$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: aRMAfOyBDcQVmiNuDr9cir5F0QIuY3XL4tH+XGU71m0= Subject key identifier: 80:AD:0D:FF:5C:F5:C9:AD:B5:34:E5:6E:3E:7F:3B:46:82:CA:93:F3 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 1059 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 101C Signing time: Thu 26 Mar 2026 17:23:42 +0000 Manifest this update: Thu 26 Mar 2026 17:23:41 +0000 Manifest next update: Thu 02 Apr 2026 17:23:41 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: qp4gg533/CHNoMa727hBnsVJgaDOYsxFzx6xokEPQck=) 2: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: r2MdZppnN10Iz6ZoKzDOm3Ycw6FnJTulCC5wJr2SXjs=) 3: B490CD0621C911EB991D562EC4F9AE02.roa (hash: rBg1NOWyi7cxpOlSxmQbpoGz0c8wacC//ksLpStwuPw=) 4: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: JScxZgQ7KHa2YwnDATSzd+qyDGdda+UIVKkiOWFhtkE=) 5: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: vZn4a83LgoBkLAitNmLPLEgXCeUoidc71kLwF4uh0Ss=) 6: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: pi9NZFpg2W35Xj028DFUf+bBTXg7p56S2YuHU9tcYNM=) 7: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: iazb4pmo2Q4EahE0KZo433djiT5R4KAgrFuLP/vvuqE=) 8: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 80Ux/s/8WUCan4xcWTLCy1IlA/aIHlyIXja+HwSVmTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4185 (0x1059) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Mar 26 17:23:41 2026 GMT Not After : Apr 2 17:23:41 2026 GMT Subject: CN=69c56b9e-b446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d5:2d:06:b8:8f:50:d8:9a:30:4c:14:a6:2a: 72:3b:cd:a8:25:a4:1c:b3:18:4b:b8:33:9c:bf:ad: bc:58:8f:f5:70:6d:db:1f:77:63:65:25:3a:af:b3: 60:50:3f:cd:14:ff:3f:32:23:39:0e:98:49:87:d1: 04:a9:7d:ff:26:66:41:28:ca:74:d9:a9:8e:9d:b5: 58:e6:d5:65:b5:ef:43:ec:7d:9e:9f:95:52:fc:5f: 56:d1:d0:86:0a:34:5a:72:2d:3a:a4:0b:e0:fe:fe: 0e:41:d4:02:7a:76:2f:3f:db:80:89:76:00:0b:4a: d5:22:18:57:01:f4:b0:be:b3:2d:28:f5:d3:33:7b: ca:a4:0d:ec:87:13:84:72:25:b7:6e:09:f1:52:c7: bc:30:26:43:1b:b3:e3:5b:57:ed:d8:77:f8:0d:64: 45:6f:8b:7a:b8:4f:c4:c4:99:ca:27:fd:c7:6b:b8: f8:d5:81:89:da:c1:7d:c2:4b:59:d5:8e:cb:d7:cf: e8:89:16:98:47:eb:56:bf:40:71:f6:ac:e5:22:e7: c7:48:dc:81:f4:2b:50:2f:e9:65:a4:b5:04:9e:b5: d8:b6:d3:67:8e:9b:f2:29:16:6e:f4:f1:06:d6:a0: 57:eb:c9:d4:23:21:f4:66:95:94:e5:4b:86:97:a3: f4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AD:0D:FF:5C:F5:C9:AD:B5:34:E5:6E:3E:7F:3B:46:82:CA:93:F3 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:c3:d9:0c:5a:7a:b6:d1:c4:38:c1:65:f4:7f:86:02:48:c7: c5:2f:e9:99:12:2a:fa:1d:0e:93:b0:fa:7c:5e:31:b0:c4:78: 0a:86:50:01:43:c3:a0:fe:29:3f:f6:df:c3:c3:be:d3:82:83: 00:92:f9:b2:fe:36:1c:09:df:88:9c:c7:d9:32:2c:34:cd:c5: 07:d1:5d:f5:d9:78:e7:a9:8d:95:0b:77:f8:00:59:69:b1:b2: 3d:1f:b3:00:12:3a:2f:f4:8b:88:c2:0f:e3:01:15:53:58:3c: 8d:7e:98:44:f8:ec:83:4d:45:f5:81:e1:7c:f6:4e:e7:f0:93: b0:76:7b:ec:b4:e7:43:af:61:11:1b:d4:fb:77:e9:63:ba:ff: 41:01:76:dd:cc:38:91:7f:75:7e:cf:42:9a:e4:da:d8:5c:b7: e0:9d:9f:08:16:c7:e6:0c:41:4c:db:59:32:cb:d5:74:32:0d: 07:64:74:ea:5e:17:19:72:8d:93:ea:12:bd:70:31:d4:05:83: 67:99:c4:98:cf:96:1b:33:a4:af:28:e0:a6:82:68:49:37:c7: 4d:ca:06:ae:3d:d4:52:cb:94:62:a5:d9:4d:3b:f7:87:15:c9: ac:2a:6d:fb:17:0c:e9:49:f4:41:7a:eb:02:07:f2:23:6e:d1: 53:09:c6:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjYwMzI2MTcyMzQxWhcNMjYwNDAyMTcyMzQxWjAYMRYwFAYD VQQDEw02OWM1NmI5ZS1iNDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdUtBriPUNiaMEwUpipyO82oJaQcsxhLuDOcv628WI/1cG3bH3djZSU6r7Ng UD/NFP8/MiM5DphJh9EEqX3/JmZBKMp02amOnbVY5tVlte9D7H2en5VS/F9W0dCG CjRaci06pAvg/v4OQdQCenYvP9uAiXYAC0rVIhhXAfSwvrMtKPXTM3vKpA3shxOE ciW3bgnxUse8MCZDG7PjW1ft2Hf4DWRFb4t6uE/ExJnKJ/3Ha7j41YGJ2sF9wktZ 1Y7L18/oiRaYR+tWv0Bx9qzlIufHSNyB9CtQL+llpLUEnrXYttNnjpvyKRZu9PEG 1qBX68nUIyH0ZpWU5UuGl6P0EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFICtDf9c 9cmttTTlbj5/O0aCypPzMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwMPZDFp6ttHEOMFl9H+GAkjHxS/pmRIq+h0Ok7D6fF4xsMR4CoZQAUPDoP4p P/bfw8O+04KDAJL5sv42HAnfiJzH2TIsNM3FB9Fd9dl456mNlQt3+ABZabGyPR+z ABI6L/SLiMIP4wEVU1g8jX6YRPjsg01F9YHhfPZO5/CTsHZ77LTnQ69hERvU+3fp Y7r/QQF23cw4kX91fs9CmuTa2Fy34J2fCBbH5gxBTNtZMsvVdDINB2R06l4XGXKN k+oSvXAx1AWDZ5nEmM+WGzOkryjgpoJoSTfHTcoGrj3UUsuUYqXZTTv3hxXJrCpt +xcM6Un0QXrrAgfyI27RUwnGGg== -----END CERTIFICATE-----Generated at Sat Mar 28 10:27:57 2026 by rpki-client