$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft File: aj72cYLbsPbM88pBN4wBGYBq6b0.mft (raw, json) Hash identifier: 1Uy4/ni2LazNk/cT4bzSYw2+frPKJ+m40VJO/d69C/c= Subject key identifier: A3:19:A4:6C:40:E0:DE:18:D9:40:D3:4A:92:A1:AF:AD:48:BA:84:37 Authority key identifier: 6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD Certificate issuer: /CN=A91A0A2E/serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft Manifest number: D3 Signing time: Thu 19 Mar 2026 05:47:16 +0000 Manifest this update: Thu 19 Mar 2026 05:47:16 +0000 Manifest next update: Thu 26 Mar 2026 05:47:16 +0000 Files and hashes: 1: aj72cYLbsPbM88pBN4wBGYBq6b0.crl (hash: ryxrimFxCVjypAgQt61mdq2DAq0NHQWIEE8ev7Al2Ds=) 2: FD63D5BEE90C11EFB9D98326C4F9AE02.roa (hash: VJiboECQcz4EPJ3s89go0nGoquID30lt86NixvuBLSQ=) 3: FDE6938CE90C11EFB9D98326C4F9AE02.roa (hash: uOYxYsUyV5d201wkHKNC5KliU1I0MfAZOgIjo4393UM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 05:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A2E, serialNumber=6A3EF67182DBB0F6CCF3CA41378C0119806AE9BD Validity Not Before: Mar 19 05:47:16 2026 GMT Not After : Mar 26 05:47:16 2026 GMT Subject: CN=69bb8de4-0bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:11:fa:c2:04:6a:2f:84:3c:22:fa:c4:80:32: d3:5f:dc:dc:fb:4f:56:1c:74:b9:08:be:5b:ce:ff: 05:81:90:0f:2c:f8:06:94:88:17:6e:05:fc:70:3d: 30:d1:8c:64:78:0d:00:6c:64:d2:e5:1c:60:78:52: 72:a5:f8:38:fb:d6:4f:02:b6:0f:94:6c:75:aa:b4: cd:bf:72:b1:fd:52:a9:56:c8:71:c2:7a:76:a3:93: 41:38:93:fc:df:5d:ea:8b:75:ea:cd:c7:69:bf:3a: 37:18:f1:32:ad:f2:c9:45:1e:3e:c3:ed:ea:ba:d9: 68:54:e7:31:8f:1d:55:c9:95:dc:ea:1a:3b:d1:84: 09:ae:15:d7:da:7b:2c:1c:ea:9f:91:ba:f1:22:81: c7:0e:a9:bc:a1:34:f7:e5:66:27:39:d0:c1:e1:17: 3e:26:75:a5:45:2c:cf:21:fb:b9:b3:a1:04:bc:a6: ef:9d:95:42:4b:7d:14:74:a7:34:bf:f0:d2:63:47: 86:a5:2b:08:e5:20:14:cf:ce:48:37:cd:3b:d3:6a: 11:90:50:8d:ff:23:45:89:e2:93:23:cf:59:ce:cd: f5:1e:c8:41:68:91:1f:25:b8:43:76:36:b5:8c:36: 43:df:63:77:61:e9:e5:b0:cf:e4:08:4b:81:a3:4e: bc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:19:A4:6C:40:E0:DE:18:D9:40:D3:4A:92:A1:AF:AD:48:BA:84:37 X509v3 Authority Key Identifier: keyid:6A:3E:F6:71:82:DB:B0:F6:CC:F3:CA:41:37:8C:01:19:80:6A:E9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aj72cYLbsPbM88pBN4wBGYBq6b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A2E/C836C7B2E90B11EF82185824C4F9AE02/aj72cYLbsPbM88pBN4wBGYBq6b0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:55:8f:4d:7b:99:6f:97:39:9f:42:4a:49:ec:8b:d1:b7:03: 53:98:10:c8:4e:44:ed:99:ba:57:6c:34:ce:a9:6c:7a:ed:b0: f1:b6:d7:e5:d1:7f:2e:57:28:2b:f3:9e:a1:3d:0d:9e:04:54: 46:27:f8:ac:94:b8:20:d2:d7:ea:b3:f4:29:86:6c:f1:f1:a7: 83:e1:15:74:fe:62:42:85:1b:56:f2:f5:0d:58:99:80:25:71: b1:87:04:6f:db:de:3e:5a:65:a2:29:4e:bf:56:52:9b:35:41: 34:de:7b:34:e0:3f:07:ab:8a:b9:e5:fa:cd:f9:bc:8d:78:9f: a7:1e:d3:05:46:bb:59:14:8b:67:af:c2:0c:7d:5f:dc:c2:fc: 7a:e0:6e:95:50:ee:d6:64:89:a6:14:ec:62:ce:2d:c0:38:f3: a9:da:f9:c3:0d:a2:e7:1b:cc:34:21:da:5f:f4:cc:11:2e:3b: fc:64:b1:53:01:86:d8:26:32:23:8d:c4:92:9b:ad:3b:22:a8: a1:80:71:d1:ed:a3:28:3a:75:d2:99:1b:c5:4e:d2:1e:c7:a8: f8:54:a3:08:d8:3b:0e:b3:0f:50:ee:32:2d:de:6b:c7:e2:3d: 20:86:b0:5a:c3:e6:4c:18:c9:d5:06:73:67:d2:78:fe:d7:31: 14:85:f2:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBMkUxMTAvBgNVBAUTKDZBM0VGNjcxODJEQkIwRjZDQ0YzQ0E0MTM3OEMwMTE5 ODA2QUU5QkQwHhcNMjYwMzE5MDU0NzE2WhcNMjYwMzI2MDU0NzE2WjAYMRYwFAYD VQQDEw02OWJiOGRlNC0wYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xH6wgRqL4Q8IvrEgDLTX9zc+09WHHS5CL5bzv8FgZAPLPgGlIgXbgX8cD0w 0YxkeA0AbGTS5RxgeFJypfg4+9ZPArYPlGx1qrTNv3Kx/VKpVshxwnp2o5NBOJP8 313qi3Xqzcdpvzo3GPEyrfLJRR4+w+3qutloVOcxjx1VyZXc6ho70YQJrhXX2nss HOqfkbrxIoHHDqm8oTT35WYnOdDB4Rc+JnWlRSzPIfu5s6EEvKbvnZVCS30UdKc0 v/DSY0eGpSsI5SAUz85IN80702oRkFCN/yNFieKTI89Zzs31HshBaJEfJbhDdja1 jDZD32N3YenlsM/kCEuBo068jQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKMZpGxA 4N4Y2UDTSpKhr61IuoQ3MB8GA1UdIwQYMBaAFGo+9nGC27D2zPPKQTeMARmAaum9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEEyRS9DODM2QzdCMkU5 MEIxMUVGODIxODU4MjRDNEY5QUUwMi9hajcyY1lMYnNQYk04OHBCTjR3QkdZQnE2 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqNzJjWUxic1BiTTg4cEJONHdCR1lCcTZiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEEyRS9DODM2QzdCMkU5MEIxMUVGODIxODU4MjRDNEY5QUUwMi9hajcyY1lMYnNQ Yk04OHBCTjR3QkdZQnE2YjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJVWPTXuZb5c5n0JKSeyL0bcDU5gQyE5E7Zm6V2w0zqlseu2w8bbX5dF/Llco K/OeoT0NngRURif4rJS4INLX6rP0KYZs8fGng+EVdP5iQoUbVvL1DViZgCVxsYcE b9vePlploilOv1ZSmzVBNN57NOA/B6uKueX6zfm8jXifpx7TBUa7WRSLZ6/CDH1f 3ML8euBulVDu1mSJphTsYs4twDjzqdr5ww2i5xvMNCHaX/TMES47/GSxUwGG2CYy I43EkputOyKooYBx0e2jKDp10pkbxU7SHseo+FSjCNg7DrMPUO4yLd5rx+I9IIaw WsPmTBjJ1QZzZ9J4/tcxFIXyGA== -----END CERTIFICATE-----Generated at Thu Mar 19 15:31:05 2026 by rpki-client