$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: fDbJY8evI/S2tfsn38d7MqYFgazO/o8MyziM1wB/feU= Subject key identifier: E5:76:C0:A6:E9:3C:0B:7E:1A:78:9F:9C:5B:9A:61:93:3E:28:9E:0C Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: 0132 Signing time: Sat 21 Mar 2026 04:30:21 +0000 Manifest this update: Sat 21 Mar 2026 04:30:21 +0000 Manifest next update: Sat 28 Mar 2026 04:30:21 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: LrgwndfpA2ieMkn3OhUqD+kotlfIk0OOG7NKAb4/hzE=) 2: 750E873CABF211F0BF8FB00EC4F9AE02.roa (hash: PEAQA7XsorRIuwWsKNbIKqHHMZSV9adPGMNrwws+mao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Mar 21 04:30:21 2026 GMT Not After : Mar 28 04:30:21 2026 GMT Subject: CN=69be1edd-aaf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:de:4a:bb:96:d5:a5:50:23:24:48:67:a2: 52:ff:03:11:dc:fa:2b:50:77:1d:ae:8c:5f:78:4f: 3d:c4:ae:5e:a7:59:92:35:11:e1:02:07:1f:28:4a: f2:54:8d:96:88:6b:b6:91:1e:ca:7e:5f:f3:c4:2d: e6:8b:39:55:35:b0:13:ba:ce:a8:48:af:ee:83:fb: bd:bc:b9:27:86:68:f3:88:ca:a7:f7:02:a6:e3:17: 84:34:c7:b1:67:c8:92:b8:a6:4c:d7:60:bd:f1:24: 28:48:8a:70:ac:c9:5d:cb:f4:e6:02:c6:55:1f:6a: c2:a0:4f:79:32:7b:e9:7d:96:1e:4b:4b:d1:10:cd: ec:96:e7:07:f6:42:87:9e:b0:7d:8f:07:bc:b5:de: b0:14:83:ea:ac:09:71:b6:8b:4d:a6:97:27:91:ea: 00:0d:38:77:3e:d4:e5:9a:6a:7e:2d:75:10:47:49: 00:ec:a2:04:8a:63:d1:42:60:63:33:ff:9f:c7:0c: 54:ff:4f:ce:0d:47:1a:41:16:d9:49:4e:5b:d4:24: b8:37:c1:ca:ae:44:56:0b:bb:19:5b:ab:2b:87:ce: 3c:61:ab:a0:c3:c4:bb:ee:62:50:5c:eb:24:bb:cb: 9f:c0:8f:a3:e7:60:99:c7:12:4e:36:06:4c:c9:68: ae:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:76:C0:A6:E9:3C:0B:7E:1A:78:9F:9C:5B:9A:61:93:3E:28:9E:0C X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:eb:c5:8d:0c:4a:c9:fd:ff:78:cb:ba:44:70:76:ec:fd:58: 48:fd:d3:af:46:90:9c:ce:46:56:47:75:be:a8:a2:dd:f5:c0: 08:4d:10:36:97:a0:06:ba:82:07:84:cc:e9:2b:ac:c8:07:84: 2d:f8:07:32:61:8f:b4:0c:a9:1e:aa:2a:6b:05:2d:0f:fc:9b: 63:a3:fb:3b:e2:3a:cd:8b:fb:78:9e:3d:69:84:80:11:15:01: 4c:61:94:74:29:03:c3:6e:10:67:8e:1c:9b:6c:87:74:22:89: a3:d0:ba:65:60:5f:31:0b:c9:96:67:b7:ec:a1:4c:fc:75:65: 02:16:4c:fe:ec:7b:1f:80:8e:bf:64:03:3d:a0:1b:2d:80:b6: 26:ad:5f:0f:dd:b9:75:c5:86:48:bd:d0:57:3b:d4:55:7d:95: 5a:14:c4:6c:c9:cd:b5:ad:7e:27:26:dc:d0:06:01:9e:22:af: b0:44:a9:35:a1:05:18:ad:a7:95:87:69:92:ca:d7:69:4d:73: 9e:ea:38:6e:e0:46:79:8f:8f:9d:30:60:17:66:03:ef:ff:48: 3b:28:a0:30:60:fc:cb:f2:1a:53:e7:a3:2c:28:8d:01:e7:0a: 2e:a7:04:34:c6:5f:0a:38:f5:c7:e5:a0:a6:84:09:2d:e7:b6: 96:c5:a6:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjYwMzIxMDQzMDIxWhcNMjYwMzI4MDQzMDIxWjAYMRYwFAYD VQQDEw02OWJlMWVkZC1hYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGreSruW1aVQIyRIZ6JS/wMR3PorUHcdroxfeE89xK5ep1mSNRHhAgcfKEry VI2WiGu2kR7Kfl/zxC3mizlVNbATus6oSK/ug/u9vLknhmjziMqn9wKm4xeENMex Z8iSuKZM12C98SQoSIpwrMldy/TmAsZVH2rCoE95MnvpfZYeS0vREM3slucH9kKH nrB9jwe8td6wFIPqrAlxtotNppcnkeoADTh3PtTlmmp+LXUQR0kA7KIEimPRQmBj M/+fxwxU/0/ODUcaQRbZSU5b1CS4N8HKrkRWC7sZW6srh848Yaugw8S77mJQXOsk u8ufwI+j52CZxxJONgZMyWiuRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOV2wKbp PAt+GnifnFuaYZM+KJ4MMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt+vFjQxKyf3/eMu6RHB27P1YSP3Tr0aQnM5GVkd1vqii3fXACE0QNpegBrqC B4TM6SusyAeELfgHMmGPtAypHqoqawUtD/ybY6P7O+I6zYv7eJ49aYSAERUBTGGU dCkDw24QZ44cm2yHdCKJo9C6ZWBfMQvJlme37KFM/HVlAhZM/ux7H4COv2QDPaAb LYC2Jq1fD925dcWGSL3QVzvUVX2VWhTEbMnNta1+Jybc0AYBniKvsESpNaEFGK2n lYdpksrXaU1znuo4buBGeY+PnTBgF2YD7/9IOyigMGD8y/IaU+ejLCiNAecKLqcE NMZfCjj1x+WgpoQJLee2lsWmqQ== -----END CERTIFICATE-----Generated at Sat Mar 21 23:47:17 2026 by rpki-client