$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft File: rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft (raw, json) Hash identifier: KBjOv7TMb7J/p0aTmCr9xiPG2eLshp2TcZzQkUxUTmc= Subject key identifier: 94:7C:EB:90:1E:AF:8F:BA:52:3A:A9:79:B8:49:F2:7C:F4:A4:FF:10 Authority key identifier: AD:01:9F:03:5B:FF:3F:3B:17:32:3C:DB:BB:14:A0:7D:5D:E8:EC:33 Certificate issuer: /CN=A91D837B/serialNumber=AD019F035BFF3F3B17323CDBBB14A07D5DE8EC33 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft Manifest number: F3 Signing time: Fri 27 Mar 2026 05:53:09 +0000 Manifest this update: Fri 27 Mar 2026 05:53:09 +0000 Manifest next update: Fri 03 Apr 2026 05:53:09 +0000 Files and hashes: 1: rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl (hash: 9sGHLqzoS893TtY2HnT4LwFrMD6/T2Lsa5BBC6cUqHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=AD019F035BFF3F3B17323CDBBB14A07D5DE8EC33 Validity Not Before: Mar 27 05:53:09 2026 GMT Not After : Apr 3 05:53:09 2026 GMT Subject: CN=69c61b45-7c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:b1:c4:b7:3e:6d:9f:c7:0e:71:d0:4e:77: 9a:65:5d:ec:71:f2:90:a1:ae:22:ac:e6:51:2b:fe: fb:e3:67:76:17:37:f0:52:f3:e9:55:d1:82:3e:ec: 3d:3d:39:73:c9:1e:03:2b:3c:db:96:ec:71:84:4f: 6c:89:67:2b:fe:d6:25:e9:25:a3:34:ea:16:ab:ed: 05:57:64:eb:ac:82:90:c9:fd:33:39:5b:93:32:1c: 89:87:29:d3:63:90:13:43:12:6d:67:9c:37:32:f7: 58:24:11:df:f9:2b:46:ae:bd:a2:c2:93:5a:f3:b9: c4:ec:04:08:c0:c1:86:a9:3e:47:06:74:c6:1a:e8: 30:91:3d:ac:cd:13:2a:c2:6c:be:95:0e:f7:20:8b: ca:c4:8f:0d:1a:6e:ff:07:ce:f3:c6:2d:21:06:03: 3d:6b:3a:b8:00:1e:68:6b:b3:b1:a4:59:69:82:96: b1:09:60:04:d2:14:96:49:65:a1:04:57:8d:26:f6: 8e:cf:94:0d:65:4f:0b:a1:4d:ed:d6:c0:b8:79:d8: 87:c5:da:31:99:b7:5d:db:aa:ed:b4:91:14:b6:4f: 71:a6:ad:e4:a6:95:19:43:1c:10:87:85:aa:98:79: 75:9b:b1:19:d3:c6:ea:56:00:16:59:34:59:95:af: ac:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7C:EB:90:1E:AF:8F:BA:52:3A:A9:79:B8:49:F2:7C:F4:A4:FF:10 X509v3 Authority Key Identifier: keyid:AD:01:9F:03:5B:FF:3F:3B:17:32:3C:DB:BB:14:A0:7D:5D:E8:EC:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQGfA1v_PzsXMjzbuxSgfV3o7DM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/1D7B63BCB99C11EF9638F769C4F9AE02/rQGfA1v_PzsXMjzbuxSgfV3o7DM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3e:0d:57:08:39:3c:98:94:cf:2d:d4:1b:46:be:f8:16:81: 19:55:24:bb:83:e5:0d:98:aa:88:64:d4:92:fe:98:74:aa:fc: 9c:bb:85:04:8e:b3:6f:7f:7a:90:7b:72:d9:48:b4:23:03:e3: 90:b1:c4:8a:b6:69:5a:22:ed:96:e9:fe:33:ce:6a:7b:f8:a9: 9f:3c:29:d0:e4:d6:9b:fe:24:3a:4c:bc:40:10:24:43:4f:af: 60:30:a1:4e:5b:63:2e:49:eb:2d:33:e7:12:87:23:bb:31:4b: cd:20:a2:75:5a:0e:97:e4:d8:f2:c5:66:53:6c:5f:8a:03:86: 61:ff:2c:2b:7d:18:ea:b8:24:98:d5:01:12:72:82:e9:f5:39: 51:8e:f5:3c:e6:12:40:0c:8b:55:3d:ee:32:de:0f:ae:24:e9: 77:33:7b:79:90:d7:1e:4e:45:f3:f2:fc:d8:62:3b:b7:9d:82: 7d:d2:57:65:a3:b6:92:dc:57:a2:b2:c6:b0:3b:15:12:ab:1f: 61:0e:60:2d:30:79:d9:9b:7e:69:7b:21:43:f6:f2:ae:0b:b9: 74:e0:86:a3:e0:21:7d:d6:26:9c:56:27:41:6a:b8:ad:60:d3: b2:fd:dd:bf:d9:1b:13:16:11:ab:a7:91:d5:5f:69:45:db:5e: d3:8d:ba:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzN0IxMTAvBgNVBAUTKEFEMDE5RjAzNUJGRjNGM0IxNzMyM0NEQkJCMTRBMDdE NURFOEVDMzMwHhcNMjYwMzI3MDU1MzA5WhcNMjYwNDAzMDU1MzA5WjAYMRYwFAYD VQQDEw02OWM2MWI0NS03YzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmGxxLc+bZ/HDnHQTneaZV3scfKQoa4irOZRK/7742d2FzfwUvPpVdGCPuw9 PTlzyR4DKzzbluxxhE9siWcr/tYl6SWjNOoWq+0FV2TrrIKQyf0zOVuTMhyJhynT Y5ATQxJtZ5w3MvdYJBHf+StGrr2iwpNa87nE7AQIwMGGqT5HBnTGGugwkT2szRMq wmy+lQ73IIvKxI8NGm7/B87zxi0hBgM9azq4AB5oa7OxpFlpgpaxCWAE0hSWSWWh BFeNJvaOz5QNZU8LoU3t1sC4ediHxdoxmbdd26rttJEUtk9xpq3kppUZQxwQh4Wq mHl1m7EZ08bqVgAWWTRZla+sNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJR865Ae r4+6UjqpebhJ8nz0pP8QMB8GA1UdIwQYMBaAFK0BnwNb/z87FzI827sUoH1d6Owz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM3Qi8xRDdCNjNCQ0I5 OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi9yUUdmQTF2X1B6c1hNanpidXhTZ2ZWM283 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRR2ZBMXZfUHpzWE1qemJ1eFNnZlYzbzdETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM3Qi8xRDdCNjNCQ0I5OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi9yUUdmQTF2X1B6 c1hNanpidXhTZ2ZWM283RE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEz4NVwg5PJiUzy3UG0a++BaBGVUku4PlDZiqiGTUkv6YdKr8nLuFBI6zb396 kHty2Ui0IwPjkLHEirZpWiLtlun+M85qe/ipnzwp0OTWm/4kOky8QBAkQ0+vYDCh TltjLknrLTPnEocjuzFLzSCidVoOl+TY8sVmU2xfigOGYf8sK30Y6rgkmNUBEnKC 6fU5UY71POYSQAyLVT3uMt4PriTpdzN7eZDXHk5F8/L82GI7t52CfdJXZaO2ktxX orLGsDsVEqsfYQ5gLTB52Zt+aXshQ/byrgu5dOCGo+AhfdYmnFYnQWq4rWDTsv3d v9kbExYRq6eR1V9pRdte0426QA== -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:01 2026 by rpki-client