$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: X0gPCe3eXkdAUPJRhbd9VhdSnISb0F1hNJf+vEbM9VY= Subject key identifier: 1D:A1:20:ED:95:9A:D7:F9:65:CE:22:4F:9D:AE:2B:D6:87:C7:9C:EC Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0E66 Signing time: Tue 24 Mar 2026 17:38:40 +0000 Manifest this update: Tue 24 Mar 2026 17:38:39 +0000 Manifest next update: Tue 31 Mar 2026 17:38:39 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: 5cM+COTA25fcK94sgn9H6lbmIQNR+Wk5bueUYtsZg2E=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: 4apSZMW7Vfs833gnnmQpU2EzXDtEcmjJdHV9lEBaG8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3698 (0xe72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Mar 24 17:38:39 2026 GMT Not After : Mar 31 17:38:39 2026 GMT Subject: CN=69c2cc20-a63e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0d:bc:38:be:6c:79:f5:0d:71:28:60:1d:bd: 37:09:ef:ed:7b:b6:bf:e7:33:5c:c7:a0:67:f5:83: 4a:b8:47:03:bb:40:93:88:4d:7f:8b:14:b8:ac:50: 21:ca:a7:b1:56:b3:66:44:b5:e3:88:a9:5d:f8:67: 9d:b7:6d:4e:74:d4:c7:39:26:5d:57:9f:c8:f6:1c: 7a:d9:d7:60:ce:42:7a:65:da:aa:d3:30:cc:3b:2c: ea:a7:d8:9c:92:8f:88:18:68:36:17:55:37:ad:80: 14:58:b0:3d:f6:ab:cd:89:80:a8:70:63:7b:0d:2a: 89:31:77:0e:33:96:ec:bb:16:32:75:f1:8a:e7:2b: ad:0b:f9:00:80:44:8c:e7:24:fe:45:c6:83:62:16: a9:d3:4e:3a:1c:47:cb:28:14:5d:f4:2f:f3:b6:c2: af:ef:c0:4b:33:90:29:31:c5:fd:5a:0b:b2:16:9f: 2b:f4:4e:32:e3:b2:b5:b7:3d:38:33:3a:2f:5b:f2: 8a:cd:fb:08:e2:ae:6f:0f:45:e4:14:33:74:3f:3a: 6f:58:eb:f2:bb:07:44:d2:18:55:70:a4:40:9f:3c: 67:35:22:86:3a:d6:1a:eb:21:81:ff:b4:6a:79:51: 3a:d5:15:08:4f:e5:20:e6:23:2b:8c:41:a4:7f:67: 74:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A1:20:ED:95:9A:D7:F9:65:CE:22:4F:9D:AE:2B:D6:87:C7:9C:EC X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:a8:70:d9:96:fb:84:8e:ff:fa:29:6a:f3:22:d8:80:51:cb: d9:ce:6b:12:b8:64:ae:b4:b3:06:9b:fd:9c:c0:51:f8:9e:3b: f8:9e:c8:aa:b7:9b:30:fa:dd:79:a8:4e:57:4f:eb:a1:0f:bb: fc:9c:88:bc:ad:43:be:b5:20:64:37:05:cf:5b:74:60:32:3a: ed:95:47:6d:35:0d:e7:a4:ce:8d:6f:b4:86:66:8d:b6:07:50: 25:85:f0:c3:86:17:7a:16:3f:45:88:78:41:57:b6:3b:e5:5b: 0d:00:61:94:de:f4:18:47:70:ac:e7:cc:d9:53:dc:47:2a:48: dc:ed:02:83:1b:43:8a:e0:7a:5c:f3:88:99:7c:ce:31:88:90: 2c:a2:8d:0e:03:e8:72:63:87:eb:b2:49:89:65:ba:ad:08:27: 2e:7d:80:42:4b:5c:ec:92:d3:fc:3d:4b:42:3f:31:09:b5:c4: 15:7f:11:c8:d3:8a:7a:cf:01:99:09:04:1a:ee:0a:89:8a:93: cd:b4:a2:0f:30:da:0a:9a:d1:b8:85:79:a6:ee:29:99:e5:70: 2f:69:48:39:e2:02:bb:aa:b0:b2:24:2a:21:de:24:00:bc:ec: f5:58:b2:99:51:96:81:c9:bc:07:7d:f1:7f:f7:b8:33:b0:30: e6:b4:c1:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjYwMzI0MTczODM5WhcNMjYwMzMxMTczODM5WjAYMRYwFAYD VQQDEw02OWMyY2MyMC1hNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Q28OL5sefUNcShgHb03Ce/te7a/5zNcx6Bn9YNKuEcDu0CTiE1/ixS4rFAh yqexVrNmRLXjiKld+Gedt21OdNTHOSZdV5/I9hx62ddgzkJ6Zdqq0zDMOyzqp9ic ko+IGGg2F1U3rYAUWLA99qvNiYCocGN7DSqJMXcOM5bsuxYydfGK5yutC/kAgESM 5yT+RcaDYhap0046HEfLKBRd9C/ztsKv78BLM5ApMcX9WguyFp8r9E4y47K1tz04 MzovW/KKzfsI4q5vD0XkFDN0PzpvWOvyuwdE0hhVcKRAnzxnNSKGOtYa6yGB/7Rq eVE61RUIT+Ug5iMrjEGkf2d0+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB2hIO2V mtf5Zc4iT52uK9aHx5zsMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMahw2Zb7hI7/+ilq8yLYgFHL2c5rErhkrrSzBpv9nMBR+J47+J7IqrebMPrd eahOV0/roQ+7/JyIvK1DvrUgZDcFz1t0YDI67ZVHbTUN56TOjW+0hmaNtgdQJYXw w4YXehY/RYh4QVe2O+VbDQBhlN70GEdwrOfM2VPcRypI3O0CgxtDiuB6XPOImXzO MYiQLKKNDgPocmOH67JJiWW6rQgnLn2AQktc7JLT/D1LQj8xCbXEFX8RyNOKes8B mQkEGu4KiYqTzbSiDzDaCprRuIV5pu4pmeVwL2lIOeICu6qwsiQqId4kALzs9Viy mVGWgcm8B33xf/e4M7Aw5rTB+A== -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:16 2026 by rpki-client