$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft File: mnPxqRn79GyHLjiAWxZQtfiCdtM.mft (raw, json) Hash identifier: HZLDfnvnIu+9rRZK5CqovN7v8xFHEwD3pWmsJ56t5qw= Subject key identifier: 69:93:E7:B0:A4:E5:81:88:A3:21:07:0C:29:D7:12:4B:B5:89:69:9B Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 11FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft Manifest number: 0D8B Signing time: Fri 20 Mar 2026 19:58:07 +0000 Manifest this update: Fri 20 Mar 2026 19:58:07 +0000 Manifest next update: Fri 27 Mar 2026 19:58:07 +0000 Files and hashes: 1: mnPxqRn79GyHLjiAWxZQtfiCdtM.crl (hash: Ke4HH7fya0YVFAlx3uJ03ULz/jXrfraiLLb+f1sQDms=) 2: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (hash: nYeFBOsuOa+AhwOe+QjEdtDHW5x1Jxsma/8+kniQAXk=) 3: 8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa (hash: 9kr7YRweIjs9sYz5LEa5FyxtFuVknS+hpV3R4t44fNs=) 4: 6BE346006D1A11F0B1F1074DC4F9AE02.roa (hash: B6cIG1afbkG3vI1TqciNvobQif79q4lJ3Y9WuIuXm0U=) 5: F7E266FEDA5211F09C836FE292D3641D.roa (hash: cGDK0o7QZlPNPAFr4dfh+NVJSW7tkzbeeXcZE45hJYI=) 6: 5C2A5AE670FD11F08583BE3AC4F9AE02.roa (hash: 2AJYc+N2PADxY4y49OSZDcckeuGN7xHXkNXTwPuT8fs=) 7: A173B894112711F0845DF16FC4F9AE02.roa (hash: G6+GS22xNwr0Km9vx99x7wOcMdZwDFcolP4ZXOu6yf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 19:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4603 (0x11fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Mar 20 19:58:07 2026 GMT Not After : Mar 27 19:58:07 2026 GMT Subject: CN=69bda6cf-a37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c0:7c:37:27:c4:fb:7f:58:21:27:4d:6f:39: 55:4d:bc:82:08:45:29:ea:33:78:a8:81:9b:30:90: 0f:0e:6e:da:aa:02:d3:1c:50:73:e6:9d:cd:04:6a: 92:51:36:5b:8e:16:fc:cf:fa:96:1a:af:fb:75:e7: ee:67:ef:bf:03:70:2b:37:16:1e:ef:a3:0a:91:c8: 0e:0b:52:8d:e6:df:e9:57:c0:27:42:d3:58:49:d6: fb:e8:b3:d8:97:e5:71:84:da:b5:f7:d3:66:5b:c3: 2d:ba:27:2d:2d:58:be:49:5e:dc:8d:4a:5f:14:13: 9c:ab:04:4e:fc:d7:f7:0c:83:9b:f4:d4:90:2c:b5: a9:38:72:76:37:21:81:a1:95:6f:a9:3a:74:34:76: 8e:5d:3e:8e:c7:ba:1c:11:95:8a:79:d6:92:74:69: f8:00:be:7f:d4:ec:73:9f:81:95:f6:8d:21:0d:bc: de:84:fb:56:59:d7:53:9a:3f:45:b8:b8:87:52:ea: aa:84:f9:10:d5:98:d6:8c:ef:53:d0:1e:29:fd:c7: 28:93:d3:19:cf:0f:8a:f1:59:a5:36:c2:13:00:08: 1c:d8:b9:22:52:2a:03:bf:e1:9b:1d:71:88:95:54: 36:00:06:d8:15:51:f9:23:a5:c0:8d:86:9f:24:08: d2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:93:E7:B0:A4:E5:81:88:A3:21:07:0C:29:D7:12:4B:B5:89:69:9B X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:56:48:5e:87:6d:18:fe:f2:f4:65:f7:35:64:19:f7:d1:9f: d8:18:0d:62:70:45:65:b9:4e:29:0e:d1:1c:d3:e1:30:7d:8f: ed:71:73:74:05:6c:93:7e:f2:63:c6:69:40:a2:f3:02:4c:c1: 43:8c:98:8b:2d:25:89:68:2a:9d:86:ef:44:23:9f:dc:ac:5e: a2:c2:8a:83:b4:89:ed:a7:04:5a:f2:01:27:9b:2b:da:00:46: 64:a0:2d:6a:f3:4d:94:0d:50:66:a9:b6:b7:66:b7:2b:49:13: f3:16:e9:2b:20:d4:5c:69:4c:7a:39:f3:91:26:6f:23:6b:3c: 6d:27:19:85:62:b6:fe:0c:d6:9e:fc:ba:22:d0:84:78:dd:c4: 39:f4:4a:9e:45:e8:46:5e:cc:a1:f8:57:f0:a8:0f:95:02:f1: 91:31:da:d4:88:90:89:4b:25:18:5c:a2:0d:23:4c:04:73:6c: f5:53:06:98:40:d6:d8:fb:5b:7d:46:d7:46:9b:e9:1f:2a:fc: fb:3e:cf:52:3d:5d:17:a2:a5:37:f6:bb:96:7a:12:12:b4:19: 1a:de:16:97:f1:32:5e:9b:da:be:db:9b:e3:5a:8b:ff:87:44: e3:98:1e:d0:62:fe:e7:e5:42:c1:45:f5:13:89:00:85:d1:e2: 64:9e:8f:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjYwMzIwMTk1ODA3WhcNMjYwMzI3MTk1ODA3WjAYMRYwFAYD VQQDEw02OWJkYTZjZi1hMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcB8NyfE+39YISdNbzlVTbyCCEUp6jN4qIGbMJAPDm7aqgLTHFBz5p3NBGqS UTZbjhb8z/qWGq/7defuZ++/A3ArNxYe76MKkcgOC1KN5t/pV8AnQtNYSdb76LPY l+VxhNq199NmW8MtuictLVi+SV7cjUpfFBOcqwRO/Nf3DIOb9NSQLLWpOHJ2NyGB oZVvqTp0NHaOXT6Ox7ocEZWKedaSdGn4AL5/1Oxzn4GV9o0hDbzehPtWWddTmj9F uLiHUuqqhPkQ1ZjWjO9T0B4p/ccok9MZzw+K8VmlNsITAAgc2LkiUioDv+GbHXGI lVQ2AAbYFVH5I6XAjYafJAjSUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGmT57Ck 5YGIoyEHDCnXEku1iWmbMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjEzNC81N0IzRTBCQ0MyQTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlH eUhMamlBV3haUXRmaUNkdE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKlZIXodtGP7y9GX3NWQZ99Gf2BgNYnBFZblOKQ7RHNPhMH2P7XFzdAVsk37y Y8ZpQKLzAkzBQ4yYiy0liWgqnYbvRCOf3KxeosKKg7SJ7acEWvIBJ5sr2gBGZKAt avNNlA1QZqm2t2a3K0kT8xbpKyDUXGlMejnzkSZvI2s8bScZhWK2/gzWnvy6ItCE eN3EOfRKnkXoRl7MofhX8KgPlQLxkTHa1IiQiUslGFyiDSNMBHNs9VMGmEDW2Ptb fUbXRpvpHyr8+z7PUj1dF6KlN/a7lnoSErQZGt4Wl/EyXpvavtub41qL/4dE45ge 0GL+5+VCwUX1E4kAhdHiZJ6P6w== -----END CERTIFICATE-----Generated at Sun Mar 22 16:59:07 2026 by rpki-client