$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: OTPEdbvtOCP4LF0H66KPKMR2gW4fcF3W6asF21rPGjs= Subject key identifier: D6:61:8A:6B:D8:25:D4:BF:A6:02:7D:BA:E1:BC:F8:72:ED:83:46:70 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0E00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0DD1 Signing time: Sat 28 Mar 2026 17:51:19 +0000 Manifest this update: Sat 28 Mar 2026 17:51:19 +0000 Manifest next update: Sat 04 Apr 2026 17:51:19 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: 8VBn0fdhDYLReSeyilIFXnDCDy0rO+5HyKf/ZiS+rqQ=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: h/EzL6m4kKSsLLi32KOt8BdjgRY3aECQIU78ROu0rg0=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: gxwmxGG8uXjmf7OQYav7fi+LEJxCykIRMPfMDhbn+Lk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 17:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3584 (0xe00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Mar 28 17:51:19 2026 GMT Not After : Apr 4 17:51:19 2026 GMT Subject: CN=69c81517-8def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cd:18:29:b5:35:d8:ca:5a:ef:08:97:92:71: 13:15:fd:15:ae:49:db:39:c6:de:81:f7:c3:2c:c1: 71:c8:fd:19:84:ce:fe:2d:ad:1f:e9:c7:87:75:08: f7:fc:a0:ae:8f:35:b9:e2:08:25:04:06:a1:65:62: 85:bb:6a:6e:ee:e9:20:ac:7f:cf:74:c8:36:87:9f: 10:f6:dc:2a:3a:27:1f:c4:9a:5a:07:b7:0f:79:27: 87:1d:aa:5f:9f:9b:8d:03:c3:5d:10:58:4c:60:b3: 74:01:a8:73:9c:9e:4e:fe:35:2f:9e:f8:a8:0f:c4: 7c:f2:78:6a:a9:ed:04:ce:f6:14:33:3f:fc:94:d1: 1b:06:cb:c0:04:11:81:89:a5:26:c5:2b:77:aa:0d: 6c:6f:63:24:ce:0f:97:9a:e9:4b:49:4c:a3:98:9b: 0f:5d:ff:a1:a8:88:e7:0f:5e:8a:d4:42:54:e0:39: 10:d7:d5:86:3a:1c:67:6f:4b:65:a4:b5:9a:46:c0: 20:4f:40:77:f5:cb:c4:36:86:cc:f3:5b:1e:2f:0d: ee:5b:92:23:06:08:f7:21:ed:f2:e4:06:06:8a:24: e2:59:25:fc:24:c1:03:d1:01:19:71:bb:63:2d:fd: 86:10:78:8f:6b:99:b9:ce:ff:cd:7d:74:d2:40:eb: 53:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:61:8A:6B:D8:25:D4:BF:A6:02:7D:BA:E1:BC:F8:72:ED:83:46:70 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:2f:d0:67:5a:e4:3f:4b:e2:f1:5b:e1:9f:70:37:c3:23:be: 98:60:c4:3a:f9:73:9a:74:9f:85:90:5e:e5:52:ad:41:07:60: ef:9b:4d:2b:eb:d8:ac:0e:46:a2:c2:78:e9:17:76:13:43:f8: 59:3e:0d:24:d2:5b:c6:a8:d3:67:62:a8:ea:fa:df:32:ef:ba: 37:be:06:35:98:c6:45:1d:51:9f:c8:0e:c7:cd:59:3b:cd:7c: dd:11:59:c1:73:62:02:4e:b9:b8:94:77:b1:23:cc:bc:69:28: b5:44:ac:fb:d7:e9:9e:c3:a4:26:8c:83:a1:e8:64:f3:15:97: 7d:f6:02:fb:57:39:85:b3:b7:40:f1:d1:d0:f8:0b:6b:6f:66: b5:b4:3c:74:aa:b0:f6:07:ba:3d:1f:77:ae:da:5d:58:17:d7: 4b:65:eb:fa:75:27:9f:94:51:62:9c:af:57:05:33:37:17:8c: 09:7f:a9:11:ec:e7:91:4d:b1:c1:a9:de:66:e6:8f:39:e7:24: 7d:bd:6e:74:4c:79:5f:42:2c:25:c4:9f:92:22:5c:c1:f2:74: 51:57:86:46:ac:9e:d2:9e:fb:a3:a1:6c:e7:34:05:24:e5:f6: e7:63:df:e4:b9:b5:87:9c:bd:01:8e:27:90:3b:53:4f:38:2a: 89:79:c5:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwMzI4MTc1MTE5WhcNMjYwNDA0MTc1MTE5WjAYMRYwFAYD VQQDEw02OWM4MTUxNy04ZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc0YKbU12Mpa7wiXknETFf0VrknbOcbegffDLMFxyP0ZhM7+La0f6ceHdQj3 /KCujzW54gglBAahZWKFu2pu7ukgrH/PdMg2h58Q9twqOicfxJpaB7cPeSeHHapf n5uNA8NdEFhMYLN0AahznJ5O/jUvnvioD8R88nhqqe0EzvYUMz/8lNEbBsvABBGB iaUmxSt3qg1sb2Mkzg+XmulLSUyjmJsPXf+hqIjnD16K1EJU4DkQ19WGOhxnb0tl pLWaRsAgT0B39cvENobM81seLw3uW5IjBgj3Ie3y5AYGiiTiWSX8JMED0QEZcbtj Lf2GEHiPa5m5zv/NfXTSQOtTeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNZhimvY JdS/pgJ9uuG8+HLtg0ZwMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYC/QZ1rkP0vi8Vvhn3A3wyO+mGDEOvlzmnSfhZBe5VKtQQdg75tNK+vYrA5G osJ46Rd2E0P4WT4NJNJbxqjTZ2Ko6vrfMu+6N74GNZjGRR1Rn8gOx81ZO8183RFZ wXNiAk65uJR3sSPMvGkotUSs+9fpnsOkJoyDoehk8xWXffYC+1c5hbO3QPHR0PgL a29mtbQ8dKqw9ge6PR93rtpdWBfXS2Xr+nUnn5RRYpyvVwUzNxeMCX+pEeznkU2x waneZuaPOeckfb1udEx5X0IsJcSfkiJcwfJ0UVeGRqye0p77o6Fs5zQFJOX252Pf 5Lm1h5y9AY4nkDtTTzgqiXnFvQ== -----END CERTIFICATE-----Generated at Mon Mar 30 06:45:56 2026 by rpki-client