$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft File: cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft (raw, json) Hash identifier: yj0Pl1Wd+5HCFOH9vBX2CaCPWgbSEiCF/zznLvHjMxs= Subject key identifier: 4D:49:90:E6:BB:BC:CF:A0:9F:09:6A:33:A2:69:9A:E6:C2:9B:A2:ED Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft Manifest number: 05A2 Signing time: Thu 26 Mar 2026 23:07:46 +0000 Manifest this update: Thu 26 Mar 2026 23:07:46 +0000 Manifest next update: Thu 02 Apr 2026 23:07:46 +0000 Files and hashes: 1: cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl (hash: Fm5Ieh+hFB2XerNk3TW5pJkT6Sb+usNiUL7oRpjpbSA=) 2: 345F56F87FE311EF80C0F71FC4F9AE02.roa (hash: qDBbxutM6whAYRqUGL23M9IPWqduEyKAvV9efNJXIMw=) 3: E2256F74D97011F0A26925FA9AD3641D.roa (hash: c0vbYLg0UntBGJI9A2FhToTcMXbZmIvcvE2u9KfX6Sc=) 4: 2A490316D97011F0A9AB95F59AD3641D.roa (hash: MTKYuHS54sbbIgz0FdQa7tPFCtPZViVZZlK3jzFk3Qo=) 5: F93DE378B66911F09D7E8031C4F9AE02.roa (hash: c07jP4kaBJLesC3fKCC1+hkjCe95/NhhL5juygnjjI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Mar 26 23:07:46 2026 GMT Not After : Apr 2 23:07:46 2026 GMT Subject: CN=69c5bc42-1f59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3b:e3:c0:65:a0:54:c7:10:5e:b9:14:fd:fa: 49:b9:c0:9f:ca:7d:87:fe:a9:fc:bd:a5:df:81:95: 9a:de:91:93:5f:d3:2d:66:2e:63:45:90:57:02:9f: 5c:0d:0c:14:dd:cb:59:25:d6:cf:36:fc:7e:3e:e6: fe:bb:b2:4b:46:be:c5:25:bc:3c:cd:d6:d0:88:e5: f1:43:4e:27:b3:04:6d:e8:92:09:76:ee:56:a4:dc: b1:4a:30:4e:25:d6:c0:18:49:6f:5e:6e:6a:1a:2c: 5c:70:64:8e:59:ae:75:32:d1:9d:b1:da:e0:57:43: 7f:1d:5f:dc:be:79:62:36:28:31:d1:84:1f:dd:7d: 4f:70:38:05:9f:74:37:26:00:f3:57:45:55:a2:ed: ed:c9:c3:ba:fe:dd:ff:08:4e:4b:58:77:48:e9:8d: bc:d4:53:09:d5:17:95:5b:84:6f:b4:d8:48:d9:c1: b4:62:a1:e6:2a:a3:cb:e5:43:49:a2:3b:55:ab:e5: 64:7d:61:5c:1b:7e:80:bd:bc:e8:e6:89:20:15:db: 43:31:ad:76:02:d0:e1:71:19:a5:3b:fa:f9:17:4d: 9d:b4:4d:74:25:ab:ca:7f:23:13:07:95:aa:4e:f7: 91:2c:0c:45:53:3d:9f:26:be:db:a9:46:7c:6d:b9: 7d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:49:90:E6:BB:BC:CF:A0:9F:09:6A:33:A2:69:9A:E6:C2:9B:A2:ED X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:de:82:be:09:92:23:cc:8e:8a:85:0f:1f:08:e4:57:52:7f: d2:28:03:52:b8:b8:2f:f5:41:13:86:8f:84:c0:6b:cb:e2:b7: 24:eb:3d:ed:e2:89:b4:a2:9f:44:e5:6e:14:68:3a:44:f5:54: c3:3f:cb:ed:3a:74:2e:84:07:b9:b2:9c:f4:0c:88:a1:d9:d4: 33:a7:05:b7:d5:8e:5c:c7:6b:3b:ac:c8:47:1e:c0:9e:e5:17: cc:84:37:68:23:5c:7f:58:5f:59:06:c8:8d:0f:f0:27:ef:a2: 42:4c:93:43:bc:11:6c:61:e3:57:86:3e:09:31:21:72:be:16: 0b:6d:8e:fc:17:f5:cd:b1:b6:76:16:2f:2d:b7:eb:54:3e:a4: 6d:79:f9:d7:e9:30:34:0e:39:45:48:bb:2a:9b:f5:6a:bb:be: 9e:e3:d1:02:42:6e:00:ea:7f:c3:31:dc:59:4e:fc:14:e0:6d: 4a:f7:22:b0:f3:b9:10:9e:c3:3a:a9:37:ee:75:f5:07:85:95: bc:75:73:31:85:53:39:1b:fb:21:78:7f:99:5b:e9:f0:9f:82: 11:25:e3:57:fb:46:0e:0b:cd:41:3c:58:4a:0d:c9:b7:0a:95: 44:f7:cf:1f:bf:c5:2f:e7:d4:2d:11:9d:11:46:4d:02:0a:08: 22:16:98:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjYwMzI2MjMwNzQ2WhcNMjYwNDAyMjMwNzQ2WjAYMRYwFAYD VQQDEw02OWM1YmM0Mi0xZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTvjwGWgVMcQXrkU/fpJucCfyn2H/qn8vaXfgZWa3pGTX9MtZi5jRZBXAp9c DQwU3ctZJdbPNvx+Pub+u7JLRr7FJbw8zdbQiOXxQ04nswRt6JIJdu5WpNyxSjBO JdbAGElvXm5qGixccGSOWa51MtGdsdrgV0N/HV/cvnliNigx0YQf3X1PcDgFn3Q3 JgDzV0VVou3tycO6/t3/CE5LWHdI6Y281FMJ1ReVW4RvtNhI2cG0YqHmKqPL5UNJ ojtVq+VkfWFcG36Avbzo5okgFdtDMa12AtDhcRmlO/r5F02dtE10JavKfyMTB5Wq TveRLAxFUz2fJr7bqUZ8bbl9FwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE1JkOa7 vM+gnwlqM6JpmubCm6LtMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Ny9GNjgzQ0VGMjIxRUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3 cVpNX0tVUGNKcE9mb0dDS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqN6CvgmSI8yOioUPHwjkV1J/0igDUri4L/VBE4aPhMBry+K3JOs97eKJtKKf ROVuFGg6RPVUwz/L7Tp0LoQHubKc9AyIodnUM6cFt9WOXMdrO6zIRx7AnuUXzIQ3 aCNcf1hfWQbIjQ/wJ++iQkyTQ7wRbGHjV4Y+CTEhcr4WC22O/Bf1zbG2dhYvLbfr VD6kbXn51+kwNA45RUi7Kpv1aru+nuPRAkJuAOp/wzHcWU78FOBtSvcisPO5EJ7D Oqk37nX1B4WVvHVzMYVTORv7IXh/mVvp8J+CESXjV/tGDgvNQTxYSg3JtwqVRPfP H7/FL+fULRGdEUZNAgoIIhaYRQ== -----END CERTIFICATE-----Generated at Sat Mar 28 10:38:13 2026 by rpki-client