$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: ZlflGhjNF/d8LVIytdH7mWEylayo4VChqnthH2/sBZo= Subject key identifier: 50:3C:79:DC:84:D9:E1:F3:50:36:C4:58:1B:B9:27:50:5F:A5:86:A1 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 3520 Signing time: Mon 02 Mar 2026 00:22:34 +0000 Manifest this update: Mon 02 Mar 2026 00:22:32 +0000 Manifest next update: Mon 09 Mar 2026 00:22:32 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: VGE134cWN1Z4pJylPozbScsOkYkjpHPUQRK6SFhsmnc=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: grlNN+mm97djcRhLgczSf6yBI8MB1/S7/60D7ODVKSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13608 (0x3528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Mar 2 00:22:32 2026 GMT Not After : Mar 9 00:22:32 2026 GMT Subject: CN=69a4d84a-c18c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:84:52:e6:7d:ae:11:5b:bc:40:fd:35:5a:ca: 1f:75:2c:bc:e8:a9:3b:03:2c:f2:64:4e:bb:e2:5d: 58:e3:70:20:82:99:1a:5e:ec:32:b1:51:3a:bd:8e: 6f:77:a0:50:51:16:78:e8:91:71:5d:77:20:0a:84: 91:f1:ae:75:c5:4b:fa:40:b7:d6:4b:76:d6:11:19: ec:18:37:73:2a:d6:49:59:f1:24:4c:9a:f9:42:03: b7:16:74:d9:c1:6a:07:56:3b:2a:fa:e9:40:96:c9: 69:8e:e1:c3:8a:43:8e:d1:bb:9d:0f:82:cc:b6:cc: 6a:e2:a9:c7:dd:ff:bc:10:4e:ef:ee:72:1e:83:f3: 94:46:b4:46:e6:c2:10:f5:07:fc:a5:5e:5c:d3:54: e8:24:ce:71:a7:28:a0:f8:02:bc:20:6a:0f:3c:17: 1e:05:a8:d4:47:3a:38:64:18:ce:c1:85:56:c4:26: 23:db:a5:37:d4:d3:e4:ad:c1:61:f1:04:81:83:f8: 6b:87:6f:d7:f0:76:bd:fc:82:d4:b8:1d:3e:9d:d7: f8:25:2f:0b:8d:40:ea:57:63:1b:0c:5c:43:53:56: 36:4d:6a:38:82:48:79:32:f7:ed:18:e0:96:ed:f9: d2:bf:69:e5:f1:cf:b5:6e:98:41:b9:08:71:ec:27: 7b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3C:79:DC:84:D9:E1:F3:50:36:C4:58:1B:B9:27:50:5F:A5:86:A1 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:33:90:01:d2:3b:81:f9:44:e4:73:ec:78:6c:02:88:ec:87: 10:12:d1:27:25:dd:13:1b:8d:c0:2b:ec:2d:f5:74:af:e1:0d: d1:92:84:ae:8c:67:45:51:4b:66:1b:1f:6b:67:13:40:66:2e: 71:5c:15:ef:40:ce:1a:1f:12:0e:3f:e8:66:8c:b4:ad:ae:2b: d6:48:bf:4b:d5:4e:c8:c9:b3:ed:71:0c:b1:82:bb:08:9d:6e: 88:0d:2d:f0:b1:2a:ab:c6:7a:39:27:64:d3:71:93:d8:d3:e0: 91:a1:65:92:0f:64:a0:a2:0c:f1:53:15:90:51:98:47:82:33: 05:6e:da:f0:6b:86:bb:2a:27:97:1f:39:86:25:1f:bf:a0:a3: 05:43:37:ec:46:2d:d3:87:68:41:c4:73:26:78:4d:7d:41:91: 73:86:a1:a7:80:f9:36:80:93:60:70:08:e4:25:41:9a:10:24: c9:aa:5f:f3:a1:e2:5f:f3:3c:b3:ec:03:5b:01:aa:01:2f:fb: b1:d6:85:ca:7e:a1:f5:42:89:a9:bc:15:ed:2e:da:63:b5:17: d7:b0:82:94:8e:ac:80:1a:25:2d:09:28:17:6d:a9:d2:c8:15: 6b:e4:e6:d2:12:91:8a:42:89:ac:de:60:0d:fd:98:14:b8:89: 50:db:0d:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjYwMzAyMDAyMjMyWhcNMjYwMzA5MDAyMjMyWjAYMRYwFAYD VQQDEw02OWE0ZDg0YS1jMThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjoRS5n2uEVu8QP01WsofdSy86Kk7AyzyZE674l1Y43AggpkaXuwysVE6vY5v d6BQURZ46JFxXXcgCoSR8a51xUv6QLfWS3bWERnsGDdzKtZJWfEkTJr5QgO3FnTZ wWoHVjsq+ulAlslpjuHDikOO0budD4LMtsxq4qnH3f+8EE7v7nIeg/OURrRG5sIQ 9Qf8pV5c01ToJM5xpyig+AK8IGoPPBceBajURzo4ZBjOwYVWxCYj26U31NPkrcFh 8QSBg/hrh2/X8Ha9/ILUuB0+ndf4JS8LjUDqV2MbDFxDU1Y2TWo4gkh5MvftGOCW 7fnSv2nl8c+1bphBuQhx7Cd74QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFA8edyE 2eHzUDbEWBu5J1BfpYahMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGDOQAdI7gflE5HPseGwCiOyHEBLRJyXdExuNwCvsLfV0r+EN0ZKEroxnRVFL Zhsfa2cTQGYucVwV70DOGh8SDj/oZoy0ra4r1ki/S9VOyMmz7XEMsYK7CJ1uiA0t 8LEqq8Z6OSdk03GT2NPgkaFlkg9koKIM8VMVkFGYR4IzBW7a8GuGuyonlx85hiUf v6CjBUM37EYt04doQcRzJnhNfUGRc4ahp4D5NoCTYHAI5CVBmhAkyapf86HiX/M8 s+wDWwGqAS/7sdaFyn6h9UKJqbwV7S7aY7UX17CClI6sgBolLQkoF22p0sgVa+Tm 0hKRikKJrN5gDf2YFLiJUNsNZw== -----END CERTIFICATE-----Generated at Mon Mar 2 05:37:02 2026 by rpki-client