$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: 0JsvknWOUJgPdvH4zVee2iAmpu4gZLvzS+m1NPWMcjs= Subject key identifier: 21:11:E1:4E:9A:4D:9B:19:30:6F:08:61:A8:4C:65:88:A7:FC:D0:BE Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 352D Signing time: Thu 26 Mar 2026 15:06:34 +0000 Manifest this update: Thu 26 Mar 2026 15:06:34 +0000 Manifest next update: Thu 02 Apr 2026 15:06:34 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: AXhChLEyQF8zLQAH4VBqEoOfOCtvF0s3ZfGV2SQUobs=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: grlNN+mm97djcRhLgczSf6yBI8MB1/S7/60D7ODVKSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:06:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13621 (0x3535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Mar 26 15:06:34 2026 GMT Not After : Apr 2 15:06:34 2026 GMT Subject: CN=69c54b7a-2128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:48:84:bc:cb:3d:aa:b0:80:99:bb:9b:0d:9b: 20:a7:a3:70:31:a2:4b:fe:c7:89:c7:5f:03:cb:31: 8f:f7:0d:1f:32:23:4a:d6:82:cc:ba:3e:fc:3c:64: 12:57:50:36:03:65:4c:3d:f3:e1:44:b6:85:55:02: 2b:35:a5:80:e7:c2:f1:9b:ab:af:1a:57:f3:2b:23: b8:bb:84:98:b2:6a:00:2c:55:87:db:fe:35:b6:04: 50:81:c8:e4:a0:ed:1e:d5:b5:21:c0:ab:1e:ca:18: d7:e3:16:a0:e2:61:97:3d:06:46:ed:3b:de:40:a8: 6b:a3:00:15:d1:77:23:02:14:5e:1c:5f:41:e5:a5: d7:80:7f:3e:c9:64:94:3c:09:b5:81:98:21:6f:25: 52:bd:4e:96:8e:a6:c5:78:9d:af:02:c1:24:9e:ac: e1:f0:0c:1e:3a:ad:4b:81:f4:96:a7:85:5f:44:3c: 57:d2:6c:b7:a2:a4:de:1a:4d:28:89:a0:1a:06:8e: c7:34:2b:cc:1b:8a:2a:5b:38:44:41:fb:76:cb:2e: 58:7e:47:c0:89:f2:64:b2:f2:14:b5:8c:e8:22:f8: 58:f1:44:02:27:b5:8e:0e:ad:e3:21:1e:14:18:26: 76:4b:db:03:5d:2f:64:87:ae:f9:e4:e3:38:3b:3e: a9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:11:E1:4E:9A:4D:9B:19:30:6F:08:61:A8:4C:65:88:A7:FC:D0:BE X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:c8:48:64:4e:52:79:b3:e2:04:a8:2b:31:1c:39:bb:1b:80: b1:fd:82:a0:12:1f:5a:a7:0e:77:3f:81:7b:17:39:a3:da:e0: 4b:d5:f9:85:2a:73:53:95:e0:c7:5e:c7:63:db:66:ad:ea:5b: 9a:71:08:99:f7:b6:fd:70:3f:de:5f:d4:9e:cd:9c:81:73:a5: 57:e7:8e:77:d1:30:8b:ec:9b:80:a3:94:fc:75:2d:74:73:22: 43:f8:9c:6f:06:9f:1c:6a:d1:a5:37:fa:9f:16:5b:ba:d7:73: 0d:c7:ea:0f:6e:30:de:9f:eb:75:7e:e0:bd:e2:cb:9a:31:64: 20:b9:7c:79:eb:54:1b:ba:af:6b:16:71:ad:e7:ad:b5:bb:1f: f5:df:ab:d8:90:bd:21:e0:6e:64:c3:45:66:e8:e2:cf:02:3d: b1:be:1e:85:43:40:4f:4e:7e:c6:b2:fd:12:4c:14:d2:2c:b1: 8e:f6:7b:0e:20:c8:c5:82:82:29:4c:71:0a:50:e0:cd:a7:b7: 92:6c:e6:f8:c0:49:7d:e5:ea:e7:39:5b:a5:7d:3f:26:c6:90: 9a:67:58:71:19:92:5f:b1:1e:19:da:fe:bb:21:9a:e7:ab:f2: d6:34:ee:bb:b6:c1:30:8a:d7:48:61:cb:74:72:db:73:13:4a: f1:af:de:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjYwMzI2MTUwNjM0WhcNMjYwNDAyMTUwNjM0WjAYMRYwFAYD VQQDEw02OWM1NGI3YS0yMTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmUiEvMs9qrCAmbubDZsgp6NwMaJL/seJx18DyzGP9w0fMiNK1oLMuj78PGQS V1A2A2VMPfPhRLaFVQIrNaWA58Lxm6uvGlfzKyO4u4SYsmoALFWH2/41tgRQgcjk oO0e1bUhwKseyhjX4xag4mGXPQZG7TveQKhrowAV0XcjAhReHF9B5aXXgH8+yWSU PAm1gZghbyVSvU6WjqbFeJ2vAsEknqzh8AweOq1LgfSWp4VfRDxX0my3oqTeGk0o iaAaBo7HNCvMG4oqWzhEQft2yy5YfkfAifJksvIUtYzoIvhY8UQCJ7WODq3jIR4U GCZ2S9sDXS9kh6755OM4Oz6pHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCER4U6a TZsZMG8IYahMZYin/NC+MB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtchIZE5SebPiBKgrMRw5uxuAsf2CoBIfWqcOdz+Bexc5o9rgS9X5hSpzU5Xg x17HY9tmrepbmnEImfe2/XA/3l/Uns2cgXOlV+eOd9Ewi+ybgKOU/HUtdHMiQ/ic bwafHGrRpTf6nxZbutdzDcfqD24w3p/rdX7gveLLmjFkILl8eetUG7qvaxZxreet tbsf9d+r2JC9IeBuZMNFZujizwI9sb4ehUNAT05+xrL9EkwU0iyxjvZ7DiDIxYKC KUxxClDgzae3kmzm+MBJfeXq5zlbpX0/JsaQmmdYcRmSX7EeGdr+uyGa56vy1jTu u7bBMIrXSGHLdHLbcxNK8a/eLA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:33:12 2026 by rpki-client