$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: GloiXAmLEJwZ0BNdBux4oFWgIq9MqshHX2yj6Eq9pJc= Subject key identifier: 63:3A:7F:37:80:43:6B:D9:E9:3B:16:50:B8:34:1D:7D:B6:DB:F1:AF Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C72 Signing time: Thu 12 Mar 2026 16:04:44 +0000 Manifest this update: Thu 12 Mar 2026 16:04:43 +0000 Manifest next update: Thu 19 Mar 2026 16:04:43 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: 3Vi2o72EgSL2Vrxhf2MYflBb6K6CoGvZWzWSorrk1C8=) 2: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: 7oC71FjkJ5B715SyOcRhNyUfxRr9+87yPAPblr+sAys=) 3: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: 5NO1VG8ffGg8ouNISZKDorz5L4A29bF5w+6XJMA45m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7302 (0x1c86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Mar 12 16:04:43 2026 GMT Not After : Mar 19 16:04:43 2026 GMT Subject: CN=69b2e41c-00fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:51:d0:39:bf:4f:32:10:91:09:bf:34:83:fe: 5d:35:12:eb:bf:f6:e9:9d:3c:1b:01:8c:6e:d0:f2: b3:56:d6:ca:48:de:09:81:07:68:51:84:67:d9:82: fe:b3:e9:03:8d:ee:dc:99:9d:8b:05:9f:cc:63:57: 32:02:4c:24:41:0a:83:68:44:9a:e3:43:7f:dd:cb: 02:94:c6:b2:19:42:e6:55:1f:b8:c3:f0:b7:f3:26: 53:e7:7d:94:be:d8:a9:80:a4:9d:a1:09:ee:d5:c2: a4:85:6c:3f:3c:24:d6:97:04:16:25:3d:f3:e7:17: 19:cb:5c:49:82:8b:d3:aa:17:db:09:e6:9a:bb:38: 0f:8d:19:9c:39:83:e5:15:82:0c:b4:eb:69:4a:dc: b9:b2:50:9e:18:c6:82:5d:be:7f:58:17:b3:8b:24: f8:29:e9:a1:e1:40:ba:a1:79:78:b2:5b:da:e7:cd: 5b:c3:0e:50:81:22:66:79:0b:a2:c8:90:6b:4c:1a: f3:3d:ae:e2:81:18:12:90:99:91:ba:14:39:84:73: 94:d3:0e:02:b4:fb:21:ad:70:1d:8a:63:10:ba:5e: cc:39:f5:6e:82:7c:b4:2a:18:48:b7:12:69:85:25: 65:bc:7f:3b:b8:63:40:63:fc:96:aa:30:2a:c6:0b: d5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:3A:7F:37:80:43:6B:D9:E9:3B:16:50:B8:34:1D:7D:B6:DB:F1:AF X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:84:62:ca:b6:1d:34:fa:ce:ea:91:15:52:1b:07:36:1b:95: 48:a3:a1:c8:e8:e4:e1:8e:c7:57:9b:bd:10:cc:53:53:c1:b8: c2:b9:47:5f:5e:46:be:c7:b5:02:a2:23:ee:a7:b7:14:a3:30: c0:f4:71:1b:bf:79:9d:29:3d:e3:6a:cd:46:db:b6:5c:02:cd: 03:79:dc:e0:a9:c2:ec:be:e9:2f:35:08:98:7e:61:4c:d1:61: d4:39:7b:4d:25:4e:e9:e3:ac:78:ad:f7:e0:66:74:03:7c:c5: 72:62:15:31:6c:ce:6e:54:fa:d5:15:5d:26:4c:dc:43:9f:1c: b9:5b:c0:a4:eb:d9:4d:74:bf:45:99:86:0e:ef:98:de:94:8c: 2d:3f:94:ed:9e:a3:8e:37:9a:04:1a:4b:40:dc:97:fd:51:08: e7:c3:d7:0a:b9:7f:35:4d:72:c2:ca:0a:63:4b:8a:71:59:cf: 09:20:8d:a9:45:e2:88:95:a2:3d:4e:2b:67:f0:24:65:bd:3a: 3d:19:b5:d8:dc:6f:78:51:18:32:68:5f:1d:10:f6:18:d5:50: 17:f5:26:a4:12:e5:86:2d:84:8a:6b:76:d1:ad:ad:17:3e:2c: ca:d1:4e:9e:14:99:bb:17:82:91:19:6c:b3:8c:1c:2e:06:8d: eb:ed:c0:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjYwMzEyMTYwNDQzWhcNMjYwMzE5MTYwNDQzWjAYMRYwFAYD VQQDEw02OWIyZTQxYy0wMGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFHQOb9PMhCRCb80g/5dNRLrv/bpnTwbAYxu0PKzVtbKSN4JgQdoUYRn2YL+ s+kDje7cmZ2LBZ/MY1cyAkwkQQqDaESa40N/3csClMayGULmVR+4w/C38yZT532U vtipgKSdoQnu1cKkhWw/PCTWlwQWJT3z5xcZy1xJgovTqhfbCeaauzgPjRmcOYPl FYIMtOtpSty5slCeGMaCXb5/WBeziyT4Kemh4UC6oXl4slva581bww5QgSJmeQui yJBrTBrzPa7igRgSkJmRuhQ5hHOU0w4CtPshrXAdimMQul7MOfVugny0KhhItxJp hSVlvH87uGNAY/yWqjAqxgvVoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGM6fzeA Q2vZ6TsWULg0HX222/GvMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAIRiyrYdNPrO6pEVUhsHNhuVSKOhyOjk4Y7HV5u9EMxTU8G4wrlHX15Gvse1 AqIj7qe3FKMwwPRxG795nSk942rNRtu2XALNA3nc4KnC7L7pLzUImH5hTNFh1Dl7 TSVO6eOseK334GZ0A3zFcmIVMWzOblT61RVdJkzcQ58cuVvApOvZTXS/RZmGDu+Y 3pSMLT+U7Z6jjjeaBBpLQNyX/VEI58PXCrl/NU1ywsoKY0uKcVnPCSCNqUXiiJWi PU4rZ/AkZb06PRm12NxveFEYMmhfHRD2GNVQF/UmpBLlhi2Eimt20a2tFz4sytFO nhSZuxeCkRlss4wcLgaN6+3AdQ== -----END CERTIFICATE-----Generated at Sat Mar 14 10:29:22 2026 by rpki-client