$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft File: eFfRGlHcrpwuCIahDOBvVfW4QwA.mft (raw, json) Hash identifier: 3Z2cCLsoRCSAZG1DCsV2Bc02hOaAkWBAaOZE/9qU6to= Subject key identifier: BB:D3:69:9C:DA:F3:AC:B5:60:16:F6:F3:DE:E0:9F:1C:67:5B:16:76 Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft Manifest number: 064A Signing time: Sat 28 Mar 2026 22:35:17 +0000 Manifest this update: Sat 28 Mar 2026 22:35:17 +0000 Manifest next update: Sat 04 Apr 2026 22:35:17 +0000 Files and hashes: 1: eFfRGlHcrpwuCIahDOBvVfW4QwA.crl (hash: zN77XEq03ltcZJdHXhuSzzmY9xdxKjDNHHi/SmeRO8g=) 2: 324C60ACDD2211F0BB0B52AC636F56BC.roa (hash: se6AtIzQ1zk7CsT2kIdg+P2jONRQ4XENeyUhZkaPumM=) 3: 18981398329B11EDB9F09862C4F9AE02.roa (hash: kY1YTIxA2Ehr3lWMQGd50rPN8ZZUD4wpWeTbdzq8xgU=) 4: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (hash: Q+2DHykSFmBY3CD0496mIjmhaZXue856I6zGxnb489c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 22:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A, serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: Mar 28 22:35:17 2026 GMT Not After : Apr 4 22:35:17 2026 GMT Subject: CN=69c857a5-1ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d5:0a:74:81:32:4d:6c:a7:b5:70:e6:c0:94: 72:97:f4:39:57:e0:db:e3:2f:15:3b:8d:3a:b0:85: 9d:2d:10:d2:1e:3e:aa:5b:1a:54:78:99:a7:2e:6b: 24:ef:85:f2:8c:20:e8:36:a3:ff:9c:0c:9c:e8:8e: 58:cb:5e:7c:e8:8f:99:0a:8e:a8:a4:5d:c3:9e:3d: 37:41:14:4f:cb:44:fd:9a:6f:ca:cb:f2:01:a0:71: 6c:e5:5f:39:29:95:23:fc:22:26:b1:70:3a:a5:f7: f6:f6:9b:da:4d:3b:81:82:06:d4:60:bc:0a:6e:38: d0:55:c7:db:b2:ea:e9:aa:86:37:a3:f1:0f:9c:e9: 0a:5a:ea:43:08:6b:da:3c:d9:75:2d:77:93:e0:a5: 70:12:dd:a1:40:88:ec:2a:02:ae:e0:7f:94:12:e5: 0a:af:a8:ef:7c:ff:e2:0f:af:ae:8d:9d:27:08:d4: 61:76:38:a8:5b:30:ac:63:25:6a:c8:01:8a:d1:6f: 3e:d2:24:79:28:b7:f9:81:72:ae:9a:48:ea:54:ca: 7f:31:88:70:26:9e:bf:38:31:5f:9a:fb:86:30:a3: 14:3f:f5:b9:fb:67:1d:5a:45:27:26:98:85:32:9f: 16:5e:1e:46:41:04:d8:58:5f:03:f2:22:72:16:e1: 4e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D3:69:9C:DA:F3:AC:B5:60:16:F6:F3:DE:E0:9F:1C:67:5B:16:76 X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:cb:f3:6c:d7:e6:7a:19:78:55:8e:91:31:2f:f3:24:8d:ff: d4:41:19:f9:24:85:19:6b:91:47:a3:8f:e8:69:6f:eb:1f:b4: 81:ce:4a:79:39:5e:97:52:5e:48:8f:8b:7f:66:ff:42:e5:71: e2:67:92:ac:d5:98:97:db:dd:5d:1b:0f:2a:d0:ba:17:61:2c: cf:7a:d0:eb:f9:15:50:7b:84:39:3c:69:30:76:84:b4:e7:b7: 48:44:2c:6a:7c:cb:7f:64:49:0c:57:af:6a:77:02:11:06:ef: cd:59:bf:2a:7b:9b:31:b3:e3:ce:ca:a5:1e:98:86:93:1c:24: ce:86:ac:af:0b:f0:20:df:0c:70:9c:cd:51:2e:0e:18:2f:c6: 6e:8e:3b:f1:89:f5:4b:e9:f2:d7:5f:ec:e6:4a:0d:1a:34:21: da:0c:75:fb:92:f9:53:c8:3c:9e:0b:e6:d9:c1:ea:2d:cd:92: 06:dc:0a:d5:c6:56:10:4e:d9:47:d7:46:7d:01:6b:be:74:26: bf:ae:e8:67:91:17:9a:2e:6a:1c:95:17:c5:ac:0e:dd:e6:60: 2a:e8:29:76:98:ae:67:54:cc:39:ab:68:02:79:5f:e9:d0:be: 36:87:7f:1b:47:e1:9f:0a:be:84:20:92:43:ac:af:f6:63:99: 9d:93:bc:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjYwMzI4MjIzNTE3WhcNMjYwNDA0MjIzNTE3WjAYMRYwFAYD VQQDEw02OWM4NTdhNS0xZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtUKdIEyTWyntXDmwJRyl/Q5V+Db4y8VO406sIWdLRDSHj6qWxpUeJmnLmsk 74XyjCDoNqP/nAyc6I5Yy1586I+ZCo6opF3Dnj03QRRPy0T9mm/Ky/IBoHFs5V85 KZUj/CImsXA6pff29pvaTTuBggbUYLwKbjjQVcfbsurpqoY3o/EPnOkKWupDCGva PNl1LXeT4KVwEt2hQIjsKgKu4H+UEuUKr6jvfP/iD6+ujZ0nCNRhdjioWzCsYyVq yAGK0W8+0iR5KLf5gXKumkjqVMp/MYhwJp6/ODFfmvuGMKMUP/W5+2cdWkUnJpiF Mp8WXh5GQQTYWF8D8iJyFuFOxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLvTaZza 86y1YBb2897gnxxnWxZ2MB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUQ4QS9CQTJGMUI5QUNBRUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jw d3VDSWFoRE9CdlZmVzRRd0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc8vzbNfmehl4VY6RMS/zJI3/1EEZ+SSFGWuRR6OP6Glv6x+0gc5KeTlel1Je SI+Lf2b/QuVx4meSrNWYl9vdXRsPKtC6F2Esz3rQ6/kVUHuEOTxpMHaEtOe3SEQs anzLf2RJDFevancCEQbvzVm/KnubMbPjzsqlHpiGkxwkzoasrwvwIN8McJzNUS4O GC/Gbo478Yn1S+ny11/s5koNGjQh2gx1+5L5U8g8ngvm2cHqLc2SBtwK1cZWEE7Z R9dGfQFrvnQmv67oZ5EXmi5qHJUXxawO3eZgKugpdpiuZ1TMOatoAnlf6dC+Nod/ G0fhnwq+hCCSQ6yv9mOZnZO8PA== -----END CERTIFICATE-----Generated at Sun Mar 29 23:41:52 2026 by rpki-client