$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: FIyvUGRyTRRL2oErx0BiKXFY06QsS7iAxAX1jgCCzsw= Subject key identifier: FC:A7:C9:0B:3C:EE:96:7A:4D:A4:A7:27:32:05:E6:DC:98:CE:2B:9A Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0676 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 0670 Signing time: Tue 24 Mar 2026 22:15:39 +0000 Manifest this update: Tue 24 Mar 2026 22:15:39 +0000 Manifest next update: Tue 31 Mar 2026 22:15:39 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: EZxTM+dz1DHoBU+4Vu/mkzfgCqDCrErYWizq4COTsQ4=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: 2yTMltgpGatRbQgtIeBUL3TLPvn5vL0uF38mhMQzifU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Mar 24 22:15:39 2026 GMT Not After : Mar 31 22:15:39 2026 GMT Subject: CN=69c30d0b-3230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c4:46:69:9f:93:80:98:49:1d:09:ba:36:a1: 62:8d:09:48:8e:3b:63:e0:f9:04:5d:d8:a7:58:17: 2a:d2:7b:a7:89:1e:c8:13:f0:e4:b5:ed:22:c4:d3: 45:85:ff:9c:67:f5:90:e3:02:1c:5d:9d:e3:0b:de: 23:a8:dc:36:30:d6:c6:1c:47:e1:1e:81:9f:b7:a0: f4:f9:76:84:48:5a:fc:1c:6a:85:0b:1f:30:08:23: 7e:c8:d9:0e:47:70:d2:1c:2c:63:cb:1a:5c:fc:90: 3c:ec:e1:56:5d:2d:f0:50:6e:62:7c:6d:65:07:f9: 69:7e:31:90:2e:67:ab:d9:37:a0:73:17:78:02:33: 03:bd:a5:bd:52:c7:e2:aa:4a:1e:22:09:eb:2f:a5: 28:5e:9e:1c:86:3e:0e:f8:bc:d5:2b:44:bd:b5:5e: db:2a:8a:f8:5f:5b:dd:ef:f1:96:25:86:65:a2:dd: ea:16:04:73:46:b4:c3:b0:89:c1:47:6f:94:d9:9c: 95:ee:5d:85:29:c2:14:27:4a:79:43:d5:ef:e0:5e: b7:85:3d:3c:be:2f:6b:6d:36:ab:2a:6c:64:5a:bf: 95:2e:0f:bd:48:8f:89:b9:c2:81:35:09:d0:2a:c0: 82:e9:69:34:b9:5d:a1:7a:4d:12:33:35:23:e5:77: be:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A7:C9:0B:3C:EE:96:7A:4D:A4:A7:27:32:05:E6:DC:98:CE:2B:9A X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:6d:48:e5:6a:ab:0d:4c:37:c8:75:0b:38:44:a6:bf:d8:4b: 25:df:74:19:56:b3:e2:bf:95:8b:2f:27:61:74:e6:e3:7a:6b: ee:ef:fa:e4:f8:8b:33:67:de:05:36:e1:65:09:4f:dc:96:8f: 88:b0:82:0b:7f:ba:2d:cf:04:38:e6:de:0e:4a:70:69:0f:28: 43:1d:ed:e7:b5:16:4c:e0:17:39:f6:23:99:a7:ef:66:d3:a0: 1c:37:5d:39:cc:53:a5:7f:f9:cc:e6:f1:fe:84:9a:f0:15:12: 71:c0:41:4f:67:92:f4:c0:ef:7f:6b:8c:02:99:d3:b7:0f:82: a4:b3:5a:f8:5d:52:33:4e:e6:84:71:cc:07:a0:d9:ae:f2:8b: 0a:f4:d5:dd:30:97:5d:a6:0c:24:5d:72:27:1b:ac:a7:45:3b: 8b:e6:80:2f:df:55:26:ad:eb:3b:75:c6:fb:a3:a8:7c:d4:17: 99:fa:a2:cc:98:57:12:da:95:06:a4:12:b1:76:99:77:78:4c: b9:28:48:5c:29:30:e0:b0:37:76:9d:83:94:61:82:25:f6:0e: 86:dd:d4:34:a7:61:6d:16:a5:e4:15:f5:5a:33:9a:38:ed:2c: 74:08:79:6e:42:c7:9d:43:3a:3d:c8:77:94:77:66:07:59:ed: 73:c5:32:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjYwMzI0MjIxNTM5WhcNMjYwMzMxMjIxNTM5WjAYMRYwFAYD VQQDEw02OWMzMGQwYi0zMjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sRGaZ+TgJhJHQm6NqFijQlIjjtj4PkEXdinWBcq0nuniR7IE/Dkte0ixNNF hf+cZ/WQ4wIcXZ3jC94jqNw2MNbGHEfhHoGft6D0+XaESFr8HGqFCx8wCCN+yNkO R3DSHCxjyxpc/JA87OFWXS3wUG5ifG1lB/lpfjGQLmer2Tegcxd4AjMDvaW9Usfi qkoeIgnrL6UoXp4chj4O+LzVK0S9tV7bKor4X1vd7/GWJYZlot3qFgRzRrTDsInB R2+U2ZyV7l2FKcIUJ0p5Q9Xv4F63hT08vi9rbTarKmxkWr+VLg+9SI+JucKBNQnQ KsCC6Wk0uV2hek0SMzUj5Xe+wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPynyQs8 7pZ6TaSnJzIF5tyYziuaMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeW1I5WqrDUw3yHULOESmv9hLJd90GVaz4r+Viy8nYXTm43pr7u/65PiLM2fe BTbhZQlP3JaPiLCCC3+6Lc8EOObeDkpwaQ8oQx3t57UWTOAXOfYjmafvZtOgHDdd OcxTpX/5zObx/oSa8BUSccBBT2eS9MDvf2uMApnTtw+CpLNa+F1SM07mhHHMB6DZ rvKLCvTV3TCXXaYMJF1yJxusp0U7i+aAL99VJq3rO3XG+6OofNQXmfqizJhXEtqV BqQSsXaZd3hMuShIXCkw4LA3dp2DlGGCJfYOht3UNKdhbRal5BX1WjOaOO0sdAh5 bkLHnUM6Pch3lHdmB1ntc8UyWQ== -----END CERTIFICATE-----Generated at Thu Mar 26 08:25:11 2026 by rpki-client