$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: WGzej3G953L+Qy7LyH3GU1lJxy7niAfZ1I1zAdmL06U= Subject key identifier: 42:C7:EB:A9:5C:F3:DC:F8:53:EB:A9:E4:31:CA:56:C8:FD:56:69:30 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 0552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 053E Signing time: Mon 02 Mar 2026 01:03:55 +0000 Manifest this update: Mon 02 Mar 2026 01:03:53 +0000 Manifest next update: Mon 09 Mar 2026 01:03:53 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: Du2KZJyyuqUZylT6CvgPATAlSh/3UUokGqao8qeI3gQ=) 2: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: nNfdgdLoLhr6Vy9d41UW1l+EsR1U5EgpKmeHjbrVZXE=) 3: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: n4tuVdk3omfSB8XzyCrNJHNaBap0wt8tJ/fhHnIddvI=) 4: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: p1NQ7IGWXi2y1DBETkDK+FOB7oMxD5FL9+3PQ1j1/As=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:03:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Mar 2 01:03:53 2026 GMT Not After : Mar 9 01:03:53 2026 GMT Subject: CN=69a4e1fa-3bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3d:f3:f5:0a:dc:ec:8d:03:cf:f6:a6:04:c7: 9c:64:6f:f8:19:d1:d4:63:18:03:7f:ae:ff:1d:97: 80:a1:96:03:c4:36:8c:c6:34:be:ab:c2:20:ac:c6: 94:e6:45:e0:17:32:7e:fc:66:d5:0d:31:9e:41:d5: 89:67:0d:35:b1:bf:5d:4c:6a:a4:2d:e1:0b:d4:1f: 67:24:8c:fb:93:6e:3d:ed:37:7a:38:31:36:9f:51: 85:4c:4d:11:32:7b:d4:0f:b9:e2:81:72:97:ae:eb: c6:30:61:e2:66:5f:4a:66:d2:79:21:ce:dd:6c:c6: 8a:d3:c4:bd:d6:02:08:d7:5f:61:0a:84:b3:df:ef: 80:e3:14:3d:57:19:3c:d2:96:92:1a:a2:4d:46:7c: f3:0e:73:ad:4e:80:8a:65:11:72:d0:99:bc:b5:9e: f9:9f:86:54:ce:c2:a2:cb:8a:34:6f:ae:bf:b2:cc: 12:ee:68:d5:f5:bc:be:72:75:e3:08:0f:bf:71:fb: 0b:05:fa:0e:19:2f:68:d7:48:02:c4:e5:0a:98:b9: 3b:cb:8f:55:6b:1c:a2:ed:27:28:8d:ea:66:bb:20: df:36:9c:59:74:8d:7e:f2:d4:30:d9:c0:eb:e5:8b: 8e:1c:34:ad:fe:9d:4f:79:f7:f4:61:df:42:44:1c: ba:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C7:EB:A9:5C:F3:DC:F8:53:EB:A9:E4:31:CA:56:C8:FD:56:69:30 X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:47:7d:42:80:94:95:40:5c:a0:68:a5:cb:38:3f:04:f5:a1: 26:6f:3e:94:b6:4c:da:8b:a5:7d:64:76:e9:41:70:cc:c0:60: ab:e3:3d:0a:33:a3:34:d3:db:ed:25:e0:fa:86:1f:21:30:75: 90:b4:c2:90:bf:8a:62:b1:47:8a:86:1c:50:e8:21:09:36:55: bd:2f:6a:c5:38:b4:cb:de:40:1f:67:94:4c:b4:21:69:42:fb: ef:e1:8a:c4:1b:a4:0f:47:c5:cb:e0:15:dc:aa:db:d4:1f:31: b2:a8:22:1a:fe:d1:e0:21:7a:31:69:ac:df:eb:32:82:72:90: 4f:75:11:fb:5b:13:6b:b1:06:73:13:6e:31:43:a9:99:2e:dd: 7e:99:09:a5:0f:75:9d:df:ab:b3:6a:9d:ef:3b:88:c9:5c:68: e7:d3:23:ef:7c:0a:73:e7:54:3d:60:23:df:73:dc:a2:2d:19: 76:ca:e6:29:a7:62:92:99:dc:35:22:b8:a8:47:1d:99:f8:b3: 7d:e7:a1:3a:a6:6c:ec:a2:dd:02:e9:b3:c1:ac:24:77:2e:45: 03:b2:0b:56:56:f4:c2:36:b2:21:d6:4a:c1:c5:e6:8f:60:96: d2:6d:f7:cd:a5:79:d8:0a:57:a4:c2:ed:ee:11:70:5e:b6:1c: 11:e4:92:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjYwMzAyMDEwMzUzWhcNMjYwMzA5MDEwMzUzWjAYMRYwFAYD VQQDEw02OWE0ZTFmYS0zYmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6j3z9Qrc7I0Dz/amBMecZG/4GdHUYxgDf67/HZeAoZYDxDaMxjS+q8IgrMaU 5kXgFzJ+/GbVDTGeQdWJZw01sb9dTGqkLeEL1B9nJIz7k2497Td6ODE2n1GFTE0R MnvUD7nigXKXruvGMGHiZl9KZtJ5Ic7dbMaK08S91gII119hCoSz3++A4xQ9Vxk8 0paSGqJNRnzzDnOtToCKZRFy0Jm8tZ75n4ZUzsKiy4o0b66/sswS7mjV9by+cnXj CA+/cfsLBfoOGS9o10gCxOUKmLk7y49Vaxyi7ScojepmuyDfNpxZdI1+8tQw2cDr 5YuOHDSt/p1Peff0Yd9CRBy6tQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFELH66lc 89z4U+up5DHKVsj9VmkwMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASUd9QoCUlUBcoGilyzg/BPWhJm8+lLZM2oulfWR26UFwzMBgq+M9CjOjNNPb 7SXg+oYfITB1kLTCkL+KYrFHioYcUOghCTZVvS9qxTi0y95AH2eUTLQhaUL77+GK xBukD0fFy+AV3Krb1B8xsqgiGv7R4CF6MWms3+sygnKQT3UR+1sTa7EGcxNuMUOp mS7dfpkJpQ91nd+rs2qd7zuIyVxo59Mj73wKc+dUPWAj33Pcoi0ZdsrmKadikpnc NSK4qEcdmfizfeehOqZs7KLdAumzwawkdy5FA7ILVlb0wjayIdZKwcXmj2CW0m33 zaV52ApXpMLt7hFwXrYcEeSS4w== -----END CERTIFICATE-----Generated at Mon Mar 2 03:57:54 2026 by rpki-client