$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft File: rHzRY2nXDaZnWZ2jaOICQknLAvw.mft (raw, json) Hash identifier: DRY+nW54i4fvxjX1RobJjiCxiXCG6qoovPnBrV8LNQ4= Subject key identifier: CD:DA:57:64:26:18:F6:16:5C:3F:F5:0C:6F:13:B5:B4:EA:E0:17:60 Authority key identifier: AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC Certificate issuer: /CN=A91FB4F7/serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft Manifest number: 66 Signing time: Wed 25 Mar 2026 07:08:06 +0000 Manifest this update: Wed 25 Mar 2026 07:08:06 +0000 Manifest next update: Wed 01 Apr 2026 07:08:06 +0000 Files and hashes: 1: rHzRY2nXDaZnWZ2jaOICQknLAvw.crl (hash: fY80mghOehsQVtTt8VJxKQUMgPbV0LBlRdlcyAQgACU=) 2: 53AEC77E8C7511F0BEEC137FC4F9AE02.roa (hash: TEkM5L9gYDSbXl7l7QCjyJ+tRJyP8a0ZBB6nUCwEyKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB4F7, serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Validity Not Before: Mar 25 07:08:06 2026 GMT Not After : Apr 1 07:08:06 2026 GMT Subject: CN=69c389d6-b304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:82:13:98:b1:ce:be:41:bf:ee:df:a8:fd:dc: 9b:8c:99:48:9b:23:e1:d1:9a:f8:e6:a2:49:b2:ac: aa:a0:f6:1b:a4:85:7c:c8:e4:b9:57:1b:28:58:45: d6:ff:85:4e:f0:03:fe:1f:7b:33:4f:e5:b7:f8:7d: 91:ca:24:59:06:85:ae:0d:88:74:ee:39:ff:fe:43: 5a:36:98:36:cb:73:7f:2d:bf:ea:ee:52:7b:d4:26: 94:af:74:b0:8d:89:34:4d:11:86:3f:a6:6c:72:10: 46:bb:f7:1b:22:f3:73:5b:72:66:4f:1e:cb:da:69: 1c:66:e5:0b:3c:95:1e:fd:a7:19:ea:41:4f:ba:85: de:94:26:7b:11:f9:61:2a:fb:43:24:b5:d3:c9:ef: e2:0d:78:c0:04:d3:dd:e3:fc:c4:4e:57:67:20:e5: a9:7a:7a:a0:78:ec:00:06:c0:15:71:cb:98:61:8c: af:c1:5b:06:dd:84:84:6b:00:39:4d:bd:99:14:47: 9c:38:c1:f5:3f:a3:47:f9:95:42:9c:97:5c:c5:66: 89:a6:14:a3:53:88:f5:49:3b:fc:b1:47:7a:78:18: 9a:c6:fc:96:e4:35:a7:30:e3:24:9b:aa:73:5c:5f: 6c:f0:fd:81:97:1b:a8:4d:23:dc:0b:c3:d5:ee:9b: e7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DA:57:64:26:18:F6:16:5C:3F:F5:0C:6F:13:B5:B4:EA:E0:17:60 X509v3 Authority Key Identifier: keyid:AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f7:f2:48:f8:f9:2d:4f:d1:ef:94:30:72:c5:7c:46:c8:81: b9:fd:51:65:5c:9f:b6:8f:4a:df:ca:4d:7d:32:44:0b:83:ca: b6:2f:9b:46:e4:e8:eb:81:f9:0b:09:3a:10:b8:63:72:a2:24: bb:7b:2f:47:2b:d9:ff:91:b0:4c:a4:ef:28:ac:ce:9a:fc:60: fa:b5:68:e7:99:4c:40:70:2b:d7:d3:31:f3:5b:2a:5d:24:f6: 2e:68:a8:fc:d7:bf:64:a5:99:a7:1b:de:c8:a2:f3:87:db:53: 1d:f5:bc:0f:ce:a1:a3:91:58:09:58:0c:be:ab:25:c0:0e:b1: 79:90:dc:2e:d9:7b:8c:cf:5d:97:57:ec:c1:de:b5:b0:96:eb: cb:80:bc:b9:a0:54:c7:77:a6:b3:2a:84:c8:48:cd:7c:0b:69: 9d:38:65:00:0d:56:e1:c1:1b:5f:8d:2e:4a:4c:1b:d9:9b:1c: c6:29:2f:58:dc:ee:95:bd:55:19:ea:6f:a4:e9:70:fc:44:61: a2:84:a2:21:1b:69:d7:ee:e3:f1:cc:d5:7b:e3:6e:df:69:a7: 77:5a:e2:04:cd:49:32:e4:45:ac:29:dc:6c:39:5c:6e:fb:fb: 83:2c:ee:fb:66:e1:09:cf:28:02:9f:c3:01:9f:33:ae:38:9c: f7:78:bc:a3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjRGNzExMC8GA1UEBRMoQUM3Q0QxNjM2OUQ3MERBNjY3NTk5REEzNjhFMjAyNDI0 OUNCMDJGQzAeFw0yNjAzMjUwNzA4MDZaFw0yNjA0MDEwNzA4MDZaMBgxFjAUBgNV BAMTDTY5YzM4OWQ2LWIzMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeghOYsc6+Qb/u36j93JuMmUibI+HRmvjmokmyrKqg9hukhXzI5LlXGyhYRdb/ hU7wA/4fezNP5bf4fZHKJFkGha4NiHTuOf/+Q1o2mDbLc38tv+ruUnvUJpSvdLCN iTRNEYY/pmxyEEa79xsi83NbcmZPHsvaaRxm5Qs8lR79pxnqQU+6hd6UJnsR+WEq +0MktdPJ7+INeMAE093j/MROV2cg5al6eqB47AAGwBVxy5hhjK/BWwbdhIRrADlN vZkUR5w4wfU/o0f5lUKcl1zFZommFKNTiPVJO/yxR3p4GJrG/JbkNacw4ySbqnNc X2zw/YGXG6hNI9wLw9Xum+erAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUzdpXZCYY 9hZcP/UMbxO1tOrgF2AwHwYDVR0jBBgwFoAUrHzRY2nXDaZnWZ2jaOICQknLAvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNEY3LzEyQkFCODk2OEM2 RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFabldaMmphT0lDUWtuTEF2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvckh6UlkyblhEYVpuV1oyamFPSUNRa25MQXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NEY3LzEyQkFCODk2OEM2RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFa bldaMmphT0lDUWtuTEF2dy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA29/JI+PktT9HvlDByxXxGyIG5/VFlXJ+2j0rfyk19MkQLg8q2L5tG5OjrgfkL CToQuGNyoiS7ey9HK9n/kbBMpO8orM6a/GD6tWjnmUxAcCvX0zHzWypdJPYuaKj8 179kpZmnG97IovOH21Md9bwPzqGjkVgJWAy+qyXADrF5kNwu2XuMz12XV+zB3rWw luvLgLy5oFTHd6azKoTISM18C2mdOGUADVbhwRtfjS5KTBvZmxzGKS9Y3O6VvVUZ 6m+k6XD8RGGihKIhG2nX7uPxzNV7427faad3WuIEzUky5EWsKdxsOVxu+/uDLO77 ZuEJzygCn8MBnzOuOJz3eLyj -----END CERTIFICATE-----Generated at Thu Mar 26 12:37:52 2026 by rpki-client