$ rpki-client -vvf rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft File: o0Zki0rfT8W0d8faLPBbFoQ3210.mft (raw, json) Hash identifier: 26K4+UnVaZ0xwoCQOvpb14oh8tRFceoxrHksDLBa4tM= Subject key identifier: E4:11:7F:CE:66:5E:11:7E:F5:A2:03:A5:5F:F7:A9:D8:72:BC:D2:58 Authority key identifier: A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D Certificate issuer: /CN=A91F78E2/serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft Manifest number: 1C Signing time: Wed 25 Mar 2026 08:09:44 +0000 Manifest this update: Wed 25 Mar 2026 08:09:43 +0000 Manifest next update: Wed 01 Apr 2026 08:09:43 +0000 Files and hashes: 1: o0Zki0rfT8W0d8faLPBbFoQ3210.crl (hash: FydJJoyE9K1L3NUEXFe1HMJpsc+Hqw6fcvU1VSu85bY=) 2: 825697D20F7911F1809984312C3D8C67.roa (hash: zwLj1p60QJZhGqM9OFrvvmZ63ABgfQGgbVPoX25wiFA=) 3: 836B482A0F7911F1809984312C3D8C67.roa (hash: TwW5dd+M0PGrRvNWJtYRZ8DHnqNKe/MUb3Dt0nluACA=) 4: 82DA388A0F7911F1809984312C3D8C67.roa (hash: DwV5RyDcCjRsx1pQK6SE6C7k8xmybS0fqEBWiL5+TBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F78E2, serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Validity Not Before: Mar 25 08:09:43 2026 GMT Not After : Apr 1 08:09:43 2026 GMT Subject: CN=69c39848-ba5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c8:bc:7d:4d:db:d1:b0:47:9d:2a:e6:5f:a3: 13:ae:56:cc:9e:0d:49:3e:04:28:c4:73:0a:d0:31: 40:df:1d:9a:e7:42:c8:dc:ff:d4:67:c9:fd:79:e6: dd:f5:db:81:47:94:c2:e5:dc:25:f5:8e:f8:d8:c5: bb:e6:00:7c:dc:08:6f:bc:c7:91:b4:63:fa:09:d5: e4:82:2f:3b:9b:dc:04:95:92:53:be:06:28:2c:0c: 5d:30:22:4f:60:f6:bd:0c:76:16:88:e7:22:f5:3e: 7f:7c:65:9f:09:9d:34:45:62:d3:11:23:df:6d:d7: 6f:f3:3d:d5:d0:08:b3:9c:66:04:69:31:b9:49:44: 58:57:00:eb:84:5f:50:dd:66:34:e1:90:95:96:b7: c6:e9:ef:d2:89:23:6f:34:70:7e:79:0d:59:a2:d4: 10:ed:a7:61:1d:01:f2:b8:01:93:0f:47:a1:68:a8: 09:e0:9a:d3:d2:33:d2:30:81:fb:32:db:22:82:e9: e8:8f:d2:b0:e3:de:8a:96:eb:07:75:5e:84:f5:62: 46:bf:2d:61:63:7e:53:9f:f8:b9:09:91:35:71:b5: 42:12:b9:9c:9b:67:40:15:62:51:1a:c6:23:67:22: 85:f5:13:04:cc:a1:c0:50:f8:b9:9c:1d:32:f4:fb: 3b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:11:7F:CE:66:5E:11:7E:F5:A2:03:A5:5F:F7:A9:D8:72:BC:D2:58 X509v3 Authority Key Identifier: keyid:A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:11:4d:72:ca:31:ad:f0:28:5a:79:7c:a0:ae:3d:d6:13:79: 05:1b:9a:33:da:25:bb:a7:c1:b0:cc:46:06:31:5f:b8:02:00: 8d:98:ea:0e:28:7e:43:5c:d6:10:4c:2f:32:40:57:57:f9:f4: 49:ca:5a:e2:cc:0a:74:df:86:51:91:58:98:3b:cb:16:bc:11: 1d:c5:9a:d2:36:44:de:1e:dd:c1:5a:c3:fe:db:c0:81:fb:d2: 8e:95:2f:3f:66:4f:8c:ba:0b:4f:5f:df:e4:67:5e:3d:9f:0f: f2:57:34:1c:24:a9:31:2d:13:23:3b:a3:32:83:1f:25:c3:a7: ae:58:cb:5a:79:24:3e:a3:f0:4c:64:6d:83:47:b5:09:27:8d: fa:e0:15:09:ba:2a:76:53:ad:21:dd:8d:cf:f3:db:d1:7e:97: 68:87:fe:3e:41:28:cf:b1:cc:a2:b5:b2:7b:e0:d4:85:ea:db: 94:cb:1a:5b:ec:7c:56:8c:a7:22:1c:41:b7:4d:45:3e:b7:a2: 13:f5:58:cb:fd:1f:9b:61:cd:46:ca:07:bf:80:7d:e2:79:3b: 44:a7:67:41:52:5e:e3:b8:cf:fd:37:31:7d:81:3a:5b:a0:ce: e2:3e:71:7e:37:1e:08:95:54:49:2c:18:2d:ae:3d:a0:26:fc: b2:6d:7a:1d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzhFMjExMC8GA1UEBRMoQTM0NjY0OEI0QURGNEZDNUI0NzdDN0RBMkNGMDVCMTY4 NDM3REI1RDAeFw0yNjAzMjUwODA5NDNaFw0yNjA0MDEwODA5NDNaMBgxFjAUBgNV BAMTDTY5YzM5ODQ4LWJhNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4yLx9TdvRsEedKuZfoxOuVsyeDUk+BCjEcwrQMUDfHZrnQsjc/9Rnyf155t31 24FHlMLl3CX1jvjYxbvmAHzcCG+8x5G0Y/oJ1eSCLzub3ASVklO+BigsDF0wIk9g 9r0MdhaI5yL1Pn98ZZ8JnTRFYtMRI99t12/zPdXQCLOcZgRpMblJRFhXAOuEX1Dd ZjThkJWWt8bp79KJI280cH55DVmi1BDtp2EdAfK4AZMPR6FoqAngmtPSM9Iwgfsy 2yKC6eiP0rDj3oqW6wd1XoT1Yka/LWFjflOf+LkJkTVxtUISuZybZ0AVYlEaxiNn IoX1EwTMocBQ+LmcHTL0+zt/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU5BF/zmZe EX71ogOlX/ep2HK80lgwHwYDVR0jBBgwFoAUo0Zki0rfT8W0d8faLPBbFoQ3210w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3OEUyL0M4RjRBOEUyMDc5 OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhXMGQ4ZmFMUEJiRm9RMzIx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzBaa2kwcmZUOFcwZDhmYUxQQmJGb1EzMjEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3 OEUyL0M4RjRBOEUyMDc5OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhX MGQ4ZmFMUEJiRm9RMzIxMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBbEU1yyjGt8ChaeXygrj3WE3kFG5oz2iW7p8GwzEYGMV+4AgCNmOoOKH5DXNYQ TC8yQFdX+fRJylrizAp034ZRkViYO8sWvBEdxZrSNkTeHt3BWsP+28CB+9KOlS8/ Zk+MugtPX9/kZ149nw/yVzQcJKkxLRMjO6Mygx8lw6euWMtaeSQ+o/BMZG2DR7UJ J4364BUJuip2U60h3Y3P89vRfpdoh/4+QSjPscyitbJ74NSF6tuUyxpb7HxWjKci HEG3TUU+t6IT9VjL/R+bYc1Gyge/gH3ieTtEp2dBUl7juM/9NzF9gTpboM7iPnF+ Nx4IlVRJLBgtrj2gJvyybXod -----END CERTIFICATE-----Generated at Thu Mar 26 03:14:55 2026 by rpki-client