$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: b1a+SgxUQe9ZnVGSoYa2JssIyfp5KRmxiBnCqT+7IFw= Subject key identifier: DB:13:F6:1D:65:1A:99:4B:D1:00:B3:A3:35:08:CE:A0:2A:CD:21:B6 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 0115 Signing time: Wed 25 Mar 2026 05:13:34 +0000 Manifest this update: Wed 25 Mar 2026 05:13:34 +0000 Manifest next update: Wed 01 Apr 2026 05:13:34 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: W1wouNJCJzIzX+A/SX9HpNo3CFZB6aXSdJBJohVkR04=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 7w241TOLyyucLUDf7OQQ+XxJH6J8zBk8QcqnEOt6c80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Mar 25 05:13:34 2026 GMT Not After : Apr 1 05:13:34 2026 GMT Subject: CN=69c36efe-5639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dc:62:48:33:8e:76:41:2a:c8:ad:7d:0a:fe: da:69:79:70:db:41:ce:76:b5:64:0b:11:24:d9:17: 89:0b:36:cb:fe:75:61:1e:5a:32:4a:10:12:aa:f8: 65:13:53:77:62:a1:1d:0f:d2:3f:29:f7:36:82:73: 09:0f:bc:46:08:27:48:57:70:7c:a0:19:62:d7:87: fa:fb:1d:6f:fc:9e:6e:9e:d1:48:03:18:db:59:58: 43:40:3b:3b:a7:21:ee:98:4d:66:14:cc:4e:f7:54: 60:4a:ed:ae:c3:bd:7d:9b:e7:9b:de:16:9e:fe:3f: df:a5:8b:7a:81:64:4c:48:36:9c:d0:56:c5:a3:79: ac:ac:84:7e:0a:b5:c6:6f:24:00:bd:e3:4d:26:4d: 7c:34:20:60:7c:4d:5c:04:8c:03:d7:02:ff:af:8c: a2:a4:ef:50:b9:0b:14:fc:e6:42:c3:8e:8a:82:0b: cd:4f:a7:7f:bd:35:cf:54:45:41:53:c0:76:65:18: 1a:d8:77:1e:fd:07:7f:15:7e:24:03:3a:ba:18:9b: 73:26:b5:14:8d:05:fa:5f:55:cd:0e:9f:c2:be:0e: c5:05:f0:67:bd:49:fe:89:d8:18:53:5b:7b:13:3c: 66:0d:8b:de:fb:d3:e0:39:62:f3:c1:01:c6:b6:ad: 0a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:13:F6:1D:65:1A:99:4B:D1:00:B3:A3:35:08:CE:A0:2A:CD:21:B6 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:f4:e5:0f:c4:19:24:c9:63:93:2e:31:69:9c:69:42:a0:83: c8:5e:06:b4:78:40:d8:05:b7:d6:83:cd:64:af:5b:2b:68:3a: 57:3a:58:74:7b:83:76:42:5c:03:55:96:76:29:9d:6e:8c:89: 1f:f5:5e:ac:5b:4b:78:1d:f4:21:13:ae:1d:e1:80:f0:3e:3b: 8d:ba:1b:30:bd:e6:f6:fa:05:5a:0c:2f:34:2d:28:d3:69:f1: e0:5c:7a:d7:99:71:63:f6:e6:e2:25:16:85:68:3c:ac:92:1c: a4:17:71:ff:46:99:0f:83:ea:23:33:be:79:73:d0:99:e1:44: fb:8a:65:20:4f:e3:24:5e:32:1b:71:4e:ab:81:77:b6:a5:eb: ab:3a:66:d9:48:be:fb:4a:fe:39:de:41:48:0a:15:0c:d6:19: 03:40:bd:17:54:99:1a:c1:d6:4d:b9:a5:20:0c:89:af:a2:5a: 67:0c:df:0e:18:44:6a:3d:b6:18:c6:29:a7:d4:77:56:fb:7c: 8e:37:b7:55:f5:36:f1:ec:28:58:ad:80:bc:ac:dd:da:c5:64: 2f:8c:f8:41:c3:c5:5d:84:1c:70:42:92:b6:af:64:59:8b:bc: cb:70:d3:0c:fa:1c:96:1a:e9:c5:0f:c5:01:d4:6e:e9:59:8d: e6:0e:b9:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjYwMzI1MDUxMzM0WhcNMjYwNDAxMDUxMzM0WjAYMRYwFAYD VQQDEw02OWMzNmVmZS01NjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdxiSDOOdkEqyK19Cv7aaXlw20HOdrVkCxEk2ReJCzbL/nVhHloyShASqvhl E1N3YqEdD9I/Kfc2gnMJD7xGCCdIV3B8oBli14f6+x1v/J5untFIAxjbWVhDQDs7 pyHumE1mFMxO91RgSu2uw719m+eb3hae/j/fpYt6gWRMSDac0FbFo3msrIR+CrXG byQAveNNJk18NCBgfE1cBIwD1wL/r4yipO9QuQsU/OZCw46KggvNT6d/vTXPVEVB U8B2ZRga2Hce/Qd/FX4kAzq6GJtzJrUUjQX6X1XNDp/Cvg7FBfBnvUn+idgYU1t7 EzxmDYve+9PgOWLzwQHGtq0KVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNsT9h1l GplL0QCzozUIzqAqzSG2MB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOvTlD8QZJMljky4xaZxpQqCDyF4GtHhA2AW31oPNZK9bK2g6VzpYdHuDdkJc A1WWdimdboyJH/VerFtLeB30IROuHeGA8D47jbobML3m9voFWgwvNC0o02nx4Fx6 15lxY/bm4iUWhWg8rJIcpBdx/0aZD4PqIzO+eXPQmeFE+4plIE/jJF4yG3FOq4F3 tqXrqzpm2Ui++0r+Od5BSAoVDNYZA0C9F1SZGsHWTbmlIAyJr6JaZwzfDhhEaj22 GMYpp9R3Vvt8jje3VfU28ewoWK2AvKzd2sVkL4z4QcPFXYQccEKStq9kWYu8y3DT DPoclhrpxQ/FAdRu6VmN5g65Yg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:22 2026 by rpki-client