$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: od8O5t/YXW619fdO2FotX4yvmN06M78VFYYCq1LE3ug= Subject key identifier: 90:C8:E8:5E:C1:11:02:FC:A4:8C:94:BD:D3:CF:7C:3B:CC:CB:1E:E1 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 0A24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 0A10 Signing time: Tue 24 Mar 2026 19:38:19 +0000 Manifest this update: Tue 24 Mar 2026 19:38:19 +0000 Manifest next update: Tue 31 Mar 2026 19:38:19 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: BWifKE5StLR+BVOBcuD//jV/OEfFLjCSASEKRYE/8WY=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: b+aLVYk2tgs7wuTrLgj88F2Zzs9HvJ7ppCzvA/wlonM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2596 (0xa24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Mar 24 19:38:19 2026 GMT Not After : Mar 31 19:38:19 2026 GMT Subject: CN=69c2e82b-d545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:35:92:6b:1b:e7:c2:b2:df:47:d1:cd:3b:a2: b2:06:d0:5e:35:cf:e2:7c:79:87:54:6f:4f:99:81: 29:3c:81:21:8a:f7:29:4d:5a:b5:e6:f3:ce:40:32: b8:21:c3:f1:d8:73:c1:e4:77:61:5e:6a:18:e3:3f: c5:0a:1f:5f:7d:db:44:99:9b:61:70:87:a6:3c:e7: e2:c4:21:5a:e7:94:54:bc:09:4a:bd:5c:13:23:43: 17:7f:ce:9b:03:35:06:cb:29:8b:09:fd:e1:c4:a6: e9:6d:65:22:d5:ad:72:54:70:1e:18:22:c6:da:dc: ee:02:7d:68:9d:0d:ad:5e:26:44:0a:b8:33:ce:4a: e6:65:56:a6:21:c1:88:be:d4:43:8b:65:9f:a1:cb: 62:68:6e:54:c3:2b:da:76:66:c9:52:a9:a6:0f:1e: 1c:b6:66:2e:73:fb:6a:af:1b:f0:48:89:be:aa:e8: 6c:62:54:91:e7:61:df:e2:62:47:e0:2c:fc:65:e2: 78:4a:06:5e:d5:39:62:c2:f0:77:3d:18:7c:6b:40: 70:c9:06:ff:c2:2a:2e:68:75:d3:65:44:53:14:e5: af:02:6a:7e:3e:a5:68:01:d7:28:9b:0d:c2:f3:cd: 7f:d1:33:58:bc:08:3b:10:2d:85:f0:01:07:ee:2a: a8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C8:E8:5E:C1:11:02:FC:A4:8C:94:BD:D3:CF:7C:3B:CC:CB:1E:E1 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:19:17:e6:fb:fa:34:77:d0:5f:46:9a:3f:db:73:30:ea:87: 5c:08:8a:75:06:7b:50:2f:21:b6:30:9f:1f:86:54:99:0d:4e: 93:c1:42:78:95:f5:55:18:b2:f0:a2:4e:ba:24:e8:e7:4a:6f: 0c:44:a8:20:d9:e7:99:78:25:0f:cc:4c:b7:ff:2a:fd:04:5d: 1c:07:95:ed:ae:0b:aa:76:9c:59:8c:cb:54:33:d3:61:61:1c: af:42:a0:78:2f:51:5a:ff:5d:6c:d2:ab:71:44:6b:cd:95:ce: d2:f1:d9:f9:5e:a1:30:e5:3d:75:8e:58:96:1b:59:f2:e3:06: 91:e3:0e:4b:3e:31:37:52:92:f7:c2:35:35:fd:a8:09:a8:3b: 66:67:cc:1c:54:54:e2:59:fc:d7:d4:c6:13:ba:ff:ca:53:d9: f9:a3:3e:4f:dc:f8:40:d4:4d:b8:74:d2:c4:d9:00:9a:ab:1b: 45:1a:e7:bb:d7:8a:12:51:70:da:4a:5b:e0:88:a9:8d:1e:55: 69:36:44:e1:83:10:e0:e7:34:a6:7f:b3:7d:3c:34:70:16:96: 4a:43:4f:af:60:f6:7b:fa:27:a8:b4:a8:a6:db:41:10:4c:f7: 50:17:23:90:09:ea:8a:bd:9c:3d:3b:8c:30:7a:e4:2b:a1:92: e1:41:8d:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjYwMzI0MTkzODE5WhcNMjYwMzMxMTkzODE5WjAYMRYwFAYD VQQDEw02OWMyZTgyYi1kNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DWSaxvnwrLfR9HNO6KyBtBeNc/ifHmHVG9PmYEpPIEhivcpTVq15vPOQDK4 IcPx2HPB5HdhXmoY4z/FCh9ffdtEmZthcIemPOfixCFa55RUvAlKvVwTI0MXf86b AzUGyymLCf3hxKbpbWUi1a1yVHAeGCLG2tzuAn1onQ2tXiZECrgzzkrmZVamIcGI vtRDi2WfoctiaG5UwyvadmbJUqmmDx4ctmYuc/tqrxvwSIm+quhsYlSR52Hf4mJH 4Cz8ZeJ4SgZe1TliwvB3PRh8a0BwyQb/wiouaHXTZURTFOWvAmp+PqVoAdcomw3C 881/0TNYvAg7EC2F8AEH7iqojwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJDI6F7B EQL8pIyUvdPPfDvMyx7hMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANxkX5vv6NHfQX0aaP9tzMOqHXAiKdQZ7UC8htjCfH4ZUmQ1Ok8FCeJX1VRiy 8KJOuiTo50pvDESoINnnmXglD8xMt/8q/QRdHAeV7a4LqnacWYzLVDPTYWEcr0Kg eC9RWv9dbNKrcURrzZXO0vHZ+V6hMOU9dY5YlhtZ8uMGkeMOSz4xN1KS98I1Nf2o Cag7ZmfMHFRU4ln819TGE7r/ylPZ+aM+T9z4QNRNuHTSxNkAmqsbRRrnu9eKElFw 2kpb4IipjR5VaTZE4YMQ4Oc0pn+zfTw0cBaWSkNPr2D2e/onqLSopttBEEz3UBcj kAnqir2cPTuMMHrkK6GS4UGNyA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:35:53 2026 by rpki-client