$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: gc3OSMUVclVNvc/lnoVJ80pKOpVdsCQ0nQTMn28HTmU= Subject key identifier: 80:8B:A5:DA:E4:65:88:A8:B2:45:2D:DC:90:85:16:61:AE:33:B7:74 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: 0123 Signing time: Wed 25 Mar 2026 04:56:57 +0000 Manifest this update: Wed 25 Mar 2026 04:56:57 +0000 Manifest next update: Wed 01 Apr 2026 04:56:57 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: 0AXUB+K6TFz+5NOeK8W4CBwyyXZNmimjYNL3MLFwT+U=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: cly4cYutElaX5qSNdsfUH5zLjhQKkS1wrfF7eYDZnn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Mar 25 04:56:57 2026 GMT Not After : Apr 1 04:56:57 2026 GMT Subject: CN=69c36b19-6d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3d:7b:80:de:0a:da:7e:a0:f2:a9:86:a4:15: 52:21:03:1d:36:c7:7b:e9:e7:a6:25:15:ab:f0:32: 86:a8:94:07:01:7c:df:25:41:45:8e:8b:89:83:65: d8:2f:a8:7e:cb:29:17:fe:25:37:49:58:0e:76:f8: 5d:22:a4:4a:a9:bf:4a:5e:0d:54:a8:2d:3c:e3:9f: 8c:db:86:30:9b:d7:b7:81:19:5d:d5:6f:49:49:80: 40:a0:c0:5e:4e:0a:f5:d6:1a:14:5b:6a:b4:14:fa: 02:a6:d5:bf:24:4f:45:db:95:65:a4:81:65:e7:be: a8:93:c6:8c:de:d9:82:fc:3c:02:8c:19:96:bb:03: 30:09:3d:8c:93:90:ab:9e:27:b7:49:96:4e:5f:9b: f9:5b:a2:0c:81:16:bc:22:e1:8b:b8:cf:20:1f:ef: 4e:e7:91:7d:1a:26:73:60:64:f5:fd:3b:e2:d1:cb: 38:ae:e4:63:ae:56:f4:31:5a:48:d7:7c:19:00:84: f2:ce:2a:6f:c6:d0:d3:f4:ae:3d:d2:2e:44:f0:fa: 6a:a6:b7:60:fb:61:a7:b2:e4:f6:b2:76:d5:ea:d6: 06:ee:b4:6d:5a:ab:ea:27:32:f6:de:68:a6:66:a3: b5:80:4f:79:ea:5f:e4:19:df:15:4e:29:6b:36:78: 23:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8B:A5:DA:E4:65:88:A8:B2:45:2D:DC:90:85:16:61:AE:33:B7:74 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:29:2a:db:fb:9d:1b:52:21:12:c7:22:66:cd:24:a5:82:de: a7:1a:26:38:54:f8:4b:a4:8c:88:34:e5:9a:eb:4e:58:fc:1f: 86:92:e8:10:98:9d:cf:34:96:75:4c:43:2a:b6:6c:1b:f0:d6: a6:b6:e4:0a:10:f0:25:27:6e:9c:da:b5:60:2f:95:d8:55:fc: ee:0a:a2:b6:5f:b9:da:da:4d:24:17:2e:c6:eb:b7:c4:e8:b1: fd:5e:3c:f1:2e:26:de:17:41:45:d1:a3:10:d3:7f:94:ae:3c: 25:46:10:c7:23:5e:ca:6d:84:07:66:01:73:02:a0:2e:31:d1: ef:87:a0:38:45:27:20:d9:49:e0:3a:9e:60:04:1c:21:85:54: 64:18:2a:cd:10:23:3b:1a:ad:74:de:25:ca:67:0d:8d:0f:e2: 46:41:8f:ef:42:05:27:11:23:33:2b:58:cc:85:2b:17:88:ff: 0e:f6:aa:3b:aa:d3:97:07:12:92:ea:da:6e:66:9e:40:9d:c9: 2b:23:33:0a:a6:35:4c:09:3d:e6:fc:4c:89:7a:29:43:39:e5: b8:38:04:dc:17:f7:e5:db:63:1e:79:92:04:92:56:e8:63:57: de:bd:53:d0:75:63:fc:77:bc:c1:65:5b:73:1c:be:4b:48:da: b0:86:8f:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKERGNDdDRUNDNTdFQTg4QUVCOTZBMzg2NTU2MEI5RjIy NjBCQTk5MEUwHhcNMjYwMzI1MDQ1NjU3WhcNMjYwNDAxMDQ1NjU3WjAYMRYwFAYD VQQDEw02OWMzNmIxOS02ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnj17gN4K2n6g8qmGpBVSIQMdNsd76eemJRWr8DKGqJQHAXzfJUFFjouJg2XY L6h+yykX/iU3SVgOdvhdIqRKqb9KXg1UqC0845+M24Ywm9e3gRld1W9JSYBAoMBe Tgr11hoUW2q0FPoCptW/JE9F25VlpIFl576ok8aM3tmC/DwCjBmWuwMwCT2Mk5Cr nie3SZZOX5v5W6IMgRa8IuGLuM8gH+9O55F9GiZzYGT1/Tvi0cs4ruRjrlb0MVpI 13wZAITyzipvxtDT9K490i5E8Ppqprdg+2GnsuT2snbV6tYG7rRtWqvqJzL23mim ZqO1gE956l/kGd8VTilrNngjuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFICLpdrk ZYioskUt3JCFFmGuM7d0MB8GA1UdIwQYMBaAFN9HzsxX6oiuuWo4ZVYLnyJgupkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi81ODAwNEFBQTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlLNjVhamhsVmd1ZkltQzZt UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi81ODAwNEFBQTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlL NjVhamhsVmd1ZkltQzZtUTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3Ckq2/udG1IhEsciZs0kpYLepxomOFT4S6SMiDTlmutOWPwfhpLoEJidzzSW dUxDKrZsG/DWprbkChDwJSdunNq1YC+V2FX87gqitl+52tpNJBcuxuu3xOix/V48 8S4m3hdBRdGjENN/lK48JUYQxyNeym2EB2YBcwKgLjHR74egOEUnINlJ4DqeYAQc IYVUZBgqzRAjOxqtdN4lymcNjQ/iRkGP70IFJxEjMytYzIUrF4j/DvaqO6rTlwcS kurabmaeQJ3JKyMzCqY1TAk95vxMiXopQznluDgE3Bf35dtjHnmSBJJW6GNX3r1T 0HVj/He8wWVbcxy+S0jasIaPJw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:19 2026 by rpki-client