$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: Pu8H8CaZ+TOpwWkWDzsLtJRVB0bZRftUkARgXDYr7I8= Subject key identifier: 24:CE:BB:DC:F6:A2:E3:E3:F6:F1:3C:DA:56:AB:67:73:11:CF:E0:FA Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 043A Signing time: Tue 24 Mar 2026 23:55:32 +0000 Manifest this update: Tue 24 Mar 2026 23:55:31 +0000 Manifest next update: Tue 31 Mar 2026 23:55:31 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: 5PzzaY1KgpwyJ4NBtOI1K5lm/zeKcuiUYLPqxBV7O8Q=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: bZCLjHf5BlE1X57RQpDEdNv00EcGFD0GnS85Xj4KQf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Mar 24 23:55:31 2026 GMT Not After : Mar 31 23:55:31 2026 GMT Subject: CN=69c32474-fe76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3b:30:af:55:24:e3:27:41:50:0e:54:9c:a0: b3:57:55:c7:85:09:8a:04:4f:0a:c8:b2:b7:26:a8: c8:38:2a:2e:5a:9b:8e:5a:c6:6b:8f:bd:53:19:00: 26:89:55:d5:1c:dd:7d:89:ad:ac:33:97:e2:0c:0b: 99:a6:52:f8:3c:fc:b7:e4:ab:1c:97:a7:c6:bb:82: e3:b7:bc:5a:3c:42:a6:10:dc:5d:1d:1a:fa:28:e6: 50:0c:20:40:36:17:9f:bf:70:9d:51:b8:cc:9d:f6: 35:5b:f6:28:9b:1a:9a:f9:b9:97:ac:16:45:66:0e: a6:ad:0a:de:e9:5d:b4:48:51:d7:36:6b:91:36:e2: 8f:77:f5:a1:e4:73:31:7d:9d:91:ae:21:a0:ac:56: 8a:f0:75:21:a4:94:3d:c2:f0:51:c5:b1:37:57:8b: 74:fd:a6:24:a0:5a:db:fc:43:48:61:88:d3:52:0e: 1b:b2:fc:86:2b:91:eb:5e:14:47:24:eb:84:cf:49: e3:af:44:90:31:38:c8:54:d4:5d:f3:a2:b3:35:85: 3c:a8:1b:c0:96:67:91:e9:50:31:44:0d:69:fd:a5: b8:68:31:e5:77:33:20:db:f1:c9:ed:fd:d9:51:9d: bf:75:dc:c8:31:4a:e0:2a:20:72:cd:b2:5c:3f:4e: b7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CE:BB:DC:F6:A2:E3:E3:F6:F1:3C:DA:56:AB:67:73:11:CF:E0:FA X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:6e:57:e5:27:59:71:5c:75:e2:fc:49:dc:66:5c:6b:ee:2f: 73:c9:9c:b5:e9:c1:43:48:7a:d7:5d:e0:ed:53:cb:9d:26:8b: fc:1b:7f:63:68:63:8d:f9:db:59:0b:12:bd:bd:99:5c:e6:e5: 9e:34:80:c3:c9:c3:2d:3a:b1:aa:14:12:a0:81:59:6c:06:c9: f9:aa:ea:2e:c0:22:17:e0:65:61:0b:4a:60:a0:6e:68:f6:a0: f2:f9:3c:9e:4d:82:48:9e:7b:1e:54:e8:d6:d7:ff:72:d5:17: 72:3b:a9:c5:9d:eb:f0:53:43:dd:ba:98:93:83:b8:b8:6e:0e: 3e:c2:6b:65:2f:83:e1:bc:0d:f9:50:df:8a:7b:b1:24:53:81: 5b:3d:e5:05:21:d6:c3:cb:3b:b1:ba:06:10:59:e0:e2:d7:5e: 03:bc:6f:1f:2d:f1:3b:00:7a:ef:d1:0e:03:b7:9d:68:de:f6: 57:8c:9d:1e:4e:42:9f:a5:b0:34:66:2d:23:49:10:b9:b7:d8: 59:68:89:00:98:77:63:85:cb:3a:cb:97:86:9e:51:5f:ed:b6: 86:2b:82:bf:5c:dc:14:75:f7:60:86:ae:92:66:34:ea:06:16: ff:78:b7:17:c3:12:8a:a0:67:14:bd:e6:09:6a:b6:96:6d:4b: 78:89:b4:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjYwMzI0MjM1NTMxWhcNMjYwMzMxMjM1NTMxWjAYMRYwFAYD VQQDEw02OWMzMjQ3NC1mZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjswr1Uk4ydBUA5UnKCzV1XHhQmKBE8KyLK3JqjIOCouWpuOWsZrj71TGQAm iVXVHN19ia2sM5fiDAuZplL4PPy35Kscl6fGu4Ljt7xaPEKmENxdHRr6KOZQDCBA Nhefv3CdUbjMnfY1W/Yomxqa+bmXrBZFZg6mrQre6V20SFHXNmuRNuKPd/Wh5HMx fZ2RriGgrFaK8HUhpJQ9wvBRxbE3V4t0/aYkoFrb/ENIYYjTUg4bsvyGK5HrXhRH JOuEz0njr0SQMTjIVNRd86KzNYU8qBvAlmeR6VAxRA1p/aW4aDHldzMg2/HJ7f3Z UZ2/ddzIMUrgKiByzbJcP063YwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCTOu9z2 ouPj9vE82larZ3MRz+D6MB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAum5X5SdZcVx14vxJ3GZca+4vc8mctenBQ0h6113g7VPLnSaL/Bt/Y2hjjfnb WQsSvb2ZXOblnjSAw8nDLTqxqhQSoIFZbAbJ+arqLsAiF+BlYQtKYKBuaPag8vk8 nk2CSJ57HlTo1tf/ctUXcjupxZ3r8FND3bqYk4O4uG4OPsJrZS+D4bwN+VDfinux JFOBWz3lBSHWw8s7sboGEFng4tdeA7xvHy3xOwB679EOA7edaN72V4ydHk5Cn6Ww NGYtI0kQubfYWWiJAJh3Y4XLOsuXhp5RX+22hiuCv1zcFHX3YIaukmY06gYW/3i3 F8MSiqBnFL3mCWq2lm1LeIm0RQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:08:58 2026 by rpki-client