$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: 5od4JIUQYqc/SYfcL2sXi47xH49zuhMeyVux+YFkjto= Subject key identifier: B7:A2:0A:D3:00:39:71:D2:33:1C:16:72:E4:EC:03:E4:EC:84:78:8F Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 05B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 05B1 Signing time: Tue 24 Mar 2026 22:50:53 +0000 Manifest this update: Tue 24 Mar 2026 22:50:53 +0000 Manifest next update: Tue 31 Mar 2026 22:50:53 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: p+aPNfLck43Rwsf1Z2aBB+cdpc0MtlYZTAP1UoGJmPg=) 2: 9CD333C6B92B11F09402D810C4F9AE02.roa (hash: g/iViSJomlNp1cYO1eJotO/CO79RIUjeoIEUf9uvmn8=) 3: C6212596B5FF11F0A3F6A41AC4F9AE02.roa (hash: vjcVmpY5exF0KvvFr7MQCETy6G444Gcd8QqEnM4obso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Mar 24 22:50:53 2026 GMT Not After : Mar 31 22:50:53 2026 GMT Subject: CN=69c3154d-c07f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:17:47:09:3b:53:08:d8:1c:f6:46:52:7f:75: 75:76:0e:fd:6e:32:e9:c2:03:4c:b8:02:e8:53:a7: 43:ad:96:6c:a0:87:04:f4:03:01:ac:c0:56:77:4f: 53:0b:dc:35:fa:86:8b:4a:b7:97:0d:50:a7:cf:1a: 9a:c7:b5:07:4e:21:a8:be:5e:2a:76:ff:f9:df:5b: c2:8d:80:26:55:e1:9a:6c:d8:95:d0:eb:9c:4a:27: 3c:c4:f4:88:63:a8:33:f6:a7:db:f5:9f:e4:1a:65: 2b:9e:39:31:eb:4d:d5:e9:06:5f:1e:14:bb:1d:42: 89:c3:85:33:8c:bb:f1:47:a1:bc:bd:1c:f2:a4:41: a4:69:9b:12:c2:ed:0e:ba:ae:7d:ac:51:e8:32:c9: 20:15:f2:b7:68:ed:af:bc:48:28:22:c8:ca:40:b1: 46:48:d7:5f:7a:d8:5e:ce:ad:1c:ce:e1:b5:a9:d5: 45:e0:17:5c:f2:31:d6:3d:0a:1d:30:d7:c3:e4:ea: 7e:ec:30:99:5f:6c:e2:bc:78:52:03:de:6b:b0:35: 96:41:1e:4a:c6:3e:ee:cc:f9:a3:24:bd:8a:36:79: e9:f2:00:2b:0e:03:71:e4:21:6d:ed:a6:29:fd:b9: 34:a7:69:81:03:9c:08:61:5a:02:fc:f1:46:ea:35: 48:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A2:0A:D3:00:39:71:D2:33:1C:16:72:E4:EC:03:E4:EC:84:78:8F X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9c:b2:04:72:a7:31:fb:27:14:83:1d:bf:d0:51:b8:6c:21: d3:4b:4e:4f:b7:43:07:fc:48:38:94:61:67:7a:54:4b:9d:5e: ba:89:d5:18:eb:06:6c:b8:0c:4b:3a:23:82:86:79:24:9f:e7: 35:f2:32:11:91:f8:06:79:f4:de:05:a1:d4:0e:fe:eb:4d:9f: 71:57:ff:2c:9e:1c:4d:e1:d5:bf:2b:bf:6c:88:a9:f0:e0:2e: 9b:8e:69:ed:a8:be:27:3d:6b:86:99:96:83:ee:b6:3e:81:95: c2:11:ff:1a:7f:bc:7a:53:5a:f2:e4:ea:17:1e:bb:d1:5d:0e: 73:7c:ea:64:d0:fa:bd:e0:c3:9f:0f:0b:f0:5e:f6:7d:13:ed: 89:73:76:f2:0b:9b:37:33:fd:22:3d:ac:f9:72:de:c5:fc:33: f6:0f:66:24:76:99:2b:f0:61:75:0f:e3:d9:ed:a0:2d:cf:90: 87:50:cd:59:8d:3d:9f:b9:8b:61:bf:46:60:26:b4:75:20:cc: a1:d7:e9:e1:48:a6:97:cd:24:5d:bf:b0:6c:c1:30:3f:f0:90: 9d:75:c2:65:7a:ab:b5:a2:0c:10:c1:7f:bf:ed:4c:bb:71:fa: d7:8d:87:df:c4:12:11:4b:e8:9d:7d:cd:44:4a:3a:f7:eb:14: 74:36:b6:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjYwMzI0MjI1MDUzWhcNMjYwMzMxMjI1MDUzWjAYMRYwFAYD VQQDEw02OWMzMTU0ZC1jMDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkxdHCTtTCNgc9kZSf3V1dg79bjLpwgNMuALoU6dDrZZsoIcE9AMBrMBWd09T C9w1+oaLSreXDVCnzxqax7UHTiGovl4qdv/531vCjYAmVeGabNiV0OucSic8xPSI Y6gz9qfb9Z/kGmUrnjkx603V6QZfHhS7HUKJw4UzjLvxR6G8vRzypEGkaZsSwu0O uq59rFHoMskgFfK3aO2vvEgoIsjKQLFGSNdfethezq0czuG1qdVF4Bdc8jHWPQod MNfD5Op+7DCZX2zivHhSA95rsDWWQR5Kxj7uzPmjJL2KNnnp8gArDgNx5CFt7aYp /bk0p2mBA5wIYVoC/PFG6jVIlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLeiCtMA OXHSMxwWcuTsA+TshHiPMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmJyyBHKnMfsnFIMdv9BRuGwh00tOT7dDB/xIOJRhZ3pUS51euonVGOsGbLgM SzojgoZ5JJ/nNfIyEZH4Bnn03gWh1A7+602fcVf/LJ4cTeHVvyu/bIip8OAum45p 7ai+Jz1rhpmWg+62PoGVwhH/Gn+8elNa8uTqFx670V0Oc3zqZND6veDDnw8L8F72 fRPtiXN28gubNzP9Ij2s+XLexfwz9g9mJHaZK/BhdQ/j2e2gLc+Qh1DNWY09n7mL Yb9GYCa0dSDModfp4Uiml80kXb+wbMEwP/CQnXXCZXqrtaIMEMF/v+1Mu3H6142H 38QSEUvonX3NREo69+sUdDa2aA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:40:57 2026 by rpki-client