$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: upE72f2p+WXajxBI2uja0naoSLLKNTElnro2hkKddiE= Subject key identifier: DC:4B:4A:57:4D:41:38:18:6E:03:64:B2:F2:31:6D:D5:FA:B9:86:C9 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 08EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 08E3 Signing time: Tue 24 Mar 2026 20:08:14 +0000 Manifest this update: Tue 24 Mar 2026 20:08:13 +0000 Manifest next update: Tue 31 Mar 2026 20:08:13 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: ISii/uqNWBWm+DjooC7JUPUCLD+yBwtcMVJChZLrDlQ=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: wbC8vyImx6v6ewZMr1D8zOdi43W+XjTwWRTdg25wKL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2286 (0x8ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Mar 24 20:08:13 2026 GMT Not After : Mar 31 20:08:13 2026 GMT Subject: CN=69c2ef2e-2e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:79:f7:d0:77:1e:80:7a:3d:a1:0e:57:c0:11: d3:2b:21:47:18:60:a4:56:a1:ef:b3:ce:1b:b9:4b: 6e:ba:47:a4:d9:e9:40:41:e5:63:c0:85:3f:2a:ad: 66:bc:28:76:97:bb:d3:e7:31:9f:71:f0:db:3c:f7: c5:e6:8c:9a:72:c6:00:ff:37:3d:d4:eb:b4:eb:c3: 3d:fd:09:a7:b8:97:58:01:31:82:7d:6b:14:d2:6e: 2f:ef:cf:79:a3:af:5d:e0:cf:36:17:fd:4f:60:2f: a6:9e:17:c4:bb:bf:e2:b9:10:3d:26:08:0d:24:4a: 2a:f6:1a:95:54:90:4b:c5:6b:7f:c8:4d:13:bb:c0: 97:28:ad:ea:33:07:ac:ba:81:42:c5:37:43:07:3b: 1e:44:fc:dd:33:4c:fa:fa:2d:73:28:27:04:42:b3: 65:81:5c:80:f6:56:1b:8f:ce:e7:e7:73:22:f6:d0: 48:0e:b7:90:11:e7:41:c2:ee:dc:21:2a:2f:ec:96: 09:9b:63:5d:6a:dd:da:62:10:ed:12:63:de:88:7f: 6d:f6:8f:a9:5a:aa:4b:ce:5e:17:e4:e9:73:f9:9b: ef:f5:1e:92:d3:86:1c:86:16:84:5a:89:93:f4:d9: 1a:4f:4a:6e:3f:e4:3e:d4:a9:c8:5c:32:49:28:3b: 54:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4B:4A:57:4D:41:38:18:6E:03:64:B2:F2:31:6D:D5:FA:B9:86:C9 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:0e:d8:0a:c7:df:66:b2:51:87:e9:31:e9:cf:f0:c9:4a:03: 1f:ab:4e:1d:01:0c:13:19:0a:89:23:f0:53:bf:45:15:45:4d: f7:57:a9:40:0e:e2:66:b0:d4:22:5e:e2:9d:ee:56:db:83:52: 4f:e1:69:87:77:1a:b1:e2:7d:32:5f:d9:84:4e:1e:2a:b9:a9: 60:aa:21:24:d0:80:d3:a9:2b:fe:4a:3b:4f:65:70:fe:57:f1: 78:b7:b9:ba:bc:52:cc:a5:41:eb:0a:d2:b9:81:be:d5:e2:ae: a1:78:94:8c:39:4a:f8:f8:cb:fe:3d:1d:2b:21:98:a5:21:92: b4:18:0a:1d:66:d8:ee:09:b0:d6:33:3c:07:4b:ed:78:b0:48: 2d:75:69:be:e3:24:55:d0:2a:8b:ad:0b:31:26:cc:af:93:ba: 41:b5:24:5e:cd:b5:b4:fd:87:d7:ee:2e:a7:43:2c:24:a7:6f: 20:3c:f9:bf:ae:d6:92:be:82:57:30:87:99:71:78:3e:3b:9e: f4:ea:4e:7b:72:6a:6e:27:6b:38:a8:3e:46:56:37:c9:f5:34: 30:bc:58:71:08:92:be:f2:11:31:2b:cc:8f:fc:dd:5d:28:9d: 19:39:b0:8c:43:1f:ba:ee:9d:71:9c:94:95:df:54:ef:84:30: 74:2e:19:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjYwMzI0MjAwODEzWhcNMjYwMzMxMjAwODEzWjAYMRYwFAYD VQQDEw02OWMyZWYyZS0yZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnn30HcegHo9oQ5XwBHTKyFHGGCkVqHvs84buUtuukek2elAQeVjwIU/Kq1m vCh2l7vT5zGfcfDbPPfF5oyacsYA/zc91Ou068M9/QmnuJdYATGCfWsU0m4v7895 o69d4M82F/1PYC+mnhfEu7/iuRA9JggNJEoq9hqVVJBLxWt/yE0Tu8CXKK3qMwes uoFCxTdDBzseRPzdM0z6+i1zKCcEQrNlgVyA9lYbj87n53Mi9tBIDreQEedBwu7c ISov7JYJm2Ndat3aYhDtEmPeiH9t9o+pWqpLzl4X5Olz+Zvv9R6S04YchhaEWomT 9NkaT0puP+Q+1KnIXDJJKDtUJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNxLSldN QTgYbgNksvIxbdX6uYbJMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlQ7YCsffZrJRh+kx6c/wyUoDH6tOHQEMExkKiSPwU79FFUVN91epQA7iZrDU Il7ine5W24NST+Fph3caseJ9Ml/ZhE4eKrmpYKohJNCA06kr/ko7T2Vw/lfxeLe5 urxSzKVB6wrSuYG+1eKuoXiUjDlK+PjL/j0dKyGYpSGStBgKHWbY7gmw1jM8B0vt eLBILXVpvuMkVdAqi60LMSbMr5O6QbUkXs21tP2H1+4up0MsJKdvIDz5v67Wkr6C VzCHmXF4Pjue9OpOe3JqbidrOKg+RlY3yfU0MLxYcQiSvvIRMSvMj/zdXSidGTmw jEMfuu6dcZyUld9U74QwdC4ZNQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:08:15 2026 by rpki-client