$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: o0kopkM1pccjBGw6PaBMppjJ8Nn0F9S8iuJA8FWeMtI= Subject key identifier: 29:60:66:B4:BA:0D:FE:49:0D:94:35:CC:0E:B6:3D:C4:C8:F6:CE:17 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 09AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 09A2 Signing time: Tue 24 Mar 2026 19:47:14 +0000 Manifest this update: Tue 24 Mar 2026 19:47:13 +0000 Manifest next update: Tue 31 Mar 2026 19:47:13 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: enqMGBLHYl7a1+GhqalARCq6OgtfTz1VvQ87ZPizAng=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: MxcRCOMDVxWYLuz/1DuRHNURRxOV2Q55QL6ZvvYDCSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2478 (0x9ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Mar 24 19:47:13 2026 GMT Not After : Mar 31 19:47:13 2026 GMT Subject: CN=69c2ea41-c727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ab:71:46:a5:36:94:2b:a3:b2:ba:40:e9:90: 86:e4:43:da:b2:4d:da:24:22:59:7d:ec:29:02:fc: 49:d0:49:12:9f:4e:6a:7f:96:af:05:3e:25:6e:13: 9d:cb:8d:7d:3b:4e:f1:c1:66:83:2c:ce:d2:ff:55: ae:b3:a0:28:c7:31:20:c2:5a:77:6a:44:3b:f6:d9: 84:99:b5:d2:d6:ca:0f:f8:cd:97:c6:49:95:96:13: 27:61:f6:57:d2:59:b1:b9:b4:ef:69:cb:ed:ed:1f: 7f:52:5e:98:6e:83:e6:a8:bb:a2:b7:5d:84:5a:5e: 85:59:b8:16:8b:50:c3:5d:9a:e6:bd:11:21:5a:25: 22:eb:40:bf:41:aa:44:8a:0c:6f:54:1a:8f:2f:7d: 9b:53:9d:d8:53:69:2d:fa:ef:ed:3f:c0:e1:14:ba: be:e0:15:66:88:bf:9a:87:3b:8e:38:36:f8:41:cf: 48:73:e5:e6:1a:a9:5e:8a:f4:c4:0f:72:20:ec:55: ed:33:f6:f8:3d:8b:09:a9:2e:12:9c:f0:2d:15:32: 57:42:68:d0:95:c6:08:e8:be:e3:1a:71:c2:35:9f: e2:4b:cd:39:d0:6e:d4:d6:9c:b4:28:f0:42:d9:b8: 19:c5:a4:0e:91:17:c9:41:91:20:67:73:7a:cd:a1: 54:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:60:66:B4:BA:0D:FE:49:0D:94:35:CC:0E:B6:3D:C4:C8:F6:CE:17 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ca:6d:bd:bf:72:bc:a8:61:4c:dc:05:a5:98:90:43:58:2d: 0a:25:b5:d3:f6:2a:26:10:2e:3e:fa:48:2f:28:85:e2:63:b7: 1f:5d:f8:98:c4:e1:57:0e:7b:2e:7a:69:16:d0:3c:ae:bb:80: bf:ce:d8:e0:db:d8:9e:8b:ac:fe:9e:db:a4:b4:bc:a7:64:61: e3:fd:fa:db:99:44:8d:93:20:a0:32:14:93:f9:59:ea:e8:12: af:9e:0f:8d:9d:dc:96:c6:dc:2f:57:1c:55:58:b3:3f:8a:27: ca:d7:b2:48:01:2d:96:52:3e:c7:e9:4c:c6:85:b8:ad:38:4c: 49:ff:17:ad:a1:78:32:11:72:af:c5:f9:83:e4:9b:13:62:e8: 3e:e9:4c:7a:6e:14:0d:4a:81:77:5e:a0:70:0c:fb:60:bc:18: 06:0b:a7:be:d6:54:17:0a:b0:4d:c9:1b:cc:97:a2:21:f7:45: 75:a5:a9:72:a6:52:07:7e:35:b3:c7:47:b5:e6:8b:99:de:73: ea:6f:28:71:59:94:99:a7:92:5c:84:0a:2e:0c:d9:00:0f:32: ac:65:8c:49:0d:f8:5c:f0:b8:7e:bf:60:a9:ab:5e:ff:ee:34: d7:d9:2b:7f:42:e0:00:93:2b:7d:67:7b:46:3d:db:7c:d0:f7: c9:40:41:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjYwMzI0MTk0NzEzWhcNMjYwMzMxMTk0NzEzWjAYMRYwFAYD VQQDEw02OWMyZWE0MS1jNzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqtxRqU2lCujsrpA6ZCG5EPask3aJCJZfewpAvxJ0EkSn05qf5avBT4lbhOd y419O07xwWaDLM7S/1Wus6AoxzEgwlp3akQ79tmEmbXS1soP+M2XxkmVlhMnYfZX 0lmxubTvacvt7R9/Ul6YboPmqLuit12EWl6FWbgWi1DDXZrmvREhWiUi60C/QapE igxvVBqPL32bU53YU2kt+u/tP8DhFLq+4BVmiL+ahzuOODb4Qc9Ic+XmGqleivTE D3Ig7FXtM/b4PYsJqS4SnPAtFTJXQmjQlcYI6L7jGnHCNZ/iS8050G7U1py0KPBC 2bgZxaQOkRfJQZEgZ3N6zaFU0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFClgZrS6 Df5JDZQ1zA62PcTI9s4XMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaMptvb9yvKhhTNwFpZiQQ1gtCiW10/YqJhAuPvpILyiF4mO3H134mMThVw57 LnppFtA8rruAv87Y4NvYnous/p7bpLS8p2Rh4/3625lEjZMgoDIUk/lZ6ugSr54P jZ3clsbcL1ccVVizP4onyteySAEtllI+x+lMxoW4rThMSf8XraF4MhFyr8X5g+Sb E2LoPulMem4UDUqBd16gcAz7YLwYBgunvtZUFwqwTckbzJeiIfdFdaWpcqZSB341 s8dHteaLmd5z6m8ocVmUmaeSXIQKLgzZAA8yrGWMSQ34XPC4fr9gqate/+4019kr f0LgAJMrfWd7Rj3bfND3yUBBtA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:59:08 2026 by rpki-client