$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft File: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft (raw, json) Hash identifier: 7NClwr5+DpDvMRQljJ95YYyLoLgzXS4PHaDG5yHABGg= Subject key identifier: 5F:54:2E:C2:D8:33:3D:BC:8D:BB:CD:CA:1F:CF:8A:5C:8F:57:AF:EE Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft Manifest number: 0B53 Signing time: Tue 24 Mar 2026 19:01:00 +0000 Manifest this update: Tue 24 Mar 2026 19:01:00 +0000 Manifest next update: Tue 31 Mar 2026 19:01:00 +0000 Files and hashes: 1: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl (hash: XziTF7mLP4xvd1tmtyiS6o58J6caFdttnL2xO3klyVg=) 2: 29B9D5B8524111EABEF0A119C4F9AE02.roa (hash: RExF8CfPyMc1mjC/DYZwNJORmf6sh9d0s+P6jynoX8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Mar 24 19:01:00 2026 GMT Not After : Mar 31 19:01:00 2026 GMT Subject: CN=69c2df6c-6330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1e:88:a0:3c:9d:b0:50:0c:79:ec:7c:56:d0: e7:0a:db:b8:30:23:a6:47:68:d0:6b:f0:5f:c9:36: c7:fc:e3:e6:01:43:88:8d:98:a3:6c:8a:d1:a2:c7: 4e:d5:47:04:1c:1b:72:7e:ea:39:7b:3d:a5:39:1d: f5:b3:e7:10:3b:88:12:89:7e:5c:d6:c8:61:62:15: fe:28:43:73:83:d5:70:90:08:66:8d:a9:7c:24:d7: 61:17:80:32:e9:2a:0e:60:73:05:a6:48:f9:d5:5e: 1e:45:62:4e:0e:bf:a7:05:fb:b7:de:38:37:63:66: 5b:75:1e:60:7f:3c:39:45:6d:99:0b:2e:c3:3c:4a: c9:b2:c4:87:53:33:83:a5:ea:b7:c7:59:dd:ee:df: 07:e8:d6:ab:7b:ec:d9:39:c5:fe:a0:d8:8f:ea:e5: ec:6b:3f:a1:5e:eb:1b:f7:7b:a3:9c:5f:22:21:3d: c7:81:c8:e2:a7:c1:8f:de:1e:67:bb:86:5c:e5:8c: 5f:f5:f8:8b:13:42:26:60:17:a7:24:45:93:83:ae: fa:c9:b0:8d:c2:31:c5:75:6c:70:b8:7d:11:a2:93: b9:c6:59:e9:d0:2d:21:78:15:1e:1a:23:99:44:ce: 01:25:06:a5:f6:55:26:87:cb:ea:89:cb:7f:79:1b: 50:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:54:2E:C2:D8:33:3D:BC:8D:BB:CD:CA:1F:CF:8A:5C:8F:57:AF:EE X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:fc:43:8c:8d:96:f3:c8:45:ee:9d:ed:92:89:5e:bb:82:2b: fc:6d:5c:de:26:f3:b0:f4:46:a6:a1:d8:61:7f:60:c8:24:59: 54:a3:c0:0e:07:9b:0a:7a:85:1f:10:c3:bd:ce:56:55:14:73: df:f0:42:ff:c5:c9:78:84:80:b8:6f:05:0a:25:d2:8d:0b:8b: 31:32:5c:c1:05:ff:76:7c:df:65:30:21:13:d3:c7:ed:d8:4c: 27:48:45:8a:11:8c:7d:c3:d8:84:c9:7f:cf:7d:36:4f:a2:12: ee:7a:de:73:78:b4:e9:fb:27:57:ae:8a:6e:ce:3e:56:47:25: e4:ec:64:cf:cb:8e:76:b3:19:0a:07:e5:a6:87:f9:07:cb:54: 0c:94:de:0d:38:b0:47:16:52:d6:79:97:aa:21:61:aa:ed:68: f7:ab:e2:9d:23:ce:47:50:b7:59:6e:7f:51:30:8d:55:fe:a2: 9c:86:f6:c5:d6:1c:07:f7:35:8e:74:e2:36:40:a1:67:2c:9f: 54:9d:68:93:8a:ff:e1:dd:5c:ad:53:0e:c5:b5:e8:23:37:b9: 83:bc:b2:74:5f:b5:dd:31:d8:57:e4:17:45:19:fd:f7:9c:69: 24:57:f3:10:8d:f3:46:bf:00:74:ea:d4:b3:a0:55:f4:0b:19: 3c:89:21:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjYwMzI0MTkwMTAwWhcNMjYwMzMxMTkwMTAwWjAYMRYwFAYD VQQDEw02OWMyZGY2Yy02MzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxh6IoDydsFAMeex8VtDnCtu4MCOmR2jQa/BfyTbH/OPmAUOIjZijbIrRosdO 1UcEHBtyfuo5ez2lOR31s+cQO4gSiX5c1shhYhX+KENzg9VwkAhmjal8JNdhF4Ay 6SoOYHMFpkj51V4eRWJODr+nBfu33jg3Y2ZbdR5gfzw5RW2ZCy7DPErJssSHUzOD peq3x1nd7t8H6Nare+zZOcX+oNiP6uXsaz+hXusb93ujnF8iIT3Hgcjip8GP3h5n u4Zc5Yxf9fiLE0ImYBenJEWTg676ybCNwjHFdWxwuH0RopO5xlnp0C0heBUeGiOZ RM4BJQal9lUmh8vqict/eRtQOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF9ULsLY Mz28jbvNyh/PilyPV6/uMB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS83MDYzRTQyNDUyM0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklD bXV2aDRUQ0FtZVlrbk5OaVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADfxDjI2W88hF7p3tkoleu4Ir/G1c3ibzsPRGpqHYYX9gyCRZVKPADgebCnqF HxDDvc5WVRRz3/BC/8XJeISAuG8FCiXSjQuLMTJcwQX/dnzfZTAhE9PH7dhMJ0hF ihGMfcPYhMl/z302T6IS7nrec3i06fsnV66Kbs4+Vkcl5Oxkz8uOdrMZCgflpof5 B8tUDJTeDTiwRxZS1nmXqiFhqu1o96vinSPOR1C3WW5/UTCNVf6inIb2xdYcB/c1 jnTiNkChZyyfVJ1ok4r/4d1crVMOxbXoIze5g7yydF+13THYV+QXRRn995xpJFfz EI3zRr8AdOrUs6BV9AsZPIkhmA== -----END CERTIFICATE-----Generated at Thu Mar 26 09:22:49 2026 by rpki-client