$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: ijWUudxZV/Lf1FLAqQzKjlzoRjoGq3cH1N8NKDB/8ZM= Subject key identifier: 8D:E8:E1:24:4A:EB:C6:E9:CF:01:9F:60:3C:00:E5:9B:25:BE:4B:A7 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0E15 Signing time: Tue 24 Mar 2026 17:44:43 +0000 Manifest this update: Tue 24 Mar 2026 17:44:42 +0000 Manifest next update: Tue 31 Mar 2026 17:44:42 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: byt6beCIbcKju29AmH1ZQP2Qbbdjw1/yM1djfb19OhM=) 2: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: V7vJC1rGtCuOdSFWDJjdd3JhuVIPp/Zsx063dJpSpzo=) 3: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: BDCeGfEWVHXeaWbclA9t0RZH57mKZHgC7rw0NrSMJ9s=) 4: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: GS10eEt1MCcAl1eDM0DD66Q/CuCpMh/GfO+nM5nY1Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3676 (0xe5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Mar 24 17:44:42 2026 GMT Not After : Mar 31 17:44:42 2026 GMT Subject: CN=69c2cd8a-a063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:64:c7:2d:af:66:f2:61:98:90:1a:59:aa:1c: 3f:9c:f4:b8:9c:24:c7:b4:12:3d:4f:de:20:0d:e8: 76:18:8d:ca:57:5b:43:39:9d:17:7c:30:b3:d3:3f: 3e:65:f7:d6:10:55:50:e9:64:26:2d:8a:49:19:8a: 27:a2:e4:b7:80:03:8c:9e:91:cf:24:3b:ae:09:0c: e5:84:ca:98:db:e0:5b:97:ad:8d:de:54:08:e8:96: a9:2d:ef:4a:83:a1:ed:97:53:4d:0b:0b:a9:cc:4d: ac:e7:88:fe:6e:20:c7:47:56:2d:65:8a:ea:61:6f: 82:79:a6:76:1f:47:17:e7:08:27:4a:98:09:74:c3: b4:d8:f2:e3:f8:38:e0:96:c2:7f:37:c6:29:d6:ff: 00:4e:f3:1f:6b:11:40:b6:3d:61:37:eb:0d:e6:de: 31:6d:2b:83:4c:7a:47:9f:31:c8:8f:14:88:db:ba: 1a:04:18:e0:d7:88:d4:4a:25:d9:00:b7:15:e1:7e: 1e:a0:a7:1f:61:63:cc:95:ff:9d:35:00:8c:fa:c7: ec:f3:ad:41:ac:35:16:73:e4:33:8b:32:47:0e:d4: e1:21:9f:e9:6a:76:f9:5d:75:cd:de:08:04:95:76: f4:84:b0:58:33:96:67:09:51:2e:38:f6:27:2b:62: fa:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E8:E1:24:4A:EB:C6:E9:CF:01:9F:60:3C:00:E5:9B:25:BE:4B:A7 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:9e:76:4f:fb:54:27:7a:1c:d9:fc:27:cd:36:9d:a6:39:45: b5:2b:c9:58:2e:2e:b1:ca:fb:08:5b:47:33:dd:01:11:9a:de: ce:c7:16:0c:ea:df:33:f0:bd:45:f8:78:91:b0:08:e6:94:55: 3c:fe:ef:3c:f0:ed:e3:3a:5f:ef:16:ed:51:8d:b8:1c:6d:9c: 7e:b9:f3:91:49:36:52:81:1f:07:3b:73:0f:4f:57:18:23:32: e8:c5:1f:32:7b:47:39:26:77:17:45:c2:b0:e8:13:ec:69:6c: c1:1c:d3:22:a0:52:50:05:ee:50:6e:be:5b:0f:ef:be:3d:17: b5:45:d0:57:2f:bb:1e:f8:13:38:c3:2c:ce:e7:b3:4e:96:7a: 40:e9:7d:0d:c4:9d:93:78:0b:95:69:1d:05:b6:71:04:43:f9: 33:bd:51:d3:a4:0e:0a:f7:19:83:c6:cd:3d:95:be:db:79:11: 4c:0a:5e:78:09:f7:8d:2e:26:f2:82:7b:79:a3:1f:2e:8c:4a: ae:50:db:a7:86:7f:9b:f0:a3:a2:90:20:62:15:f7:d3:b8:d7: 5f:49:05:c8:49:35:fc:7a:48:1c:1d:5d:53:ca:ee:25:76:24: 73:8e:e9:14:9e:8c:8d:29:17:70:37:54:7d:da:05:63:5f:65: 65:4a:00:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwMzI0MTc0NDQyWhcNMjYwMzMxMTc0NDQyWjAYMRYwFAYD VQQDEw02OWMyY2Q4YS1hMDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWTHLa9m8mGYkBpZqhw/nPS4nCTHtBI9T94gDeh2GI3KV1tDOZ0XfDCz0z8+ ZffWEFVQ6WQmLYpJGYonouS3gAOMnpHPJDuuCQzlhMqY2+Bbl62N3lQI6JapLe9K g6Htl1NNCwupzE2s54j+biDHR1YtZYrqYW+CeaZ2H0cX5wgnSpgJdMO02PLj+Djg lsJ/N8Yp1v8ATvMfaxFAtj1hN+sN5t4xbSuDTHpHnzHIjxSI27oaBBjg14jUSiXZ ALcV4X4eoKcfYWPMlf+dNQCM+sfs861BrDUWc+QzizJHDtThIZ/panb5XXXN3ggE lXb0hLBYM5ZnCVEuOPYnK2L62QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI3o4SRK 68bpzwGfYDwA5ZslvkunMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoJ52T/tUJ3oc2fwnzTadpjlFtSvJWC4uscr7CFtHM90BEZrezscWDOrfM/C9 Rfh4kbAI5pRVPP7vPPDt4zpf7xbtUY24HG2cfrnzkUk2UoEfBztzD09XGCMy6MUf MntHOSZ3F0XCsOgT7GlswRzTIqBSUAXuUG6+Ww/vvj0XtUXQVy+7HvgTOMMszuez TpZ6QOl9DcSdk3gLlWkdBbZxBEP5M71R06QOCvcZg8bNPZW+23kRTApeeAn3jS4m 8oJ7eaMfLoxKrlDbp4Z/m/CjopAgYhX307jXX0kFyEk1/HpIHB1dU8ruJXYkc47p FJ6MjSkXcDdUfdoFY19lZUoALA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:59 2026 by rpki-client