$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft File: K99csyKL7Ic-zuddZ1g1RlOCNJI.mft (raw, json) Hash identifier: 2xByNNcMLTDF3iaj2ZOL6avAvHBShG98Hny6k9Q5Q3s= Subject key identifier: D3:9A:88:7C:AF:38:D6:B6:8A:3A:1D:C4:BB:30:B1:E5:14:C1:23:13 Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 0868 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft Manifest number: 085A Signing time: Tue 24 Mar 2026 20:32:12 +0000 Manifest this update: Tue 24 Mar 2026 20:32:11 +0000 Manifest next update: Tue 31 Mar 2026 20:32:11 +0000 Files and hashes: 1: K99csyKL7Ic-zuddZ1g1RlOCNJI.crl (hash: Fvs9K3U9yTBs8ZADw7eDhM3sy9uQK1s+7rpNkXoB2XY=) 2: DFB4AB2C9FD911F0B75B1848C4F9AE02.roa (hash: NDPwNan09Ssdmc1pybvK6GRLd224X2AqBtS0fXc6jf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2152 (0x868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100, serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: Mar 24 20:32:11 2026 GMT Not After : Mar 31 20:32:11 2026 GMT Subject: CN=69c2f4cc-348b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:71:2b:ef:52:e9:74:39:e1:f4:4b:16:92:69: c9:98:d2:cf:a4:ef:d4:9b:ed:0b:e4:6c:1f:57:57: 94:86:af:e6:23:9e:3c:15:3a:10:a8:3d:fe:8d:56: b0:50:cd:6c:b1:8b:6c:a0:72:91:e7:21:1d:59:88: f0:ca:5f:f5:c7:4c:87:85:fc:18:69:17:a6:e1:25: 4b:71:cf:82:9f:39:50:5a:c4:22:f5:52:20:88:d0: a3:61:65:2c:1f:ce:75:ea:a8:10:c8:92:9f:c3:78: 30:f3:d7:95:ae:b8:3b:13:61:ab:37:54:72:ac:f1: 8f:d1:76:19:7d:2a:9c:9e:51:c2:ee:74:69:26:91: 70:4d:11:1f:b2:a3:dc:a5:62:dc:f8:ed:ba:6b:5d: 0e:61:7a:4e:2d:c0:2c:84:5a:72:5d:fe:f4:7f:48: 74:79:fc:5b:1e:90:9a:15:86:a2:96:94:2a:05:d0: a0:a6:49:8d:4f:39:19:0b:89:8a:97:a5:7b:e7:17: 58:d5:e8:2f:ba:c4:9a:dc:87:27:b7:8e:31:10:95: 6e:8c:8c:27:9d:11:8a:fc:53:f9:d9:3e:e3:7c:1d: a5:cf:2a:51:45:b6:ec:95:14:3e:8c:88:8c:aa:8b: fb:f2:8b:32:c6:67:94:de:ad:af:a1:60:a5:fe:16: 8f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:9A:88:7C:AF:38:D6:B6:8A:3A:1D:C4:BB:30:B1:E5:14:C1:23:13 X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:1b:c2:d3:2c:82:08:35:c8:c4:7a:ca:e8:0a:32:c7:7b:e3: c1:c9:4d:90:0f:73:cc:77:b2:b7:fb:2c:da:61:74:41:99:dc: 93:e1:2e:11:c8:ec:7d:f8:e2:ac:c7:8a:a9:98:05:4e:05:b1: 83:7d:db:85:e0:d9:3f:eb:fc:13:a7:bc:26:cc:83:d1:93:0c: 98:7c:54:36:2b:cc:2f:df:3b:63:d7:e5:ea:95:44:34:f2:0e: 02:f1:d8:ab:c7:fe:3d:a1:5c:fd:92:9a:4e:ce:d6:52:d3:e0: b5:2b:6f:c7:d1:51:3a:c4:d0:fa:6d:cb:9e:dd:9c:47:98:5d: d0:68:a6:9e:c2:4c:e9:e8:f1:d2:f6:c3:0e:99:0b:06:ad:04: 94:0a:e3:70:13:a6:69:6f:8f:5f:fa:77:1d:a0:52:d8:3c:6b: d8:5d:6f:14:0d:b0:3d:7d:fe:4e:ee:2e:58:c4:47:10:12:30: 80:a8:8e:d0:ce:c3:6c:91:f6:58:2b:98:e8:36:39:f7:8d:de: cc:f5:cc:c1:b2:bf:ee:24:3e:de:55:11:af:4e:66:7b:3b:1c: 33:88:7e:61:38:52:f8:b9:a6:70:ce:5b:8d:fe:eb:28:14:99: 34:47:c8:c8:9c:56:f4:de:9e:c0:7a:93:72:d3:a3:41:38:42: 9b:91:35:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjYwMzI0MjAzMjExWhcNMjYwMzMxMjAzMjExWjAYMRYwFAYD VQQDEw02OWMyZjRjYy0zNDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHEr71LpdDnh9EsWkmnJmNLPpO/Um+0L5GwfV1eUhq/mI548FToQqD3+jVaw UM1ssYtsoHKR5yEdWYjwyl/1x0yHhfwYaRem4SVLcc+CnzlQWsQi9VIgiNCjYWUs H8516qgQyJKfw3gw89eVrrg7E2GrN1RyrPGP0XYZfSqcnlHC7nRpJpFwTREfsqPc pWLc+O26a10OYXpOLcAshFpyXf70f0h0efxbHpCaFYailpQqBdCgpkmNTzkZC4mK l6V75xdY1egvusSa3Icnt44xEJVujIwnnRGK/FP52T7jfB2lzypRRbbslRQ+jIiM qov78osyxmeU3q2voWCl/haPCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNOaiHyv ONa2ijodxLswseUUwSMTMB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODEwMC9BQUM3MkUwQ0ZDQ0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJ Yy16dWRkWjFnMVJsT0NOSkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHBvC0yyCCDXIxHrK6Aoyx3vjwclNkA9zzHeyt/ss2mF0QZnck+EuEcjsffji rMeKqZgFTgWxg33bheDZP+v8E6e8JsyD0ZMMmHxUNivML987Y9fl6pVENPIOAvHY q8f+PaFc/ZKaTs7WUtPgtStvx9FROsTQ+m3Lnt2cR5hd0GimnsJM6ejx0vbDDpkL Bq0ElArjcBOmaW+PX/p3HaBS2Dxr2F1vFA2wPX3+Tu4uWMRHEBIwgKiO0M7DbJH2 WCuY6DY5943ezPXMwbK/7iQ+3lURr05mezscM4h+YThS+LmmcM5bjf7rKBSZNEfI yJxW9N6ewHqTctOjQThCm5E1rA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:55:41 2026 by rpki-client