$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: G860M3dhjUlXDKDhCY4iOjfYCpoUcgl2yujUmLZg0Sg= Subject key identifier: BE:67:85:8C:61:74:4D:69:AF:8A:38:61:75:E1:BA:05:CC:18:29:00 Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 151D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 1506 Signing time: Tue 24 Mar 2026 16:45:31 +0000 Manifest this update: Tue 24 Mar 2026 16:45:30 +0000 Manifest next update: Tue 31 Mar 2026 16:45:30 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: AQLwkvI6B25HrAPlGNCFXUrKnDk6HvPqhgW2SgcEyug=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: YMv0r7cgJCxpk4HSp8I/SfGyxuRnawMQX2mraCd5KmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5405 (0x151d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Mar 24 16:45:30 2026 GMT Not After : Mar 31 16:45:30 2026 GMT Subject: CN=69c2bfab-9718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1f:97:f7:37:71:04:1d:b7:b7:44:7c:5f:60: 8d:6d:8a:5e:e4:83:30:b4:ec:32:ed:29:4f:63:3f: 62:ee:b3:d3:99:86:80:5c:ae:91:6d:78:13:ab:83: 83:72:01:ea:e0:8c:8f:c4:42:62:ec:89:cb:6c:ee: 32:1d:ef:c1:59:f0:8f:63:c5:46:0d:f7:a0:18:cf: 02:97:e1:86:3b:3d:30:90:3b:fe:50:82:37:b9:05: 8a:1e:8a:1b:6c:df:f2:a7:0b:a2:2e:00:05:f5:97: d9:62:dd:e2:5c:cc:17:cc:04:11:68:59:b4:48:5d: 3e:af:7b:02:c7:f1:af:a6:ef:d2:88:a4:79:1d:67: 6c:ed:9d:ec:72:46:a5:b8:e8:04:f9:0a:3d:99:30: 6a:c8:23:b0:38:9d:e2:94:d4:43:eb:68:a5:af:8f: a4:df:84:32:16:49:91:96:96:7a:df:e4:fc:53:75: 44:cc:12:3b:b5:ec:47:83:62:d3:1b:bb:89:c1:c8: 89:0f:d8:56:b3:3b:59:a1:46:10:1a:a0:0b:3c:16: a4:47:fb:c7:5d:19:2b:b5:7a:c2:14:77:9a:01:2a: fe:d4:32:cc:10:ab:01:58:17:ff:74:ac:ec:2e:44: 5e:39:d0:47:55:05:b9:6c:5f:a9:0d:53:d8:b1:af: a3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:67:85:8C:61:74:4D:69:AF:8A:38:61:75:E1:BA:05:CC:18:29:00 X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:1d:99:9e:58:9f:5f:a6:db:a1:ad:76:93:77:c1:17:97:a9: 9b:b0:e2:57:ec:56:b7:43:8e:2f:ba:25:4c:f3:50:c0:46:da: 0e:8b:cc:87:80:62:bd:de:5c:6f:00:f4:2b:0e:c9:80:0a:51: 13:3c:50:12:73:4c:63:a3:50:9a:f7:8b:81:9b:f3:b1:a7:a4: 20:df:76:2f:34:2b:eb:10:20:83:9f:9d:5c:d9:9d:b4:d9:d8: 60:e3:fc:4d:a4:e9:11:7a:59:35:ee:b1:98:26:1a:93:e6:77: dd:ce:1e:12:52:a7:12:dd:66:7a:94:eb:7b:d0:a1:50:d2:17: f6:9d:83:4c:29:c1:a7:0e:62:29:b0:a2:8c:3d:48:c8:d6:9f: 83:60:71:97:3a:a0:af:a3:39:e2:8c:af:b9:a8:15:39:c7:97: 86:b4:94:58:ac:93:b0:7e:b0:54:ca:ff:39:2e:48:0e:8d:28: 1e:1b:cf:62:01:34:82:4e:3e:83:8b:46:fe:24:03:d5:8c:8b: d1:85:8d:3e:42:7c:e6:cd:62:11:3d:76:71:3a:1b:18:b2:eb: e0:f6:88:85:53:72:5c:1a:37:76:44:cf:67:01:e8:9d:38:85: b9:45:47:5c:f5:aa:a2:29:b1:57:60:ca:13:e5:1d:fc:f7:de: 67:49:d0:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjYwMzI0MTY0NTMwWhcNMjYwMzMxMTY0NTMwWjAYMRYwFAYD VQQDEw02OWMyYmZhYi05NzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyR+X9zdxBB23t0R8X2CNbYpe5IMwtOwy7SlPYz9i7rPTmYaAXK6RbXgTq4OD cgHq4IyPxEJi7InLbO4yHe/BWfCPY8VGDfegGM8Cl+GGOz0wkDv+UII3uQWKHoob bN/ypwuiLgAF9ZfZYt3iXMwXzAQRaFm0SF0+r3sCx/Gvpu/SiKR5HWds7Z3sckal uOgE+Qo9mTBqyCOwOJ3ilNRD62ilr4+k34QyFkmRlpZ63+T8U3VEzBI7texHg2LT G7uJwciJD9hWsztZoUYQGqALPBakR/vHXRkrtXrCFHeaASr+1DLMEKsBWBf/dKzs LkReOdBHVQW5bF+pDVPYsa+jZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL5nhYxh dE1pr4o4YXXhugXMGCkAMB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASR2ZnlifX6bboa12k3fBF5epm7DiV+xWt0OOL7olTPNQwEbaDovMh4Bivd5c bwD0Kw7JgApREzxQEnNMY6NQmveLgZvzsaekIN92LzQr6xAgg5+dXNmdtNnYYOP8 TaTpEXpZNe6xmCYak+Z33c4eElKnEt1mepTre9ChUNIX9p2DTCnBpw5iKbCijD1I yNafg2Bxlzqgr6M54oyvuagVOceXhrSUWKyTsH6wVMr/OS5IDo0oHhvPYgE0gk4+ g4tG/iQD1YyL0YWNPkJ85s1iET12cTobGLLr4PaIhVNyXBo3dkTPZwHonTiFuUVH XPWqoimxV2DKE+Ud/PfeZ0nQDg== -----END CERTIFICATE-----Generated at Thu Mar 26 16:40:21 2026 by rpki-client