$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: WKvRkBOACBUqe5aBNUw69r9PaxLgcPUBUhRllAozy5E= Subject key identifier: 9E:C8:11:E4:24:D0:36:0A:96:3C:BA:0A:07:6B:B2:79:4B:B7:E1:E7 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 03D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 03C8 Signing time: Sat 21 Mar 2026 00:06:51 +0000 Manifest this update: Sat 21 Mar 2026 00:06:51 +0000 Manifest next update: Sat 28 Mar 2026 00:06:51 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: TTEn+SHGj7u9cFrG/lMvIkLnhjyUG5oD/b0s/Rkeiio=) 2: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: 6ChvL5bIW0nd/LEwk1GkYjUq9x3wU+NsnqxaoPxGr+c=) 3: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: SAmq2qut5svZXJTr/IN8K0rrvVU2RQUex9B9Y/hGwvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 980 (0x3d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Mar 21 00:06:51 2026 GMT Not After : Mar 28 00:06:51 2026 GMT Subject: CN=69bde11b-4c28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:b2:85:b9:fd:ee:96:23:49:3c:bc:a5:1c: d1:1c:34:c1:b6:c2:4e:0f:fa:ed:06:cc:23:f2:0e: fe:50:1b:4c:97:89:74:fd:29:e3:47:05:68:8d:85: f5:9c:61:80:14:72:50:ab:5e:3b:79:7d:9c:16:97: cf:ad:fc:bd:17:52:10:43:9c:c2:b6:5c:2d:70:79: c3:34:79:64:69:c7:cf:d0:c6:0a:a2:dc:21:1b:36: 9a:0a:51:47:60:ea:e8:b7:ca:47:6b:5b:77:e0:aa: 59:83:0c:8c:8d:95:20:75:e4:d2:12:e5:90:25:ae: 28:07:4f:27:3e:49:d4:2f:30:19:06:ad:42:1f:f9: 07:10:f3:46:72:97:ad:ae:35:54:83:58:13:87:cd: 90:22:88:b4:25:b9:60:d6:a5:c6:f5:5f:93:db:ec: 72:cf:43:89:13:de:1a:3e:69:a8:ca:63:47:f0:da: d3:c8:cd:83:b4:e9:f9:a7:74:08:90:6e:78:f4:ad: 87:1f:db:70:7e:5a:d9:7b:02:a9:03:aa:2f:39:e7: fd:11:fb:f8:1a:02:44:77:7b:7c:97:3b:ec:aa:7a: 62:0b:c3:cd:50:5b:af:71:17:72:02:dd:b7:24:bf: cc:eb:2b:62:42:9c:f4:86:ec:f6:17:6c:9e:c7:bc: 8c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C8:11:E4:24:D0:36:0A:96:3C:BA:0A:07:6B:B2:79:4B:B7:E1:E7 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:5f:12:49:29:e1:c4:da:d0:04:84:e6:30:92:c4:fb:dd:12: 14:10:ff:49:4a:ad:72:dc:74:05:e8:59:06:5c:43:31:42:09: b1:dc:2b:ad:eb:3a:88:bb:f4:4c:78:be:64:ad:68:8b:a7:b0: 9e:18:d6:b4:eb:72:99:6d:64:5d:22:8d:f5:ee:c2:62:65:c2: 8e:42:b2:aa:8d:a0:4a:05:af:42:f6:e4:2a:f7:56:98:5d:d7: 4a:3d:a1:57:1b:4a:8d:88:9f:76:74:75:ea:81:fe:45:7f:ac: af:c7:80:e8:01:20:1b:fc:60:95:96:87:2a:15:09:f2:56:41: 49:a3:d0:4b:26:75:5a:38:06:4c:59:e3:04:dd:0b:9f:65:5d: e6:45:85:d2:08:69:6e:af:76:34:55:73:6d:a7:8b:25:34:bf: c9:82:42:9e:28:05:a9:eb:c3:db:86:f3:c3:f0:10:5e:5a:cd: c4:66:53:ed:96:56:09:77:bd:7b:48:79:4e:eb:ce:d8:d7:a4: cc:84:3a:85:44:d8:dd:ba:05:37:c6:2b:81:64:35:1d:84:6a: a1:6d:85:13:db:c5:e8:4e:69:9c:d7:c0:af:fd:07:7f:be:81: fa:78:67:24:41:64:0d:e6:54:6d:44:7f:95:d3:1f:e8:11:fe: 2c:d0:08:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjYwMzIxMDAwNjUxWhcNMjYwMzI4MDAwNjUxWjAYMRYwFAYD VQQDEw02OWJkZTExYi00YzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskCyhbn97pYjSTy8pRzRHDTBtsJOD/rtBswj8g7+UBtMl4l0/SnjRwVojYX1 nGGAFHJQq147eX2cFpfPrfy9F1IQQ5zCtlwtcHnDNHlkacfP0MYKotwhGzaaClFH YOrot8pHa1t34KpZgwyMjZUgdeTSEuWQJa4oB08nPknULzAZBq1CH/kHEPNGcpet rjVUg1gTh82QIoi0Jblg1qXG9V+T2+xyz0OJE94aPmmoymNH8NrTyM2DtOn5p3QI kG549K2HH9twflrZewKpA6ovOef9Efv4GgJEd3t8lzvsqnpiC8PNUFuvcRdyAt23 JL/M6ytiQpz0huz2F2yex7yMzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ7IEeQk 0DYKljy6CgdrsnlLt+HnMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdF8SSSnhxNrQBITmMJLE+90SFBD/SUqtctx0BehZBlxDMUIJsdwrres6iLv0 THi+ZK1oi6ewnhjWtOtymW1kXSKN9e7CYmXCjkKyqo2gSgWvQvbkKvdWmF3XSj2h VxtKjYifdnR16oH+RX+sr8eA6AEgG/xglZaHKhUJ8lZBSaPQSyZ1WjgGTFnjBN0L n2Vd5kWF0ghpbq92NFVzbaeLJTS/yYJCnigFqevD24bzw/AQXlrNxGZT7ZZWCXe9 e0h5TuvO2NekzIQ6hUTY3boFN8YrgWQ1HYRqoW2FE9vF6E5pnNfAr/0Hf76B+nhn JEFkDeZUbUR/ldMf6BH+LNAISA== -----END CERTIFICATE-----Generated at Sun Mar 22 00:07:40 2026 by rpki-client