$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: Vx3sF0Mm0wYHmaaGmTNERsUcgbxa1vF8BISqZQ9OL6I= Subject key identifier: 3C:16:E6:4F:41:75:95:A0:17:94:18:E4:01:A3:14:03:83:17:1E:62 Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 3620 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 3592 Signing time: Tue 24 Mar 2026 14:16:26 +0000 Manifest this update: Tue 24 Mar 2026 14:16:25 +0000 Manifest next update: Tue 31 Mar 2026 14:16:25 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: rNb0raggb5d7bZJw4wKuQvDzs6aWQtCWKl7Xp4DDdmc=) 2: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: 46CC9LcyzFfBkRedCj8zONrcqyJIMjuxJScGt32qKqY=) 3: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: 13OCzHbeP84SVts3fLFM8ezvX9wYG+xk9oztS8IQ/oo=) 4: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: y6ZiKIpbO8nVe1RhgWjLdE8kQETpbK+AjZQf/Ewa3Fk=) 5: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: oS/2Yr0f0AX3IY6Qw0kprzC/haS0V2Vl/e9gsEC9t0o=) 6: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: 0TLVORl6wSPXD4zN0o2eNo/c7mH0Sa6LVUUSVrU3gGs=) 7: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: Zl7CL1hILK98z1K1OQnmQBFBX3AF5k+q1EWP8nnTBiE=) 8: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: US7l9IRW6KnysaR3hgfIHQKP61jxpaRsUq+BQajlvlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13856 (0x3620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Mar 24 14:16:25 2026 GMT Not After : Mar 31 14:16:25 2026 GMT Subject: CN=69c29cb9-bd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ed:ba:26:73:b1:3b:e2:36:90:d1:2d:38:27: e1:54:ef:b4:12:9d:f3:c5:84:2c:8a:d6:04:39:a0: 09:61:24:76:5d:08:ac:52:a9:02:9f:5d:33:f1:c4: ce:b8:b5:c1:51:47:04:3a:40:1c:8a:4b:3c:aa:02: de:f9:7e:78:4f:1c:83:8d:d7:13:b6:5e:36:b2:73: 4e:1c:33:41:67:31:11:fc:70:4b:20:e9:52:9b:25: ae:b7:ee:13:e7:2f:d8:af:ff:3b:4f:53:2a:93:c2: d5:25:1c:e4:8a:12:b3:80:bb:c4:27:91:4b:cd:b9: 95:db:9e:fd:e7:44:09:38:00:02:1a:23:f2:8a:7c: 64:03:85:44:dc:82:b7:49:5d:c0:06:e6:e8:30:6f: 3d:d7:30:a0:d2:4c:3d:53:40:ee:50:84:e4:0d:44: 20:81:69:7b:36:7f:a3:75:cd:77:ba:26:23:bd:25: 9e:04:eb:19:5d:d1:2f:b1:3a:1c:0a:5a:4a:b3:fd: f2:74:e8:05:c0:0b:f4:33:76:88:52:88:82:bc:c2: 96:d1:15:53:58:a9:1b:a3:4d:35:7d:d4:6a:9d:cf: 1c:b1:43:ee:bc:5c:ee:fb:c3:8b:0b:c1:2e:ea:06: 72:d0:e7:d6:bf:0f:e3:72:36:f9:4f:26:6e:66:e3: 82:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:16:E6:4F:41:75:95:A0:17:94:18:E4:01:A3:14:03:83:17:1E:62 X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:9f:3e:01:7a:91:a5:cf:ab:c4:9f:da:80:73:dc:d2:27:b8: 8e:d6:7e:7c:3f:f1:e4:a9:9a:d6:1c:33:fa:b2:06:88:a8:f5: ab:b0:01:65:80:ad:96:51:25:34:02:b0:60:93:b8:41:46:d3: ad:86:1e:6c:15:14:3d:18:0c:6a:b3:56:90:ed:fd:48:f3:64: d4:62:65:26:a8:b5:6d:da:3d:af:50:1a:7d:b9:5a:8f:6d:47: 17:95:0e:92:b5:9f:95:1a:61:9b:9f:7f:48:fd:4c:51:eb:b3: 80:4c:a7:ec:14:7e:26:82:b1:67:10:a3:30:56:c4:44:cc:9c: 5e:5b:4d:db:26:26:50:85:08:d4:f8:1d:3c:18:f2:fb:e5:20: 2b:97:bf:ff:a2:a0:78:13:5a:99:00:ef:47:76:ae:06:ce:62: 8f:93:cd:3b:d4:61:6c:3f:e5:42:ef:35:e5:2e:30:45:5f:77: fc:1b:62:e4:08:00:53:fc:fb:81:56:ad:7a:98:b8:85:f6:16: cc:6c:d1:55:aa:c4:54:ad:1e:57:2c:7a:4e:bf:25:fa:82:08: 1f:57:f0:07:7f:cf:7c:59:dd:c0:e0:62:18:64:e0:c0:f1:d1: 9c:54:83:91:be:3e:14:14:e1:6d:f3:9f:b1:21:a1:cc:4b:ff: 43:74:ff:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwMzI0MTQxNjI1WhcNMjYwMzMxMTQxNjI1WjAYMRYwFAYD VQQDEw02OWMyOWNiOS1iZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou26JnOxO+I2kNEtOCfhVO+0Ep3zxYQsitYEOaAJYSR2XQisUqkCn10z8cTO uLXBUUcEOkAciks8qgLe+X54TxyDjdcTtl42snNOHDNBZzER/HBLIOlSmyWut+4T 5y/Yr/87T1Mqk8LVJRzkihKzgLvEJ5FLzbmV257950QJOAACGiPyinxkA4VE3IK3 SV3ABuboMG891zCg0kw9U0DuUITkDUQggWl7Nn+jdc13uiYjvSWeBOsZXdEvsToc ClpKs/3ydOgFwAv0M3aIUoiCvMKW0RVTWKkbo001fdRqnc8csUPuvFzu+8OLC8Eu 6gZy0OfWvw/jcjb5TyZuZuOChwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDwW5k9B dZWgF5QY5AGjFAODFx5iMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgZ8+AXqRpc+rxJ/agHPc0ie4jtZ+fD/x5Kma1hwz+rIGiKj1q7ABZYCtllEl NAKwYJO4QUbTrYYebBUUPRgMarNWkO39SPNk1GJlJqi1bdo9r1Aafblaj21HF5UO krWflRphm59/SP1MUeuzgEyn7BR+JoKxZxCjMFbERMycXltN2yYmUIUI1PgdPBjy ++UgK5e//6KgeBNamQDvR3auBs5ij5PNO9RhbD/lQu815S4wRV93/Bti5AgAU/z7 gVatepi4hfYWzGzRVarEVK0eVyx6Tr8l+oIIH1fwB3/PfFndwOBiGGTgwPHRnFSD kb4+FBThbfOfsSGhzEv/Q3T/tA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:51:30 2026 by rpki-client