$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: cY8/3/N4t6QXUwXEiAUSDGDs5SdCsuzdKUyLcddcGcQ= Subject key identifier: 1E:73:33:C7:20:FF:41:84:70:32:D3:B8:F3:A0:9A:58:87:7A:8B:9C Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 08CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 08C2 Signing time: Wed 18 Mar 2026 20:07:25 +0000 Manifest this update: Wed 18 Mar 2026 20:07:24 +0000 Manifest next update: Wed 25 Mar 2026 20:07:24 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: XouWV49xQYM6ZUNg00bfnfwDL0rv/7cFqJX4q+W/9K4=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: WjGg/ZejwvG9Siea7F263gfGtLWehGPgmKPNRYmD4sA=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: 2893HNR31GoP/uh0ScggOWfiNSgjFGwQgJxlawN3n4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 20:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2254 (0x8ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Mar 18 20:07:24 2026 GMT Not After : Mar 25 20:07:24 2026 GMT Subject: CN=69bb05fd-febd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9a:0e:a9:0b:be:e3:9f:ad:63:f5:29:22:98: 94:c7:c0:ca:e1:7b:11:15:98:fc:78:e4:65:b1:bc: 3a:3a:36:6e:da:bb:0b:c0:2f:30:2e:40:fa:b4:53: e7:3a:7c:82:9d:a5:e6:8c:65:2f:c9:9b:7e:b4:b4: 74:d1:69:62:02:8b:fd:5e:f9:a5:43:8e:20:b2:3d: 3b:12:a3:65:15:c3:44:fb:c9:33:9f:8b:21:b4:70: ac:dd:17:fd:e6:08:5f:60:78:8f:e1:9d:70:e0:51: 8a:30:fd:4f:d7:4d:54:24:34:77:52:15:e4:46:1e: ef:ef:23:1a:69:55:cb:27:1a:ef:16:84:4e:43:0d: dc:2a:ce:08:2c:fd:87:a4:27:15:79:17:f4:d0:85: e0:d1:00:f0:03:8f:8e:a9:66:20:ca:31:52:d4:21: 55:62:89:0c:ac:ca:20:09:9b:48:df:65:36:20:33: 06:8d:ff:74:26:41:68:e8:59:8d:bf:68:aa:0e:15: 81:7a:21:72:39:b6:ec:87:ac:fb:9a:95:7f:b6:27: 2a:d4:78:4f:20:98:f4:cb:4e:db:31:87:58:9c:91: d0:c3:08:67:a7:52:e6:6d:34:ca:8c:77:bb:67:4a: 76:c5:64:b2:e8:a2:96:3e:6d:b1:d2:29:e0:2d:32: f8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:73:33:C7:20:FF:41:84:70:32:D3:B8:F3:A0:9A:58:87:7A:8B:9C X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:31:c8:f8:b4:7b:e0:91:7f:c4:ab:4a:27:da:e2:a6:02:cd: 84:d0:07:a6:0b:97:95:98:3f:b2:7e:0f:0c:f5:63:d8:c5:98: be:13:e3:29:09:ae:a6:8f:a1:65:ca:0d:9a:3c:a1:3b:7d:a2: c7:ed:97:58:8c:d2:98:03:1d:62:18:42:4c:0d:e7:de:ee:d9: df:03:34:7f:1d:16:89:c4:a8:70:ee:7c:33:71:6c:9f:5c:f6: 0f:56:78:6e:12:2e:06:b2:80:85:be:41:64:cd:92:30:f5:f1: e6:af:36:a2:07:92:3c:54:84:85:13:a0:8b:de:65:0e:9e:3e: a5:a2:c4:07:2e:7f:1e:16:64:b2:75:09:58:20:80:e9:23:8f: 40:e7:6e:70:01:3a:7e:15:de:3a:67:59:04:fe:20:92:05:6b: 65:bb:d9:4d:62:02:13:57:b0:27:18:ff:22:9e:20:a3:0a:4b: 83:53:ab:f8:aa:2d:b2:81:99:f1:b7:b6:fe:c5:db:6d:d3:35: 49:6b:f4:b5:3e:cf:d2:ad:8d:13:d1:a9:a2:28:ce:2c:7b:a9: 19:7c:51:a7:3e:21:4c:b1:ce:04:05:87:0a:08:a4:3c:cf:96: cd:57:7c:45:50:b6:55:b1:e8:ff:af:f8:f1:a1:e5:4c:02:24: e8:15:20:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjYwMzE4MjAwNzI0WhcNMjYwMzI1MjAwNzI0WjAYMRYwFAYD VQQDEw02OWJiMDVmZC1mZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJoOqQu+45+tY/UpIpiUx8DK4XsRFZj8eORlsbw6OjZu2rsLwC8wLkD6tFPn OnyCnaXmjGUvyZt+tLR00WliAov9XvmlQ44gsj07EqNlFcNE+8kzn4shtHCs3Rf9 5ghfYHiP4Z1w4FGKMP1P101UJDR3UhXkRh7v7yMaaVXLJxrvFoROQw3cKs4ILP2H pCcVeRf00IXg0QDwA4+OqWYgyjFS1CFVYokMrMogCZtI32U2IDMGjf90JkFo6FmN v2iqDhWBeiFyObbsh6z7mpV/ticq1HhPIJj0y07bMYdYnJHQwwhnp1LmbTTKjHe7 Z0p2xWSy6KKWPm2x0ingLTL4nQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB5zM8cg /0GEcDLTuPOgmliHeoucMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARTHI+LR74JF/xKtKJ9ripgLNhNAHpguXlZg/sn4PDPVj2MWYvhPjKQmupo+h ZcoNmjyhO32ix+2XWIzSmAMdYhhCTA3n3u7Z3wM0fx0WicSocO58M3Fsn1z2D1Z4 bhIuBrKAhb5BZM2SMPXx5q82ogeSPFSEhROgi95lDp4+paLEBy5/HhZksnUJWCCA 6SOPQOducAE6fhXeOmdZBP4gkgVrZbvZTWICE1ewJxj/Ip4gowpLg1Or+KotsoGZ 8be2/sXbbdM1SWv0tT7P0q2NE9GpoijOLHupGXxRpz4hTLHOBAWHCgikPM+WzVd8 RVC2VbHo/6/48aHlTAIk6BUgXA== -----END CERTIFICATE-----Generated at Thu Mar 19 17:42:08 2026 by rpki-client