$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft File: df43qD7agAphAmCFh-30CJ2CQOA.mft (raw, json) Hash identifier: Ch+9dd6WtXwEBf1tIwFpi/2sjtrUq+qASGam2x9OArQ= Subject key identifier: 75:1D:D9:73:F5:B9:B0:32:24:5B:F1:7A:C4:DF:40:EF:EC:3E:F6:F8 Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft Manifest number: AD Signing time: Fri 27 Mar 2026 06:45:40 +0000 Manifest this update: Fri 27 Mar 2026 06:45:39 +0000 Manifest next update: Fri 03 Apr 2026 06:45:39 +0000 Files and hashes: 1: df43qD7agAphAmCFh-30CJ2CQOA.crl (hash: cCM+OX/ARX59CGbUjOG7rMshkgqpvESPOI0YIeb6+qc=) 2: A7C7EF962A8911F09526D35BC4F9AE02.roa (hash: u3gJXE5CVo/4Di5xZg31vIxBE+g16w/hFZMtDFCGFIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Mar 27 06:45:39 2026 GMT Not After : Apr 3 06:45:39 2026 GMT Subject: CN=69c62794-e16e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:38:a6:d4:81:72:f8:0b:55:3e:89:43:36:bc: d5:57:3a:37:6d:3c:3b:3e:4d:03:00:1e:23:5f:17: f5:47:d7:52:38:d6:c4:f4:2a:c6:23:c5:dc:2c:0a: 07:42:2f:1c:fe:22:48:9c:29:a7:4b:ad:9a:e3:15: 3a:53:2a:01:1e:05:47:21:5c:d5:e2:09:11:f6:98: 3a:ba:08:47:ed:6a:8c:54:4b:d4:b3:d9:d2:76:6f: 83:d2:8f:37:34:1d:35:de:ac:d4:b0:92:65:b4:57: 5b:4d:dd:84:67:19:79:a2:ec:e5:ee:62:95:d6:1e: 39:36:07:f1:72:c5:04:bd:fd:7c:f3:02:10:44:9b: 55:d9:09:9a:36:3d:6a:87:8a:af:0c:38:79:54:75: e6:cc:90:ca:9f:f6:2c:70:06:4e:59:34:89:3e:53: ff:72:e5:37:a4:71:4f:4d:bc:82:e7:a7:36:9c:f4: 10:ba:fd:c4:ee:b9:a2:76:99:9f:15:7d:16:75:78: af:1c:44:ca:21:68:ae:7e:e1:54:28:83:a7:ff:97: ad:82:39:fa:3b:cb:0f:c3:01:57:1e:09:96:dc:49: 27:4b:e1:c9:e8:8c:14:05:f6:5e:c5:f2:01:17:67: a6:cd:5f:db:1b:44:f3:f8:f2:c2:73:d4:e4:9a:4e: 89:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:1D:D9:73:F5:B9:B0:32:24:5B:F1:7A:C4:DF:40:EF:EC:3E:F6:F8 X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c9:1f:65:8f:6b:29:71:65:0c:1d:be:c7:fa:ba:4b:f2:16: fd:d2:80:b3:8b:1f:eb:de:35:b0:e5:1f:08:61:f9:9a:79:23: 42:5d:58:6c:45:21:81:75:19:cc:f3:84:39:96:c2:41:43:28: 7e:a6:79:c6:de:a8:88:d9:74:f2:83:50:db:a1:38:7b:fd:6a: fb:2e:40:9d:c8:79:16:cf:f3:a3:b3:a6:68:f8:79:1f:c2:fd: 57:85:89:e4:e5:8c:66:d0:9f:2b:02:e5:c8:c4:a6:2b:e7:6b: 64:cb:0c:a2:04:4a:91:a8:5c:16:39:4f:fa:6a:26:8d:c3:e2: a7:e4:c0:f3:82:74:f1:b6:85:68:f9:2e:70:a0:2d:ce:2d:67: e4:07:81:c8:bd:ad:6a:7b:34:c6:7b:89:e2:40:30:68:e8:27: 83:c5:c4:6a:b0:aa:2f:6e:f4:a2:4c:4e:5b:c8:89:b8:57:f1: d9:ac:e5:e4:ce:21:4f:a6:c0:06:67:20:c0:e4:31:79:ba:4b: f1:37:1e:67:59:64:c3:bd:18:31:28:dc:e1:14:5b:ba:5c:38: 6d:7f:74:e6:54:9d:8a:f9:58:70:e8:19:13:ad:07:b8:87:c9: f5:ab:a7:bf:10:6e:82:ce:9f:45:29:db:7c:32:70:2a:96:0e: 14:64:25:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM3QUExMTAvBgNVBAUTKDc1RkUzN0E4M0VEQTgwMEE2MTAyNjA4NTg3RURGNDA4 OUQ4MjQwRTAwHhcNMjYwMzI3MDY0NTM5WhcNMjYwNDAzMDY0NTM5WjAYMRYwFAYD VQQDEw02OWM2Mjc5NC1lMTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDim1IFy+AtVPolDNrzVVzo3bTw7Pk0DAB4jXxf1R9dSONbE9CrGI8XcLAoH Qi8c/iJInCmnS62a4xU6UyoBHgVHIVzV4gkR9pg6ughH7WqMVEvUs9nSdm+D0o83 NB013qzUsJJltFdbTd2EZxl5ouzl7mKV1h45NgfxcsUEvf188wIQRJtV2QmaNj1q h4qvDDh5VHXmzJDKn/YscAZOWTSJPlP/cuU3pHFPTbyC56c2nPQQuv3E7rmidpmf FX0WdXivHETKIWiufuFUKIOn/5etgjn6O8sPwwFXHgmW3EknS+HJ6IwUBfZexfIB F2emzV/bG0Tz+PLCc9Tkmk6JpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHUd2XP1 ubAyJFvxesTfQO/sPvb4MB8GA1UdIwQYMBaAFHX+N6g+2oAKYQJghYft9AidgkDg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzdBQS9EMjJFREEzNDJB ODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9kZjQzcUQ3YWdBcGhBbUNGaC0zMENKMkNR T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzdBQS9EMjJFREEzNDJBODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9kZjQzcUQ3YWdB cGhBbUNGaC0zMENKMkNRT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfskfZY9rKXFlDB2+x/q6S/IW/dKAs4sf6941sOUfCGH5mnkjQl1YbEUhgXUZ zPOEOZbCQUMofqZ5xt6oiNl08oNQ26E4e/1q+y5Anch5Fs/zo7OmaPh5H8L9V4WJ 5OWMZtCfKwLlyMSmK+drZMsMogRKkahcFjlP+momjcPip+TA84J08baFaPkucKAt zi1n5AeByL2tans0xnuJ4kAwaOgng8XEarCqL270okxOW8iJuFfx2azl5M4hT6bA BmcgwOQxebpL8TceZ1lkw70YMSjc4RRbulw4bX905lSdivlYcOgZE60HuIfJ9aun vxBugs6fRSnbfDJwKpYOFGQlZg== -----END CERTIFICATE-----Generated at Sat Mar 28 11:47:31 2026 by rpki-client