$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: 0Gmnp2PjUjKtpj3XI7Zyt0ClFI/HsrWVp3YeAwe54RI= Subject key identifier: 09:44:9F:32:40:65:0F:4B:D1:6D:0F:13:54:E9:8E:28:4D:C7:52:FF Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C78 Signing time: Tue 24 Mar 2026 16:05:58 +0000 Manifest this update: Tue 24 Mar 2026 16:05:58 +0000 Manifest next update: Tue 31 Mar 2026 16:05:58 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: TLjmW4dkkBl2/aO8cnZ59yePUlD0SuSlXhBHtJVnGYc=) 2: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: 7oC71FjkJ5B715SyOcRhNyUfxRr9+87yPAPblr+sAys=) 3: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: 5NO1VG8ffGg8ouNISZKDorz5L4A29bF5w+6XJMA45m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7308 (0x1c8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Mar 24 16:05:58 2026 GMT Not After : Mar 31 16:05:58 2026 GMT Subject: CN=69c2b666-df5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7b:86:a3:db:e4:4b:b1:6c:8a:08:f1:35:4f: ea:f6:3c:db:41:ea:45:66:89:b7:e5:e3:a1:c8:70: 05:f3:39:2c:91:0f:49:4f:b9:66:0e:3e:db:a3:00: 16:2e:60:3d:31:11:74:b1:64:a3:bc:87:b2:89:3e: 42:c5:f3:a1:23:f5:34:0d:46:25:7c:32:9d:bf:af: e2:03:d5:7c:9f:0c:b0:a9:33:58:9a:5e:75:ba:01: 45:de:88:9e:55:a2:76:85:d9:42:23:0c:44:b7:e6: a7:d6:8f:d7:f5:3a:2d:22:ac:3e:1e:a2:b2:37:f2: b7:a0:dd:57:83:8e:37:19:cc:cf:56:a0:63:3b:f8: 5b:75:57:26:7d:0e:a8:bd:e1:58:59:eb:2b:71:a3: 3b:64:98:0e:e3:9a:57:c0:fe:7b:56:fd:1d:76:f6: 18:aa:a5:d3:6b:de:80:16:31:d8:64:82:20:a1:d6: e7:e8:49:c8:bd:cf:0b:fa:e9:b3:49:5f:02:8a:c7: 9a:4b:c5:ce:17:c1:72:4f:56:db:f9:79:cb:74:ec: f5:e4:2a:8d:2a:58:cd:5b:12:36:54:5b:78:4f:c5: 1c:bc:8d:7c:ab:4f:36:ce:ec:7b:88:40:48:ad:a0: 8e:22:4a:1f:08:c8:e4:38:0b:4a:d8:6e:e0:e3:6e: ce:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:44:9F:32:40:65:0F:4B:D1:6D:0F:13:54:E9:8E:28:4D:C7:52:FF X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:fa:fd:27:87:9e:a0:67:13:53:68:aa:34:52:6a:77:48:fc: 49:4e:cc:12:48:f2:2a:73:7a:6a:1e:9c:cf:c2:71:68:2e:16: 32:81:1d:9f:ce:1b:d3:50:82:9e:c0:50:74:a5:97:15:26:6e: fe:05:9c:0b:34:ae:38:81:db:6d:87:54:ad:ce:6c:f4:33:53: 5f:b8:5a:f1:90:10:e6:76:df:38:e5:5b:8e:fb:3a:1c:b9:8e: 90:86:1c:69:9e:92:4c:d9:a7:d0:2d:b4:03:a7:47:51:30:b3: 84:bb:2b:a4:f9:31:35:51:e6:7a:06:93:12:97:02:9f:78:b8: b7:f9:ec:90:58:02:75:9d:e0:f0:60:2a:58:a1:b8:d9:b8:64: b7:5d:7a:c4:32:08:31:f3:66:38:e7:c0:94:fb:19:06:13:72: 78:bb:37:b6:6a:5b:da:66:8e:e6:40:8a:18:22:2a:85:1a:ba: f3:ee:f1:20:77:4a:35:4a:9d:19:5e:16:1b:8f:b0:1b:9e:41: 5f:a7:67:7e:e2:ac:94:97:3d:a1:85:fe:ea:5e:97:2f:16:72: 17:75:97:a6:63:c2:fc:ed:50:35:95:35:9e:6c:7c:43:fa:34: 04:80:cd:82:9b:ce:d9:61:1c:3a:99:f7:40:16:8f:79:2b:4a: 2d:5a:0a:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwMzI0MTYwNTU4WhcNMjYwMzMxMTYwNTU4WjAYMRYwFAYD VQQDEw02OWMyYjY2Ni1kZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HuGo9vkS7FsigjxNU/q9jzbQepFZom35eOhyHAF8zkskQ9JT7lmDj7bowAW LmA9MRF0sWSjvIeyiT5CxfOhI/U0DUYlfDKdv6/iA9V8nwywqTNYml51ugFF3oie VaJ2hdlCIwxEt+an1o/X9TotIqw+HqKyN/K3oN1Xg443GczPVqBjO/hbdVcmfQ6o veFYWesrcaM7ZJgO45pXwP57Vv0ddvYYqqXTa96AFjHYZIIgodbn6EnIvc8L+umz SV8CiseaS8XOF8FyT1bb+XnLdOz15CqNKljNWxI2VFt4T8UcvI18q082zux7iEBI raCOIkofCMjkOAtK2G7g427OQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAlEnzJA ZQ9L0W0PE1TpjihNx1L/MB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK/r9J4eeoGcTU2iqNFJqd0j8SU7MEkjyKnN6ah6cz8JxaC4WMoEdn84b01CC nsBQdKWXFSZu/gWcCzSuOIHbbYdUrc5s9DNTX7ha8ZAQ5nbfOOVbjvs6HLmOkIYc aZ6STNmn0C20A6dHUTCzhLsrpPkxNVHmegaTEpcCn3i4t/nskFgCdZ3g8GAqWKG4 2bhkt116xDIIMfNmOOfAlPsZBhNyeLs3tmpb2maO5kCKGCIqhRq68+7xIHdKNUqd GV4WG4+wG55BX6dnfuKslJc9oYX+6l6XLxZyF3WXpmPC/O1QNZU1nmx8Q/o0BIDN gpvO2WEcOpn3QBaPeStKLVoKgw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:53:47 2026 by rpki-client