$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: FXY7Abx541iopoVsDXqvDHJbPtpRYGI6LKuNDozk0G0= Subject key identifier: 72:4C:37:8B:03:F9:A4:5C:41:0F:81:42:BC:74:07:8A:D2:0D:18:65 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 08BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 08AC Signing time: Tue 24 Mar 2026 20:15:55 +0000 Manifest this update: Tue 24 Mar 2026 20:15:54 +0000 Manifest next update: Tue 31 Mar 2026 20:15:54 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: GIgSjFSKf0FSEgx+K9cwQN5H1U0oytdmppL+TLSoTYE=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: KkfurgFgQaSiOoD1DoZqsh9tHMcIVcJW+jsOCJRRuvo=) 3: CEDD71FAE48811F09BEEC367446F56BC.roa (hash: n4+tu4whf2PQeZcNUGvCEnzwL08T5EGFFqHM2nYkstI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2235 (0x8bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Mar 24 20:15:54 2026 GMT Not After : Mar 31 20:15:54 2026 GMT Subject: CN=69c2f0fa-d9e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:65:e2:27:b0:60:2f:ee:d1:07:21:c4:7b:b6: e9:98:3e:40:88:80:5b:3b:6e:b4:e7:3d:51:5d:94: d1:f2:f9:dc:e0:70:57:df:5d:84:c0:37:a3:ab:81: 11:d6:e3:2c:84:dc:09:8e:22:53:ae:33:13:cf:11: d6:96:ec:47:c7:09:46:aa:a5:ae:6f:f3:91:d9:c3: 97:dd:c1:8c:71:51:90:2d:60:68:68:da:1f:e6:1a: 45:40:2d:eb:32:30:f6:bc:4f:1c:aa:4e:a1:75:10: e9:a6:e4:f0:f0:1c:bb:a7:9d:a2:78:a8:78:f3:22: e1:91:4d:3f:9b:91:99:8b:cf:d3:3f:c0:53:86:1d: d7:95:36:38:92:5a:c8:88:9f:c2:d0:6d:9f:dc:25: 56:d3:cc:66:df:46:1d:f2:56:c6:52:6f:4b:d0:64: 50:ec:5d:fc:02:6a:06:ef:ca:c5:8e:4f:93:96:0a: 20:9c:73:b6:74:02:f2:6c:ef:6e:58:39:5e:ac:c6: d4:2b:31:49:46:ab:ed:87:41:0a:64:0f:ca:47:b6: 51:4b:fd:3a:88:b1:a9:62:b1:22:a0:70:ce:e2:a5: 85:2a:ea:5e:60:f3:07:99:97:6a:3f:c7:4c:ad:fc: 44:ce:74:57:98:fa:20:88:e0:4d:cd:ba:a5:06:e5: b3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4C:37:8B:03:F9:A4:5C:41:0F:81:42:BC:74:07:8A:D2:0D:18:65 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:6f:03:b1:ba:90:7e:bf:7b:84:94:cc:da:04:f3:c3:5e:27: 37:04:85:78:ce:04:39:06:5d:88:ad:8c:97:2f:b3:2c:7d:5c: 9b:45:a8:14:4d:09:27:e5:03:5b:87:c8:42:d8:09:d4:1a:04: 1b:25:ec:d2:07:8c:04:5a:91:05:25:d1:12:f9:77:2f:2f:75: 82:bf:61:69:df:1c:8e:f1:25:06:e5:99:66:7f:2d:54:05:2a: 5f:e3:2a:4a:87:42:98:c4:d2:3e:f3:a8:56:68:9f:d2:70:11: f9:e2:62:b9:88:1c:02:a8:0d:fd:94:20:0a:06:21:0f:a7:13: dd:99:e1:6f:eb:ff:6e:b7:d3:c3:90:2a:57:0b:da:05:6c:a3: 32:8d:f6:24:0f:ec:f1:05:5d:fd:bc:92:12:6e:05:51:30:90: 0f:44:e8:95:82:82:98:f1:ba:f6:2a:42:22:72:40:8a:5c:cf: ca:4f:6f:c3:07:74:42:c6:dc:e6:af:6c:73:e8:a6:d6:16:16: 05:49:75:f9:ed:6b:fe:68:98:f3:3c:ea:69:b0:a9:d0:ed:62: 5a:e2:9c:bc:61:65:42:1e:8d:ce:fd:5b:fc:6b:c3:32:e2:ae: a1:10:b1:96:e5:62:7a:dc:09:0a:ad:c5:3b:7b:ba:7c:57:84: 8f:b5:60:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjYwMzI0MjAxNTU0WhcNMjYwMzMxMjAxNTU0WjAYMRYwFAYD VQQDEw02OWMyZjBmYS1kOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlWXiJ7BgL+7RByHEe7bpmD5AiIBbO2605z1RXZTR8vnc4HBX312EwDejq4ER 1uMshNwJjiJTrjMTzxHWluxHxwlGqqWub/OR2cOX3cGMcVGQLWBoaNof5hpFQC3r MjD2vE8cqk6hdRDppuTw8By7p52ieKh48yLhkU0/m5GZi8/TP8BThh3XlTY4klrI iJ/C0G2f3CVW08xm30Yd8lbGUm9L0GRQ7F38AmoG78rFjk+TlgognHO2dALybO9u WDlerMbUKzFJRqvth0EKZA/KR7ZRS/06iLGpYrEioHDO4qWFKupeYPMHmZdqP8dM rfxEznRXmPogiOBNzbqlBuWz4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHJMN4sD +aRcQQ+BQrx0B4rSDRhlMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPm8DsbqQfr97hJTM2gTzw14nNwSFeM4EOQZdiK2Mly+zLH1cm0WoFE0JJ+UD W4fIQtgJ1BoEGyXs0geMBFqRBSXREvl3Ly91gr9had8cjvElBuWZZn8tVAUqX+Mq SodCmMTSPvOoVmif0nAR+eJiuYgcAqgN/ZQgCgYhD6cT3Znhb+v/brfTw5AqVwva BWyjMo32JA/s8QVd/bySEm4FUTCQD0TolYKCmPG69ipCInJAilzPyk9vwwd0Qsbc 5q9sc+im1hYWBUl1+e1r/miY8zzqabCp0O1iWuKcvGFlQh6Nzv1b/GvDMuKuoRCx luVietwJCq3FO3u6fFeEj7VgRw== -----END CERTIFICATE-----Generated at Thu Mar 26 15:30:40 2026 by rpki-client