$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft File: PQaSnY1eH2juI-yj-UjP96LklbM.mft (raw, json) Hash identifier: oNYK4s6Fajel/FySe9qv/VvV4TsjmjBamZNhsp7UaIg= Subject key identifier: 47:E8:2D:FD:81:4F:E6:45:49:1D:42:22:92:55:01:D7:4F:DB:A1:BB Authority key identifier: 3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 Certificate issuer: /CN=A91DDCD9/serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft Manifest number: 0BCA Signing time: Tue 24 Mar 2026 18:58:51 +0000 Manifest this update: Tue 24 Mar 2026 18:58:50 +0000 Manifest next update: Tue 31 Mar 2026 18:58:50 +0000 Files and hashes: 1: PQaSnY1eH2juI-yj-UjP96LklbM.crl (hash: Gx9lSRFKk7OiN5INkeG3ljH1MBoi18PeoDMl5B3IldI=) 2: 4140D222AB0511F0AD64C814C4F9AE02.roa (hash: lm+nFcqH0a+9WsNgR01SH0qMnw/FVhg7/KwG6EmLyBA=) 3: 41D7A1D4AB0511F0AD64C814C4F9AE02.roa (hash: rShfJxqE0h5coYqcR6ikXPA4HtTIMuqnQcLhGpxQm7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCD9, serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Validity Not Before: Mar 24 18:58:50 2026 GMT Not After : Mar 31 18:58:50 2026 GMT Subject: CN=69c2deeb-c2e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ca:89:47:61:d7:56:28:a0:95:1a:57:aa:78: 63:b5:d2:44:4e:0f:85:39:80:53:bd:88:72:73:78: 34:09:bd:93:c9:6b:c6:c2:4a:c3:5b:f9:c8:69:ef: bb:c2:f9:83:cf:37:04:a9:44:29:17:6f:fe:61:ea: 6e:1e:c4:f6:72:34:d9:88:91:4f:bb:3b:b1:fe:96: fb:37:8e:58:81:39:28:60:20:5f:f4:73:c8:21:95: 0c:92:93:ac:b7:ea:19:37:b6:24:08:1b:ab:c2:eb: 91:5c:49:18:d9:a9:29:5c:c3:c3:4d:2c:bc:1c:7f: 1f:ac:d2:85:0b:49:5c:05:d2:c6:01:30:44:50:e1: 8b:43:8a:89:a5:4f:c3:8b:a4:db:84:7b:15:cc:72: 53:68:5c:ec:8d:d1:a8:02:16:db:26:93:0d:5d:a7: 8c:70:33:2a:85:bd:b6:c0:43:34:b3:9d:f0:dd:26: 4d:04:e0:20:a2:8e:6a:3e:16:4b:d8:77:56:5d:f4: d9:37:86:f4:f9:d9:8b:5e:52:4f:36:79:d4:d1:52: 72:5a:18:fd:31:77:84:16:94:93:00:08:ad:84:77: 89:9c:af:4f:6f:28:ee:2d:a1:c8:31:02:79:46:d5: fc:8b:7e:be:e0:76:e7:a4:fb:e4:f4:b0:ee:77:69: 22:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E8:2D:FD:81:4F:E6:45:49:1D:42:22:92:55:01:D7:4F:DB:A1:BB X509v3 Authority Key Identifier: keyid:3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d4:7e:f6:28:18:d3:f7:8b:08:3c:8b:36:df:07:d3:2e:17: 05:54:27:1e:ab:7b:60:2d:fd:d0:15:ea:f9:c9:5e:2f:d6:21: 73:91:c6:d8:64:89:8c:d6:3c:ac:ad:dc:5c:5d:6a:07:84:dd: 5c:fa:63:98:c3:ea:65:5b:ad:f4:b7:ce:a0:b2:d8:b7:53:19: f6:c7:fc:77:e3:ab:27:cb:9f:8a:aa:ec:21:71:be:49:e7:62: 10:e8:37:d1:40:84:ab:5f:b0:2a:ec:81:6e:e4:9e:4b:98:34: 3e:64:b5:16:b0:52:45:f5:9c:51:73:dd:72:22:a1:66:a7:f6: 47:dc:41:0f:26:61:f2:97:6e:52:2a:77:94:f7:5e:c6:39:c1: 6d:1c:42:96:a5:0d:ea:67:a3:4a:51:6f:73:6a:76:06:f5:84: 31:17:ae:f8:9a:a4:38:2d:84:44:9d:81:0d:8a:5a:9e:04:48: fd:ad:96:63:97:20:a3:32:71:bc:d9:be:d4:97:5a:fb:d0:60: 35:c1:da:1c:83:9d:ab:65:5c:4b:a0:82:e0:aa:1d:a7:c9:b7: 30:5b:19:88:c8:76:f8:b2:c4:e1:68:97:ba:a8:d8:41:88:27: 9c:8c:e7:9f:da:58:4a:05:19:da:ef:94:10:33:00:17:92:39: f3:d8:de:24 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RENEOTExMC8GA1UEBRMoM0QwNjkyOUQ4RDVFMUY2OEVFMjNFQ0EzRjk0OENGRjdB MkU0OTVCMzAeFw0yNjAzMjQxODU4NTBaFw0yNjAzMzExODU4NTBaMBgxFjAUBgNV BAMTDTY5YzJkZWViLWMyZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsyolHYddWKKCVGleqeGO10kROD4U5gFO9iHJzeDQJvZPJa8bCSsNb+chp77vC +YPPNwSpRCkXb/5h6m4exPZyNNmIkU+7O7H+lvs3jliBOShgIF/0c8ghlQySk6y3 6hk3tiQIG6vC65FcSRjZqSlcw8NNLLwcfx+s0oULSVwF0sYBMERQ4YtDiomlT8OL pNuEexXMclNoXOyN0agCFtsmkw1dp4xwMyqFvbbAQzSznfDdJk0E4CCijmo+FkvY d1Zd9Nk3hvT52YteUk82edTRUnJaGP0xd4QWlJMACK2Ed4mcr09vKO4tocgxAnlG 1fyLfr7gduek++T0sO53aSKXAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUR+gt/YFP 5kVJHUIiklUB10/bobswHwYDVR0jBBgwFoAUPQaSnY1eH2juI+yj+UjP96LklbMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREQ0Q5LzQxMEJCQzE0NEU2 QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJqdUkteWotVWpQOTZMa2xi TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFFhU25ZMWVIMmp1SS15ai1ValA5NkxrbGJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE Q0Q5LzQxMEJCQzE0NEU2QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJq dUkteWotVWpQOTZMa2xiTS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAC1H72KBjT94sIPIs23wfTLhcFVCceq3tgLf3QFer5yV4v1iFzkcbYZImM1jys rdxcXWoHhN1c+mOYw+plW630t86gsti3Uxn2x/x346sny5+Kquwhcb5J52IQ6DfR QISrX7Aq7IFu5J5LmDQ+ZLUWsFJF9ZxRc91yIqFmp/ZH3EEPJmHyl25SKneU917G OcFtHEKWpQ3qZ6NKUW9zanYG9YQxF674mqQ4LYREnYENilqeBEj9rZZjlyCjMnG8 2b7Ul1r70GA1wdocg52rZVxLoILgqh2nybcwWxmIyHb4ssThaJe6qNhBiCecjOef 2lhKBRna75QQMwAXkjnz2N4k -----END CERTIFICATE-----Generated at Thu Mar 26 16:02:24 2026 by rpki-client