$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: B9gAv/E4wftwggHy2vbxZFTxuZeba5DV1yJiYDUiGLs= Subject key identifier: 63:FC:DB:39:CB:15:57:18:DD:E4:34:7D:07:4B:C3:98:37:AD:7F:48 Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 351C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 351C Signing time: Tue 24 Mar 2026 15:01:45 +0000 Manifest this update: Tue 24 Mar 2026 15:01:45 +0000 Manifest next update: Tue 31 Mar 2026 15:01:45 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: VMccLWIPZfyhvNsNgz/Ifv+dwwarBT/W1bk/01G0X3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13596 (0x351c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Mar 24 15:01:45 2026 GMT Not After : Mar 31 15:01:45 2026 GMT Subject: CN=69c2a759-eae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c5:7c:52:f9:36:86:c2:98:77:64:e3:1d:c2: 9c:59:d1:97:38:2c:c3:b8:c4:d8:9e:ed:82:ee:e6: 56:06:80:1e:3a:69:32:bc:43:39:0e:99:ea:cf:d0: e8:d1:8d:98:09:53:6a:a8:6d:8a:57:a3:f5:f0:bd: 6f:b1:7d:e8:f9:f6:f8:73:31:4f:99:8c:da:73:be: 94:b6:02:66:84:e8:e7:48:0a:89:1d:17:0f:b3:58: f4:29:c9:e8:30:0f:f9:56:57:4d:99:09:b7:35:cc: 7c:e6:63:25:66:4f:05:9a:62:fd:52:60:7e:3c:3e: cb:5b:d6:74:ee:4e:0a:73:0d:fb:d9:84:a1:35:c5: fc:2c:3f:b7:77:b2:dd:c0:a6:c3:5d:b7:45:26:0d: 1f:00:4c:e1:b5:a4:f5:4a:8b:ea:97:c7:06:f2:4a: 25:72:9c:d4:23:2b:2e:2a:bc:0b:2a:30:a2:95:b7: 77:31:4d:55:a5:f0:62:ac:39:f6:10:1e:b5:f6:fa: d6:8b:33:a5:10:87:06:89:cf:79:75:e3:88:71:2f: ff:3f:fb:06:94:37:f7:7a:aa:f5:4e:4e:66:ed:07: 04:78:b2:29:f1:ad:4d:1c:b7:28:03:b9:25:b0:90: e5:af:ba:72:7e:0a:13:9d:99:51:e3:84:4b:8c:61: be:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:FC:DB:39:CB:15:57:18:DD:E4:34:7D:07:4B:C3:98:37:AD:7F:48 X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:27:ca:a0:a8:e6:c1:2f:85:d7:bd:3d:89:ec:4c:25:cf:0b: 3f:8c:e4:40:4b:3d:41:11:0a:27:82:d4:4e:20:06:f0:07:0b: fd:f0:cb:93:7d:e1:8c:19:4d:9b:49:4e:67:92:7a:2e:cd:a9: 6a:14:2c:36:7a:9a:ae:48:b2:df:17:25:32:30:52:1d:9d:45: 67:5a:f4:9c:fe:70:ad:34:4f:52:a9:09:d3:86:65:61:9e:ec: 78:ff:06:63:a4:f0:58:a3:84:89:e4:dc:90:6b:e6:42:1a:0d: ec:36:22:e0:75:e8:ff:64:92:54:b5:cd:6c:7f:e4:ba:0e:73: 51:6e:5f:54:88:ea:65:43:bc:0b:6f:32:84:fc:2d:7f:f8:23: 07:b9:0d:23:ca:99:88:c3:46:98:d9:a2:30:eb:34:02:9d:e3: a0:05:c5:d1:ca:5b:c8:d0:5f:97:e6:b5:36:6b:71:a0:78:2a: 6f:18:c1:10:a0:e6:bf:87:66:74:6c:6f:91:5a:a3:40:d2:0e: fc:1b:94:a1:69:6d:02:4a:e4:27:e3:4d:46:90:ee:bb:31:b2: 23:bc:ea:13:0b:9d:32:d3:47:89:dd:a5:96:73:38:de:44:1f: b3:84:ef:4d:d2:73:92:7a:0f:c8:e0:ba:45:5c:5b:f9:0b:c0: 5a:dc:d9:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjYwMzI0MTUwMTQ1WhcNMjYwMzMxMTUwMTQ1WjAYMRYwFAYD VQQDEw02OWMyYTc1OS1lYWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmsV8Uvk2hsKYd2TjHcKcWdGXOCzDuMTYnu2C7uZWBoAeOmkyvEM5Dpnqz9Do 0Y2YCVNqqG2KV6P18L1vsX3o+fb4czFPmYzac76UtgJmhOjnSAqJHRcPs1j0Kcno MA/5VldNmQm3Ncx85mMlZk8FmmL9UmB+PD7LW9Z07k4Kcw372YShNcX8LD+3d7Ld wKbDXbdFJg0fAEzhtaT1Sovql8cG8kolcpzUIysuKrwLKjCilbd3MU1VpfBirDn2 EB619vrWizOlEIcGic95deOIcS//P/sGlDf3eqr1Tk5m7QcEeLIp8a1NHLcoA7kl sJDlr7pyfgoTnZlR44RLjGG+vQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGP82znL FVcY3eQ0fQdLw5g3rX9IMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJSfKoKjmwS+F1709iexMJc8LP4zkQEs9QREKJ4LUTiAG8AcL/fDLk33hjBlN m0lOZ5J6Ls2pahQsNnqarkiy3xclMjBSHZ1FZ1r0nP5wrTRPUqkJ04ZlYZ7seP8G Y6TwWKOEieTckGvmQhoN7DYi4HXo/2SSVLXNbH/kug5zUW5fVIjqZUO8C28yhPwt f/gjB7kNI8qZiMNGmNmiMOs0Ap3joAXF0cpbyNBfl+a1NmtxoHgqbxjBEKDmv4dm dGxvkVqjQNIO/BuUoWltAkrkJ+NNRpDuuzGyI7zqEwudMtNHid2llnM43kQfs4Tv TdJzknoPyOC6RVxb+QvAWtzZjg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:04:13 2026 by rpki-client