$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: ATR2n9r0xKU0sWrWdltN2dGQNnEk2D+ne0wTMNgDDrk= Subject key identifier: F6:A6:3D:4F:88:64:FA:1A:7E:D5:98:0E:49:A5:3E:F9:57:C9:8D:24 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 03DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 03CB Signing time: Sat 21 Mar 2026 00:08:19 +0000 Manifest this update: Sat 21 Mar 2026 00:08:19 +0000 Manifest next update: Sat 28 Mar 2026 00:08:19 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: QbjU7Y4PIaJZL74f0lTKvcNTui/D6MOw7tqAg8qzlqk=) 2: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: JU2R1iWegqyOEY3wh1qfZrk7NhgHNN+31mJpziiTlZc=) 3: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: wKVvfJXDJ+GEw46MkJTvDGmaoIKWVTsB347F+vgLfNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 00:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 989 (0x3dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Mar 21 00:08:19 2026 GMT Not After : Mar 28 00:08:19 2026 GMT Subject: CN=69bde173-04aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5a:11:11:03:97:db:79:82:85:22:14:e6:60: cf:c7:89:ea:79:2b:e5:42:14:d6:d0:b4:c9:12:f7: 72:cc:5b:4f:5d:37:3e:95:a4:ab:93:ba:c9:57:26: b3:71:c9:b1:18:50:12:b1:fc:3d:46:bf:18:c7:46: db:bf:e8:68:47:cd:0f:23:ac:39:2e:12:5e:b6:ab: 00:44:88:0f:6c:d8:ce:31:1c:1a:fb:9a:5b:bf:3c: 2b:dc:d9:2c:73:88:64:72:3e:5e:63:c4:ae:a3:66: 70:07:1a:c9:4a:11:ef:c8:40:6e:88:9e:d0:06:2a: 4d:57:63:d5:5c:76:2a:f9:39:d5:32:fd:97:28:09: 59:5e:5d:ba:cb:29:d7:3f:9b:29:45:3a:28:3e:12: 25:d3:72:b0:90:b1:bc:96:5c:e3:b1:dd:73:82:0b: 2d:3a:6d:2a:32:c3:fd:b3:38:25:6c:bb:e3:2f:67: 2e:d2:db:74:ca:84:4a:ab:40:b3:f9:8a:a2:e5:f3: 29:11:8c:d9:f3:ae:67:13:c0:01:c4:ee:0c:d7:bb: 42:92:15:22:b0:b5:aa:84:e9:56:f7:1b:a1:95:45: 00:4e:b8:7d:c5:58:bc:a1:b5:79:40:f7:1d:9e:43: cd:e7:97:44:be:df:53:08:71:d8:1e:cb:4d:c9:84: 93:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A6:3D:4F:88:64:FA:1A:7E:D5:98:0E:49:A5:3E:F9:57:C9:8D:24 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:71:a1:ec:10:9c:f0:0a:87:40:85:30:15:d9:f0:0a:13:13: 4b:12:71:fd:38:09:75:06:87:a6:0e:52:7d:97:96:43:55:0c: 9e:e0:dd:5f:9a:7c:cf:f8:36:71:af:bb:de:62:98:24:8c:e5: d4:c4:79:da:e5:28:52:3e:48:76:7a:af:7a:c8:1e:f6:79:fc: aa:cf:a9:5e:0b:4e:ef:0c:26:ef:8c:61:36:70:5f:be:5c:3f: d0:09:ae:db:dd:2f:11:3a:7d:f7:2e:7c:65:4c:0b:be:3f:7e: 0a:5a:7e:97:1c:5c:3a:81:c7:75:07:f0:35:e7:f7:cc:d7:88: 3f:ea:85:c7:b5:3d:7b:c3:82:c6:0c:0a:bb:ea:a8:49:e8:fd: 1f:ac:d6:43:27:11:ae:b8:55:59:36:a1:07:a2:df:69:ad:05: 5a:a5:fa:e9:9a:39:f7:b3:22:e5:ac:29:ea:44:3b:77:68:3b: a8:9e:9a:8a:11:ec:ce:28:f4:3a:96:5f:7b:0d:04:c3:e6:ac: bd:9f:a8:5a:ae:96:b6:23:c6:77:c5:4c:7c:99:2a:8a:8b:26: 31:d5:da:9c:7b:72:2c:f8:9e:01:a2:50:1b:dc:c3:63:e0:d1: 31:f7:62:f9:9b:86:73:71:98:a8:f7:8d:75:f5:41:00:69:3f: 6b:cb:d6:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjYwMzIxMDAwODE5WhcNMjYwMzI4MDAwODE5WjAYMRYwFAYD VQQDEw02OWJkZTE3My0wNGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArloREQOX23mChSIU5mDPx4nqeSvlQhTW0LTJEvdyzFtPXTc+laSrk7rJVyaz ccmxGFASsfw9Rr8Yx0bbv+hoR80PI6w5LhJetqsARIgPbNjOMRwa+5pbvzwr3Nks c4hkcj5eY8Suo2ZwBxrJShHvyEBuiJ7QBipNV2PVXHYq+TnVMv2XKAlZXl26yynX P5spRTooPhIl03KwkLG8llzjsd1zggstOm0qMsP9szglbLvjL2cu0tt0yoRKq0Cz +Yqi5fMpEYzZ865nE8ABxO4M17tCkhUisLWqhOlW9xuhlUUATrh9xVi8obV5QPcd nkPN55dEvt9TCHHYHstNyYSTDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPamPU+I ZPoaftWYDkmlPvlXyY0kMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWHGh7BCc8AqHQIUwFdnwChMTSxJx/TgJdQaHpg5SfZeWQ1UMnuDdX5p8z/g2 ca+73mKYJIzl1MR52uUoUj5Idnqvesge9nn8qs+pXgtO7wwm74xhNnBfvlw/0Amu 290vETp99y58ZUwLvj9+Clp+lxxcOoHHdQfwNef3zNeIP+qFx7U9e8OCxgwKu+qo Sej9H6zWQycRrrhVWTahB6Lfaa0FWqX66Zo597Mi5awp6kQ7d2g7qJ6aihHszij0 OpZfew0Ew+asvZ+oWq6WtiPGd8VMfJkqiosmMdXanHtyLPieAaJQG9zDY+DRMfdi +ZuGc3GYqPeNdfVBAGk/a8vWLA== -----END CERTIFICATE-----Generated at Sun Mar 22 00:09:07 2026 by rpki-client