$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: wEoGM68UBSlrthkgyERxsSiV40I8VJ4QTtMj0wp1a4g= Subject key identifier: 2F:1C:05:BC:8A:E3:45:84:1C:5D:5D:24:93:4E:82:9C:0D:F0:38:52 Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 0307 Signing time: Mon 02 Mar 2026 02:21:17 +0000 Manifest this update: Mon 02 Mar 2026 02:21:16 +0000 Manifest next update: Mon 09 Mar 2026 02:21:16 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: pp0OJ96XFzpqK0Akn1xNX3LcWijlLes6m+Eq7CQIgdg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Mar 2 02:21:16 2026 GMT Not After : Mar 9 02:21:16 2026 GMT Subject: CN=69a4f41d-8122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:0b:33:2b:e9:d5:85:af:b8:51:f7:c5:b9: 0f:38:a7:ab:bf:97:20:d6:83:e2:c0:f6:8a:7e:29: 6a:5b:83:c5:ba:05:79:7b:ba:46:05:6e:92:fc:56: 46:97:46:74:fd:3f:9f:0d:60:04:4e:5d:b9:55:f8: 8f:02:ab:f8:db:d4:3c:94:35:45:ba:74:b4:56:e2: af:32:ac:ba:44:04:4e:cb:6d:57:68:d0:30:43:51: 15:ef:b6:fc:c3:0c:3d:02:7b:f1:75:c4:c1:1b:fd: 42:1a:fc:61:b2:b4:67:e4:39:13:99:9a:8c:43:f0: e3:85:2b:ec:c0:52:e6:f5:dd:90:81:70:92:ec:a1: f2:b4:50:cd:dd:8e:df:62:98:3d:46:d9:57:a2:00: dd:64:fb:30:e7:63:11:0b:74:e2:2a:93:e8:17:47: fb:35:1e:17:77:ec:26:8b:6f:d7:49:bd:ee:5b:df: 89:72:a8:dc:b5:89:c4:c8:4c:6a:13:44:fb:7c:3c: 72:f2:7d:5f:61:f0:19:2d:23:75:11:6c:55:fd:8e: 2f:d1:d4:e4:8c:35:86:72:bb:36:97:c2:a0:b4:42: 2a:6a:c2:85:82:f3:7c:ae:1d:e6:58:d7:c1:e7:c4: 6c:f5:02:84:12:2d:4d:85:3d:a8:04:85:97:b1:eb: cc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1C:05:BC:8A:E3:45:84:1C:5D:5D:24:93:4E:82:9C:0D:F0:38:52 X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:64:94:b4:88:6e:b0:af:b8:11:7b:cc:d4:35:78:cf:4b:ff: 87:24:ad:61:4b:b8:04:f2:28:d9:1a:ce:05:26:0c:a6:b0:53: 2f:e0:36:a6:dc:d5:6c:56:34:13:1d:87:64:92:b4:3e:a8:ca: c7:e8:02:60:2f:b7:ce:dd:18:8c:06:7f:96:24:19:d5:b1:e7: 9e:45:03:5f:98:bb:42:02:91:55:07:c0:1e:94:e3:4d:23:bf: 2d:d0:e0:59:5b:5c:71:e9:ce:53:34:2a:9e:eb:a8:22:13:a3: c0:f9:58:b5:a2:07:32:da:4c:cc:15:21:a7:9c:e2:c0:e5:50: ad:c5:f9:bf:5a:10:2f:77:a8:e4:9f:03:75:7c:df:2b:03:4c: 58:bc:38:dc:e7:cb:fb:73:ad:be:8c:3d:38:84:f8:fe:8e:71: 71:12:73:07:8f:dc:fe:06:d3:5a:1c:d6:cd:b3:a5:bd:d3:2f: d9:cc:be:2e:5a:a7:84:75:69:b5:82:f2:97:0c:42:e4:83:c6: 13:71:22:61:fc:99:4f:e5:1d:78:6e:27:d3:57:ba:c7:4e:eb: 0f:67:f8:09:6d:af:46:58:b1:9f:42:b3:64:46:96:e6:f1:27: c0:78:9d:4d:25:66:7d:5b:72:8a:9d:19:22:57:f5:c4:7b:4b: 53:f3:70:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjYwMzAyMDIyMTE2WhcNMjYwMzA5MDIyMTE2WjAYMRYwFAYD VQQDEw02OWE0ZjQxZC04MTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztoLMyvp1YWvuFH3xbkPOKerv5cg1oPiwPaKfilqW4PFugV5e7pGBW6S/FZG l0Z0/T+fDWAETl25VfiPAqv429Q8lDVFunS0VuKvMqy6RAROy21XaNAwQ1EV77b8 www9AnvxdcTBG/1CGvxhsrRn5DkTmZqMQ/DjhSvswFLm9d2QgXCS7KHytFDN3Y7f Ypg9RtlXogDdZPsw52MRC3TiKpPoF0f7NR4Xd+wmi2/XSb3uW9+JcqjctYnEyExq E0T7fDxy8n1fYfAZLSN1EWxV/Y4v0dTkjDWGcrs2l8KgtEIqasKFgvN8rh3mWNfB 58Rs9QKEEi1NhT2oBIWXsevMJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC8cBbyK 40WEHF1dJJNOgpwN8DhSMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVWSUtIhusK+4EXvM1DV4z0v/hyStYUu4BPIo2RrOBSYMprBTL+A2ptzVbFY0 Ex2HZJK0PqjKx+gCYC+3zt0YjAZ/liQZ1bHnnkUDX5i7QgKRVQfAHpTjTSO/LdDg WVtccenOUzQqnuuoIhOjwPlYtaIHMtpMzBUhp5ziwOVQrcX5v1oQL3eo5J8DdXzf KwNMWLw43OfL+3Otvow9OIT4/o5xcRJzB4/c/gbTWhzWzbOlvdMv2cy+LlqnhHVp tYLylwxC5IPGE3EiYfyZT+UdeG4n01e6x07rD2f4CW2vRlixn0KzZEaW5vEnwHid TSVmfVtyip0ZIlf1xHtLU/NwDQ== -----END CERTIFICATE-----Generated at Mon Mar 2 10:53:12 2026 by rpki-client