$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft File: AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft (raw, json) Hash identifier: UgsXQrOLWi+u53BxyXZqnemF5vKIxpqqTvPeHuX9DIU= Subject key identifier: 06:56:F4:5E:F1:B2:17:70:8B:C1:F7:1E:1E:19:59:70:66:D7:C2:10 Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft Manifest number: D7 Signing time: Sat 21 Mar 2026 05:38:52 +0000 Manifest this update: Sat 21 Mar 2026 05:38:52 +0000 Manifest next update: Sat 28 Mar 2026 05:38:52 +0000 Files and hashes: 1: AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl (hash: 71N1LpwY3+mp5T60CYLrqjPQ+XLeeciLMRnxsDwzalY=) 2: 7970EAA266DA11F084325D42C4F9AE02.roa (hash: h1LWEJUQvaATUOdZkytyIfaI4klq2FxoFoCocLW2Bpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 05:38:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Mar 21 05:38:52 2026 GMT Not After : Mar 28 05:38:52 2026 GMT Subject: CN=69be2eec-280d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dd:2c:2d:1a:8a:61:81:7f:ef:5f:07:81:80: 31:22:e0:a4:9b:b7:26:e4:91:60:53:93:d1:b8:9f: e1:ca:67:4e:8d:5e:36:5c:d9:00:a7:aa:42:84:ce: 2d:b8:19:f0:60:a7:69:5b:d1:27:5f:5c:9e:4a:90: 34:a1:5c:d5:46:29:c1:d5:18:f4:58:90:0a:ee:b0: 66:20:9b:3f:55:d1:00:7f:cd:b7:a5:0f:1c:04:5a: 57:92:98:9d:43:00:47:58:e0:ce:3e:5f:0d:0c:28: b3:90:94:06:56:1b:0c:95:a5:7a:1d:4f:58:f5:8f: 4a:57:f6:37:25:48:fc:74:c5:2a:b7:cf:01:7a:c1: 3b:a6:cd:43:eb:f7:c4:c1:d1:f7:bb:9f:7c:df:a4: 4e:d6:55:80:17:56:32:97:ae:0c:e6:71:a6:30:aa: 6f:06:21:9e:0b:8e:7b:ce:57:dc:fd:56:3a:7d:22: 8e:81:22:78:17:18:8c:c7:f2:f5:f4:1c:55:4a:89: 02:38:f0:5a:6b:58:92:d3:d3:de:a6:36:85:29:6f: 0a:b7:e7:75:17:c0:4e:a1:f3:d4:65:ab:5b:53:92: 2f:9d:c0:2f:d7:25:02:a3:07:ec:5a:c8:3b:41:ce: f8:3f:d0:df:fc:86:4c:61:ce:3e:51:70:66:e1:c5: e9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:56:F4:5E:F1:B2:17:70:8B:C1:F7:1E:1E:19:59:70:66:D7:C2:10 X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:5c:7f:b6:32:b2:d1:d2:8c:67:89:57:66:9e:1e:21:7a:e4: 2a:85:71:88:90:0e:7f:03:b7:47:6c:f2:26:99:e6:d6:c8:27: 2e:4f:31:d7:60:19:74:c9:06:22:85:bc:f5:cb:41:51:0d:ef: 99:bb:c5:7f:8a:14:a6:00:26:96:93:bf:ba:88:4d:4e:5b:27: 7b:71:ba:32:9b:63:7f:44:72:1e:89:38:56:96:57:4a:c4:ab: 84:57:a0:7a:f2:6b:85:fe:c0:20:93:44:4e:d5:00:da:e1:59: 02:50:dc:7f:74:d2:f7:84:c9:02:9d:24:4b:78:d6:88:e3:d7: 2a:01:86:98:b0:b7:b9:59:cf:3b:15:8c:1c:e8:48:e0:51:84: 12:2d:06:7a:19:08:52:13:08:b4:fd:65:dc:1b:d3:c0:28:57: b7:3f:7a:9c:7d:bc:a3:c4:88:49:8f:d9:e9:c5:a7:1a:bd:6e: ab:0c:5a:91:e2:e1:8f:a7:cf:f2:09:08:aa:22:1e:e8:3f:2e: 7f:83:d4:79:2e:db:c4:6d:4b:72:48:2e:34:de:14:88:ad:2b: b2:d5:da:8f:99:f0:f5:94:c1:71:71:59:57:7f:5e:0f:e3:bb: ed:38:54:39:6a:36:12:5d:b9:c8:c5:1a:fd:a1:8b:0a:93:8d: ba:62:3e:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA5RUExMTAvBgNVBAUTKDAwRkQzMUZEMDZCNDIwNEMzRERDQjYzNTA3MTg5NTMz Nzc4Q0NDRjgwHhcNMjYwMzIxMDUzODUyWhcNMjYwMzI4MDUzODUyWjAYMRYwFAYD VQQDEw02OWJlMmVlYy0yODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA190sLRqKYYF/718HgYAxIuCkm7cm5JFgU5PRuJ/hymdOjV42XNkAp6pChM4t uBnwYKdpW9EnX1yeSpA0oVzVRinB1Rj0WJAK7rBmIJs/VdEAf823pQ8cBFpXkpid QwBHWODOPl8NDCizkJQGVhsMlaV6HU9Y9Y9KV/Y3JUj8dMUqt88BesE7ps1D6/fE wdH3u59836RO1lWAF1Yyl64M5nGmMKpvBiGeC457zlfc/VY6fSKOgSJ4FxiMx/L1 9BxVSokCOPBaa1iS09PepjaFKW8Kt+d1F8BOofPUZatbU5IvncAv1yUCowfsWsg7 Qc74P9Df/IZMYc4+UXBm4cXpiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAZW9F7x shdwi8H3Hh4ZWXBm18IQMB8GA1UdIwQYMBaAFAD9Mf0GtCBMPdy2NQcYlTN3jMz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDlFQS84QzU5MTJGRUUx M0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElFdzkzTFkxQnhpVk0zZU16 UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDlFQS84QzU5MTJGRUUxM0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElF dzkzTFkxQnhpVk0zZU16UGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnFx/tjKy0dKMZ4lXZp4eIXrkKoVxiJAOfwO3R2zyJpnm1sgnLk8x12AZdMkG IoW89ctBUQ3vmbvFf4oUpgAmlpO/uohNTlsne3G6Mptjf0RyHok4VpZXSsSrhFeg evJrhf7AIJNETtUA2uFZAlDcf3TS94TJAp0kS3jWiOPXKgGGmLC3uVnPOxWMHOhI 4FGEEi0GehkIUhMItP1l3BvTwChXtz96nH28o8SISY/Z6cWnGr1uqwxakeLhj6fP 8gkIqiIe6D8uf4PUeS7bxG1LckguNN4UiK0rstXaj5nw9ZTBcXFZV39eD+O77ThU OWo2El25yMUa/aGLCpONumI+5w== -----END CERTIFICATE-----Generated at Sun Mar 22 13:59:43 2026 by rpki-client