$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: AILuYNtAMgcWiNNmIsFOUoPCBvwitBGzwIV2Kdu4Ork= Subject key identifier: 33:E7:21:CE:49:CD:F6:01:DE:A9:75:FC:B4:D8:21:40:8C:9E:24:F7 Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 04D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 04D1 Signing time: Tue 24 Mar 2026 23:32:11 +0000 Manifest this update: Tue 24 Mar 2026 23:32:11 +0000 Manifest next update: Tue 31 Mar 2026 23:32:11 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: a9uW6sMBLOUDxo0E/3M8/v+WTm2giyCZ005hc0Q0Djs=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: l0NUWEUPjisvKhFGpflwXULabo5GNsblx0h91Os9bCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1240 (0x4d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Mar 24 23:32:11 2026 GMT Not After : Mar 31 23:32:11 2026 GMT Subject: CN=69c31efb-c29f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bf:af:53:83:df:35:7d:82:16:99:f5:04:11: b5:27:de:33:89:2f:b0:f4:7e:7d:5a:09:31:55:ef: 57:84:6c:dc:06:59:c0:7e:01:42:b9:4a:a8:19:b3: d4:b4:0a:55:fb:a5:53:82:c5:a7:0e:f6:32:fa:d4: 4c:f0:12:34:ec:c4:0a:db:4f:00:56:6f:f2:41:69: 03:36:c7:e6:b8:7d:d4:d6:b0:39:a9:88:f7:10:02: 2b:e4:c6:df:68:26:1f:3b:fb:55:90:80:19:29:d8: c8:6e:c9:34:10:39:96:83:90:c7:7f:3c:c4:ea:2f: 4b:90:7d:48:d3:92:3a:0c:e8:4b:9f:63:05:37:aa: 4f:15:11:2b:5c:6a:59:a3:8f:c6:b4:47:19:c0:f8: ca:5e:90:63:c3:09:0f:cb:c0:05:70:86:16:df:cd: 85:59:93:4f:02:a6:25:e4:5c:4d:f5:5f:88:93:c3: 4e:2d:d7:7e:2d:0c:d4:78:d0:33:60:98:e8:1a:9f: c6:52:46:94:da:b5:37:88:e5:52:f8:d1:13:d9:05: 87:45:5b:ed:ea:e0:b0:9a:0d:a8:f9:85:56:77:23: b4:fc:9b:5f:ea:0f:d3:b4:02:07:93:9d:33:a3:f4: e2:11:72:50:81:32:c2:24:05:b0:01:2c:96:20:60: 59:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E7:21:CE:49:CD:F6:01:DE:A9:75:FC:B4:D8:21:40:8C:9E:24:F7 X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:bf:76:73:5c:23:a9:07:5c:1f:e3:6d:81:f8:b2:1a:80:eb: 2f:8e:71:f8:a4:57:e1:02:2e:b4:a7:ab:20:a1:7f:69:d4:20: 2a:4a:df:ef:10:c8:ce:9b:20:8a:66:be:8c:20:b4:8f:97:58: ea:46:6d:fa:14:7c:ad:bb:72:59:22:fa:3c:b1:66:09:94:ec: 30:b3:98:94:b7:e9:e0:60:6c:8d:fa:1b:81:c7:7f:e5:1f:82: 4b:ba:b1:0d:a2:b5:c8:0d:da:38:95:21:c9:6f:26:a8:2f:db: 67:3b:f7:ae:97:24:f9:1a:fc:dd:3f:fa:4a:93:07:4d:5e:53: 98:5d:d1:3a:31:7a:cd:bb:8f:8d:77:9f:a2:fb:23:f7:a0:07: ba:b8:47:fd:18:69:10:23:f4:34:34:29:d0:9d:eb:9b:3e:cb: 1b:f3:e6:c2:e2:d0:f6:09:f0:01:d9:ca:09:53:b3:0a:cc:d7: 3a:cc:2e:ad:7c:36:6b:25:01:b1:df:0a:51:75:ec:f1:37:e0: 39:c8:9e:6a:39:d3:12:51:0f:ea:2f:d1:7d:a9:df:94:e4:bd: 22:0e:6d:21:67:89:88:1b:74:7b:cf:13:cb:6b:86:b4:06:04: 85:ef:1d:30:dc:f4:77:71:94:5e:38:fa:49:3f:7d:d2:04:4b: 2f:52:4b:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjYwMzI0MjMzMjExWhcNMjYwMzMxMjMzMjExWjAYMRYwFAYD VQQDEw02OWMzMWVmYi1jMjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2r+vU4PfNX2CFpn1BBG1J94ziS+w9H59WgkxVe9XhGzcBlnAfgFCuUqoGbPU tApV+6VTgsWnDvYy+tRM8BI07MQK208AVm/yQWkDNsfmuH3U1rA5qYj3EAIr5Mbf aCYfO/tVkIAZKdjIbsk0EDmWg5DHfzzE6i9LkH1I05I6DOhLn2MFN6pPFRErXGpZ o4/GtEcZwPjKXpBjwwkPy8AFcIYW382FWZNPAqYl5FxN9V+Ik8NOLdd+LQzUeNAz YJjoGp/GUkaU2rU3iOVS+NET2QWHRVvt6uCwmg2o+YVWdyO0/Jtf6g/TtAIHk50z o/TiEXJQgTLCJAWwASyWIGBZ+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDPnIc5J zfYB3ql1/LTYIUCMniT3MB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlb92c1wjqQdcH+NtgfiyGoDrL45x+KRX4QIutKerIKF/adQgKkrf7xDIzpsg ima+jCC0j5dY6kZt+hR8rbtyWSL6PLFmCZTsMLOYlLfp4GBsjfobgcd/5R+CS7qx DaK1yA3aOJUhyW8mqC/bZzv3rpck+Rr83T/6SpMHTV5TmF3ROjF6zbuPjXefovsj 96AHurhH/RhpECP0NDQp0J3rmz7LG/PmwuLQ9gnwAdnKCVOzCszXOswurXw2ayUB sd8KUXXs8TfgOcieajnTElEP6i/RfanflOS9Ig5tIWeJiBt0e88Ty2uGtAYEhe8d MNz0d3GUXjj6ST990gRLL1JL1w== -----END CERTIFICATE-----Generated at Thu Mar 26 08:57:02 2026 by rpki-client