$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: ZQS6Tm37043ZT4eNFEfs1EP9gC90tqbC8JPPn7kdeSA= Subject key identifier: EF:B0:9E:69:04:E0:09:D2:8D:BD:B7:2F:EF:1B:A3:99:0B:DF:77:D5 Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: 0143 Signing time: Wed 25 Mar 2026 04:30:32 +0000 Manifest this update: Wed 25 Mar 2026 04:30:32 +0000 Manifest next update: Wed 01 Apr 2026 04:30:32 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: uMLUaO38g8T/DMdr1ICC1TIBXvGkl4htJ4xnHrMNp+E=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: GLn2NuIf/rdBlKE3RuKG6Jbz+UwBmcRgc2vk3s4p7rY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Mar 25 04:30:32 2026 GMT Not After : Apr 1 04:30:32 2026 GMT Subject: CN=69c364e8-c1be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4b:dd:c3:8c:80:4c:72:1d:65:dd:1f:4a:82: b9:75:57:fb:75:19:58:1a:07:9a:2e:a5:0b:8f:29: 3a:ac:e5:bd:e7:b0:aa:81:c1:62:b2:21:54:d4:8f: 7c:03:08:64:d0:42:45:f7:1c:ce:97:ad:f5:c2:53: 20:32:03:4a:16:85:d2:90:a6:93:58:15:c9:e0:a1: 92:eb:f6:8f:6e:fa:fd:88:68:67:02:ff:03:97:75: 43:73:ec:ac:22:c2:b0:fa:94:db:df:eb:66:f2:41: e5:4e:6c:81:c3:f9:c0:f9:8d:af:5f:6f:aa:72:4a: b5:f4:e9:72:e6:26:01:92:8c:19:df:b9:f6:ef:e0: 68:a3:41:6c:94:b4:7f:2a:03:44:3d:2c:dd:8c:0b: 38:35:1b:c5:4f:99:d9:04:93:e8:d8:56:37:07:b4: 73:e5:93:93:e1:55:13:4b:ea:27:9a:f3:c9:58:80: b8:4f:e0:97:9a:68:b9:d4:07:8d:fb:13:d9:79:8d: 90:dd:38:b1:97:df:07:d3:3a:8c:58:ac:a6:a1:ff: 40:b7:02:37:02:48:88:3f:32:e5:8e:94:b1:ca:ab: 24:03:82:e7:69:ec:27:59:a9:f9:f5:c2:4d:ac:88: 5a:47:8e:3a:af:15:e8:51:cc:a8:27:01:65:b9:12: 40:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B0:9E:69:04:E0:09:D2:8D:BD:B7:2F:EF:1B:A3:99:0B:DF:77:D5 X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:2f:fe:7d:94:62:26:b1:b8:28:0b:3d:d4:32:9b:89:35:97: 5b:77:e9:6e:f0:24:d2:30:bf:66:db:b5:a1:d1:09:2c:8d:b0: f5:d6:cf:5b:f3:db:b0:bf:ac:cf:f5:e9:9c:6b:8c:7b:8e:8b: 16:13:d6:3c:f9:53:de:36:d3:49:75:eb:61:06:16:d5:2f:5e: de:0f:1c:15:e5:db:54:26:16:fa:77:55:86:f0:79:bb:c4:da: 8d:83:d6:47:c8:fa:4c:b6:c6:c1:85:35:c4:ac:fa:72:fd:c5: 8a:8a:d9:0f:6e:57:d0:ac:d2:08:f3:c5:a5:a0:dc:6a:5a:41: 73:01:c7:cc:88:9f:02:b5:ba:9c:3e:f3:20:87:c4:ed:23:4e: 04:4b:70:b3:33:3f:ab:80:df:05:68:8a:d0:24:a0:2d:f0:2a: 06:39:1b:35:f0:82:4b:07:ee:83:ee:b4:bd:f4:c2:a6:ca:63: 50:ee:ed:32:e8:54:a5:21:a7:29:8e:b5:d4:b9:e6:c4:78:f5: 5f:2b:a5:08:4e:47:31:53:de:fc:2e:a7:fe:09:96:d5:35:f0: 9e:e2:03:d3:19:91:9e:b6:65:c9:53:2c:80:af:c6:b6:82:31: 20:ae:11:a7:b0:67:aa:bb:c4:48:9a:64:89:15:54:c8:7e:e1: 49:bf:25:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjYwMzI1MDQzMDMyWhcNMjYwNDAxMDQzMDMyWjAYMRYwFAYD VQQDEw02OWMzNjRlOC1jMWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0vdw4yATHIdZd0fSoK5dVf7dRlYGgeaLqULjyk6rOW957CqgcFisiFU1I98 Awhk0EJF9xzOl631wlMgMgNKFoXSkKaTWBXJ4KGS6/aPbvr9iGhnAv8Dl3VDc+ys IsKw+pTb3+tm8kHlTmyBw/nA+Y2vX2+qckq19Oly5iYBkowZ37n27+Boo0FslLR/ KgNEPSzdjAs4NRvFT5nZBJPo2FY3B7Rz5ZOT4VUTS+onmvPJWIC4T+CXmmi51AeN +xPZeY2Q3Tixl98H0zqMWKymof9AtwI3AkiIPzLljpSxyqskA4LnaewnWan59cJN rIhaR446rxXoUcyoJwFluRJAMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO+wnmkE 4AnSjb23L+8bo5kL33fVMB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmi/+fZRiJrG4KAs91DKbiTWXW3fpbvAk0jC/Ztu1odEJLI2w9dbPW/PbsL+s z/XpnGuMe46LFhPWPPlT3jbTSXXrYQYW1S9e3g8cFeXbVCYW+ndVhvB5u8TajYPW R8j6TLbGwYU1xKz6cv3FiorZD25X0KzSCPPFpaDcalpBcwHHzIifArW6nD7zIIfE 7SNOBEtwszM/q4DfBWiK0CSgLfAqBjkbNfCCSwfug+60vfTCpspjUO7tMuhUpSGn KY611LnmxHj1XyulCE5HMVPe/C6n/gmW1TXwnuID0xmRnrZlyVMsgK/GtoIxIK4R p7BnqrvESJpkiRVUyH7hSb8lNQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:31:25 2026 by rpki-client