$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: A6B/5dG4USKoae20bTKiD8FtQr3VKsKwMduircRMHH0= Subject key identifier: 29:75:0D:B9:EA:5E:F8:26:06:B4:3A:47:3B:B9:B0:35:DA:05:75:4D Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 0929 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 08FD Signing time: Tue 24 Mar 2026 17:49:39 +0000 Manifest this update: Tue 24 Mar 2026 17:49:39 +0000 Manifest next update: Tue 31 Mar 2026 17:49:39 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: d3CYa0QRXe93xtHOy1sZFNSe3UoqhHQbAx3jtEYkhqs=) 2: D385E420314711EBA579873DC4F9AE02.roa (hash: OXpsFXQnHysc6JgYoLG/ywf9w/jV3FpEntMMj1+ecpM=) 3: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: BoTL56JNkoT8zZTebPvc7QbRsS4FGOp32MGJ/vJjCqw=) 4: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: x1jD2hg6E8urDPutIfNWsExPrrmq8yEETqPUKu1cNM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2345 (0x929) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Mar 24 17:49:39 2026 GMT Not After : Mar 31 17:49:39 2026 GMT Subject: CN=69c2ceb3-1225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4d:46:f7:08:0e:ff:1e:aa:3c:35:ba:cb:9c: a0:fb:a5:0c:6b:cc:04:ea:24:e2:a8:27:1f:6c:00: 0f:46:74:00:61:4a:fe:9b:5d:e3:33:48:ca:08:06: ab:f0:e8:b3:2a:45:9c:4d:7a:28:f9:00:f4:cb:32: 0c:02:c5:4d:14:c2:90:c3:d6:c6:04:f3:1d:2d:02: 31:0a:50:94:37:48:5e:c3:81:56:5c:55:39:83:0e: 6f:0f:0c:d0:8f:e7:73:48:05:1c:84:69:68:f2:80: 2e:86:86:3a:a6:8c:e6:c8:4b:f6:d5:d0:57:2b:fd: d0:a9:f2:50:03:eb:97:f2:0f:6a:b0:24:05:2a:cc: df:12:d3:f4:50:86:dc:bf:59:91:f6:df:da:a3:03: 1e:48:e3:e1:e1:d5:49:11:d5:d0:10:1c:f7:45:e7: 5b:f8:75:c2:be:76:b2:cb:51:53:be:36:2a:9f:78: e8:85:ff:c5:7a:0d:24:e2:5f:2b:51:12:c8:58:21: e4:1c:57:5f:03:81:be:f5:9d:98:96:f2:ef:47:fb: ab:36:b5:44:81:9b:ec:81:f2:d1:37:c8:bc:03:f4: dd:e8:63:39:ae:8f:f6:f4:b3:f2:df:38:04:b6:b3: 37:5f:dd:e2:a1:e0:d2:a2:81:8c:8e:80:0f:44:fb: 50:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:75:0D:B9:EA:5E:F8:26:06:B4:3A:47:3B:B9:B0:35:DA:05:75:4D X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:73:31:d2:9e:b9:5d:8f:32:5c:72:d6:6f:ef:0d:01:e4:f4: 3a:f8:2d:5e:e6:95:9f:2e:99:ae:15:2b:70:fb:37:7a:bb:eb: 99:4b:82:1a:6e:5f:ec:0b:54:66:d8:93:c0:be:1e:ca:d8:c7: de:2b:51:92:05:e9:6d:67:17:8a:2d:73:98:e2:19:7d:a8:4d: 2e:0a:8f:2c:83:56:0c:9f:d9:fe:2e:c6:2f:57:c8:f8:46:41: 4a:2e:2a:45:a9:cf:fc:e6:70:00:e0:5b:91:38:8d:71:ba:85: 41:5b:3a:2f:44:6f:f2:8e:cc:d4:dc:ec:75:51:53:93:31:61: b6:90:de:1c:d8:0d:36:0e:db:f7:dc:74:5e:b4:04:d5:77:37: d0:a3:08:89:7f:63:e0:b0:d0:26:cc:26:3e:9f:fd:52:c3:69: 13:7c:2c:25:1c:5f:d3:fa:2e:da:66:d4:c4:ff:9f:5e:9e:aa: 82:03:71:06:f4:01:07:05:69:95:a1:c5:2c:a3:c6:53:11:c0: 2e:39:38:3e:7c:dd:ee:86:c9:4b:56:dc:8c:7a:13:2b:de:5a: 56:62:ce:be:db:c8:1c:90:a5:7d:88:8e:80:1a:44:c5:48:14: 16:69:91:6d:66:59:73:58:04:5c:cf:77:00:f9:cd:33:cf:2a: 90:dd:81:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjYwMzI0MTc0OTM5WhcNMjYwMzMxMTc0OTM5WjAYMRYwFAYD VQQDEw02OWMyY2ViMy0xMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA301G9wgO/x6qPDW6y5yg+6UMa8wE6iTiqCcfbAAPRnQAYUr+m13jM0jKCAar 8OizKkWcTXoo+QD0yzIMAsVNFMKQw9bGBPMdLQIxClCUN0hew4FWXFU5gw5vDwzQ j+dzSAUchGlo8oAuhoY6pozmyEv21dBXK/3QqfJQA+uX8g9qsCQFKszfEtP0UIbc v1mR9t/aowMeSOPh4dVJEdXQEBz3Redb+HXCvnayy1FTvjYqn3johf/Feg0k4l8r URLIWCHkHFdfA4G+9Z2YlvLvR/urNrVEgZvsgfLRN8i8A/Td6GM5ro/29LPy3zgE trM3X93ioeDSooGMjoAPRPtQUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCl1Dbnq XvgmBrQ6Rzu5sDXaBXVNMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcXMx0p65XY8yXHLWb+8NAeT0OvgtXuaVny6ZrhUrcPs3ervrmUuCGm5f7AtU ZtiTwL4eytjH3itRkgXpbWcXii1zmOIZfahNLgqPLINWDJ/Z/i7GL1fI+EZBSi4q RanP/OZwAOBbkTiNcbqFQVs6L0Rv8o7M1NzsdVFTkzFhtpDeHNgNNg7b99x0XrQE 1Xc30KMIiX9j4LDQJswmPp/9UsNpE3wsJRxf0/ou2mbUxP+fXp6qggNxBvQBBwVp laHFLKPGUxHALjk4Pnzd7obJS1bcjHoTK95aVmLOvtvIHJClfYiOgBpExUgUFmmR bWZZc1gEXM93APnNM88qkN2BpA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:55:20 2026 by rpki-client