$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft File: _edM0WVtTsrysOa7wxNdTrhAeCs.mft (raw, json) Hash identifier: KyIDTOgR1rOWIU0el4jpgT5C/g0kPx+g8HXgpB+apqE= Subject key identifier: D5:77:6B:E1:21:A7:B1:13:37:61:C1:7A:9E:FF:CC:D1:45:65:4B:5C Authority key identifier: FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B Certificate issuer: /CN=A91DA898/serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft Manifest number: E1 Signing time: Tue 24 Mar 2026 14:36:11 +0000 Manifest this update: Tue 24 Mar 2026 14:36:10 +0000 Manifest next update: Tue 31 Mar 2026 14:36:10 +0000 Files and hashes: 1: _edM0WVtTsrysOa7wxNdTrhAeCs.crl (hash: OACoE5WAIiIlvyR1yykxaa5xY9pdig409q+bbPj4ecI=) 2: 22B4D1705AF911F09FF3D30BC4F9AE02.roa (hash: CNoBDdWKHlS5zMcPnKORydFQCwgOqUzsqQv9svT1ja4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA898, serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Validity Not Before: Mar 24 14:36:10 2026 GMT Not After : Mar 31 14:36:10 2026 GMT Subject: CN=69c2a15a-6aa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:31:fe:74:a2:14:31:1a:c6:8a:77:ac:c3:ff: 51:f2:a5:97:d5:c3:30:b3:02:c5:93:40:f4:a5:fb: 7b:96:50:a2:7b:c6:5e:81:c1:dc:41:c9:cf:3f:10: 7c:0c:0f:1d:3e:0e:8b:38:42:78:d2:d7:c1:9f:e4: e7:a8:51:2c:be:d7:d1:b0:8b:c8:91:cd:e9:82:62: 47:88:e0:ed:59:d7:bb:08:a0:b4:0a:9a:78:a2:79: 0a:72:64:f6:c1:48:8f:81:08:99:94:1f:11:80:a6: d4:cc:05:4a:90:d0:31:b6:06:6a:fa:d6:96:37:48: 32:39:a0:5a:d8:cd:3d:bb:3f:af:bf:65:93:4e:cd: d8:91:75:98:af:30:cd:14:d7:30:86:66:e7:50:0a: 71:47:7b:f5:87:3a:a9:7f:cc:ee:fe:ee:cf:6e:9e: 56:48:de:ed:89:10:12:03:9d:71:9b:b8:74:86:32: 48:5e:d2:bf:33:bb:44:cc:c0:ca:77:e3:1f:d3:a3: 97:db:f3:2f:43:13:30:d6:a5:50:d9:5c:ca:0e:e7: 9f:2a:76:2d:1a:31:62:19:0a:5f:2c:22:aa:79:36: 01:3c:ce:f5:11:58:19:e6:85:59:7a:54:b4:ec:f2: 4a:4c:e1:b8:e3:50:aa:18:dc:a3:61:fe:3e:e0:b2: ca:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:77:6B:E1:21:A7:B1:13:37:61:C1:7A:9E:FF:CC:D1:45:65:4B:5C X509v3 Authority Key Identifier: keyid:FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:7e:cb:a0:06:1e:14:b4:c9:17:1f:9e:ad:c4:88:c6:a0:76: e7:31:76:f9:1c:7a:34:bb:58:6f:ed:45:33:1a:85:60:37:70: 87:67:ef:e0:af:9e:20:5a:a8:7c:73:04:75:18:65:71:48:f5: cb:13:66:4c:95:f2:46:d2:cb:fa:d8:70:3a:a9:ff:f8:2c:e3: c9:41:3f:25:0a:fb:e1:25:22:28:2e:d8:d1:93:82:62:11:e0: ab:6e:86:12:41:08:75:e3:9c:5c:9f:48:c1:5a:bf:41:59:6a: 84:2c:00:3f:a8:a1:2b:a6:e3:49:19:b9:83:a4:91:a1:26:5d: 5a:6c:68:cd:6f:ac:f8:1c:3f:7c:c6:fb:c1:39:24:be:1d:c7: 79:0f:3d:4e:8f:fe:51:09:31:45:29:74:18:67:70:45:06:3a: 45:b3:f8:58:64:03:2e:f6:1c:40:7d:b1:76:ff:30:ed:33:9d: 80:50:79:71:4d:1d:f9:54:03:5e:c6:e2:96:d5:43:8a:b0:e5: 40:9d:2e:b6:80:a8:4d:88:44:5f:11:7f:cc:22:a1:c0:d7:7b: 43:32:3e:02:ca:16:8e:da:ca:5a:cb:4c:42:68:34:68:04:98: e1:e7:bc:b6:03:b4:8c:b3:99:0d:bb:60:34:ba:fd:91:a5:ef: 63:b1:1f:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE4OTgxMTAvBgNVBAUTKEZERTc0Q0QxNjU2RDRFQ0FGMkIwRTZCQkMzMTM1RDRF Qjg0MDc4MkIwHhcNMjYwMzI0MTQzNjEwWhcNMjYwMzMxMTQzNjEwWjAYMRYwFAYD VQQDEw02OWMyYTE1YS02YWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzH+dKIUMRrGinesw/9R8qWX1cMwswLFk0D0pft7llCie8ZegcHcQcnPPxB8 DA8dPg6LOEJ40tfBn+TnqFEsvtfRsIvIkc3pgmJHiODtWde7CKC0Cpp4onkKcmT2 wUiPgQiZlB8RgKbUzAVKkNAxtgZq+taWN0gyOaBa2M09uz+vv2WTTs3YkXWYrzDN FNcwhmbnUApxR3v1hzqpf8zu/u7Pbp5WSN7tiRASA51xm7h0hjJIXtK/M7tEzMDK d+Mf06OX2/MvQxMw1qVQ2VzKDuefKnYtGjFiGQpfLCKqeTYBPM71EVgZ5oVZelS0 7PJKTOG441CqGNyjYf4+4LLKoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNV3a+Eh p7ETN2HBep7/zNFFZUtcMB8GA1UdIwQYMBaAFP3nTNFlbU7K8rDmu8MTXU64QHgr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTg5OC80MDdBMjVFQUQ4 N0YxMUVGOTFDQzUzNDZDNEY5QUUwMi9fZWRNMFdWdFRzcnlzT2E3d3hOZFRyaEFl Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19lZE0wV1Z0VHNyeXNPYTd3eE5kVHJoQWVDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTg5OC80MDdBMjVFQUQ4N0YxMUVGOTFDQzUzNDZDNEY5QUUwMi9fZWRNMFdWdFRz cnlzT2E3d3hOZFRyaEFlQ3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAan7LoAYeFLTJFx+ercSIxqB25zF2+Rx6NLtYb+1FMxqFYDdwh2fv4K+eIFqo fHMEdRhlcUj1yxNmTJXyRtLL+thwOqn/+CzjyUE/JQr74SUiKC7Y0ZOCYhHgq26G EkEIdeOcXJ9IwVq/QVlqhCwAP6ihK6bjSRm5g6SRoSZdWmxozW+s+Bw/fMb7wTkk vh3HeQ89To/+UQkxRSl0GGdwRQY6RbP4WGQDLvYcQH2xdv8w7TOdgFB5cU0d+VQD XsbiltVDirDlQJ0utoCoTYhEXxF/zCKhwNd7QzI+AsoWjtrKWstMQmg0aASY4ee8 tgO0jLOZDbtgNLr9kaXvY7EfSQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:08:47 2026 by rpki-client