$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft File: 8eArOUb---b0ZPQ0jvIVX2HQehs.mft (raw, json) Hash identifier: W9wvUEpELrco7Lr9MEd+RBw5F4jtCSBSNA59wuAwET4= Subject key identifier: 84:96:18:12:DE:37:EA:74:4F:BE:CE:59:E9:46:6E:51:86:86:6B:8F Authority key identifier: F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B Certificate issuer: /CN=A91FF4FC/serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Certificate serial: 0E7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft Manifest number: 0E76 Signing time: Tue 24 Mar 2026 17:37:28 +0000 Manifest this update: Tue 24 Mar 2026 17:37:28 +0000 Manifest next update: Tue 31 Mar 2026 17:37:28 +0000 Files and hashes: 1: 8eArOUb---b0ZPQ0jvIVX2HQehs.crl (hash: LxotptNdAmtP0SOAGHbzDsh5A5ayGZ+byfMikDnGzT4=) 2: A280C1FCA06D11EB92FB3739C4F9AE02.roa (hash: S1LxRGAyN75MGVrx7zsjehrxoECJoknKKiFKcBA+GMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3709 (0xe7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF4FC, serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Validity Not Before: Mar 24 17:37:28 2026 GMT Not After : Mar 31 17:37:28 2026 GMT Subject: CN=69c2cbd8-0b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b9:76:fe:fa:50:d0:da:00:c4:a2:e2:38:92: f7:8d:f2:fd:ec:d1:fc:2a:e1:9c:14:41:59:62:40: 73:9b:1a:c2:c9:98:97:79:d5:70:02:5d:5b:6f:7a: 8b:5c:1d:93:1f:dd:25:8d:49:ad:0a:f4:51:4c:5b: 53:64:9e:f2:22:2e:1b:6d:2b:3b:88:53:2e:9e:b8: 0e:a6:9d:36:b8:9e:d5:17:26:25:65:08:38:54:5e: 3a:b4:b6:ae:0e:06:e0:63:f0:6c:92:a6:c0:6e:63: ed:48:15:2c:a5:47:f9:8a:54:cf:01:5d:c5:99:91: ad:70:07:a3:7e:12:7d:b4:06:77:64:2f:e8:1d:ab: b4:ae:da:71:1c:75:d6:d0:a9:94:09:20:b5:e4:2b: a3:22:bf:4e:c6:5e:a9:1d:16:80:92:11:91:ad:a5: 3a:0c:f4:99:ef:ca:ed:2f:0c:01:bb:0f:5c:e8:8d: 31:c2:ed:3a:87:6f:72:70:cd:2d:65:93:18:fa:bd: 3a:57:78:11:f9:81:73:2d:21:05:33:53:89:75:61: f7:f5:a2:7b:53:c9:f9:d2:9f:93:83:d2:6b:b5:d6: e6:1a:fa:f6:cf:05:23:6d:4f:47:c1:d8:ea:fe:d7: 72:03:bc:f2:5d:18:52:a0:4e:de:41:06:80:36:43: 51:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:96:18:12:DE:37:EA:74:4F:BE:CE:59:E9:46:6E:51:86:86:6B:8F X509v3 Authority Key Identifier: keyid:F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:91:87:91:cb:91:00:d0:21:5f:7f:b1:1f:d4:65:bc:c1:9b: f2:15:78:76:3b:4c:ff:c6:b2:aa:f0:e3:17:3b:23:fb:37:4c: 38:e4:6d:e6:d1:cc:66:f6:bd:9b:a2:b9:a1:4a:7d:c8:55:15: 44:32:e7:b0:88:70:02:c8:d8:43:cc:d1:e8:06:1b:b2:58:60: 59:6a:f3:d8:28:b0:a4:79:57:c6:d2:c6:a7:47:4f:84:55:57: e1:c7:fe:83:94:3b:53:24:ee:c9:a9:b6:b7:79:24:4a:2b:24: 75:ee:6b:9c:52:fd:48:ca:56:ff:58:18:5d:4d:c0:6e:79:f2: cc:5b:19:c0:70:65:eb:56:24:8a:d3:ef:10:11:4b:4c:30:c5: e8:5c:f3:5c:5c:e5:dc:46:67:a0:27:37:23:bd:c5:55:b6:5d: d5:c3:e2:64:17:0c:b6:13:76:c9:84:03:ee:e7:06:f0:92:12: 9b:56:e5:5d:4d:85:a9:f7:7a:e1:a4:36:c1:d9:1e:cb:ae:65: 18:c2:23:fc:48:6c:c0:4b:b1:eb:5b:f5:3a:ad:14:99:d0:72: cc:73:3c:a8:93:3a:f3:8f:cc:71:23:d8:60:17:8e:f2:0f:66: 80:3b:33:93:94:02:71:3f:20:e8:12:2d:7f:f7:b6:66:20:5f: 26:87:10:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY0RkMxMTAvBgNVBAUTKEYxRTAyQjM5NDZGRUZCRTZGNDY0RjQzNDhFRjIxNTVG NjFEMDdBMUIwHhcNMjYwMzI0MTczNzI4WhcNMjYwMzMxMTczNzI4WjAYMRYwFAYD VQQDEw02OWMyY2JkOC0wYjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLl2/vpQ0NoAxKLiOJL3jfL97NH8KuGcFEFZYkBzmxrCyZiXedVwAl1bb3qL XB2TH90ljUmtCvRRTFtTZJ7yIi4bbSs7iFMunrgOpp02uJ7VFyYlZQg4VF46tLau DgbgY/BskqbAbmPtSBUspUf5ilTPAV3FmZGtcAejfhJ9tAZ3ZC/oHau0rtpxHHXW 0KmUCSC15CujIr9Oxl6pHRaAkhGRraU6DPSZ78rtLwwBuw9c6I0xwu06h29ycM0t ZZMY+r06V3gR+YFzLSEFM1OJdWH39aJ7U8n50p+Tg9JrtdbmGvr2zwUjbU9Hwdjq /tdyA7zyXRhSoE7eQQaANkNRKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFISWGBLe N+p0T77OWelGblGGhmuPMB8GA1UdIwQYMBaAFPHgKzlG/vvm9GT0NI7yFV9h0Hob MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjRGQy8zQjYzNEJCRUI0 NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0tYjBaUFEwanZJVlgySFFl aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhlQXJPVWItLS1iMFpQUTBqdklWWDJIUWVocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjRGQy8zQjYzNEJCRUI0NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0t YjBaUFEwanZJVlgySFFlaHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQpGHkcuRANAhX3+xH9RlvMGb8hV4djtM/8ayqvDjFzsj+zdMOORt5tHMZva9 m6K5oUp9yFUVRDLnsIhwAsjYQ8zR6AYbslhgWWrz2CiwpHlXxtLGp0dPhFVX4cf+ g5Q7UyTuyam2t3kkSiskde5rnFL9SMpW/1gYXU3AbnnyzFsZwHBl61YkitPvEBFL TDDF6FzzXFzl3EZnoCc3I73FVbZd1cPiZBcMthN2yYQD7ucG8JISm1blXU2Fqfd6 4aQ2wdkey65lGMIj/EhswEux61v1Oq0UmdByzHM8qJM684/McSPYYBeO8g9mgDsz k5QCcT8g6BItf/e2ZiBfJocQaA== -----END CERTIFICATE-----Generated at Thu Mar 26 13:45:28 2026 by rpki-client