$ rpki-client -vvf rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft File: 8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft (raw, json) Hash identifier: 4AzdASFQexF2EhomVFUfGq17UVWAqKZ931pU0W5Oby4= Subject key identifier: 98:F1:A2:37:14:A3:96:16:C7:59:D9:10:CF:8E:07:ED:5A:D7:3D:BF Authority key identifier: F2:32:40:84:85:CC:1A:40:38:BD:B3:1B:FA:F3:26:15:40:31:09:50 Certificate issuer: /CN=A91E855B/serialNumber=F232408485CC1A4038BDB31BFAF3261540310950 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8jJAhIXMGkA4vbMb-vMmFUAxCVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft Manifest number: 29 Signing time: Wed 25 Mar 2026 07:56:14 +0000 Manifest this update: Wed 25 Mar 2026 07:56:13 +0000 Manifest next update: Wed 01 Apr 2026 07:56:13 +0000 Files and hashes: 1: 8jJAhIXMGkA4vbMb-vMmFUAxCVA.crl (hash: NXGe5wb+g2Ek2R6t9OCPpCyAjwyOtKxYnkMbIubzJfw=) 2: 2D933FE8EF6711F0AD461381586F56BC.roa (hash: WqJt9JtnWtmIMdrj3ZxaQ9KA33C7zxy15e8t9pWBnaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.crl rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8jJAhIXMGkA4vbMb-vMmFUAxCVA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E855B, serialNumber=F232408485CC1A4038BDB31BFAF3261540310950 Validity Not Before: Mar 25 07:56:13 2026 GMT Not After : Apr 1 07:56:13 2026 GMT Subject: CN=69c3951e-f110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:99:80:33:64:6f:14:6c:3b:a7:c0:d1:41:73: 88:6f:19:f6:e7:19:58:e1:56:58:b2:16:3b:29:88: 3a:07:ce:7f:40:fd:81:7d:60:6f:d4:09:79:a1:d0: 1c:c5:3b:cf:af:77:80:01:7e:0e:c6:81:86:d5:30: 1f:b7:74:e2:d4:23:aa:0f:48:c4:54:9a:ed:95:86: 7e:53:aa:0f:93:10:67:52:34:a7:52:b4:6e:c0:19: 67:0e:4b:e8:8d:08:b1:d2:8e:d2:59:6c:ea:ea:2e: ce:ca:d7:cc:09:54:72:37:d7:a7:f2:0c:a4:63:98: a7:1a:c6:fe:df:f2:1b:0a:0f:50:39:c0:f8:f9:a6: 11:a4:40:5b:15:1e:44:c2:67:df:14:e8:68:13:e1: d2:78:9d:e5:0e:0c:4a:25:1d:84:79:d0:93:0d:78: d5:cc:34:35:0a:b1:60:f7:86:32:3d:a3:b6:72:7b: b3:55:c1:bc:c4:5d:23:43:f4:07:d5:6c:3a:33:09: 84:8f:35:88:02:31:65:73:05:57:b3:40:62:43:21: 2b:0c:65:b8:4d:54:de:f2:0a:ef:89:a7:d8:d1:b0: fa:d2:2f:1c:c8:be:2d:ec:ea:71:61:86:5d:be:71: 8c:40:e0:9c:be:f4:4a:c2:d4:c0:b8:d1:6f:e1:71: 29:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F1:A2:37:14:A3:96:16:C7:59:D9:10:CF:8E:07:ED:5A:D7:3D:BF X509v3 Authority Key Identifier: keyid:F2:32:40:84:85:CC:1A:40:38:BD:B3:1B:FA:F3:26:15:40:31:09:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8jJAhIXMGkA4vbMb-vMmFUAxCVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E855B/6805C124EF6611F0833D7B26586F56BC/8jJAhIXMGkA4vbMb-vMmFUAxCVA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:99:5c:c5:d0:28:0a:f1:76:b3:74:16:41:0e:cf:54:6f:ab: 15:ee:7c:a3:00:fd:46:03:18:b7:35:57:82:ff:26:6a:c1:5f: 13:b5:7d:28:d8:2b:dc:3e:e0:be:6d:ec:5f:2c:de:8c:07:47: ba:8e:d3:50:e2:db:b4:07:35:c6:8c:61:96:dd:a5:7e:2a:58: dd:54:b9:06:6b:27:45:34:44:2e:35:a7:ba:6d:44:bc:69:83: 34:fd:53:d2:9a:a3:b0:f1:aa:b6:f2:b2:46:e0:d1:62:01:67: 83:e2:b6:13:0b:88:c1:8e:b2:64:cc:45:10:fe:c4:1a:2e:2b: 08:50:3e:a0:04:74:8e:ae:cc:38:17:08:04:00:28:1e:5f:08: f6:33:ca:ae:b6:18:70:cf:94:d6:56:69:65:40:43:29:86:d7: cf:e3:29:ba:33:58:0a:74:98:4e:19:8a:6b:e7:58:ad:8b:df: 05:31:96:df:87:45:10:a2:08:5c:4d:83:c7:56:29:04:ee:c5: 78:12:61:e4:dd:29:2d:75:9d:ce:6d:91:6d:59:c3:c9:55:28: 45:47:3e:97:16:f5:ec:50:8a:05:08:f2:a9:99:cf:fb:98:f6: d1:50:2f:31:2d:a7:81:46:ed:d3:55:13:ca:0e:88:19:12:69: b5:1a:aa:3a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODU1QjExMC8GA1UEBRMoRjIzMjQwODQ4NUNDMUE0MDM4QkRCMzFCRkFGMzI2MTU0 MDMxMDk1MDAeFw0yNjAzMjUwNzU2MTNaFw0yNjA0MDEwNzU2MTNaMBgxFjAUBgNV BAMTDTY5YzM5NTFlLWYxMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnmYAzZG8UbDunwNFBc4hvGfbnGVjhVliyFjspiDoHzn9A/YF9YG/UCXmh0BzF O8+vd4ABfg7GgYbVMB+3dOLUI6oPSMRUmu2Vhn5Tqg+TEGdSNKdStG7AGWcOS+iN CLHSjtJZbOrqLs7K18wJVHI316fyDKRjmKcaxv7f8hsKD1A5wPj5phGkQFsVHkTC Z98U6GgT4dJ4neUODEolHYR50JMNeNXMNDUKsWD3hjI9o7Zye7NVwbzEXSND9AfV bDozCYSPNYgCMWVzBVezQGJDISsMZbhNVN7yCu+Jp9jRsPrSLxzIvi3s6nFhhl2+ cYxA4Jy+9ErC1MC40W/hcSkdAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUmPGiNxSj lhbHWdkQz44H7VrXPb8wHwYDVR0jBBgwFoAU8jJAhIXMGkA4vbMb+vMmFUAxCVAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NTVCLzY4MDVDMTI0RUY2 NjExRjA4MzNEN0IyNjU4NkY1NkJDLzhqSkFoSVhNR2tBNHZiTWItdk1tRlVBeENW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGpKQWhJWE1Ha0E0dmJNYi12TW1GVUF4Q1ZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NTVCLzY4MDVDMTI0RUY2NjExRjA4MzNEN0IyNjU4NkY1NkJDLzhqSkFoSVhNR2tB NHZiTWItdk1tRlVBeENWQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCcmVzF0CgK8XazdBZBDs9Ub6sV7nyjAP1GAxi3NVeC/yZqwV8TtX0o2CvcPuC+ bexfLN6MB0e6jtNQ4tu0BzXGjGGW3aV+KljdVLkGaydFNEQuNae6bUS8aYM0/VPS mqOw8aq28rJG4NFiAWeD4rYTC4jBjrJkzEUQ/sQaLisIUD6gBHSOrsw4FwgEACge Xwj2M8quthhwz5TWVmllQEMphtfP4ym6M1gKdJhOGYpr51iti98FMZbfh0UQoghc TYPHVikE7sV4EmHk3SktdZ3ObZFtWcPJVShFRz6XFvXsUIoFCPKpmc/7mPbRUC8x LaeBRu3TVRPKDogZEmm1Gqo6 -----END CERTIFICATE-----Generated at Thu Mar 26 14:10:39 2026 by rpki-client