:57 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: qi49FI/7cy4+WD0FH5yV8tYYRuGh0ajq2QzJ7J8J6Kw=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: 8kaLAfVElFdAC99fHwGaunXXva1K/sV7AglDy8IxEuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Mar 24 17:36:58 2026 GMT Not After : Mar 31 17:36:57 2026 GMT Subject: CN=69c2cbba-0664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:09:e3:5f:20:1e:5e:77:90:c6:0a:1d:70:a6: 7f:25:e3:0d:03:a4:f6:24:17:38:d7:d2:7c:d7:1f: b4:4b:fb:e1:63:65:9f:cc:86:c5:27:ca:f4:7e:6a: 30:a2:2d:11:07:5d:63:51:d4:b9:23:b6:d9:6b:49: 84:14:af:3a:d7:ac:25:a1:7d:05:83:04:e2:41:72: cb:09:f2:69:af:4d:bb:95:3f:c4:4b:a4:e1:d5:a9: 3a:75:cf:7a:b0:af:00:65:55:a9:7b:dc:a7:91:b7: 53:70:92:d8:ed:95:f5:b2:d6:cc:83:80:24:e6:aa: b3:dc:34:1d:40:01:7a:b1:08:36:f5:be:1d:c7:cc: 1a:2c:96:09:68:15:d1:b0:d7:3a:b3:91:20:35:5f: ed:fb:20:ba:1b:3b:8f:47:25:82:fa:7b:a3:90:e0: 46:16:6f:77:ef:6b:d2:46:09:7c:36:ca:75:b9:37: 71:a0:4f:24:09:6e:11:22:4c:12:e4:b7:1b:63:3d: f4:ba:64:93:87:92:c2:32:9e:8d:da:60:1d:df:f9: 26:f9:0c:da:2a:71:76:38:71:4b:cc:f9:c1:ae:e3: 87:2a:bf:7b:71:cc:c5:c8:dd:01:ab:2a:30:ce:eb: fd:5f:e0:01:13:0c:e5:1c:cd:8f:f1:94:25:fc:a1: 18:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0B:30:E5:DE:0D:5E:D2:7C:3D:45:12:8E:EA:DB:99:16:1A:43:A8 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f9:74:24:36:83:8f:27:f6:ae:cb:d1:62:95:32:84:3c:6c: 79:db:e0:b4:f7:5e:53:47:dc:e3:24:a9:49:2c:3f:c1:71:58: 0e:99:e8:b5:3f:23:d0:c4:bb:88:08:40:c3:d4:fb:e4:e1:5a: 1d:6a:56:8f:96:78:d6:1d:85:c9:44:94:c1:37:41:c5:ee:38: 15:15:7c:ca:c4:8a:be:a5:0f:68:76:05:66:8a:3e:6a:7b:26: 69:20:76:9c:cb:f0:fb:91:60:d2:71:b1:22:fe:de:c5:69:c9: 41:e3:8a:e6:75:c2:85:ec:8c:7c:56:4a:57:ae:29:bf:12:0d: 2c:54:ef:e0:a7:51:6a:52:bf:6b:cd:57:61:cb:bd:08:29:27: 95:e5:7c:1f:93:d2:05:47:df:97:43:79:13:5c:39:a5:ae:69: 15:d6:9b:55:1f:8e:44:96:38:86:8e:2e:4f:80:9e:8f:d8:5b: c5:d2:15:47:de:c7:ce:8a:b5:dc:54:b9:e1:7e:8d:7f:e6:bc: 01:98:d8:b9:ba:e8:ab:4b:27:1a:ed:36:ce:84:66:fe:85:64: e1:2f:d6:f8:06:1d:06:e7:2f:5f:fc:05:3f:8e:03:90:b2:3b: 27:5a:0b:8c:65:f5:59:0a:24:6b:ab:b9:e0:e6:46:c1:89:de: 04:80:f8:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKERCNzhEOUY5MzU4RTU2N0QzMDZFRTNCRDFFQUM3NDhF OTYwNkJGOEYwHhcNMjYwMzI0MTczNjU4WhcNMjYwMzMxMTczNjU3WjAYMRYwFAYD VQQDEw02OWMyY2JiYS0wNjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwnjXyAeXneQxgodcKZ/JeMNA6T2JBc419J81x+0S/vhY2WfzIbFJ8r0fmow oi0RB11jUdS5I7bZa0mEFK8616wloX0FgwTiQXLLCfJpr027lT/ES6Th1ak6dc96 sK8AZVWpe9ynkbdTcJLY7ZX1stbMg4Ak5qqz3DQdQAF6sQg29b4dx8waLJYJaBXR sNc6s5EgNV/t+yC6GzuPRyWC+nujkOBGFm9372vSRgl8Nsp1uTdxoE8kCW4RIkwS 5LcbYz30umSTh5LCMp6N2mAd3/km+QzaKnF2OHFLzPnBruOHKr97cczFyN0Bqyow zuv9X+ABEwzlHM2P8ZQl/KEYzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKULMOXe DV7SfD1FEo7q25kWGkOoMB8GA1UdIwQYMBaAFNt42fk1jlZ9MG7jvR6sdI6WBr+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1ZuMHdidU85SHF4MGpwWUd2 NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1Zu MHdidU85SHF4MGpwWUd2NDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS/l0JDaDjyf2rsvRYpUyhDxsedvgtPdeU0fc4ySpSSw/wXFYDpnotT8j0MS7 iAhAw9T75OFaHWpWj5Z41h2FyUSUwTdBxe44FRV8ysSKvqUPaHYFZoo+ansmaSB2 nMvw+5Fg0nGxIv7exWnJQeOK5nXCheyMfFZKV64pvxINLFTv4KdRalK/a81XYcu9 CCknleV8H5PSBUffl0N5E1w5pa5pFdabVR+ORJY4ho4uT4Cej9hbxdIVR97Hzoq1 3FS54X6Nf+a8AZjYubroq0snGu02zoRm/oVk4S/W+AYdBucvX/wFP44DkLI7J1oL jGX1WQoka6u54OZGwYneBID40A== -----END CERTIFICATE-----Generated at Thu Mar 26 02:45:18 2026 by rpki-client