$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft File: caPb4vD_0LEHymtXE7Fcl6jj4dE.mft (raw, json) Hash identifier: ixTTkLj/aq6ccWq7pNN+o3UIXL8H59zjgxixKaCtjBw= Subject key identifier: 1E:ED:91:2E:A3:40:1F:26:4B:23:51:D1:2C:AB:C0:31:24:71:77:A8 Authority key identifier: 71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 Certificate issuer: /CN=A91EEE79/serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft Manifest number: 41 Signing time: Thu 19 Mar 2026 07:23:05 +0000 Manifest this update: Thu 19 Mar 2026 07:23:05 +0000 Manifest next update: Thu 26 Mar 2026 07:23:05 +0000 Files and hashes: 1: caPb4vD_0LEHymtXE7Fcl6jj4dE.crl (hash: wg2ZS8F4FII88QDbHhLyikuIUYenTTW3bw6dFF35Ynk=) 2: 07EF6C98C45711F0A1027D38C4F9AE02.roa (hash: MKqJq2FumoKTrTwmyrH8ChMilgYTt/EL/h7r2rH2ApY=) 3: 078123C8C45711F09E1B7D38C4F9AE02.roa (hash: 77Ti4coJG6upOfWGSXiHZBgxkM1mBFKcvk6A/BW0GOQ=) 4: 0853E998C45711F080167D38C4F9AE02.roa (hash: q06BkXWxrAKL8dfnFJAQ0hKBleWRtfFz0FU/k9ATOTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 06:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE79, serialNumber=71A3DBE2F0FFD0B107CA6B5713B15C97A8E3E1D1 Validity Not Before: Mar 19 07:23:05 2026 GMT Not After : Mar 26 07:23:05 2026 GMT Subject: CN=69bba459-f5cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6f:ac:20:56:b1:9f:14:6e:e4:d7:77:06:88: d7:0e:66:26:22:31:e4:8d:ab:49:b8:fd:0e:92:56: 7a:e1:98:73:cd:b6:be:71:da:e3:3f:3b:1c:e2:ef: 41:c5:08:4b:b8:58:20:41:f1:df:ef:f8:04:75:94: ca:ae:6e:f6:06:40:67:48:c4:8f:60:45:6d:26:a6: 4a:99:2f:8e:3f:fe:dd:95:3b:2b:ff:ad:6d:89:6b: 9c:75:08:8a:9f:78:c0:6b:6e:3b:7c:28:84:d7:d8: f3:c4:43:f1:18:c8:e1:f7:3c:a6:35:7a:97:db:fd: 47:88:fd:11:6b:e5:0f:c6:91:19:65:06:3a:50:7a: c6:8b:da:59:17:21:8c:a7:f1:db:fd:4d:41:47:a3: 73:05:bd:36:aa:82:cb:f5:32:46:6d:90:0f:1c:1b: 57:3d:8e:5c:ee:3f:6e:d1:d5:2f:8f:b2:92:d2:76: 75:03:9b:4b:c6:e9:37:c7:ee:6e:87:19:4e:2c:51: 63:53:b2:6e:9d:a0:06:d4:b3:de:a4:7c:49:5f:94: 83:b8:04:27:cd:09:b4:a6:54:e0:b1:42:6f:5f:e5: e1:cc:a3:ac:74:6f:7d:60:8e:c9:23:b9:63:a1:42: be:2e:3e:68:e2:70:54:e3:b5:ec:e5:8e:c4:7d:de: d6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:ED:91:2E:A3:40:1F:26:4B:23:51:D1:2C:AB:C0:31:24:71:77:A8 X509v3 Authority Key Identifier: keyid:71:A3:DB:E2:F0:FF:D0:B1:07:CA:6B:57:13:B1:5C:97:A8:E3:E1:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/caPb4vD_0LEHymtXE7Fcl6jj4dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE79/951E28F8C45611F08E53920BC4F9AE02/caPb4vD_0LEHymtXE7Fcl6jj4dE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c1:47:61:05:bd:a5:ce:d0:86:93:0e:e7:19:32:42:43:ba: e6:5b:bb:a5:2f:b6:cf:e4:74:f7:b9:04:39:78:62:2b:fc:c2: 6f:d3:6c:e6:6f:4d:e8:8e:5d:68:2a:fc:6f:4f:e4:1e:01:6c: 4c:81:c6:23:0c:3d:4a:e4:82:74:56:06:0b:85:b7:6a:4e:92: 1f:71:75:aa:0c:12:df:9b:9e:dc:fe:11:8a:ac:fe:31:5c:82: f4:45:bf:2b:c9:45:83:f4:98:c6:82:0c:4b:b6:ff:cf:17:88: ac:ce:31:a2:99:3d:4b:c7:7b:ea:53:0d:4a:9d:64:1b:51:56: a0:d5:26:fc:fb:44:ea:d9:a9:e3:5f:ef:b0:47:bc:36:b7:d9: 13:97:f5:4f:fc:fa:d6:ce:6a:35:b3:ea:be:13:cb:92:5a:89: 00:31:df:86:67:74:0d:35:ff:e1:93:13:8e:32:2a:d5:8c:0a: 10:48:b8:72:87:a2:73:74:56:fc:44:81:32:4d:8d:ce:bd:35: 63:d2:fb:9e:92:6f:93:09:a4:3d:2a:6e:a7:74:ae:6d:7d:b3: 08:2d:47:28:e2:50:49:c7:e3:22:8b:7a:24:da:fe:a1:fb:a9: e7:b1:4c:a9:fc:e4:8b:eb:d2:a4:0d:a4:09:52:7a:07:30:25: dd:b1:0a:82 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RUU3OTExMC8GA1UEBRMoNzFBM0RCRTJGMEZGRDBCMTA3Q0E2QjU3MTNCMTVDOTdB OEUzRTFEMTAeFw0yNjAzMTkwNzIzMDVaFw0yNjAzMjYwNzIzMDVaMBgxFjAUBgNV BAMTDTY5YmJhNDU5LWY1Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJb6wgVrGfFG7k13cGiNcOZiYiMeSNq0m4/Q6SVnrhmHPNtr5x2uM/Oxzi70HF CEu4WCBB8d/v+AR1lMqubvYGQGdIxI9gRW0mpkqZL44//t2VOyv/rW2Ja5x1CIqf eMBrbjt8KITX2PPEQ/EYyOH3PKY1epfb/UeI/RFr5Q/GkRllBjpQesaL2lkXIYyn 8dv9TUFHo3MFvTaqgsv1MkZtkA8cG1c9jlzuP27R1S+PspLSdnUDm0vG6TfH7m6H GU4sUWNTsm6doAbUs96kfElflIO4BCfNCbSmVOCxQm9f5eHMo6x0b31gjskjuWOh Qr4uPmjicFTjtezljsR93tbLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUHu2RLqNA HyZLI1HRLKvAMSRxd6gwHwYDVR0jBBgwFoAUcaPb4vD/0LEHymtXE7Fcl6jj4dEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFRTc5Lzk1MUUyOEY4QzQ1 NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExFSHltdFhFN0ZjbDZqajRk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2FQYjR2RF8wTEVIeW10WEU3RmNsNmpqNGRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF RTc5Lzk1MUUyOEY4QzQ1NjExRjA4RTUzOTIwQkM0RjlBRTAyL2NhUGI0dkRfMExF SHltdFhFN0ZjbDZqajRkRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAbwUdhBb2lztCGkw7nGTJCQ7rmW7ulL7bP5HT3uQQ5eGIr/MJv02zmb03ojl1o KvxvT+QeAWxMgcYjDD1K5IJ0VgYLhbdqTpIfcXWqDBLfm57c/hGKrP4xXIL0Rb8r yUWD9JjGggxLtv/PF4iszjGimT1Lx3vqUw1KnWQbUVag1Sb8+0Tq2anjX++wR7w2 t9kTl/VP/PrWzmo1s+q+E8uSWokAMd+GZ3QNNf/hkxOOMirVjAoQSLhyh6JzdFb8 RIEyTY3OvTVj0vuekm+TCaQ9Km6ndK5tfbMILUco4lBJx+Mii3ok2v6h+6nnsUyp /OSL69KkDaQJUnoHMCXdsQqC -----END CERTIFICATE-----Generated at Thu Mar 19 13:45:08 2026 by rpki-client