$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: /wq+l5lo6Uc12lnUFRMOFLB4hETfN29qPDPHdn/9R5o= Subject key identifier: 2A:7E:DE:43:86:28:DB:1D:71:06:F9:02:80:7D:A0:55:CD:AD:22:1F Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 012F Signing time: Wed 25 Mar 2026 04:43:28 +0000 Manifest this update: Wed 25 Mar 2026 04:43:27 +0000 Manifest next update: Wed 01 Apr 2026 04:43:27 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: FZfGoH0qmraBpOJRT8yxeP7A/g+BdBrgb9RHsMT5Ypo=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: rKKs75f3Fq0WXiFUQVZhwV3/C+6KDS0+3S6WBSvsbeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Mar 25 04:43:27 2026 GMT Not After : Apr 1 04:43:27 2026 GMT Subject: CN=69c367f0-be59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ac:24:05:37:49:0f:43:cd:95:26:8e:45:11: be:37:fc:9e:70:f6:12:94:fa:00:97:3f:24:47:fa: 8e:77:a9:5b:43:f2:45:99:ed:9f:47:3e:bf:90:5d: 4c:1d:94:93:be:c2:fe:a7:bf:26:ff:35:08:c1:f2: ec:e1:10:96:40:c0:a7:cb:ac:3b:3c:13:0b:62:5d: a0:69:e9:92:28:37:9b:62:b7:a0:02:a5:ea:15:20: da:a5:82:c6:a7:c5:86:bb:cb:49:a6:0f:b8:b8:6b: 61:58:e1:1f:4c:1c:b8:e9:f7:d7:d8:f2:f1:f4:ef: 64:7b:2b:e4:c7:1e:59:f8:2d:b7:f5:ca:98:44:5d: 6c:ec:7e:97:67:9f:94:dc:1e:29:f1:72:92:58:0d: 75:d6:ab:f8:28:30:c7:ab:bb:40:42:9c:ef:9a:17: 52:91:39:70:aa:de:3f:73:3f:f0:17:88:f0:cb:19: 01:12:19:e6:d0:3d:67:70:8a:ce:68:39:03:64:b4: b8:09:95:e6:38:a3:54:fe:d3:3c:b5:66:5c:db:be: f6:70:89:9b:ba:4d:56:84:b7:1d:ba:76:8a:94:55: 79:b2:a8:49:63:06:f5:34:27:53:04:97:d5:92:41: 29:4c:80:e6:61:00:df:7e:12:aa:c0:32:07:72:66: 47:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7E:DE:43:86:28:DB:1D:71:06:F9:02:80:7D:A0:55:CD:AD:22:1F X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:2c:ab:08:1b:39:72:d6:47:bb:c5:7f:2c:7e:3c:4d:ca:c2: 8c:1c:f7:9c:3a:1d:13:02:75:0b:60:6a:fb:a6:26:83:2d:0a: 1d:83:38:46:0c:01:8a:b0:6a:48:af:8f:d5:c7:95:32:10:0a: 04:60:83:f0:2d:e9:1a:64:6b:c2:31:4b:84:9a:30:ef:b5:85: c8:cc:bb:05:8f:9b:95:b3:b2:8c:c4:05:e3:4f:c1:af:1d:48: 4a:c9:f3:f2:14:c7:cc:e6:a7:9d:39:dd:c9:7c:4a:fb:9e:ed: 46:04:c3:e1:04:39:b5:f5:4a:e6:aa:58:11:d7:3e:b6:d8:7c: 89:0c:43:23:27:b3:51:2a:61:21:24:be:1a:9b:7d:e6:f5:b5: 83:96:e7:7a:58:cf:54:76:de:70:46:e0:19:3e:c9:bd:20:6d: dd:74:16:16:2a:4c:4d:26:6f:b5:9c:c4:31:42:63:ce:ca:06: d2:6d:77:19:cc:db:39:cb:b9:de:9a:f3:c7:d9:63:d3:31:dd: 16:31:7b:67:8d:00:2e:13:80:7d:8a:2c:e0:4b:ed:c6:ca:65: 46:13:71:19:88:8b:37:16:1d:57:e9:e6:fb:f1:14:81:c0:0f: e1:3f:1e:68:97:a4:27:b2:c9:d1:96:a5:17:c6:68:af:82:b1: c0:a1:33:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjYwMzI1MDQ0MzI3WhcNMjYwNDAxMDQ0MzI3WjAYMRYwFAYD VQQDEw02OWMzNjdmMC1iZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmKwkBTdJD0PNlSaORRG+N/yecPYSlPoAlz8kR/qOd6lbQ/JFme2fRz6/kF1M HZSTvsL+p78m/zUIwfLs4RCWQMCny6w7PBMLYl2gaemSKDebYregAqXqFSDapYLG p8WGu8tJpg+4uGthWOEfTBy46ffX2PLx9O9keyvkxx5Z+C239cqYRF1s7H6XZ5+U 3B4p8XKSWA111qv4KDDHq7tAQpzvmhdSkTlwqt4/cz/wF4jwyxkBEhnm0D1ncIrO aDkDZLS4CZXmOKNU/tM8tWZc2772cImbuk1WhLcdunaKlFV5sqhJYwb1NCdTBJfV kkEpTIDmYQDffhKqwDIHcmZHtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCp+3kOG KNsdcQb5AoB9oFXNrSIfMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQiyrCBs5ctZHu8V/LH48TcrCjBz3nDodEwJ1C2Bq+6Ymgy0KHYM4RgwBirBq SK+P1ceVMhAKBGCD8C3pGmRrwjFLhJow77WFyMy7BY+blbOyjMQF40/Brx1ISsnz 8hTHzOannTndyXxK+57tRgTD4QQ5tfVK5qpYEdc+tth8iQxDIyezUSphISS+Gpt9 5vW1g5bneljPVHbecEbgGT7JvSBt3XQWFipMTSZvtZzEMUJjzsoG0m13GczbOcu5 3przx9lj0zHdFjF7Z40ALhOAfYos4EvtxsplRhNxGYiLNxYdV+nm+/EUgcAP4T8e aJekJ7LJ0ZalF8Zor4KxwKEzWg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:32:45 2026 by rpki-client