$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json) Hash identifier: JN7GUb2di/HEvzfnn6Ohb6JT1qbzkhuiuyU58kKN5sI= Subject key identifier: AC:FC:B3:61:79:0A:3F:22:3B:0D:C2:CF:93:0E:A7:BC:0E:71:43:A3 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft Manifest number: C0 Signing time: Sun 29 Mar 2026 06:40:10 +0000 Manifest this update: Sun 29 Mar 2026 06:40:09 +0000 Manifest next update: Sun 05 Apr 2026 06:40:09 +0000 Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: AxU8h18Tmqo+D+89HZu+uts3tLd4Fj0bX97NdldW+uw=) 2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: jRuHimWgQS+tjLR9bDCVnhmy0GeAXCUN8m6ZV5rJabM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 06:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Mar 29 06:40:09 2026 GMT Not After : Apr 5 06:40:09 2026 GMT Subject: CN=69c8c94a-e0b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:1a:6e:36:9b:e6:35:60:e3:a9:bd:97:7d:9c: 83:00:d3:7d:48:1a:63:24:e7:ed:46:68:86:9c:2c: 42:e0:21:d3:39:e3:2a:fb:b2:ce:8c:b5:a9:2e:ed: 43:f8:61:27:e9:05:83:87:a2:15:f2:f2:1a:43:b0: 7d:9f:92:27:1b:2a:0b:b9:d8:34:1e:03:85:ef:11: 8c:d0:12:07:71:a4:f7:7e:45:a4:87:fd:24:b8:5f: 3a:3d:f9:a0:38:ab:1c:e3:15:63:f9:01:33:f3:85: b1:0a:f3:cb:a5:ba:c5:f7:9a:a5:bb:e7:b6:13:d9: ac:bd:96:9d:77:fe:31:c0:ff:6c:a7:aa:60:a5:4b: 54:6a:55:06:02:a4:6e:c4:25:45:b6:b5:69:32:92: 1b:1e:57:d7:73:56:b0:98:2c:80:dd:1f:9c:11:17: 0e:7c:4d:ee:eb:44:19:f7:c8:57:b1:2b:0a:89:b3: af:66:14:57:19:94:75:cf:e6:37:7b:65:dd:6f:d8: 4f:d2:76:45:7a:48:10:b0:f1:49:8e:6e:4c:62:c5: 70:ec:9e:4c:64:55:6a:35:02:cc:40:5f:f9:7a:3f: bc:4e:6d:18:a0:7e:51:38:83:bc:9c:1f:1d:7b:f6: 0c:31:5a:20:70:c5:1e:af:94:03:9e:e6:7e:b7:04: a4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FC:B3:61:79:0A:3F:22:3B:0D:C2:CF:93:0E:A7:BC:0E:71:43:A3 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:a3:90:e0:b2:56:99:ee:fb:52:26:9b:d5:08:11:b7:5d:7a: 63:f8:87:ef:1c:00:3b:f6:14:7b:b7:14:82:e0:33:7b:43:f7: bc:b4:ae:7a:e5:a1:0a:3d:8c:a9:32:80:da:b0:7b:3b:d8:ae: de:52:60:2c:4c:2a:67:bf:2b:bb:6f:85:7c:a4:c6:b1:7c:7d: 11:f9:0f:7e:64:1d:f4:e0:7f:fd:fa:01:1a:6b:01:6c:fb:ea: 20:9c:22:f0:c4:1f:3c:06:47:af:74:d9:01:cc:24:e3:a5:ee: eb:82:c6:e9:41:5a:70:8d:0c:18:e4:f5:c5:cb:1f:e4:8b:74: 47:28:40:67:b1:b0:ee:e1:de:33:fb:d2:9a:da:e6:62:c7:4a: 14:b3:48:43:45:76:7f:35:e7:b2:b0:cb:ad:2f:80:2a:9e:55: 4c:28:24:cc:61:29:71:de:78:ac:d7:63:c4:6b:95:ac:b6:f9: e1:4f:1e:a2:f1:78:9e:c3:58:1c:ab:fa:49:5b:55:a5:e7:bf: b7:04:c8:89:d7:96:fd:bf:87:23:f5:2b:b3:7b:d5:36:10:45: 2b:d1:39:50:90:2f:20:b6:b2:7a:93:e1:07:8d:1d:0e:3b:ec: 33:99:44:1e:09:e2:90:f3:37:c2:bd:6a:fa:c1:59:b7:46:30: 28:94:45:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0MxMTAvBgNVBAUTKDI0NTNDRTdDNDI1M0RCQjJDN0FDM0QyOTAxM0U5MEQ1 RjUzQzVEMDkwHhcNMjYwMzI5MDY0MDA5WhcNMjYwNDA1MDY0MDA5WjAYMRYwFAYD VQQDEw02OWM4Yzk0YS1lMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8BpuNpvmNWDjqb2XfZyDANN9SBpjJOftRmiGnCxC4CHTOeMq+7LOjLWpLu1D +GEn6QWDh6IV8vIaQ7B9n5InGyoLudg0HgOF7xGM0BIHcaT3fkWkh/0kuF86Pfmg OKsc4xVj+QEz84WxCvPLpbrF95qlu+e2E9msvZadd/4xwP9sp6pgpUtUalUGAqRu xCVFtrVpMpIbHlfXc1awmCyA3R+cERcOfE3u60QZ98hXsSsKibOvZhRXGZR1z+Y3 e2Xdb9hP0nZFekgQsPFJjm5MYsVw7J5MZFVqNQLMQF/5ej+8Tm0YoH5ROIO8nB8d e/YMMVogcMUer5QDnuZ+twSkEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKz8s2F5 Cj8iOw3Cz5MOp7wOcUOjMB8GA1UdIwQYMBaAFCRTznxCU9uyx6w9KQE+kNX1PF0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDQy9CREQ0QUYzQzBC RDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3TEhyRDBwQVQ2UTFmVThY UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9KRlBPZkVKVDI3 TEhyRDBwQVQ2UTFmVThYUWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE6OQ4LJWme77Uiab1QgRt116Y/iH7xwAO/YUe7cUguAze0P3vLSueuWhCj2M qTKA2rB7O9iu3lJgLEwqZ78ru2+FfKTGsXx9EfkPfmQd9OB//foBGmsBbPvqIJwi 8MQfPAZHr3TZAcwk46Xu64LG6UFacI0MGOT1xcsf5It0RyhAZ7Gw7uHeM/vSmtrm YsdKFLNIQ0V2fzXnsrDLrS+AKp5VTCgkzGEpcd54rNdjxGuVrLb54U8eovF4nsNY HKv6SVtVpee/twTIideW/b+HI/Urs3vVNhBFK9E5UJAvILayepPhB40dDjvsM5lE HgnikPM3wr1q+sFZt0YwKJRFSw== -----END CERTIFICATE-----Generated at Sun Mar 29 22:57:05 2026 by rpki-client