$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: MUdymftpJZgTuyNbCxduLjL+bAMI1CrZY4eVTukj7JU= Subject key identifier: 45:B9:1D:77:91:E3:A2:60:E3:0C:D8:21:08:06:86:CE:BA:5A:05:0B Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: 01A1 Signing time: Sat 21 Mar 2026 03:19:10 +0000 Manifest this update: Sat 21 Mar 2026 03:19:10 +0000 Manifest next update: Sat 28 Mar 2026 03:19:10 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: Bfe1oCuLRjb/bQ0sDQOqQg9espU4OjUpew5dJnkqziI=) 2: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: Cf+f/rErS+gscIQrLTVw0RlWMSXZG8pgxu+sjMSHC6U=) 3: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: qJJvsPUngd7sU+FxNj5+ieKU5yZcXa/zUUo8JSHAZ60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 03:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1, serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Mar 21 03:19:10 2026 GMT Not After : Mar 28 03:19:10 2026 GMT Subject: CN=69be0e2e-cb4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0a:00:cc:de:d4:66:91:21:85:c2:3a:1e:33: 0f:68:f9:2e:a5:40:b9:69:fd:65:f8:77:25:9e:84: e2:94:66:3f:bb:28:7e:ee:99:f2:f4:b6:83:7c:3c: 22:da:b3:ae:f3:18:c8:65:a5:83:12:27:df:9f:0e: 17:a9:31:f4:36:a2:a1:71:1b:0a:5a:4e:81:bc:56: d4:80:c6:27:4e:c2:e8:76:d6:6f:35:a0:2d:44:04: 5c:c3:46:e4:52:7e:d1:0b:aa:1b:f0:44:a0:0a:1a: 4a:19:41:e0:d7:81:72:f2:35:fb:20:ee:00:48:c8: 26:fc:09:ea:07:75:16:8d:2a:a1:41:57:15:e7:f8: df:7f:bf:a1:fa:e9:b9:3e:c8:12:b6:37:da:b4:c5: f0:db:99:7a:aa:72:85:9b:99:71:1a:2c:31:fb:25: 09:80:47:bf:f0:f4:c4:a3:1c:24:ce:16:d2:ae:12: 27:c8:d8:c6:b3:0c:11:2e:62:87:0a:15:41:0e:d1: a5:d8:1f:46:5d:8f:a8:d0:64:bf:7d:e9:34:af:c4: 51:ff:a0:52:e3:35:b8:fa:f1:b7:f8:36:c6:a4:16: 85:c0:e3:cf:b2:22:eb:1a:53:34:a1:6b:6c:86:85: 24:e5:03:e1:1e:f8:e0:16:dc:31:b8:73:40:d7:06: bb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B9:1D:77:91:E3:A2:60:E3:0C:D8:21:08:06:86:CE:BA:5A:05:0B X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:a0:1c:54:ac:78:7e:92:76:cd:2c:da:89:5a:7f:58:5c:62: e8:43:26:43:00:29:96:bb:e7:32:0f:2f:d3:ba:b6:af:a8:8a: 37:ee:b2:7e:0b:f2:72:e5:9c:55:8a:7a:0e:9a:cd:58:3d:a2: 20:b1:c0:0b:f8:c4:9e:3b:9a:54:6d:25:40:d7:e2:31:17:a3: 82:03:c1:49:9e:9b:d5:ce:d1:0b:8d:33:f2:4d:30:a6:62:d5: 83:3c:e4:d1:18:62:9d:84:75:d3:04:17:0c:30:6c:9c:28:47: 1d:ef:84:69:25:0f:50:9c:9b:ac:75:21:b4:a7:9a:99:0f:74: 31:68:55:93:3f:d7:10:51:e3:6f:ec:a5:93:89:ba:d4:83:f2: 8a:db:ef:ed:64:7f:1f:04:d1:ec:f3:5f:70:59:03:05:08:42: 05:44:46:1f:9d:97:d4:cc:07:74:59:44:83:8f:22:d8:86:ac: 89:48:02:58:ba:18:57:e9:30:e6:f0:fe:73:60:55:1a:37:0c: 6f:59:b0:e9:89:d3:af:b4:6e:99:f6:18:a8:00:28:73:bd:21: 35:b8:a4:3f:05:44:18:4b:8b:e3:76:fb:4f:aa:0c:ce:02:6a: 6b:aa:4a:92:44:98:00:43:10:cc:a6:52:d1:39:f8:39:ff:1b: d2:a9:30:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjYwMzIxMDMxOTEwWhcNMjYwMzI4MDMxOTEwWjAYMRYwFAYD VQQDEw02OWJlMGUyZS1jYjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQoAzN7UZpEhhcI6HjMPaPkupUC5af1l+HclnoTilGY/uyh+7pny9LaDfDwi 2rOu8xjIZaWDEiffnw4XqTH0NqKhcRsKWk6BvFbUgMYnTsLodtZvNaAtRARcw0bk Un7RC6ob8ESgChpKGUHg14Fy8jX7IO4ASMgm/AnqB3UWjSqhQVcV5/jff7+h+um5 PsgStjfatMXw25l6qnKFm5lxGiwx+yUJgEe/8PTEoxwkzhbSrhInyNjGswwRLmKH ChVBDtGl2B9GXY+o0GS/fek0r8RR/6BS4zW4+vG3+DbGpBaFwOPPsiLrGlM0oWts hoUk5QPhHvjgFtwxuHNA1wa7EQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEW5HXeR 46Jg4wzYIQgGhs66WgULMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3 RDRMQWV4WEU4Q255WnlTWW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT6AcVKx4fpJ2zSzaiVp/WFxi6EMmQwAplrvnMg8v07q2r6iKN+6yfgvycuWc VYp6DprNWD2iILHAC/jEnjuaVG0lQNfiMRejggPBSZ6b1c7RC40z8k0wpmLVgzzk 0RhinYR10wQXDDBsnChHHe+EaSUPUJybrHUhtKeamQ90MWhVkz/XEFHjb+ylk4m6 1IPyitvv7WR/HwTR7PNfcFkDBQhCBURGH52X1MwHdFlEg48i2IasiUgCWLoYV+kw 5vD+c2BVGjcMb1mw6YnTr7RumfYYqAAoc70hNbikPwVEGEuL43b7T6oMzgJqa6pK kkSYAEMQzKZS0Tn4Of8b0qkwpA== -----END CERTIFICATE-----Generated at Sat Mar 21 18:51:25 2026 by rpki-client