$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft File: a1P4D46IGzcxlyZjuhiXt0qS1E0.mft (raw, json) Hash identifier: x1AWT91do8b78R2fPaMhWvekAodOg56hzaCXicqKWsw= Subject key identifier: 33:D2:D3:AE:B6:5C:D5:A5:CC:E8:00:89:84:B6:70:C5:9A:AB:08:C2 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft Manifest number: 0273 Signing time: Wed 11 Mar 2026 01:24:46 +0000 Manifest this update: Wed 11 Mar 2026 01:24:45 +0000 Manifest next update: Wed 18 Mar 2026 01:24:45 +0000 Files and hashes: 1: a1P4D46IGzcxlyZjuhiXt0qS1E0.crl (hash: IsvpkfdV3x3eo3giJOXl4k/zJNTQPw85UCVn7lhP4qM=) 2: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (hash: D3QE+K/fDpz/3eSAi1rPfAFHFlOdI3dak+hzzYghHZo=) 3: A216EC4E3C7911F0B25C0585C4F9AE02.roa (hash: PzMKVF5RWKMCBBz+uMcp/BJxucoQAleKAMkhu2SsbNI=) 4: 026537E8861E11F0BC465F85C4F9AE02.roa (hash: jND/P0to+up6kdOpyJDFygxyQBhs5JfYLpar96q+qQI=) 5: 6709E1D0D0FB11F08508FE58C4F9AE02.roa (hash: yB3ol9rUcdCMd9JnZM0DHqWp/9+cmY3NhYZPNGTCgSk=) 6: FA9BD5C2C5DC11F0A5504261C4F9AE02.roa (hash: iXf9KuDSIbIFYMh4V2pQ7flo3c0UEktI37Pu46KLsLQ=) 7: 8361CB4E5AE611F0963E5C62C4F9AE02.roa (hash: jj9Anb+YltSNZ7XXzklotQBXr3n/2KBa9WPb7jR7Hmc=) 8: B856D46C3B9611F0B2363C74C4F9AE02.roa (hash: bXMhRP5t5yXxZ38+U5zANdmRNyogxO2UTQiQkXvbZD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 01:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Mar 11 01:24:45 2026 GMT Not After : Mar 18 01:24:45 2026 GMT Subject: CN=69b0c45e-52e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ae:25:81:d0:3f:6d:71:99:91:eb:b0:26:10: c9:2f:ae:d7:c6:3f:88:1e:1c:89:cd:8b:fd:ec:bf: 3b:d3:23:8d:1c:1c:0b:fa:2b:85:9f:a0:22:2c:88: a6:29:e8:dc:03:a9:a9:23:2d:30:30:d8:c8:73:1b: bc:d3:9e:4c:4a:c3:73:6e:5a:d5:f2:38:bb:ae:d4: af:ac:60:59:54:b4:f8:4c:29:03:3b:7e:80:81:52: 83:0b:28:be:66:64:50:35:4e:72:5b:af:b6:22:6d: c1:8b:06:94:cc:dc:0f:97:bc:1c:8c:3d:0e:c4:bb: 07:99:bf:43:45:96:a2:6c:7a:19:54:fa:8c:32:8c: 22:ef:25:24:e9:7a:10:3e:72:4d:ce:db:7a:a3:06: 66:5f:e6:cf:c2:32:17:73:65:39:c1:05:c8:26:0f: 32:0b:82:34:9c:dd:e7:1c:7d:22:7f:58:ad:40:a0: b0:94:ef:6b:22:ab:2f:34:58:06:c3:7f:fc:45:d7: 99:59:85:b1:4d:71:0c:68:8d:f2:3b:38:2e:02:e9: e8:d1:30:40:d4:6b:97:92:11:61:32:72:dd:1d:26: b4:3f:b0:80:83:e5:2d:11:a8:c5:40:29:bf:b2:25: 25:1a:d0:b6:4a:26:59:a5:75:43:dc:16:70:a2:8d: 7e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D2:D3:AE:B6:5C:D5:A5:CC:E8:00:89:84:B6:70:C5:9A:AB:08:C2 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:6c:2f:73:c2:16:26:b9:c4:52:ce:27:d8:cc:d5:86:ec:75: af:36:b8:2a:bf:8e:b9:d4:02:e7:d0:bc:fe:57:b5:f9:f6:5c: 77:e4:01:88:0a:33:72:d2:5c:bc:9b:d4:0d:d3:f4:4c:8a:a5: 4b:ca:e9:bc:4f:95:ff:d6:56:fe:33:72:57:2f:f7:81:30:b7: 6b:75:2b:cd:0a:7e:e0:16:a2:46:25:24:cf:21:82:8b:c4:fa: 73:95:7d:e3:86:97:b1:d6:17:34:0d:6d:1a:86:ab:32:6f:e6: 75:38:12:23:81:6d:61:e2:0b:2e:f4:1d:59:ac:6e:bf:21:5e: be:ac:10:6f:ea:71:2d:79:ef:53:4b:2d:36:aa:ef:a9:93:e3: 87:de:f8:c7:b4:de:68:6a:46:74:ff:f3:3e:ac:d1:e5:b3:00: 48:8f:4c:30:fe:28:56:d7:0a:6d:f5:37:95:09:ed:c3:80:50: 2d:b0:d6:30:e9:b1:ad:76:53:30:1c:1d:7f:a2:b5:aa:49:59: 61:f1:19:ef:f8:8b:d7:dd:82:97:33:ad:a0:c1:d4:b1:d4:3c: 9c:d3:49:69:0b:2e:7c:4c:f0:c7:aa:a7:03:e9:c4:bc:72:94: 88:7a:f6:ee:37:54:aa:0f:a5:53:9a:79:da:e7:6f:9b:4c:9c: bd:e2:e7:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjYwMzExMDEyNDQ1WhcNMjYwMzE4MDEyNDQ1WjAYMRYwFAYD VQQDEw02OWIwYzQ1ZS01MmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz64lgdA/bXGZkeuwJhDJL67Xxj+IHhyJzYv97L870yONHBwL+iuFn6AiLIim KejcA6mpIy0wMNjIcxu8055MSsNzblrV8ji7rtSvrGBZVLT4TCkDO36AgVKDCyi+ ZmRQNU5yW6+2Im3BiwaUzNwPl7wcjD0OxLsHmb9DRZaibHoZVPqMMowi7yUk6XoQ PnJNztt6owZmX+bPwjIXc2U5wQXIJg8yC4I0nN3nHH0if1itQKCwlO9rIqsvNFgG w3/8RdeZWYWxTXEMaI3yOzguAuno0TBA1GuXkhFhMnLdHSa0P7CAg+UtEajFQCm/ siUlGtC2SiZZpXVD3BZwoo1+6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDPS0662 XNWlzOgAiYS2cMWaqwjCMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy81RkEzNkUzNDg5MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6 Y3hseVpqdWhpWHQwcVMxRTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPWwvc8IWJrnEUs4n2MzVhux1rza4Kr+OudQC59C8/le1+fZcd+QBiAozctJc vJvUDdP0TIqlS8rpvE+V/9ZW/jNyVy/3gTC3a3UrzQp+4BaiRiUkzyGCi8T6c5V9 44aXsdYXNA1tGoarMm/mdTgSI4FtYeILLvQdWaxuvyFevqwQb+pxLXnvU0stNqrv qZPjh974x7TeaGpGdP/zPqzR5bMASI9MMP4oVtcKbfU3lQntw4BQLbDWMOmxrXZT MBwdf6K1qklZYfEZ7/iL192ClzOtoMHUsdQ8nNNJaQsufEzwx6qnA+nEvHKUiHr2 7jdUqg+lU5p52udvm0ycveLnPA== -----END CERTIFICATE-----Generated at Thu Mar 12 21:29:21 2026 by rpki-client