$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft File: CuIi7F4XpuYytVnUnFse8zLaQ8s.mft (raw, json) Hash identifier: wRQR7rS/6cfIYFbqWCtCMRHSUGFB6o1ITbQ7jE4Kq/c= Subject key identifier: 32:2F:F2:10:B1:08:E5:E9:BC:5C:D2:EF:4B:00:34:DC:47:BD:89:2B Authority key identifier: 0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB Certificate issuer: /CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Certificate serial: 079E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft Manifest number: 0770 Signing time: Fri 20 Mar 2026 21:19:59 +0000 Manifest this update: Fri 20 Mar 2026 21:19:58 +0000 Manifest next update: Fri 27 Mar 2026 21:19:58 +0000 Files and hashes: 1: CuIi7F4XpuYytVnUnFse8zLaQ8s.crl (hash: qyLQxPG4MG0EnRTsf5GyMwDNxdn6C7V4SQqtWrX9xX0=) 2: DA45147EB35E11EE8EED0E37C4F9AE02.roa (hash: Bluwv17U0E3bQxLMX6DjEXL7fkRDMsWwu/v38ekvil0=) 3: F6AFB162F66B11F08367D08E6F6F56BC.roa (hash: rB+Tmv1oKzF3mo1fo+ketSQWRb1QMSjxzFBO+4UsFGI=) 4: F097281C169A11EF8927EC2DC4F9AE02.roa (hash: KirEUGjAdAYwlJ1vX/xexGJU4YLpCT+izGcMYNz9uNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C04, serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Validity Not Before: Mar 20 21:19:58 2026 GMT Not After : Mar 27 21:19:58 2026 GMT Subject: CN=69bdb9ff-970e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:06:41:e2:a6:1a:6e:35:28:61:ff:7a:b3: fe:fd:56:be:5f:5d:8b:11:ea:25:f7:00:ff:ec:f1: 31:41:70:07:1a:e1:3a:05:cf:fd:b0:65:52:a0:ff: 56:fd:b7:80:7f:09:cd:eb:20:cc:1e:06:83:e0:79: 65:54:7b:4d:2a:98:75:05:33:86:49:17:c8:9c:0b: 95:7f:23:a9:ef:14:1d:73:20:aa:40:40:ec:7a:9d: 76:8d:cf:b0:fa:d3:17:46:a9:a3:af:b7:95:26:c2: 02:00:0a:f6:44:a9:de:9a:6c:a9:75:27:2f:6f:42: e6:37:0c:9b:4b:b4:bb:9d:41:58:24:14:ef:cc:96: 18:a5:67:8b:e9:8f:27:dc:b4:77:4d:fa:f2:ef:72: b4:03:c4:4b:f7:71:38:3d:68:f9:45:37:27:07:05: 18:e2:7f:11:31:9b:7c:92:58:b9:e7:65:be:92:f0: 3d:21:4d:74:4c:ed:9d:2a:3b:78:67:d5:c8:77:00: 89:9b:12:f6:8c:ce:9a:62:78:73:9f:c5:1a:13:a9: 8b:31:fb:99:63:74:46:39:48:9d:b9:73:52:a6:75: 25:ff:31:60:42:cb:44:f1:53:15:ac:4e:d0:f4:68: 0c:17:ff:22:1e:09:31:72:10:30:cc:09:a6:30:e1: f7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2F:F2:10:B1:08:E5:E9:BC:5C:D2:EF:4B:00:34:DC:47:BD:89:2B X509v3 Authority Key Identifier: keyid:0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:fb:a3:6d:d1:f8:ca:f7:85:63:db:5f:92:59:1e:c7:5e:8d: 05:ff:b0:33:68:d1:be:38:2c:32:38:20:7c:6f:6b:93:98:ab: 20:6d:09:e8:82:c5:3e:bd:d2:98:19:61:db:a5:b1:a3:ff:eb: 62:16:78:7f:3b:d3:5f:79:92:ca:97:8d:af:a6:c5:06:a5:b4: 6f:a6:37:31:ab:c3:cd:ec:34:e5:fb:7d:98:24:f0:b0:1e:c1: 9b:ba:5c:32:36:3a:9b:88:80:98:ce:63:37:4d:17:d5:c7:1a: d3:66:fb:62:86:43:9a:5e:8d:dc:e4:1e:f1:a1:81:32:48:83: de:f6:59:94:21:cb:f8:23:3b:95:96:1f:1b:87:bd:67:35:5d: 85:e7:e9:9d:1a:78:64:0b:08:9b:b7:39:cf:af:ff:b0:9c:49: 6e:8d:a4:c6:26:ce:f1:c7:cf:86:e9:77:73:f2:ec:c1:99:2f: 39:85:1f:c0:94:45:14:1b:4d:7b:6b:d9:7c:25:b8:40:7d:1e: 24:ef:c9:8c:cf:bd:01:5a:38:07:02:b9:97:66:7a:4d:ef:d3: 1e:e5:18:7b:4a:b7:14:06:a9:61:50:4e:9e:1f:d7:09:a3:6f: 10:9a:1e:44:3f:32:92:81:d3:fc:0e:ae:5d:7e:8a:60:da:c4: 53:4f:e1:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDMDQxMTAvBgNVBAUTKDBBRTIyMkVDNUUxN0E2RTYzMkI1NTlENDlDNUIxRUYz MzJEQTQzQ0IwHhcNMjYwMzIwMjExOTU4WhcNMjYwMzI3MjExOTU4WjAYMRYwFAYD VQQDEw02OWJkYjlmZi05NzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSQGQeKmGm41KGH/erP+/Va+X12LEeol9wD/7PExQXAHGuE6Bc/9sGVSoP9W /beAfwnN6yDMHgaD4HllVHtNKph1BTOGSRfInAuVfyOp7xQdcyCqQEDsep12jc+w +tMXRqmjr7eVJsICAAr2RKnemmypdScvb0LmNwybS7S7nUFYJBTvzJYYpWeL6Y8n 3LR3Tfry73K0A8RL93E4PWj5RTcnBwUY4n8RMZt8kli552W+kvA9IU10TO2dKjt4 Z9XIdwCJmxL2jM6aYnhzn8UaE6mLMfuZY3RGOUiduXNSpnUl/zFgQstE8VMVrE7Q 9GgMF/8iHgkxchAwzAmmMOH3pQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDIv8hCx COXpvFzS70sANNxHvYkrMB8GA1UdIwQYMBaAFAriIuxeF6bmMrVZ1JxbHvMy2kPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0MwNC9BMERCMzU1MjVG QjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1WXl0Vm5VbkZzZTh6TGFR OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N1SWk3RjRYcHVZeXRWblVuRnNlOHpMYVE4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0MwNC9BMERCMzU1MjVGQjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1 WXl0Vm5VbkZzZTh6TGFROHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmPujbdH4yveFY9tfklkex16NBf+wM2jRvjgsMjggfG9rk5irIG0J6ILFPr3S mBlh26Wxo//rYhZ4fzvTX3mSypeNr6bFBqW0b6Y3MavDzew05ft9mCTwsB7Bm7pc MjY6m4iAmM5jN00X1cca02b7YoZDml6N3OQe8aGBMkiD3vZZlCHL+CM7lZYfG4e9 ZzVdhefpnRp4ZAsIm7c5z6//sJxJbo2kxibO8cfPhul3c/LswZkvOYUfwJRFFBtN e2vZfCW4QH0eJO/JjM+9AVo4BwK5l2Z6Te/THuUYe0q3FAapYVBOnh/XCaNvEJoe RD8ykoHT/A6uXX6KYNrEU0/h+g== -----END CERTIFICATE-----Generated at Sat Mar 21 18:50:53 2026 by rpki-client