$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json) Hash identifier: UJwqAoed1tg/pJpHoUzi53MgxVnCCDDZcWfCxqiE+MU= Subject key identifier: D5:8A:BA:E8:AF:97:5D:10:17:C0:44:EE:7B:8C:C1:89:1E:C2:82:DE Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft Manifest number: 01C2 Signing time: Wed 25 Mar 2026 03:11:07 +0000 Manifest this update: Wed 25 Mar 2026 03:11:07 +0000 Manifest next update: Wed 01 Apr 2026 03:11:07 +0000 Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: y644c7f+XgbdJrJchAmeI9XNHM2S8XoW83FO3W3Wq0E=) 2: CEA08B0A7B7411F0B30B5E4FC4F9AE02.roa (hash: m1aoCpKlH3oERMf3/bCvjSM3+Kd9aGRVa7Lq5D66NbM=) 3: 289652667B7511F0A2592A6EC4F9AE02.roa (hash: SF2C+YB+2OsCjgL1wRHHBqrGMEzPgqA1TH4Uv/sOgc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2, serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: Mar 25 03:11:07 2026 GMT Not After : Apr 1 03:11:07 2026 GMT Subject: CN=69c3524b-b5c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8c:eb:e3:e6:95:2c:fb:8f:03:44:47:3f:25: 1f:93:4f:8b:a3:11:de:90:fc:cf:ce:93:98:44:9e: 85:5f:09:21:8d:7a:88:77:55:b1:7b:da:2e:f9:15: 23:88:38:2f:74:fc:fa:0c:2f:6a:43:40:95:a6:b7: 43:bd:b2:9b:43:79:86:67:08:5a:58:51:13:72:72: 4c:d1:3b:9d:d3:29:4e:22:92:ab:26:5d:01:82:c2: 72:00:2f:7c:c6:09:bf:ff:bc:41:73:e0:26:0d:56: a6:d4:95:d2:dc:4b:08:30:5c:09:25:9b:c5:09:c6: a3:4c:17:93:b4:c9:1b:d6:7a:ac:64:bb:b3:1d:06: 75:61:20:70:3b:51:3d:44:8e:50:c6:64:ba:83:f1: 43:ec:c5:0a:8a:28:e5:45:d3:34:76:5a:35:64:24: a5:c0:b2:8e:af:46:cf:2a:51:71:15:67:00:22:00: 41:22:54:bd:e7:02:14:b9:0a:5c:2f:33:99:43:02: 70:0f:eb:dc:b9:56:b9:8b:fa:3b:94:17:f5:46:23: 2b:c3:0c:b4:8b:6d:fb:8b:a2:5e:ec:3a:de:3d:b4: 0c:ed:7f:d0:ab:06:36:78:9a:27:f9:f3:56:4b:f9: 3a:62:9a:ae:40:8f:85:43:45:bd:68:fb:b7:20:08: e7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8A:BA:E8:AF:97:5D:10:17:C0:44:EE:7B:8C:C1:89:1E:C2:82:DE X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:51:66:ce:c0:37:75:54:08:3d:b0:d7:b8:9d:e1:0d:b4:0e: 98:e4:1c:a8:1a:d2:38:18:6a:16:60:52:ad:46:7e:db:5f:ff: 29:d8:ff:f5:e1:90:ef:94:7e:2a:fc:b4:51:63:77:3d:c0:80: 4b:6c:98:9e:ce:95:2d:b2:0c:9d:c4:b0:8e:d5:55:29:32:23: 76:bb:d9:3c:5c:9f:92:80:0d:18:2a:d8:36:d6:b6:3a:c5:a9: 1f:67:bf:6e:ea:de:2d:1d:91:43:08:a1:20:c2:5d:b7:33:d6: 98:dc:8b:f0:28:a1:d4:4f:0a:c0:2f:37:66:64:c3:dd:04:b9: bd:44:e7:c4:09:08:8a:80:0c:8a:75:d3:76:cd:d8:fb:aa:2c: b7:64:c7:f4:c0:8b:8b:5f:2f:e5:ea:68:b2:91:b3:81:11:f7: 72:ad:1c:dd:40:9d:52:34:2c:f5:f4:6c:c6:cd:b7:63:12:0d: 0c:73:1e:c4:d1:58:0b:68:be:9d:40:03:42:a3:a6:a3:06:a2: 6b:64:ec:11:9e:e7:87:d1:f2:e2:f6:fe:68:11:8c:01:87:e9: 46:7e:df:24:c6:b6:5c:13:b1:1f:75:1d:67:13:63:89:bd:87: b5:48:63:d6:e7:15:cf:de:1c:f9:1c:18:16:dc:0a:f7:a5:a8: 43:10:07:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjYwMzI1MDMxMTA3WhcNMjYwNDAxMDMxMTA3WjAYMRYwFAYD VQQDEw02OWMzNTI0Yi1iNWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14zr4+aVLPuPA0RHPyUfk0+LoxHekPzPzpOYRJ6FXwkhjXqId1Wxe9ou+RUj iDgvdPz6DC9qQ0CVprdDvbKbQ3mGZwhaWFETcnJM0Tud0ylOIpKrJl0BgsJyAC98 xgm//7xBc+AmDVam1JXS3EsIMFwJJZvFCcajTBeTtMkb1nqsZLuzHQZ1YSBwO1E9 RI5QxmS6g/FD7MUKiijlRdM0dlo1ZCSlwLKOr0bPKlFxFWcAIgBBIlS95wIUuQpc LzOZQwJwD+vcuVa5i/o7lBf1RiMrwwy0i237i6Je7DrePbQM7X/QqwY2eJon+fNW S/k6YpquQI+FQ0W9aPu3IAjnQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNWKuuiv l10QF8BE7nuMwYkewoLeMB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGMi81NzMyQzgzODg0NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhP VnVTbzBrVjJhSVlpdXJjaUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHFFmzsA3dVQIPbDXuJ3hDbQOmOQcqBrSOBhqFmBSrUZ+21//Kdj/9eGQ75R+ Kvy0UWN3PcCAS2yYns6VLbIMncSwjtVVKTIjdrvZPFyfkoANGCrYNta2OsWpH2e/ bureLR2RQwihIMJdtzPWmNyL8Cih1E8KwC83ZmTD3QS5vUTnxAkIioAMinXTds3Y +6ost2TH9MCLi18v5epospGzgRH3cq0c3UCdUjQs9fRsxs23YxINDHMexNFYC2i+ nUADQqOmowaia2TsEZ7nh9Hy4vb+aBGMAYfpRn7fJMa2XBOxH3UdZxNjib2HtUhj 1ucVz94c+RwYFtwK96WoQxAHFQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:27:24 2026 by rpki-client