$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft File: Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft (raw, json) Hash identifier: IfTm8FlSy/yMaJIy1tBTCR5+YxK/dVTgIGhKkqCE2c4= Subject key identifier: FF:86:1B:1B:9C:3F:CF:7A:12:EA:E7:26:9E:E8:C9:31:0C:9C:13:EF Authority key identifier: 49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 Certificate issuer: /CN=A91FDE13/serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft Manifest number: B1 Signing time: Wed 25 Mar 2026 06:45:09 +0000 Manifest this update: Wed 25 Mar 2026 06:45:08 +0000 Manifest next update: Wed 01 Apr 2026 06:45:08 +0000 Files and hashes: 1: Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl (hash: QcxyXpCLRk6ANRokHfbZ3UXLasOY8Bo13mIgrgR+8/E=) 2: 189D8FCE565D11F0B381417EC4F9AE02.roa (hash: V0jiGWcisCYeYKJhJdPZNpTEwuLUAeBQE/p7M60AP1w=) 3: 5B45D97C2A5611F0B7C8BB20C4F9AE02.roa (hash: ZAcnv2B2glJNz/amDzlP0oQS8f8IykGzbvOZt8DAQOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDE13, serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Validity Not Before: Mar 25 06:45:08 2026 GMT Not After : Apr 1 06:45:08 2026 GMT Subject: CN=69c38474-7335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9e:cc:28:8a:cb:c5:e7:1c:0a:3a:8e:a1:d6: c6:40:98:ea:bc:98:73:47:4c:e9:0a:1a:d2:cd:fc: fd:fb:f7:af:45:e4:10:a4:3a:c9:f5:51:48:b2:0e: 53:0d:01:95:94:57:a3:ec:cf:36:44:49:09:7d:f3: c0:6d:34:de:d3:28:6b:9f:24:ed:75:78:3d:3c:d6: 8b:c7:75:26:bb:4f:0f:26:2a:89:e4:eb:d6:0b:5e: 1d:5f:95:99:c7:13:fd:43:7e:11:89:7c:f3:d8:4c: 31:a8:a5:65:e5:f0:a8:7d:1c:cd:c4:79:ae:c5:d6: f6:83:10:4f:c0:b6:b3:ac:c5:e2:9e:f3:f8:26:c2: 79:01:b3:90:4c:8e:d0:2f:43:79:82:45:da:1f:97: 0c:5d:71:9f:fd:9c:b8:d6:3d:c7:32:47:70:5e:03: ae:1c:22:4f:6f:03:69:5b:6e:98:f1:25:d2:ea:07: 3a:d7:fe:c0:e2:3a:a9:0a:d4:e6:83:3a:6a:d3:e3: e2:57:1f:a0:10:ac:68:33:d4:d2:66:fc:d1:eb:48: 4c:d0:9a:fd:ba:a3:29:0f:69:c4:b7:cc:b5:87:d7: 9a:e3:3f:e8:41:fa:f3:b3:f8:63:5c:d8:7b:53:ed: 41:f5:7f:2f:0c:b8:be:93:2c:7e:34:5a:b8:58:e3: 6b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:86:1B:1B:9C:3F:CF:7A:12:EA:E7:26:9E:E8:C9:31:0C:9C:13:EF X509v3 Authority Key Identifier: keyid:49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:3c:87:ee:8b:a3:da:46:3b:4c:3a:d5:00:d5:4e:ef:93:0d: aa:5e:6e:b1:26:a8:e5:1a:b6:da:04:f5:08:ca:99:ea:1e:72: c5:dd:c1:b6:79:22:83:d6:df:6b:88:11:66:91:db:07:e2:e3: 18:11:4c:a8:43:d8:35:47:d8:4c:57:7c:55:29:cb:b4:c2:63: be:9c:b8:87:2c:a0:0b:af:a3:f2:b6:6c:9b:85:39:af:20:d0: a3:35:70:94:7c:5c:49:40:4c:4d:ad:b9:7e:fa:2c:b1:d4:d3: aa:1d:02:ab:12:c7:90:5f:08:c2:f1:e2:c1:1a:ab:c1:0a:19: 9a:66:dd:86:43:ef:49:ba:9d:25:7d:e3:bc:84:6c:4d:58:52: 13:da:0e:5f:df:68:6d:79:ff:a1:42:cd:b6:27:e8:e4:95:db: ff:d1:76:82:40:ee:23:41:24:6d:c8:8d:a1:97:9b:49:9a:e8: 48:54:bc:c7:25:dc:14:e3:2b:ac:d3:f6:85:53:37:4c:61:5d: 54:88:bf:4f:ef:78:bf:ee:42:a9:23:fd:84:a8:61:e6:5b:06: e4:01:60:a5:74:ba:20:28:95:4b:11:e6:a0:f1:a1:3a:04:41: d9:97:ff:65:30:b8:47:4c:c1:fe:75:4e:09:d6:ba:0d:dc:ab: ba:4a:b0:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRFMTMxMTAvBgNVBAUTKDQ5RkQzM0Q2RjUxQUQ2QTQ5ODg0NDY5RkEzOUZFRjA0 MzIzMzZGODEwHhcNMjYwMzI1MDY0NTA4WhcNMjYwNDAxMDY0NTA4WjAYMRYwFAYD VQQDEw02OWMzODQ3NC03MzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ7MKIrLxeccCjqOodbGQJjqvJhzR0zpChrSzfz9+/evReQQpDrJ9VFIsg5T DQGVlFej7M82REkJffPAbTTe0yhrnyTtdXg9PNaLx3Umu08PJiqJ5OvWC14dX5WZ xxP9Q34RiXzz2EwxqKVl5fCofRzNxHmuxdb2gxBPwLazrMXinvP4JsJ5AbOQTI7Q L0N5gkXaH5cMXXGf/Zy41j3HMkdwXgOuHCJPbwNpW26Y8SXS6gc61/7A4jqpCtTm gzpq0+PiVx+gEKxoM9TSZvzR60hM0Jr9uqMpD2nEt8y1h9ea4z/oQfrzs/hjXNh7 U+1B9X8vDLi+kyx+NFq4WONrVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP+GGxuc P896EurnJp7oyTEMnBPvMB8GA1UdIwQYMBaAFEn9M9b1GtakmIRGn6Of7wQyM2+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREUxMy8xNTFGRTQ3RTJB NTYxMUYwQjg0RjUyMjBDNEY5QUUwMi9TZjB6MXZVYTFxU1loRWFmbzVfdkJESXpi NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NmMHoxdlVhMXFTWWhFYWZvNV92QkRJemI0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REUxMy8xNTFGRTQ3RTJBNTYxMUYwQjg0RjUyMjBDNEY5QUUwMi9TZjB6MXZVYTFx U1loRWFmbzVfdkJESXpiNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfDyH7ouj2kY7TDrVANVO75MNql5usSao5Rq22gT1CMqZ6h5yxd3Btnkig9bf a4gRZpHbB+LjGBFMqEPYNUfYTFd8VSnLtMJjvpy4hyygC6+j8rZsm4U5ryDQozVw lHxcSUBMTa25fvossdTTqh0CqxLHkF8IwvHiwRqrwQoZmmbdhkPvSbqdJX3jvIRs TVhSE9oOX99obXn/oULNtifo5JXb/9F2gkDuI0EkbciNoZebSZroSFS8xyXcFOMr rNP2hVM3TGFdVIi/T+94v+5CqSP9hKhh5lsG5AFgpXS6ICiVSxHmoPGhOgRB2Zf/ ZTC4R0zB/nVOCda6DdyrukqwvQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:52:05 2026 by rpki-client