$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: gKSxFxavZ1klWYXUsonoYS5gdmXe8RiOMk2qgp3m5JQ= Subject key identifier: 76:EE:F5:1B:34:52:50:A9:C0:BB:B8:0C:99:60:4E:E9:69:F7:99:DD Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 361D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 358F Signing time: Wed 18 Mar 2026 14:16:22 +0000 Manifest this update: Wed 18 Mar 2026 14:16:21 +0000 Manifest next update: Wed 25 Mar 2026 14:16:21 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: hIr8QV9Ua2L5C0VwZVx0fsAcEBNav2rgyMpXPivxebw=) 2: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: 13OCzHbeP84SVts3fLFM8ezvX9wYG+xk9oztS8IQ/oo=) 3: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: 0TLVORl6wSPXD4zN0o2eNo/c7mH0Sa6LVUUSVrU3gGs=) 4: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: Zl7CL1hILK98z1K1OQnmQBFBX3AF5k+q1EWP8nnTBiE=) 5: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: 46CC9LcyzFfBkRedCj8zONrcqyJIMjuxJScGt32qKqY=) 6: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: US7l9IRW6KnysaR3hgfIHQKP61jxpaRsUq+BQajlvlE=) 7: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: oS/2Yr0f0AX3IY6Qw0kprzC/haS0V2Vl/e9gsEC9t0o=) 8: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: y6ZiKIpbO8nVe1RhgWjLdE8kQETpbK+AjZQf/Ewa3Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 14:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13853 (0x361d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Mar 18 14:16:21 2026 GMT Not After : Mar 25 14:16:21 2026 GMT Subject: CN=69bab3b6-1477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:68:fe:6a:ba:3c:45:33:e1:1f:ec:1f:65:f0: fe:e7:af:2c:24:93:bc:00:48:c5:b4:9e:7b:36:09: a0:e0:31:f7:2c:3a:88:74:bb:d9:b2:74:d0:5d:86: de:b8:af:50:ec:23:38:18:2f:07:94:fd:ab:ba:79: dd:46:97:a7:77:cc:7b:4e:87:21:ae:8e:65:ac:4c: 3c:fb:28:92:d3:5f:44:50:54:40:58:0a:c5:1b:9d: 52:85:c1:89:9c:dd:85:2b:07:2a:b1:a4:a0:8f:3e: 07:76:0c:d0:44:b4:f1:00:29:55:04:ed:11:13:38: d0:03:e0:75:72:97:ed:b3:25:a7:f0:05:4e:84:e3: 14:91:99:c8:f2:ba:63:48:31:53:f1:ff:2e:76:80: f8:8e:12:96:8f:4f:11:36:ca:c0:ce:1e:0a:8f:3a: 22:13:3d:2e:a6:23:db:00:81:76:ec:24:ea:e4:71: d5:cf:b9:70:e3:e0:53:ef:41:d9:84:8b:bb:b7:4f: 7a:9f:21:ea:cf:d0:1c:86:9e:b4:4e:6b:30:cb:7f: 56:aa:72:14:07:da:39:25:b4:80:c1:8f:1b:23:58: bb:08:eb:fa:eb:f5:46:15:be:fc:4a:6c:18:fc:79: ad:e0:19:46:7c:10:3b:60:e3:ac:08:9c:a9:13:71: d6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EE:F5:1B:34:52:50:A9:C0:BB:B8:0C:99:60:4E:E9:69:F7:99:DD X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:b1:5a:a4:e0:8f:c0:ee:44:ce:71:5c:a7:6c:f5:cc:86:b1: 2e:51:6a:c4:8e:7d:37:01:e9:2a:1f:97:6e:c4:de:a5:2c:e5: 56:37:b8:12:7b:19:97:02:90:ff:51:49:bb:24:5f:f7:45:87: 8e:af:16:f0:bf:5c:88:8f:a3:02:59:45:a4:7f:75:8b:2c:5e: 8d:4e:7c:0e:b4:4a:05:75:fb:21:c4:81:9a:c3:07:c7:b0:02: a1:63:4d:af:ba:f3:02:87:8c:23:e2:6a:43:ad:f9:9c:6a:b7: 77:e3:b4:7b:8e:30:79:86:5b:1f:9f:a7:87:35:7b:c7:51:f2: 8d:87:cf:de:1a:c2:33:7d:ba:30:7f:15:01:02:9a:ca:05:ba: 80:fb:d4:cf:78:fd:e8:36:a9:92:b0:6a:86:70:48:72:b3:cf: 73:36:22:b3:b1:07:b9:61:21:ce:4c:5c:eb:88:a2:21:03:82: 61:2b:cf:f3:8d:66:95:96:7e:60:b9:2f:6d:39:1b:35:4f:97: a5:93:1a:49:28:8f:b6:dd:2b:d2:4b:a1:50:79:19:17:c2:6f: ff:13:22:a3:38:a1:a5:ab:57:c4:73:fe:43:1a:db:92:f1:8c: 8a:aa:ed:ed:97:fe:61:60:36:02:9b:34:fd:03:cf:be:f8:f6: a7:45:d1:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwMzE4MTQxNjIxWhcNMjYwMzI1MTQxNjIxWjAYMRYwFAYD VQQDEw02OWJhYjNiNi0xNDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mj+aro8RTPhH+wfZfD+568sJJO8AEjFtJ57Ngmg4DH3LDqIdLvZsnTQXYbe uK9Q7CM4GC8HlP2runndRpend8x7Tochro5lrEw8+yiS019EUFRAWArFG51ShcGJ nN2FKwcqsaSgjz4HdgzQRLTxAClVBO0REzjQA+B1cpftsyWn8AVOhOMUkZnI8rpj SDFT8f8udoD4jhKWj08RNsrAzh4KjzoiEz0upiPbAIF27CTq5HHVz7lw4+BT70HZ hIu7t096nyHqz9Achp60Tmswy39WqnIUB9o5JbSAwY8bI1i7COv66/VGFb78SmwY /Hmt4BlGfBA7YOOsCJypE3HWWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHbu9Rs0 UlCpwLu4DJlgTulp95ndMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqLFapOCPwO5EznFcp2z1zIaxLlFqxI59NwHpKh+XbsTepSzlVje4EnsZlwKQ /1FJuyRf90WHjq8W8L9ciI+jAllFpH91iyxejU58DrRKBXX7IcSBmsMHx7ACoWNN r7rzAoeMI+JqQ635nGq3d+O0e44weYZbH5+nhzV7x1HyjYfP3hrCM326MH8VAQKa ygW6gPvUz3j96DapkrBqhnBIcrPPczYis7EHuWEhzkxc64iiIQOCYSvP841mlZZ+ YLkvbTkbNU+XpZMaSSiPtt0r0kuhUHkZF8Jv/xMiozihpatXxHP+QxrbkvGMiqrt 7Zf+YWA2Aps0/QPPvvj2p0XRpQ== -----END CERTIFICATE-----Generated at Thu Mar 19 21:56:05 2026 by rpki-client