$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: RM9bg2OB5llrRe8/AVbjyeuiCYp1k3vQDQsgQxhviV0= Subject key identifier: BA:59:DB:6E:DD:A0:AA:28:53:87:6A:DF:72:49:25:11:E6:0B:46:AA Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 01D3 Signing time: Fri 27 Mar 2026 03:11:18 +0000 Manifest this update: Fri 27 Mar 2026 03:11:17 +0000 Manifest next update: Fri 03 Apr 2026 03:11:17 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: 9oVpQpe0dx3QUZsoJtCvi4gWWqFNdHnrbCdlpYUN15A=) 2: 624C3E865DB011F0875D570FC4F9AE02.roa (hash: a4BkoiItlms6YCqVC8v1i4qTu07pVSF2ZxL78g6dboE=) 3: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: ViCudgIPygezvAtMJaZKmsZPceBqOw4Pvj8wkwoWduE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Mar 27 03:11:17 2026 GMT Not After : Apr 3 03:11:17 2026 GMT Subject: CN=69c5f556-55ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:15:35:61:6a:ce:72:bf:7a:b5:75:a1:8e:d4: 6f:3c:1a:10:c1:f8:7b:57:91:99:a1:d5:65:63:cb: 54:1b:fe:60:10:60:10:26:9c:2c:0a:89:77:01:c8: 4c:35:d7:de:de:aa:cc:d0:1f:f8:c3:31:61:e0:02: c2:cb:4f:d9:d8:a9:06:6c:56:be:84:87:b2:89:61: bc:b7:69:f8:1c:3a:d8:92:24:c0:78:ae:04:1a:c9: 87:b5:9d:d8:88:71:42:d0:60:51:a8:e7:a5:a7:40: 71:5c:3c:b9:0f:a8:91:f7:da:19:d6:a7:aa:1a:fd: c5:a1:a4:01:1d:6c:fc:cb:d4:bb:ba:de:c9:94:b1: ae:16:dd:9c:dd:5e:3d:2e:94:65:c1:b3:2d:8c:0b: e2:e8:2c:aa:2e:4f:ed:8e:f9:53:db:47:2b:3d:85: 49:45:26:07:a2:f0:7d:45:56:c4:3d:3a:63:46:c9: 12:af:9b:56:2e:be:df:2c:79:29:50:26:68:6c:6e: c1:7f:7f:df:5e:4a:74:63:39:f6:16:4d:6d:aa:d8: 56:3e:89:11:49:12:4b:f5:80:33:95:71:f6:67:75: 30:2a:31:cf:98:24:d9:c5:f7:b5:99:4d:34:78:c9: de:24:e0:47:c1:e1:79:b0:b4:19:d8:6d:4d:5a:35: 71:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:59:DB:6E:DD:A0:AA:28:53:87:6A:DF:72:49:25:11:E6:0B:46:AA X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:02:aa:1a:cc:1a:de:a2:21:ee:d1:48:1d:1d:09:04:34:fc: bf:69:6f:ee:05:10:9a:ef:40:e2:ff:59:4b:97:a8:da:26:05: b5:03:79:e9:84:28:fa:38:fe:ff:ec:6c:69:d4:00:c0:85:18: a7:70:52:f2:db:38:24:b5:ff:0c:30:ad:72:a7:91:48:c7:ba: 27:c3:ee:4f:53:d0:3e:82:2d:c0:dd:85:df:3a:52:f8:51:7b: 8c:0e:0d:ed:24:4b:15:72:49:ba:c6:86:c1:d0:80:8d:f8:dc: 04:45:53:60:3c:d7:6f:20:69:34:75:ea:2e:92:49:0d:76:c4: 25:03:ed:4f:66:15:d6:3d:25:47:2d:6c:c9:9d:9c:d1:6f:eb: 07:2e:13:c6:bb:26:e0:46:d6:77:d6:41:3d:f0:f1:8b:26:32: 15:d3:5f:de:2b:01:c1:0f:be:05:31:7a:dd:f9:3f:e8:3d:f8: 79:46:d5:bd:0b:a3:60:2e:1f:24:fe:f0:90:7d:d5:7e:c2:6f: 50:85:87:e9:b4:ab:c5:94:a7:16:c4:d7:fb:62:de:8c:46:90: 44:c7:b9:c0:6f:64:76:6f:2e:fd:d3:72:a6:88:a4:50:a1:b3: ab:35:5f:f9:0c:fd:f0:ce:b8:b4:55:9d:86:82:86:8f:39:b2: d0:3f:1f:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjYwMzI3MDMxMTE3WhcNMjYwNDAzMDMxMTE3WjAYMRYwFAYD VQQDEw02OWM1ZjU1Ni01NWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hU1YWrOcr96tXWhjtRvPBoQwfh7V5GZodVlY8tUG/5gEGAQJpwsCol3AchM Ndfe3qrM0B/4wzFh4ALCy0/Z2KkGbFa+hIeyiWG8t2n4HDrYkiTAeK4EGsmHtZ3Y iHFC0GBRqOelp0BxXDy5D6iR99oZ1qeqGv3FoaQBHWz8y9S7ut7JlLGuFt2c3V49 LpRlwbMtjAvi6CyqLk/tjvlT20crPYVJRSYHovB9RVbEPTpjRskSr5tWLr7fLHkp UCZobG7Bf3/fXkp0Yzn2Fk1tqthWPokRSRJL9YAzlXH2Z3UwKjHPmCTZxfe1mU00 eMneJOBHweF5sLQZ2G1NWjVxlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLpZ227d oKooU4dq33JJJRHmC0aqMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIgKqGswa3qIh7tFIHR0JBDT8v2lv7gUQmu9A4v9ZS5eo2iYFtQN56YQo+jj+ /+xsadQAwIUYp3BS8ts4JLX/DDCtcqeRSMe6J8PuT1PQPoItwN2F3zpS+FF7jA4N 7SRLFXJJusaGwdCAjfjcBEVTYDzXbyBpNHXqLpJJDXbEJQPtT2YV1j0lRy1syZ2c 0W/rBy4Txrsm4EbWd9ZBPfDxiyYyFdNf3isBwQ++BTF63fk/6D34eUbVvQujYC4f JP7wkH3VfsJvUIWH6bSrxZSnFsTX+2LejEaQRMe5wG9kdm8u/dNypoikUKGzqzVf +Qz98M64tFWdhoKGjzmy0D8fJQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:01:35 2026 by rpki-client