$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: pEvEbVawU9+T+dkPupjLs993SOe0CrAYwgtQR+RwfUs= Subject key identifier: 63:22:79:F5:47:A6:E8:5F:45:B7:13:83:E0:98:B2:CA:C0:A3:20:BC Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 170D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 1784 Signing time: Tue 24 Mar 2026 16:32:30 +0000 Manifest this update: Tue 24 Mar 2026 16:32:30 +0000 Manifest next update: Tue 31 Mar 2026 16:32:30 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: OYJ8Cw3/JmRYZzsNXbre+VGgCqFMfWZMGdFV9dew75I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:32:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5901 (0x170d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: Mar 24 16:32:30 2026 GMT Not After : Mar 31 16:32:30 2026 GMT Subject: CN=69c2bc9e-a3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e2:0c:61:2b:53:cf:23:5b:bb:8e:45:cb:96: b9:03:4b:3b:7b:c1:d5:ed:77:54:26:9d:84:8d:23: 6c:1d:c2:f0:c4:4a:36:07:8a:f9:9a:77:95:dd:69: 10:1b:22:18:f9:0a:9b:1f:87:4e:bb:8b:cb:d4:c3: 9f:ba:4c:ad:2e:1a:8a:8b:ca:75:42:95:1b:94:dd: 02:c5:03:87:bd:c5:ea:43:0b:90:8d:b9:cc:af:04: 91:9f:c4:f4:27:cf:0d:a6:b5:a4:93:43:f1:fc:85: 59:de:75:ff:78:75:4c:0d:d2:e7:f3:23:89:cd:92: 91:3c:40:b8:de:1d:47:7f:63:3d:9a:cd:da:26:ec: e3:d2:e1:51:f5:94:98:37:2d:33:f5:ee:50:c6:7f: 7c:03:56:f9:3f:62:c3:14:03:f4:8c:16:7b:78:53: 9f:1a:a2:67:10:29:d0:31:34:69:0b:84:4c:c4:a5: 2a:1e:07:17:1a:e5:fe:f9:59:8f:df:5a:6b:3c:4e: 10:7b:f2:8a:06:57:9d:ea:39:3e:c0:01:cf:70:52: b4:97:57:cf:59:9d:6c:1f:73:aa:3e:a5:bd:4e:ea: b7:8e:95:c9:a1:4b:7c:21:fa:1f:17:01:50:0b:1f: f8:49:01:b0:43:bb:a9:d5:5f:68:f6:c1:bd:1c:5c: 14:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:22:79:F5:47:A6:E8:5F:45:B7:13:83:E0:98:B2:CA:C0:A3:20:BC X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:2c:57:9d:d4:b9:31:e7:9e:45:d5:45:58:86:c2:30:29:9d: 7a:ed:e2:88:cc:5f:dd:18:6a:3b:43:c3:ff:67:e9:25:0e:4e: 2c:0b:ef:ce:35:df:81:ab:26:45:0d:5d:6b:9b:eb:fa:99:fd: 37:1a:1e:6a:20:e4:49:9d:11:13:bd:21:4b:b5:58:14:73:49: a7:b1:07:1f:33:58:c8:12:ea:03:52:f1:4a:88:ff:2b:8f:28: b0:6c:3e:65:77:8f:2b:54:de:ae:7b:42:8f:64:39:79:b3:50: 44:eb:ae:42:f9:17:58:84:0c:90:f9:9e:58:52:48:72:62:03: 72:83:30:b3:f5:d8:6a:e1:d1:97:f8:ef:5d:85:7b:c2:0a:aa: d6:d7:f8:d4:4f:1a:a0:b6:51:3f:ec:22:a2:4c:0e:66:11:15: 00:41:85:b9:bc:7a:c1:e5:84:e3:eb:6e:bf:a0:10:73:9e:bc: cf:58:da:3e:dd:0e:57:4b:5c:f6:83:7f:96:ec:84:d2:bd:3d: 5c:ed:93:7a:1c:bb:6d:9b:ae:69:fd:ce:2d:db:b5:b2:a6:be: 54:1a:f5:45:37:5c:34:86:93:a0:f3:cf:53:dd:42:c7:c3:d7: 07:92:7c:39:a0:74:55:fe:78:fa:22:82:a4:97:47:11:a3:fc: b7:2f:d0:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjYwMzI0MTYzMjMwWhcNMjYwMzMxMTYzMjMwWjAYMRYwFAYD VQQDEw02OWMyYmM5ZS1hM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeIMYStTzyNbu45Fy5a5A0s7e8HV7XdUJp2EjSNsHcLwxEo2B4r5mneV3WkQ GyIY+QqbH4dOu4vL1MOfukytLhqKi8p1QpUblN0CxQOHvcXqQwuQjbnMrwSRn8T0 J88NprWkk0Px/IVZ3nX/eHVMDdLn8yOJzZKRPEC43h1Hf2M9ms3aJuzj0uFR9ZSY Ny0z9e5Qxn98A1b5P2LDFAP0jBZ7eFOfGqJnECnQMTRpC4RMxKUqHgcXGuX++VmP 31prPE4Qe/KKBled6jk+wAHPcFK0l1fPWZ1sH3OqPqW9Tuq3jpXJoUt8IfofFwFQ Cx/4SQGwQ7up1V9o9sG9HFwUdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGMiefVH puhfRbcTg+CYssrAoyC8MB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApSxXndS5MeeeRdVFWIbCMCmdeu3iiMxf3RhqO0PD/2fpJQ5OLAvvzjXfgasm RQ1da5vr+pn9NxoeaiDkSZ0RE70hS7VYFHNJp7EHHzNYyBLqA1LxSoj/K48osGw+ ZXePK1TerntCj2Q5ebNQROuuQvkXWIQMkPmeWFJIcmIDcoMws/XYauHRl/jvXYV7 wgqq1tf41E8aoLZRP+wiokwOZhEVAEGFubx6weWE4+tuv6AQc568z1jaPt0OV0tc 9oN/luyE0r09XO2Tehy7bZuuaf3OLdu1sqa+VBr1RTdcNIaToPPPU91Cx8PXB5J8 OaB0Vf54+iKCpJdHEaP8ty/Q1A== -----END CERTIFICATE-----Generated at Thu Mar 26 11:04:53 2026 by rpki-client