$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: /oQyoH17aQ+A6dT1F4p2zzOg7kQvwbUUktshdp5oKSc= Subject key identifier: E6:84:48:E4:B1:29:A8:68:AA:A7:D6:25:77:BC:55:AB:43:22:DE:EB Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 127F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 125E Signing time: Tue 24 Mar 2026 16:59:55 +0000 Manifest this update: Tue 24 Mar 2026 16:59:54 +0000 Manifest next update: Tue 31 Mar 2026 16:59:54 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: oz2yB8aS4aMC+lG7/N70sZFhDf6cwARU0NTiGGJS1+U=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Q8GHoeHbmqW7M4R7JqdbouyG47lAXEk2l5ZINQlZhUw=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: B4PjSBYjorfWxo1YSpPxhGaOBSD9dJ0o8/kl1/H4JCI=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: zTMcMU85Vfrv28bnOAwruUSVF1/v5V80nulZ37SkFAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4735 (0x127f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Mar 24 16:59:54 2026 GMT Not After : Mar 31 16:59:54 2026 GMT Subject: CN=69c2c30a-aaf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:74:bb:b0:42:d2:bb:2a:83:7b:6f:64:8b:fb: 1d:d4:00:37:cb:02:31:62:17:d5:ad:3a:a6:49:c0: a2:bf:5c:7a:da:55:a5:ec:cf:81:5f:c6:4d:37:dd: 03:58:e1:32:f5:c1:33:16:9d:03:a0:3d:d7:59:f9: 72:5f:2b:36:eb:80:e7:b4:e2:ed:2d:7c:65:fd:fd: fb:8c:20:cd:97:7f:2c:b9:4e:8f:2b:30:f9:06:89: f6:99:70:b0:d1:7d:44:9a:cc:81:cf:d2:52:fa:a1: 64:de:47:43:26:75:c1:4d:8e:b3:66:87:a7:ef:2f: 8a:64:75:37:1b:f0:88:65:20:6c:43:66:31:26:99: 53:96:00:61:67:fc:e6:0b:7f:9e:cc:f2:9a:9d:26: d2:5a:6d:94:92:26:77:b1:ad:0c:56:08:69:dc:b4: 56:0b:13:16:bc:e0:e3:55:d0:55:a9:d7:88:b1:96: 36:e3:c4:95:1e:fc:71:3a:c7:94:c9:2a:33:3c:04: da:0c:1a:36:a2:da:12:57:c0:b6:1b:f5:eb:99:db: 10:00:9b:04:6c:7d:c9:fb:6e:e6:d1:a0:1a:51:7a: 03:46:78:e7:2b:9c:5a:7d:59:ab:48:12:e8:74:55: 3a:8b:aa:7b:d7:19:fe:57:da:5d:ee:b8:6d:4b:9a: 28:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:84:48:E4:B1:29:A8:68:AA:A7:D6:25:77:BC:55:AB:43:22:DE:EB X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:83:9a:23:da:01:50:b5:9a:7c:40:73:6a:92:50:fd:38:91: a1:cf:20:e5:d5:88:a8:9a:60:1a:b5:b6:67:79:72:44:23:b5: fb:ab:4b:18:51:54:20:15:85:50:3c:2f:6c:2f:32:84:7d:18: d7:ec:63:21:ea:2e:0e:14:48:db:e7:86:e0:c0:ef:5d:21:1d: c5:67:c6:0b:05:b7:09:24:65:b7:22:f0:7e:8f:42:f8:8b:44: 98:f1:e4:fd:07:ec:25:5f:45:18:0f:39:6e:52:be:18:e9:0a: e4:40:57:58:10:56:f9:1e:78:c2:1f:52:f2:0f:59:9b:5d:92: 61:68:e9:e7:d3:9b:16:40:a5:26:f9:9d:85:0d:6f:e3:17:06: 63:bf:0b:db:23:67:2f:b2:5c:8b:22:8f:a2:a9:bc:31:96:a1: 5f:6c:d0:3d:1d:39:9c:54:ab:c5:05:6e:de:22:8e:72:f0:db: 5b:d9:42:9f:cc:2d:11:17:0d:5f:1a:cf:4a:d4:71:e3:08:98: b5:56:3b:3b:97:0b:e5:d4:85:bb:a2:80:b1:bc:fa:66:96:77: 2f:15:74:7b:e2:f6:1f:c8:4c:fe:92:19:df:13:cf:38:ef:a4: a3:c6:48:79:97:65:57:76:73:98:48:0d:d9:15:e2:b7:91:e0: 6a:66:e8:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjYwMzI0MTY1OTU0WhcNMjYwMzMxMTY1OTU0WjAYMRYwFAYD VQQDEw02OWMyYzMwYS1hYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnS7sELSuyqDe29ki/sd1AA3ywIxYhfVrTqmScCiv1x62lWl7M+BX8ZNN90D WOEy9cEzFp0DoD3XWflyXys264DntOLtLXxl/f37jCDNl38suU6PKzD5Bon2mXCw 0X1EmsyBz9JS+qFk3kdDJnXBTY6zZoen7y+KZHU3G/CIZSBsQ2YxJplTlgBhZ/zm C3+ezPKanSbSWm2UkiZ3sa0MVghp3LRWCxMWvODjVdBVqdeIsZY248SVHvxxOseU ySozPATaDBo2otoSV8C2G/XrmdsQAJsEbH3J+27m0aAaUXoDRnjnK5xafVmrSBLo dFU6i6p71xn+V9pd7rhtS5ooOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOaESOSx KahoqqfWJXe8VatDIt7rMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI4OaI9oBULWafEBzapJQ/TiRoc8g5dWIqJpgGrW2Z3lyRCO1+6tLGFFUIBWF UDwvbC8yhH0Y1+xjIeouDhRI2+eG4MDvXSEdxWfGCwW3CSRltyLwfo9C+ItEmPHk /QfsJV9FGA85blK+GOkK5EBXWBBW+R54wh9S8g9Zm12SYWjp59ObFkClJvmdhQ1v 4xcGY78L2yNnL7JciyKPoqm8MZahX2zQPR05nFSrxQVu3iKOcvDbW9lCn8wtERcN XxrPStRx4wiYtVY7O5cL5dSFu6KAsbz6ZpZ3LxV0e+L2H8hM/pIZ3xPPOO+ko8ZI eZdlV3ZzmEgN2RXit5HgamboJQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:14:32 2026 by rpki-client