$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: JTs+TehE2DNRgKps5aJvY2LCQTGO9aCRrFGEM8W1bZs= Subject key identifier: 47:2E:2D:82:30:B0:A8:EE:6B:9C:FE:4F:8E:8C:F2:1F:69:4C:F6:FA Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 22F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 22A5 Signing time: Thu 26 Mar 2026 15:51:35 +0000 Manifest this update: Thu 26 Mar 2026 15:51:35 +0000 Manifest next update: Thu 02 Apr 2026 15:51:35 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: id4FogJJYzirsdktEZbPyWTS/lEDSlcHmdPGaXj2eG8=) 2: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: qG9igdUpXB7wk8yx/k2tOuq/gYueDRGW4t5eH6cDkms=) 3: 083D60F0EFC311F0ADB9FC6F726F56BC.roa (hash: fF8JE+CeDWGa0Zd7+3JcEIODMXv324fSErOhGifycP8=) 4: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: fekDwvX/Pg2YZ9Fe3QZAnU92TpFpbncEnNKE83KMH+M=) 5: F4B9363CD97C11F0998DA3C49DD3641D.roa (hash: VfJC1uL3SDtxI0jb1ThMloxDt/b6TXqC47eyeyvo+WI=) 6: 05302944D38811F096791A31C4F9AE02.roa (hash: 0TpazCbbP+eq5jbcmOC+QEukwM8XRQa407MbLaS5Vso=) 7: 0ECE3EC6F36011F0BF2DB960646F56BC.roa (hash: QtoNirbotX7R4qD1r9ev9ywMdIdpJySoQAcu/MYpiqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8952 (0x22f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Mar 26 15:51:35 2026 GMT Not After : Apr 2 15:51:35 2026 GMT Subject: CN=69c55607-ae2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:62:ed:10:7b:1f:74:e1:bd:9a:d8:66:4f: e4:c1:38:2c:54:01:66:69:c9:13:1f:68:b4:66:d8: 8b:b2:dc:02:dd:dd:a8:f9:3f:b6:1f:14:05:92:89: 87:b2:8f:28:2c:bb:1f:29:50:05:66:af:36:33:85: 1f:9a:da:9c:67:2a:3b:ed:2e:7a:10:08:4e:87:12: 01:0d:a1:3f:1a:97:12:d0:95:c9:a6:f4:a1:c8:2c: 31:2a:d8:9c:7f:64:7b:c6:9e:5c:39:2e:0d:1d:70: 8c:54:4d:bd:b2:40:c3:57:ca:59:f8:8d:b9:a5:d6: 72:30:f8:27:a8:3e:76:0a:b0:e8:f6:10:8a:e5:e0: 51:54:22:1a:40:6d:65:20:59:7f:10:95:81:6a:ec: a2:67:eb:e3:cf:fd:c4:42:5a:d5:53:78:46:e4:2e: 4d:8f:a9:d1:6e:18:fd:4b:32:bf:75:d9:a0:55:4e: e6:2d:98:e8:6c:5a:01:15:22:4c:5a:f1:78:dd:0d: bf:f5:cc:b3:43:4d:4c:63:02:e8:56:95:94:6f:0c: d1:9e:e9:6c:a8:84:cf:61:5e:2d:4e:09:fa:89:82: 8e:5f:42:a2:07:ac:b4:13:7a:56:2c:08:69:f6:a9: 2e:0d:47:54:89:84:b7:1b:0c:ba:ec:41:42:e0:f5: 58:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2E:2D:82:30:B0:A8:EE:6B:9C:FE:4F:8E:8C:F2:1F:69:4C:F6:FA X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:5b:dd:cf:0d:a9:96:f9:f0:95:8e:e4:d6:92:c7:cf:ab:d7: 86:0e:2d:96:dd:6b:21:b3:7f:2f:12:4c:a4:ed:9c:89:d8:0e: b3:80:8e:46:ea:98:13:a0:7c:e3:20:d6:e4:ee:0d:f1:45:20: b9:b8:ef:b0:49:e7:23:95:ed:1c:8b:c1:cb:14:66:79:70:4e: 24:df:7d:85:fa:b6:80:10:a8:c1:b0:24:1c:4b:49:59:02:dc: 98:9c:99:30:00:43:81:49:3f:57:d7:82:50:c6:2e:11:eb:02: da:f4:e5:b2:ab:0b:a3:a3:2f:55:16:9e:79:ab:aa:44:15:85: 9e:c5:53:ff:33:84:15:32:db:70:99:19:09:fe:40:fa:25:a4: 35:d8:f3:26:ff:f6:20:c5:38:05:ce:ae:b6:c9:7e:a7:3c:b5: 72:35:44:f0:c1:f4:1a:3e:a3:c6:4d:02:f4:7d:f2:26:89:a8: c1:28:51:78:95:23:db:0e:2d:8b:94:4d:60:3e:7e:cc:cf:44: a9:27:36:a4:b9:89:7d:c0:05:f1:1c:56:85:95:da:12:cc:d8: 6c:30:18:ff:d6:1a:f9:c1:f6:f3:9c:68:bf:4d:ab:02:6b:91: 4f:5a:28:18:96:e2:4f:5c:fa:45:ea:0a:0b:41:1c:6f:6f:fb: 79:ef:86:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjYwMzI2MTU1MTM1WhcNMjYwNDAyMTU1MTM1WjAYMRYwFAYD VQQDEw02OWM1NTYwNy1hZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNdi7RB7H3ThvZrYZk/kwTgsVAFmackTH2i0ZtiLstwC3d2o+T+2HxQFkomH so8oLLsfKVAFZq82M4UfmtqcZyo77S56EAhOhxIBDaE/GpcS0JXJpvShyCwxKtic f2R7xp5cOS4NHXCMVE29skDDV8pZ+I25pdZyMPgnqD52CrDo9hCK5eBRVCIaQG1l IFl/EJWBauyiZ+vjz/3EQlrVU3hG5C5Nj6nRbhj9SzK/ddmgVU7mLZjobFoBFSJM WvF43Q2/9cyzQ01MYwLoVpWUbwzRnulsqITPYV4tTgn6iYKOX0KiB6y0E3pWLAhp 9qkuDUdUiYS3Gwy67EFC4PVY4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEcuLYIw sKjua5z+T46M8h9pTPb6MB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAElvdzw2plvnwlY7k1pLHz6vXhg4tlt1rIbN/LxJMpO2cidgOs4CORuqYE6B8 4yDW5O4N8UUgubjvsEnnI5XtHIvByxRmeXBOJN99hfq2gBCowbAkHEtJWQLcmJyZ MABDgUk/V9eCUMYuEesC2vTlsqsLo6MvVRaeeauqRBWFnsVT/zOEFTLbcJkZCf5A +iWkNdjzJv/2IMU4Bc6utsl+pzy1cjVE8MH0Gj6jxk0C9H3yJomowShReJUj2w4t i5RNYD5+zM9EqSc2pLmJfcAF8RxWhZXaEszYbDAY/9Ya+cH285xov02rAmuRT1oo GJbiT1z6ReoKC0Ecb2/7ee+GLw== -----END CERTIFICATE-----Generated at Sat Mar 28 06:01:28 2026 by rpki-client