$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft File: 24aQ9k5_gyrPw6am6EIdQXfIlPY.mft (raw, json) Hash identifier: +GERHBcM6RWzCHM9u79jl76IwpWZaLYdTjZA6H1JUXQ= Subject key identifier: 29:FE:E8:1D:75:3D:BB:E9:44:5C:59:F1:5D:8A:37:D9:F2:24:A0:E5 Authority key identifier: DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 Certificate issuer: /CN=A91F0FAA/serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft Manifest number: 0216 Signing time: Wed 25 Mar 2026 02:14:46 +0000 Manifest this update: Wed 25 Mar 2026 02:14:45 +0000 Manifest next update: Wed 01 Apr 2026 02:14:45 +0000 Files and hashes: 1: 24aQ9k5_gyrPw6am6EIdQXfIlPY.crl (hash: D9WNFL9mvpen8HXU3HIcqrTnllNcCKUgQAjSfWb01s0=) 2: 6B5723D8F89F11ED8F29921CC4F9AE02.roa (hash: U2mzAtEAKoALSaiIku+AlD3AElNVvJrfKalyE8QJRjQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FAA, serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Validity Not Before: Mar 25 02:14:45 2026 GMT Not After : Apr 1 02:14:45 2026 GMT Subject: CN=69c34516-77bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:30:a8:44:a8:63:cf:25:d5:6c:02:99:e3:f3: d2:cc:96:34:50:9c:5a:05:de:d4:fe:95:56:b1:32: 22:dd:d2:a8:ab:44:2d:75:9b:53:4b:fd:ef:c1:8f: 3d:83:07:66:51:ac:88:c6:35:2c:e3:6a:14:67:83: ed:4e:95:92:c2:79:b8:ac:40:72:0d:c0:67:ea:e5: 9f:40:45:8a:d9:5b:b5:47:95:2b:40:cc:31:b4:45: df:6e:a5:12:7d:e3:79:ee:2e:9f:47:49:d3:9b:b0: 9d:8d:db:8a:df:ef:67:34:70:98:d8:0b:af:e8:6f: ac:5b:fd:6c:3e:04:06:d7:5c:50:10:8a:21:ed:3e: 1f:53:8d:bc:c3:77:52:e1:1e:fe:39:52:79:47:c3: 31:4c:17:ca:96:e3:3d:14:2d:d7:37:c3:c4:7d:9a: ff:be:9c:74:f5:30:3e:4e:b5:76:ca:d4:4c:54:c6: ef:a0:b9:0a:26:06:72:9a:d6:a5:6b:1b:13:fc:ca: c9:43:b0:ef:43:4d:37:c1:c5:e1:9b:9d:16:40:49: 67:b2:00:c9:78:d7:78:72:da:96:2c:ce:ea:56:1d: e7:e7:f3:85:87:fe:42:1c:ff:be:33:2e:6b:90:31: a2:6b:3b:f8:aa:24:97:28:26:e6:3c:d1:2d:ee:12: 93:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:FE:E8:1D:75:3D:BB:E9:44:5C:59:F1:5D:8A:37:D9:F2:24:A0:E5 X509v3 Authority Key Identifier: keyid:DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:64:f9:11:92:9a:16:26:d4:b7:43:f1:ac:b5:bc:ff:1d:7c: ba:9d:0e:90:f7:86:35:76:db:ed:4f:77:ae:23:25:9d:a4:74: c4:62:b6:ba:49:62:05:38:18:3a:14:ab:3f:8e:67:17:f8:41: 10:e8:0c:9e:04:4e:a3:31:f6:0a:c2:5a:26:5f:a2:90:6b:21: a9:9e:c7:bb:52:83:74:53:1f:26:98:53:b8:d1:ef:fc:5a:b1: 9c:cd:d8:99:01:d2:11:42:e8:4d:41:98:c2:89:54:3a:86:47: a6:6d:b8:31:4f:99:6f:ea:ef:72:b1:1c:75:a0:4a:bb:f6:59: 8e:a6:c3:55:cc:de:89:59:97:26:04:d3:b0:cc:46:fa:cf:6b: 11:52:0c:33:d8:bc:18:13:6b:7d:06:d5:9f:41:61:f9:5e:b0: 2f:70:7f:75:69:08:a1:d9:8a:a9:87:16:69:34:a0:d0:94:da: 3a:92:0e:60:0e:7f:98:3c:6a:6f:48:6a:92:cf:13:78:dd:9b: 62:e4:60:97:9c:0d:25:ea:e4:9d:35:19:9f:42:bb:56:fa:7e: 37:7a:54:62:ee:99:e3:c4:52:75:72:d1:4c:17:3b:96:3e:4f: 9e:a6:b2:6e:bf:93:df:67:b1:8e:f0:0b:a9:51:1d:ee:ae:2d: 3b:59:e5:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQUExMTAvBgNVBAUTKERCODY5MEY2NEU3RjgzMkFDRkMzQTZBNkU4NDIxRDQx NzdDODk0RjYwHhcNMjYwMzI1MDIxNDQ1WhcNMjYwNDAxMDIxNDQ1WjAYMRYwFAYD VQQDEw02OWMzNDUxNi03N2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozCoRKhjzyXVbAKZ4/PSzJY0UJxaBd7U/pVWsTIi3dKoq0QtdZtTS/3vwY89 gwdmUayIxjUs42oUZ4PtTpWSwnm4rEByDcBn6uWfQEWK2Vu1R5UrQMwxtEXfbqUS feN57i6fR0nTm7CdjduK3+9nNHCY2Auv6G+sW/1sPgQG11xQEIoh7T4fU428w3dS 4R7+OVJ5R8MxTBfKluM9FC3XN8PEfZr/vpx09TA+TrV2ytRMVMbvoLkKJgZymtal axsT/MrJQ7DvQ003wcXhm50WQElnsgDJeNd4ctqWLM7qVh3n5/OFh/5CHP++My5r kDGiazv4qiSXKCbmPNEt7hKTTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCn+6B11 PbvpRFxZ8V2KN9nyJKDlMB8GA1UdIwQYMBaAFNuGkPZOf4Mqz8OmpuhCHUF3yJT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZBQS9GRTEwMUNDQ0Y4 OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5clB3NmFtNkVJZFFYZkls UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI0YVE5azVfZ3lyUHc2YW02RUlkUVhmSWxQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZBQS9GRTEwMUNDQ0Y4OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5 clB3NmFtNkVJZFFYZklsUFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACmT5EZKaFibUt0PxrLW8/x18up0OkPeGNXbb7U93riMlnaR0xGK2ukliBTgY OhSrP45nF/hBEOgMngROozH2CsJaJl+ikGshqZ7Hu1KDdFMfJphTuNHv/FqxnM3Y mQHSEULoTUGYwolUOoZHpm24MU+Zb+rvcrEcdaBKu/ZZjqbDVczeiVmXJgTTsMxG +s9rEVIMM9i8GBNrfQbVn0Fh+V6wL3B/dWkIodmKqYcWaTSg0JTaOpIOYA5/mDxq b0hqks8TeN2bYuRgl5wNJerknTUZn0K7Vvp+N3pUYu6Z48RSdXLRTBc7lj5Pnqay br+T32exjvALqVEd7q4tO1nl2Q== -----END CERTIFICATE-----Generated at Thu Mar 26 04:16:58 2026 by rpki-client