$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: pppJCFAwxVvmiT2OPYAKKUhpOO6wCIYFNna24VVVRkI= Subject key identifier: E4:10:CC:D0:BE:60:E4:00:D4:F8:96:92:D1:A9:50:87:F6:CA:77:B5 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 34A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3487 Signing time: Tue 24 Mar 2026 15:16:44 +0000 Manifest this update: Tue 24 Mar 2026 15:16:43 +0000 Manifest next update: Tue 31 Mar 2026 15:16:43 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: l/XWGD9CKQiSZQgr1a+4+j+3Lnaef3bk5q4L+8LpXA4=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: BfM+WJCATCxDvSbNYj9etC2USnC2s+RFYfsw7w+QlP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13479 (0x34a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Mar 24 15:16:43 2026 GMT Not After : Mar 31 15:16:43 2026 GMT Subject: CN=69c2aadc-7a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:be:ad:2d:c2:81:d8:f4:ce:7f:c0:8a:04: ec:c9:5e:81:b0:fe:0a:f8:af:10:f6:3c:3b:b0:da: fc:3f:d0:3a:5c:76:dc:31:46:c3:2b:b6:74:2f:dd: 2b:3a:21:69:59:f4:ea:2d:73:71:b0:31:b4:bc:2b: 4b:e6:fb:68:28:46:b8:5b:18:96:bd:00:5b:fa:9c: 6d:ab:77:16:62:c2:5e:c3:98:36:d2:39:05:6c:45: ad:f5:96:e0:a7:f9:80:40:ed:f3:a3:8a:f8:34:ab: b5:dd:c3:5e:a2:95:95:a3:f1:80:a1:68:b4:6a:8a: 50:17:55:48:fd:9f:e9:d9:61:4a:60:f7:18:19:a0: 38:27:a3:28:9e:af:a5:79:08:e3:51:58:2c:f3:3e: 34:97:49:29:88:24:d7:27:63:1c:be:df:45:90:fd: 17:a2:b4:72:be:62:70:dd:68:a1:06:ad:c7:d8:8f: 6f:30:a4:7d:06:5c:20:0f:20:bf:0d:1a:51:03:e8: f8:14:f4:fb:1c:20:7a:40:41:52:b1:bd:8a:aa:be: 57:63:b1:6d:3a:7d:32:cf:b6:3f:f2:c9:3f:22:97: 52:df:dc:9b:39:9e:df:23:ca:79:13:b2:7a:84:d8: 6d:bd:aa:90:b5:4b:6f:53:24:67:91:20:ea:6d:ba: f8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:10:CC:D0:BE:60:E4:00:D4:F8:96:92:D1:A9:50:87:F6:CA:77:B5 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:c4:00:3e:4c:f7:bc:91:92:3c:f4:f3:c0:ea:8f:38:78:6c: 5e:6b:b0:75:cd:35:d1:1d:e6:af:34:08:fb:7e:ec:80:ff:e0: 62:9f:91:7e:ef:ed:08:05:a1:d2:e3:28:21:2f:55:ee:e0:25: ab:53:c5:0a:1a:4e:78:07:f6:3c:97:e5:1f:88:01:86:5f:68: 96:e3:b9:a1:59:9b:09:98:30:40:3a:b3:04:79:ac:27:e0:5a: 47:f0:5f:cd:8d:36:64:84:36:c3:47:99:2b:56:25:2b:11:97: 91:7d:f0:d8:b8:80:95:ed:e8:c3:53:a4:a7:bf:51:48:06:2c: c5:8d:a5:f0:e2:7e:6e:79:77:af:e6:c1:29:3a:82:1a:be:44: df:ea:73:9e:90:1b:a5:97:ae:ce:b0:78:c0:f0:8a:fe:3b:7f: 2d:a6:03:59:52:de:a7:14:fe:d8:fd:b1:64:e1:84:3f:4c:a3: 08:09:9c:d4:27:d9:ce:b5:e5:0b:b3:7c:1b:97:62:7b:dd:4f: c3:91:68:bb:5c:79:a1:9a:92:f9:fc:6a:63:41:0f:da:25:5e: 30:04:2c:18:e1:1b:c4:c2:e5:4d:1d:a0:f2:2a:f4:f0:6b:ac: aa:30:17:b6:ef:36:30:b3:65:48:da:63:1d:67:11:24:2c:8e: 2d:37:10:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjYwMzI0MTUxNjQzWhcNMjYwMzMxMTUxNjQzWjAYMRYwFAYD VQQDEw02OWMyYWFkYy03YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuby+rS3Cgdj0zn/AigTsyV6BsP4K+K8Q9jw7sNr8P9A6XHbcMUbDK7Z0L90r OiFpWfTqLXNxsDG0vCtL5vtoKEa4WxiWvQBb+pxtq3cWYsJew5g20jkFbEWt9Zbg p/mAQO3zo4r4NKu13cNeopWVo/GAoWi0aopQF1VI/Z/p2WFKYPcYGaA4J6Monq+l eQjjUVgs8z40l0kpiCTXJ2Mcvt9FkP0XorRyvmJw3WihBq3H2I9vMKR9BlwgDyC/ DRpRA+j4FPT7HCB6QEFSsb2Kqr5XY7FtOn0yz7Y/8sk/IpdS39ybOZ7fI8p5E7J6 hNhtvaqQtUtvUyRnkSDqbbr4RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOQQzNC+ YOQA1PiWktGpUIf2yne1MB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlcQAPkz3vJGSPPTzwOqPOHhsXmuwdc010R3mrzQI+37sgP/gYp+Rfu/tCAWh 0uMoIS9V7uAlq1PFChpOeAf2PJflH4gBhl9oluO5oVmbCZgwQDqzBHmsJ+BaR/Bf zY02ZIQ2w0eZK1YlKxGXkX3w2LiAle3ow1Okp79RSAYsxY2l8OJ+bnl3r+bBKTqC Gr5E3+pznpAbpZeuzrB4wPCK/jt/LaYDWVLepxT+2P2xZOGEP0yjCAmc1CfZzrXl C7N8G5die91Pw5Fou1x5oZqS+fxqY0EP2iVeMAQsGOEbxMLlTR2g8ir08GusqjAX tu82MLNlSNpjHWcRJCyOLTcQQw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:59:59 2026 by rpki-client