$ rpki-client -vvf rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft File: A72QmhoVpFA9-tWUw8bem5RgTmY.mft (raw, json) Hash identifier: rHonTTx3JRpXxoYJqcOspxqq2GxVk78O6Trl6v4mbFw= Subject key identifier: 8D:F2:D5:ED:4D:EF:66:C3:DC:90:F7:06:AE:63:55:F2:ED:09:FE:12 Authority key identifier: 03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 Certificate issuer: /CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Certificate serial: 03D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft Manifest number: 03CB Signing time: Wed 25 Mar 2026 00:16:08 +0000 Manifest this update: Wed 25 Mar 2026 00:16:08 +0000 Manifest next update: Wed 01 Apr 2026 00:16:08 +0000 Files and hashes: 1: A72QmhoVpFA9-tWUw8bem5RgTmY.crl (hash: AcVJaAoRiGtdlTJ1hzllVgOjz71lY4MO+Cj4+cfpW7U=) 2: 5409C188C6CB11ECB185E43EC4F9AE02.roa (hash: 0a9pPFK9l1fog9k4rdhxyffTfCfNNylKzOV1up6yd0U=) 3: E15CC33CD55011EFB17CB022C4F9AE02.roa (hash: aYot4qw3P8YllWeiZniDWXUCdYeGzmeGo07W9mBLGtQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 984 (0x3d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D873B, serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Validity Not Before: Mar 25 00:16:08 2026 GMT Not After : Apr 1 00:16:08 2026 GMT Subject: CN=69c32948-dc3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:88:46:48:e2:57:eb:e6:1f:0c:3a:6a:d7:ca: bd:b3:85:5b:d3:02:27:b7:09:aa:fc:2e:84:32:86: fd:54:9f:84:16:bf:8c:1e:e5:4b:32:58:73:06:1b: ca:41:58:c3:c7:93:9a:de:ac:34:f7:85:84:8c:a5: 7a:d7:71:41:73:3e:0f:77:f4:8a:49:42:b0:4a:d0: 0f:84:1f:25:a5:42:b2:d4:de:69:e8:d4:0b:f5:42: 33:1a:a7:74:af:e7:d4:ad:53:c6:ad:a8:fc:91:11: 09:77:d9:23:d8:1e:1a:bc:8e:6f:d1:c2:2d:d3:4a: 2d:f5:31:c1:fb:da:df:ab:e7:9d:98:05:40:b4:a3: 8e:27:a9:3d:ee:e3:27:dd:90:cb:82:68:6f:11:b9: da:61:65:14:aa:ee:e3:97:79:88:5b:96:c8:71:6d: dd:16:cf:f1:3f:61:25:ba:1f:98:c0:17:19:f7:6a: e5:2c:b3:ce:75:88:ab:0d:34:03:57:b4:b9:b9:de: 4f:ff:d3:e9:da:44:5d:67:02:a3:07:20:21:3e:0f: b0:99:d8:90:42:ae:8f:87:3f:7f:e3:74:f1:71:c0: b9:17:9d:58:76:45:44:41:5e:a4:2e:06:87:7a:e8: 68:d1:d6:8f:34:ae:3e:ab:f6:c2:34:d5:69:b6:56: c4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F2:D5:ED:4D:EF:66:C3:DC:90:F7:06:AE:63:55:F2:ED:09:FE:12 X509v3 Authority Key Identifier: keyid:03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0f:a3:cf:c9:08:62:24:0a:18:cd:69:0e:b4:4d:df:e2:ab: 2f:a4:be:63:b0:a3:b6:c5:00:c5:65:2c:0e:b1:1f:e7:79:23: ee:77:10:5a:10:d6:6b:11:ba:16:50:d1:96:76:d2:60:7d:63: 7e:78:29:77:45:e8:8a:f4:8c:fc:00:cb:ba:f7:72:d9:85:08: 0d:fd:a2:0e:c4:a2:fa:7a:e2:1a:d3:ff:e8:2b:b5:2b:01:9a: b1:71:f5:5d:49:31:49:5d:e4:77:5f:5b:99:ce:13:aa:b3:7f: df:78:73:b0:8e:41:be:2c:cd:44:ff:56:c3:5d:12:38:d5:cc: 3a:20:8e:87:8f:72:07:e2:65:91:ec:6e:ec:a9:ec:7e:64:b5: ba:9a:ed:86:bb:d6:90:fd:52:14:6b:44:5a:64:28:28:75:2c: de:f6:69:a2:4c:1a:08:23:e1:e8:87:92:03:15:6d:b1:9e:4b: e4:2f:9d:42:a9:9d:0d:53:eb:07:37:fc:d4:e1:f0:81:aa:be: 1d:25:38:c8:aa:7d:f3:82:9e:0a:a7:08:e1:c5:fc:be:70:97: 7f:94:e0:84:98:b8:18:39:c3:31:a5:11:b0:cf:3a:86:4d:22: 18:f5:2f:ca:6c:f5:de:d7:ef:8e:c3:ac:6d:29:fb:c1:9a:72: 32:e3:9f:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3M0IxMTAvBgNVBAUTKDAzQkQ5MDlBMUExNUE0NTAzREZBRDU5NEMzQzZERTlC OTQ2MDRFNjYwHhcNMjYwMzI1MDAxNjA4WhcNMjYwNDAxMDAxNjA4WjAYMRYwFAYD VQQDEw02OWMzMjk0OC1kYzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYhGSOJX6+YfDDpq18q9s4Vb0wIntwmq/C6EMob9VJ+EFr+MHuVLMlhzBhvK QVjDx5Oa3qw094WEjKV613FBcz4Pd/SKSUKwStAPhB8lpUKy1N5p6NQL9UIzGqd0 r+fUrVPGraj8kREJd9kj2B4avI5v0cIt00ot9THB+9rfq+edmAVAtKOOJ6k97uMn 3ZDLgmhvEbnaYWUUqu7jl3mIW5bIcW3dFs/xP2Eluh+YwBcZ92rlLLPOdYirDTQD V7S5ud5P/9Pp2kRdZwKjByAhPg+wmdiQQq6Phz9/43TxccC5F51YdkVEQV6kLgaH euho0daPNK4+q/bCNNVptlbEnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI3y1e1N 72bD3JD3Bq5jVfLtCf4SMB8GA1UdIwQYMBaAFAO9kJoaFaRQPfrVlMPG3puUYE5m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODczQi80QTE2QkJEQUM2 MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBGQTktdFdVdzhiZW01UmdU bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3MlFtaG9WcEZBOS10V1V3OGJlbTVSZ1RtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODczQi80QTE2QkJEQUM2MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBG QTktdFdVdzhiZW01UmdUbVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfQ+jz8kIYiQKGM1pDrRN3+KrL6S+Y7CjtsUAxWUsDrEf53kj7ncQWhDWaxG6 FlDRlnbSYH1jfngpd0XoivSM/ADLuvdy2YUIDf2iDsSi+nriGtP/6Cu1KwGasXH1 XUkxSV3kd19bmc4TqrN/33hzsI5BvizNRP9Ww10SONXMOiCOh49yB+Jlkexu7Kns fmS1uprthrvWkP1SFGtEWmQoKHUs3vZpokwaCCPh6IeSAxVtsZ5L5C+dQqmdDVPr Bzf81OHwgaq+HSU4yKp984KeCqcI4cX8vnCXf5TghJi4GDnDMaURsM86hk0iGPUv ymz13tfvjsOsbSn7wZpyMuOfqA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:35:29 2026 by rpki-client