$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: u7lbkYJYaPTE/wd/EQTBLrSqvGo222rGOT8CbSRWqM8= Subject key identifier: 8D:13:5B:F2:F2:EF:BF:71:A1:00:2A:38:97:92:50:3F:17:F4:60:1E Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0D15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1EBB Signing time: Tue 24 Mar 2026 17:04:27 +0000 Manifest this update: Tue 24 Mar 2026 17:04:27 +0000 Manifest next update: Tue 31 Mar 2026 17:04:27 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: giBxS3JUT43btqlHPqhzuJdQtZIOfFgzDCekWpxNHfU=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: pVllpqaYkicaFIWTL2XyjS6RmEOfq4yPCoNoR4rIsP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3349 (0xd15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Mar 24 17:04:27 2026 GMT Not After : Mar 31 17:04:27 2026 GMT Subject: CN=69c2c41b-7a60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:18:12:70:54:9a:0b:a3:60:ec:e8:39:05:91: c1:59:c0:d5:28:a1:d3:94:13:96:95:f0:1b:82:45: 7a:e8:66:06:24:f9:a9:8f:a0:58:41:25:71:f9:eb: e3:7e:15:62:8d:d3:14:3c:3f:1e:82:91:a2:49:0b: 84:5a:de:b1:27:02:2f:7e:4f:6a:b3:9e:f9:f7:6f: 4d:d6:4f:5e:3c:0d:b3:3a:b8:0d:d9:92:f9:19:64: 6f:75:fc:5c:20:da:0b:fe:3d:4e:c5:d4:20:e0:14: 13:f9:2e:ff:03:e3:15:fe:ba:5c:d0:20:20:13:10: a7:a4:dc:18:4b:c6:bf:7e:d5:2e:99:72:d1:9d:b2: 29:e9:95:e4:23:53:5a:be:68:40:52:fe:79:3e:da: 91:ad:b0:ba:26:66:31:8f:0a:f3:2d:fd:ae:12:d6: 5f:cd:c3:44:2b:2c:a9:ec:8b:9b:4d:fd:c4:d4:ba: 0e:c6:b6:bb:02:08:04:11:88:e1:80:6f:30:95:cb: 98:fc:55:e0:e1:a6:ea:75:9c:5e:55:1c:58:a3:fe: 34:3d:f3:4d:24:b7:2b:9b:7f:8a:61:1f:67:ad:21: 46:4e:68:47:b6:73:6d:7a:94:7f:ea:30:16:f5:eb: 62:0a:29:7a:a7:5c:8c:5d:e5:a3:d8:e3:9f:97:87: 89:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:13:5B:F2:F2:EF:BF:71:A1:00:2A:38:97:92:50:3F:17:F4:60:1E X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:fa:5f:71:5c:a0:06:4f:3a:ac:2c:41:c4:0a:01:2e:1d:3e: e5:6d:b9:c9:5b:52:18:b1:84:71:44:29:56:cf:3b:fc:ef:20: 51:40:8f:7e:fc:a8:72:e2:16:5a:92:ea:88:bb:1e:19:74:3a: 74:fa:bb:f2:06:22:81:24:b2:78:1c:43:16:a6:10:83:e5:bf: 36:5d:d2:0e:8b:1f:62:0f:67:d2:ab:9f:fa:80:e1:0d:eb:02: d8:85:13:7c:66:cd:05:81:71:b0:cf:39:a1:c2:a9:80:4c:c5: 61:5b:22:fe:75:1b:78:46:fb:3e:ce:56:fc:69:5a:31:74:40: a6:c0:d6:e5:37:ac:20:36:6d:55:05:ae:cc:83:e6:9e:a5:cd: ae:41:9f:65:2c:db:23:b7:f0:59:12:53:72:89:0d:09:2e:93: b4:2d:3a:04:93:30:9e:04:02:34:95:65:31:a8:5b:71:cd:77: e9:14:e6:fa:22:98:f5:d3:19:ea:94:57:65:4b:1a:04:10:c1: 7c:9c:bd:e5:c6:28:a9:25:06:ce:8b:53:8a:9f:59:42:f9:70: 5b:1c:2b:5f:a2:c6:10:3f:3a:a1:c8:30:1b:92:3b:19:be:6e: bc:0f:e6:39:1e:24:10:59:6f:d8:4f:32:ea:03:c9:13:d6:8c: 50:d9:86:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjYwMzI0MTcwNDI3WhcNMjYwMzMxMTcwNDI3WjAYMRYwFAYD VQQDEw02OWMyYzQxYi03YTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxgScFSaC6Ng7Og5BZHBWcDVKKHTlBOWlfAbgkV66GYGJPmpj6BYQSVx+evj fhVijdMUPD8egpGiSQuEWt6xJwIvfk9qs575929N1k9ePA2zOrgN2ZL5GWRvdfxc INoL/j1OxdQg4BQT+S7/A+MV/rpc0CAgExCnpNwYS8a/ftUumXLRnbIp6ZXkI1Na vmhAUv55PtqRrbC6JmYxjwrzLf2uEtZfzcNEKyyp7IubTf3E1LoOxra7AggEEYjh gG8wlcuY/FXg4abqdZxeVRxYo/40PfNNJLcrm3+KYR9nrSFGTmhHtnNtepR/6jAW 9etiCil6p1yMXeWj2OOfl4eJWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI0TW/Ly 779xoQAqOJeSUD8X9GAeMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAifpfcVygBk86rCxBxAoBLh0+5W25yVtSGLGEcUQpVs87/O8gUUCPfvyocuIW WpLqiLseGXQ6dPq78gYigSSyeBxDFqYQg+W/Nl3SDosfYg9n0quf+oDhDesC2IUT fGbNBYFxsM85ocKpgEzFYVsi/nUbeEb7Ps5W/GlaMXRApsDW5TesIDZtVQWuzIPm nqXNrkGfZSzbI7fwWRJTcokNCS6TtC06BJMwngQCNJVlMahbcc136RTm+iKY9dMZ 6pRXZUsaBBDBfJy95cYoqSUGzotTip9ZQvlwWxwrX6LGED86ocgwG5I7Gb5uvA/m OR4kEFlv2E8y6gPJE9aMUNmGFw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:15:39 2026 by rpki-client