$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: gRLpoe59+SrCKULpEVGKWT4SS9vpgo5kuw+igB0a7CM= Subject key identifier: 7D:A2:31:2A:B6:AF:4F:1B:BB:89:7B:8C:5F:AF:5A:FD:74:2A:12:40 Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 0309 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 02EB Signing time: Thu 19 Mar 2026 00:52:19 +0000 Manifest this update: Thu 19 Mar 2026 00:52:18 +0000 Manifest next update: Thu 26 Mar 2026 00:52:18 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: 3gl7QQaBl1jHkPZA5p7zzk6fgt06C3MwwEP1rtwHJAw=) 2: 984E33E4E01F11F0913A4E89646F56BC.roa (hash: OcYvm4nslT9HEXifrXrZRqsFAS3xrQM7cYF+95ESEVE=) 3: E1870478616C11F0A254E10BC4F9AE02.roa (hash: ftAew0EQNdkbc3/2VDTlGHSmCcRqc+rg4bUvOtG8DsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 00:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Mar 19 00:52:18 2026 GMT Not After : Mar 26 00:52:18 2026 GMT Subject: CN=69bb48c2-cc74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:63:58:af:70:06:26:fe:a6:15:4b:d9:1a:a0: c5:fa:86:51:7b:bc:84:46:45:46:e6:d9:be:33:30: 7b:b7:bd:4d:42:9f:70:68:4c:57:50:56:6c:4b:30: 98:7e:69:bb:4c:71:ca:f2:d6:11:30:d0:a1:4a:98: b0:c6:d5:29:b8:b6:a0:9a:fc:a7:c8:6b:bc:52:30: 2d:33:80:66:4d:33:72:a1:5e:1d:2b:5c:60:24:30: 78:fb:39:5f:3b:9d:84:ec:9e:d0:0a:d2:4a:b7:a1: 11:8c:ec:17:bb:e7:2d:62:b3:9c:d5:75:8b:8e:9a: 09:b4:49:e9:2f:df:15:6f:0e:2f:fd:15:3c:4d:67: 41:12:27:30:19:4b:7d:61:56:11:97:3e:1d:7c:ea: 43:fd:25:e1:90:3d:cb:ff:d4:6a:f3:44:a2:0d:a6: c2:46:26:00:a1:de:ce:bd:13:0a:a3:58:22:3e:e6: a1:df:26:8d:d5:4b:b9:5e:35:8a:42:4f:e8:d0:c3: 63:01:4d:0f:cc:60:fd:8c:39:12:dc:22:9d:84:3e: f5:33:41:5f:7c:2a:54:b0:9c:70:7b:88:25:af:57: 87:e1:e9:ae:a7:90:90:b9:54:88:f1:f7:4a:79:8a: 32:19:af:5c:24:d2:52:20:f0:ce:1c:70:1b:ed:3e: 91:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A2:31:2A:B6:AF:4F:1B:BB:89:7B:8C:5F:AF:5A:FD:74:2A:12:40 X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:e3:99:f3:bb:86:8a:d8:76:12:45:e7:df:6a:c0:27:87:36: 1c:68:f7:8e:86:93:39:b2:c7:ff:12:5a:02:54:44:8b:b8:ac: 20:30:03:6c:ad:4f:78:49:77:1f:e5:a0:2b:7b:86:74:75:23: 99:cc:93:11:c3:b6:d4:ad:42:31:26:08:f9:8a:c7:b2:cc:d8: ce:7e:0b:05:96:8c:16:43:ee:4c:9f:55:80:f3:ae:f3:cd:77: 8a:c8:bb:21:c0:4a:c7:9c:c6:c0:6c:91:a3:e0:60:cf:cb:db: 2e:5d:5a:0b:fc:a2:01:bf:ec:d8:9c:9f:ee:d4:6f:46:ce:36: 41:58:22:c1:52:8b:53:41:db:df:1d:aa:bf:dc:11:16:69:7c: c1:0e:09:98:f9:ab:93:9d:7a:fe:56:12:b0:e0:f3:37:a2:f0: e4:32:85:aa:a2:54:4b:56:1a:62:20:df:f9:48:87:c7:d1:23: 2c:70:d1:0f:a8:ab:0e:26:b5:ed:a2:6c:e9:6f:f6:3e:94:61: 67:96:ee:cc:05:cb:93:de:c0:92:a4:cb:35:f3:8c:a2:84:4d: c8:74:dc:17:42:b8:34:14:cb:cd:dd:bb:b0:8e:bd:f1:2e:92: fa:ce:74:48:fc:91:1c:92:8a:5b:34:78:30:16:74:de:44:54: f1:0a:d2:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjYwMzE5MDA1MjE4WhcNMjYwMzI2MDA1MjE4WjAYMRYwFAYD VQQDEw02OWJiNDhjMi1jYzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8WNYr3AGJv6mFUvZGqDF+oZRe7yERkVG5tm+MzB7t71NQp9waExXUFZsSzCY fmm7THHK8tYRMNChSpiwxtUpuLagmvynyGu8UjAtM4BmTTNyoV4dK1xgJDB4+zlf O52E7J7QCtJKt6ERjOwXu+ctYrOc1XWLjpoJtEnpL98Vbw4v/RU8TWdBEicwGUt9 YVYRlz4dfOpD/SXhkD3L/9Rq80SiDabCRiYAod7OvRMKo1giPuah3yaN1Uu5XjWK Qk/o0MNjAU0PzGD9jDkS3CKdhD71M0FffCpUsJxwe4glr1eH4emup5CQuVSI8fdK eYoyGa9cJNJSIPDOHHAb7T6RgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH2iMSq2 r08bu4l7jF+vWv10KhJAMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs+OZ87uGith2EkXn32rAJ4c2HGj3joaTObLH/xJaAlREi7isIDADbK1PeEl3 H+WgK3uGdHUjmcyTEcO21K1CMSYI+YrHsszYzn4LBZaMFkPuTJ9VgPOu8813isi7 IcBKx5zGwGyRo+Bgz8vbLl1aC/yiAb/s2Jyf7tRvRs42QVgiwVKLU0Hb3x2qv9wR Fml8wQ4JmPmrk516/lYSsODzN6Lw5DKFqqJUS1YaYiDf+UiHx9EjLHDRD6irDia1 7aJs6W/2PpRhZ5buzAXLk97AkqTLNfOMooRNyHTcF0K4NBTLzd27sI698S6S+s50 SPyRHJKKWzR4MBZ03kRU8QrSTQ== -----END CERTIFICATE-----Generated at Fri Mar 20 17:24:01 2026 by rpki-client