$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: MFo2Un6e64kOUAu4/Zfls9B8O1HAXSIhsbkZterNGCk= Subject key identifier: 61:6C:76:ED:B4:5E:DC:B6:09:95:40:17:DC:14:DA:51:05:6F:99:FE Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0C1A Signing time: Tue 24 Mar 2026 18:37:28 +0000 Manifest this update: Tue 24 Mar 2026 18:37:27 +0000 Manifest next update: Tue 31 Mar 2026 18:37:27 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: wBTeerfRC3S2ycZldyJUW8Ow7jFBHqrTTEJevkizCG8=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: y7I7T2g0mI0lsLqMSMjVPNFG5gKcdIMy2Rd0f1B2C0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Mar 24 18:37:27 2026 GMT Not After : Mar 31 18:37:27 2026 GMT Subject: CN=69c2d9e8-c5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:60:c2:21:64:56:14:d9:9a:47:08:98:0d:a9: 12:88:4f:1a:95:1e:21:73:66:94:47:8a:9e:43:e7: 8c:32:0a:6d:c0:c8:1d:2e:24:3b:d0:1d:a6:e2:fa: c5:a9:d8:46:27:58:87:11:ce:dd:33:0d:d9:fc:ff: bf:bb:db:ed:3c:1a:1a:58:d5:6b:ec:7a:f8:23:ab: ff:4d:91:0e:ab:13:d8:07:3a:a4:32:98:5c:cc:18: 08:07:d5:6c:93:b9:cd:70:e8:49:a4:ce:a2:26:9a: 3b:7a:fa:b8:a7:5e:ce:17:52:83:05:7f:f7:cd:21: bf:40:55:63:bf:3f:5a:8b:20:fa:e1:87:89:14:59: a0:ae:75:66:c4:c6:a7:4f:64:1a:68:11:46:b5:8e: 2d:d6:81:56:fc:0a:c2:31:9a:9e:f3:eb:90:d0:30: 62:f4:a2:0f:a7:69:80:74:ff:ea:1e:b3:90:00:35: 67:d2:f4:b0:73:f3:ad:59:48:33:9f:d1:80:f4:4e: f3:b3:b6:fb:0d:65:1b:32:53:1e:52:15:ff:f2:c8: a9:39:39:62:36:fa:fc:6a:84:f5:e3:8e:68:46:b0: 65:bc:94:32:6c:ec:7e:62:96:3b:e5:e8:18:da:6e: 11:24:84:cc:f3:e2:ea:fb:0d:58:07:74:23:99:84: 43:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6C:76:ED:B4:5E:DC:B6:09:95:40:17:DC:14:DA:51:05:6F:99:FE X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:7c:15:00:f9:f1:09:f5:28:9c:4f:dc:eb:13:61:25:bc:a3: bc:7e:83:79:4f:03:94:67:f9:fa:e9:64:64:16:a7:14:3d:25: 46:fc:47:4d:5d:a0:69:59:5f:5c:ae:a9:44:f3:63:f0:ea:73: bc:27:3f:41:3b:cb:1c:e1:69:97:46:87:85:0c:e7:6d:ed:0a: b2:db:cd:bc:81:02:4f:77:68:b2:9a:2f:60:04:9f:94:39:ff: 4e:38:c1:d0:ce:cd:11:86:e3:31:10:c7:a8:b6:6b:a3:e8:dd: ad:67:1a:b7:b3:a2:27:02:53:99:ed:a4:57:66:a0:48:b6:a4: c6:bf:50:17:2e:82:70:50:4f:01:21:b3:7a:bf:d7:d5:6f:9c: e4:c8:7d:46:bb:6d:51:f6:0e:9c:d8:ae:17:c6:95:08:09:f0: e8:15:31:33:9f:9b:cd:79:48:95:00:46:90:81:7b:37:59:46: d3:cd:97:a0:3e:a3:56:6d:af:7e:49:15:e6:be:c5:9b:52:63: be:fb:ae:8d:ee:ab:cd:db:7a:41:32:6c:6b:4a:b9:66:22:74: e6:e7:af:c3:52:ad:11:22:17:db:39:ab:4e:a1:b1:3e:b2:a2: 4b:19:6b:41:2a:bc:3c:45:f9:e4:eb:a6:fa:93:74:ba:29:b4: 1c:4a:a7:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjYwMzI0MTgzNzI3WhcNMjYwMzMxMTgzNzI3WjAYMRYwFAYD VQQDEw02OWMyZDllOC1jNWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmDCIWRWFNmaRwiYDakSiE8alR4hc2aUR4qeQ+eMMgptwMgdLiQ70B2m4vrF qdhGJ1iHEc7dMw3Z/P+/u9vtPBoaWNVr7Hr4I6v/TZEOqxPYBzqkMphczBgIB9Vs k7nNcOhJpM6iJpo7evq4p17OF1KDBX/3zSG/QFVjvz9aiyD64YeJFFmgrnVmxMan T2QaaBFGtY4t1oFW/ArCMZqe8+uQ0DBi9KIPp2mAdP/qHrOQADVn0vSwc/OtWUgz n9GA9E7zs7b7DWUbMlMeUhX/8sipOTliNvr8aoT1445oRrBlvJQybOx+YpY75egY 2m4RJITM8+Lq+w1YB3QjmYRDqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGFsdu20 Xty2CZVAF9wU2lEFb5n+MB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR3wVAPnxCfUonE/c6xNhJbyjvH6DeU8DlGf5+ulkZBanFD0lRvxHTV2gaVlf XK6pRPNj8OpzvCc/QTvLHOFpl0aHhQznbe0KstvNvIECT3dospovYASflDn/TjjB 0M7NEYbjMRDHqLZro+jdrWcat7OiJwJTme2kV2agSLakxr9QFy6CcFBPASGzer/X 1W+c5Mh9RrttUfYOnNiuF8aVCAnw6BUxM5+bzXlIlQBGkIF7N1lG082XoD6jVm2v fkkV5r7Fm1Jjvvuuje6rzdt6QTJsa0q5ZiJ05uevw1KtESIX2zmrTqGxPrKiSxlr QSq8PEX55Oum+pN0uim0HEqnDA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:19:09 2026 by rpki-client