$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: nN1Feei9Uy1hDzE4Ru6YFyJPoy61Pi6Kq5A1mbCpXZo= Subject key identifier: BF:32:E8:CC:35:88:96:4C:03:EB:E5:61:84:D3:54:A6:6D:58:F9:66 Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: 012F Signing time: Wed 25 Mar 2026 04:43:25 +0000 Manifest this update: Wed 25 Mar 2026 04:43:25 +0000 Manifest next update: Wed 01 Apr 2026 04:43:25 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: 3oADTyZlLWRkRbQuPEuU8dUBhHHOs/2VYqAgDuGWyv8=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: 4qI4Ml9uIYG2SLfkLkYCessVGIjFflva1W8j/+okM6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:43:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: Mar 25 04:43:25 2026 GMT Not After : Apr 1 04:43:25 2026 GMT Subject: CN=69c367ed-d2a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:04:6d:dc:b7:a1:a6:56:b2:24:9c:cc:cd:c5: c4:de:bd:49:d2:72:04:ef:60:94:bc:f9:e9:41:55: df:3e:35:90:89:78:fa:06:f9:bd:f0:aa:82:31:4e: be:f6:c9:2e:0e:40:35:cf:a2:3d:fc:98:a2:a4:7d: e0:d1:77:d5:b2:ae:e1:f2:f4:83:8c:2a:58:01:b4: 95:84:4a:67:7a:fc:cb:1e:b7:81:2a:92:a3:c3:1f: 9e:d3:17:14:ed:f7:d9:a6:3c:e3:ac:3b:7e:2f:7c: 88:1c:48:a3:a1:f0:51:fa:d5:89:c0:0d:11:31:9d: a7:60:41:6d:51:dc:82:1e:de:a0:f1:ce:6e:bb:ee: af:8b:ef:39:15:09:a3:7e:67:66:2f:68:10:9f:95: 2a:bd:f2:b5:6f:f7:6d:31:5a:68:b2:f1:36:38:b6: cc:32:7d:9c:76:42:cc:63:27:5f:6a:48:79:eb:df: d3:93:6e:c7:a9:7f:da:15:21:21:17:65:24:13:0c: 25:04:3f:6b:72:f1:71:95:cd:97:55:00:be:81:46: 08:5c:dc:4d:ee:ba:c7:22:3f:cb:d5:88:b2:9a:cb: 3c:58:b2:67:ef:74:5e:c8:ed:71:85:17:0d:14:4f: 30:89:68:91:44:fc:35:ef:f6:c5:2d:f8:1a:9f:48: 88:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:32:E8:CC:35:88:96:4C:03:EB:E5:61:84:D3:54:A6:6D:58:F9:66 X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:72:e7:d5:fc:dd:48:6d:3a:47:08:eb:88:dd:76:f5:a7:13: b9:b9:70:19:53:52:db:25:58:83:32:75:eb:f7:a5:0b:f4:00: ce:f5:1a:71:72:02:9b:f0:29:0c:eb:77:5b:4b:da:fb:83:89: fb:8e:15:a8:b9:28:95:5d:bc:19:68:9e:18:37:51:90:d2:30: 1d:86:73:af:2a:b9:c2:a2:4f:6c:20:e9:36:ee:b9:52:98:df: 1f:ba:ca:6e:9b:89:b5:33:db:4d:5a:89:fd:50:6b:26:55:04: 8a:07:14:bc:b4:1e:0d:e5:b1:d2:24:60:7a:83:48:39:1c:34: 20:c3:22:b4:33:2f:49:92:31:ea:d6:95:2c:0e:72:95:59:36: 8e:64:cf:d0:e0:5b:85:14:68:67:8b:40:f1:bb:9b:10:aa:ee: bf:02:c1:92:91:99:1c:ac:de:05:8b:a6:5d:aa:4d:5f:08:8b: ae:72:2f:14:a1:ef:2a:b0:ec:64:6f:83:c4:7a:73:f9:41:b0: 7f:e5:bc:fc:29:8f:b9:24:d8:72:c0:c8:37:3e:bc:c0:77:10: a8:c1:68:be:86:7f:6b:04:d2:55:f5:94:c6:4c:44:1d:07:3e: 62:e1:02:39:da:05:73:f1:c8:a9:e7:f7:17:76:a8:16:c2:08: 45:5f:17:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKEJGNzFGNUJGMTE2OEE3ODQwNTc2RTAwMDZGM0JCQzY1 RkM0ODM0MEIwHhcNMjYwMzI1MDQ0MzI1WhcNMjYwNDAxMDQ0MzI1WjAYMRYwFAYD VQQDEw02OWMzNjdlZC1kMmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQRt3LehplayJJzMzcXE3r1J0nIE72CUvPnpQVXfPjWQiXj6Bvm98KqCMU6+ 9skuDkA1z6I9/JiipH3g0XfVsq7h8vSDjCpYAbSVhEpnevzLHreBKpKjwx+e0xcU 7ffZpjzjrDt+L3yIHEijofBR+tWJwA0RMZ2nYEFtUdyCHt6g8c5uu+6vi+85FQmj fmdmL2gQn5UqvfK1b/dtMVposvE2OLbMMn2cdkLMYydfakh569/Tk27HqX/aFSEh F2UkEwwlBD9rcvFxlc2XVQC+gUYIXNxN7rrHIj/L1Yiymss8WLJn73ReyO1xhRcN FE8wiWiRRPw17/bFLfgan0iIgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL8y6Mw1 iJZMA+vlYYTTVKZtWPlmMB8GA1UdIwQYMBaAFL9x9b8RaKeEBXbgAG87vGX8SDQL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wNTcyREQ4QTVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0UUZkdUFBYnp1OFpmeElO QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5Bcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0 UUZkdUFBYnp1OFpmeElOQXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnnLn1fzdSG06RwjriN129acTublwGVNS2yVYgzJ16/elC/QAzvUacXICm/Ap DOt3W0va+4OJ+44VqLkolV28GWieGDdRkNIwHYZzryq5wqJPbCDpNu65UpjfH7rK bpuJtTPbTVqJ/VBrJlUEigcUvLQeDeWx0iRgeoNIORw0IMMitDMvSZIx6taVLA5y lVk2jmTP0OBbhRRoZ4tA8bubEKruvwLBkpGZHKzeBYumXapNXwiLrnIvFKHvKrDs ZG+DxHpz+UGwf+W8/CmPuSTYcsDINz68wHcQqMFovoZ/awTSVfWUxkxEHQc+YuEC OdoFc/HIqef3F3aoFsIIRV8XbQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:17 2026 by rpki-client