$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: OoAmSWXYGZXULCWnAvPBsrVDjpX47YJ88HuMtUxqqmM= Subject key identifier: E2:EB:73:BF:0A:0A:FE:58:D3:E7:DD:EE:AD:84:96:94:02:16:03:3C Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0CFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0CEA Signing time: Tue 24 Mar 2026 18:09:44 +0000 Manifest this update: Tue 24 Mar 2026 18:09:44 +0000 Manifest next update: Tue 31 Mar 2026 18:09:44 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: 3SLOEPQUbX5rNYQZk5nWvRTtXU4zEf1tLNWdU7T85+o=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: VuO6oFmdrg28zC8aljPGAA2mZqdTmBMcrxACwaZ0phY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3325 (0xcfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Mar 24 18:09:44 2026 GMT Not After : Mar 31 18:09:44 2026 GMT Subject: CN=69c2d368-cc99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d7:24:5b:12:56:ed:e0:bf:8b:aa:e7:03:95: 94:d0:c1:02:3e:da:4c:43:1b:93:84:b2:6a:2f:4c: 5d:d1:fa:ce:db:dd:74:98:cc:d6:d9:60:49:d2:65: e8:cf:cf:26:20:4a:20:a2:61:fe:58:a9:33:2f:ab: e2:b4:cb:cb:2f:0c:0a:b4:16:49:66:52:cb:18:0d: fa:7c:0a:5f:5d:02:e9:7b:06:0b:6a:1d:ca:2d:bf: a6:1b:70:a2:8a:e9:c4:56:bd:97:cc:1e:99:e7:2e: d7:e7:c7:40:87:5b:76:77:ff:aa:bc:3c:7f:ed:40: 55:57:eb:e9:bb:3e:42:f4:de:1b:29:1d:91:63:9d: 9e:16:7d:96:0a:39:be:53:47:0b:8a:77:3c:27:b1: 43:9b:ad:02:28:bf:ea:ef:a8:af:26:7c:4e:b8:92: 33:b6:64:69:39:ff:ea:7f:0d:f2:1d:1b:73:41:2d: 88:24:e6:aa:bb:4d:e2:47:fe:ea:b6:fd:bb:dc:1e: 06:30:d8:ef:fa:39:10:69:22:0d:da:08:3d:ed:ea: 88:c7:ec:79:49:f2:b1:04:0a:d9:c5:9e:7e:1e:24: 91:87:e3:a5:3c:df:e9:46:ce:a2:23:10:32:2b:58: 2c:34:7b:26:c3:0a:27:ad:c1:7f:8e:b9:0e:eb:b6: ee:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:EB:73:BF:0A:0A:FE:58:D3:E7:DD:EE:AD:84:96:94:02:16:03:3C X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f1:61:c7:12:0c:fe:6c:e8:c3:b0:08:e4:e7:ea:cd:13:30: 16:0e:8b:b3:90:d4:8c:70:74:c3:db:4e:8a:b7:68:6b:97:73: ad:96:38:d2:1a:9c:65:3b:d1:a0:84:05:b1:e9:00:6c:0a:fa: 29:f8:72:88:5c:11:b0:92:d6:e1:8f:bf:c3:01:3a:cf:e5:d1: 36:c1:a1:76:df:b7:42:40:da:3e:12:a0:bb:08:a8:10:c4:82: db:8b:29:82:e8:d5:c8:0d:13:9a:1f:aa:d4:9c:91:64:a3:b1: 33:b4:e4:d2:ad:6e:f1:a4:56:f2:f7:20:f8:37:da:ec:6d:ca: 6c:2a:57:7a:da:e5:59:34:72:b3:f4:16:bf:1b:96:dd:fc:32: 90:5a:49:1e:41:4a:82:f0:b9:79:7d:38:ba:c0:19:e5:d6:d8: fc:e9:08:c1:e6:77:08:fa:99:f9:ff:50:f2:0e:c1:7e:f1:46: 7b:f1:21:8b:14:1b:3e:d8:83:e7:b2:ae:78:e6:2a:8f:a4:e8: b6:ff:ee:6b:1e:c8:8f:c1:88:8b:c8:dd:ba:3f:8e:28:8d:f8: 73:cd:0b:f5:03:4b:d3:5f:9d:04:32:2f:2e:6e:91:37:cc:3b: 6b:3d:6d:1a:c3:1d:f6:04:51:13:6e:84:3c:72:21:0a:a6:8b: 8a:a9:13:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjYwMzI0MTgwOTQ0WhcNMjYwMzMxMTgwOTQ0WjAYMRYwFAYD VQQDEw02OWMyZDM2OC1jYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dckWxJW7eC/i6rnA5WU0MECPtpMQxuThLJqL0xd0frO2910mMzW2WBJ0mXo z88mIEogomH+WKkzL6vitMvLLwwKtBZJZlLLGA36fApfXQLpewYLah3KLb+mG3Ci iunEVr2XzB6Z5y7X58dAh1t2d/+qvDx/7UBVV+vpuz5C9N4bKR2RY52eFn2WCjm+ U0cLinc8J7FDm60CKL/q76ivJnxOuJIztmRpOf/qfw3yHRtzQS2IJOaqu03iR/7q tv273B4GMNjv+jkQaSIN2gg97eqIx+x5SfKxBArZxZ5+HiSRh+OlPN/pRs6iIxAy K1gsNHsmwwonrcF/jrkO67buKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOLrc78K Cv5Y0+fd7q2ElpQCFgM8MB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf/FhxxIM/mzow7AI5OfqzRMwFg6Ls5DUjHB0w9tOirdoa5dzrZY40hqcZTvR oIQFsekAbAr6KfhyiFwRsJLW4Y+/wwE6z+XRNsGhdt+3QkDaPhKguwioEMSC24sp gujVyA0Tmh+q1JyRZKOxM7Tk0q1u8aRW8vcg+Dfa7G3KbCpXetrlWTRys/QWvxuW 3fwykFpJHkFKgvC5eX04usAZ5dbY/OkIweZ3CPqZ+f9Q8g7BfvFGe/EhixQbPtiD 57KueOYqj6Totv/uax7Ij8GIi8jduj+OKI34c80L9QNL01+dBDIvLm6RN8w7az1t GsMd9gRRE26EPHIhCqaLiqkTAw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:33 2026 by rpki-client