$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft File: EJhSul3Eo2jPdhIFFeysYu_aPkA.mft (raw, json) Hash identifier: G1ytYA01gl9HBplX9bSTTF02oIT8MqVCEeSuldQZUIM= Subject key identifier: EA:0F:D1:B3:76:C5:9B:05:4E:2B:D4:68:70:E3:0A:0C:CD:95:43:A6 Authority key identifier: 10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 Certificate issuer: /CN=A91FE637/serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Certificate serial: 0F02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft Manifest number: 0EFA Signing time: Mon 02 Mar 2026 00:19:51 +0000 Manifest this update: Mon 02 Mar 2026 00:19:49 +0000 Manifest next update: Mon 09 Mar 2026 00:19:49 +0000 Files and hashes: 1: EJhSul3Eo2jPdhIFFeysYu_aPkA.crl (hash: y72s1qMaGyTcmFz3pBtz5HSigueHbUZZ956eyA4L07c=) 2: 3D88426C974511E982D6FD1BC4F9AE02.roa (hash: VIZdhiYSpiKQJVRkddgrRD+Jy12svVReopMn7lF4O6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3842 (0xf02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE637, serialNumber=109852BA5DC4A368CF76120515ECAC62EFDA3E40 Validity Not Before: Mar 2 00:19:49 2026 GMT Not After : Mar 9 00:19:49 2026 GMT Subject: CN=69a4d7a6-b57b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:83:75:cf:2e:28:0c:79:d0:e6:88:d5:0a: 8f:65:47:df:4f:fe:31:8f:6f:6e:00:49:bc:98:9a: 23:07:b4:25:e2:09:68:cc:9b:bb:d1:7b:34:c9:ed: 66:3e:34:e5:d9:5b:c0:c8:b8:2c:d6:5b:28:b7:c7: fd:8e:08:34:10:6f:b5:90:df:2b:08:36:df:20:e0: 13:92:57:00:85:4d:47:e0:96:0a:ba:23:1d:79:b6: 6c:b5:10:04:e4:ed:1c:3c:2c:1d:70:67:28:b9:65: 3f:9e:81:d2:40:2f:fa:37:4a:5c:37:b6:75:fe:7b: 8a:cf:35:48:62:d7:17:d5:97:1f:78:ef:85:2f:2f: cb:54:f2:65:bd:69:0f:9b:01:ff:1d:5c:8e:13:e7: 02:c0:9e:67:a4:05:1d:e3:9d:a1:49:a1:b6:4c:a9: 05:d7:85:fe:47:34:65:9f:46:9a:a7:c6:0b:70:a3: f5:02:93:a8:cc:a3:d4:4b:a7:e3:53:cb:c2:2a:6c: 7d:06:b6:a0:4a:49:e8:e7:7f:f8:48:96:3a:1b:10: 82:ac:f1:ce:92:4c:7f:08:1e:f6:51:be:f4:a3:3c: 0e:06:19:80:58:a7:46:b2:0d:61:a1:73:ec:8d:2a: e9:a9:f2:98:87:b0:25:67:e1:d6:c4:54:e4:28:56: d5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0F:D1:B3:76:C5:9B:05:4E:2B:D4:68:70:E3:0A:0C:CD:95:43:A6 X509v3 Authority Key Identifier: keyid:10:98:52:BA:5D:C4:A3:68:CF:76:12:05:15:EC:AC:62:EF:DA:3E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EJhSul3Eo2jPdhIFFeysYu_aPkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE637/9BAEA13A974311E9BFD8E519C4F9AE02/EJhSul3Eo2jPdhIFFeysYu_aPkA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:4b:eb:d2:6d:c7:50:29:e0:6a:ed:85:eb:6e:cf:0b:f5:d9: d5:66:96:fb:ea:a4:c4:d0:f8:24:4f:57:f5:d5:99:3b:28:a1: 89:b3:87:28:27:e8:79:57:bf:3c:4b:40:fb:52:93:4f:21:a4: a5:39:f6:60:f5:b6:f8:43:bc:0e:88:69:c5:68:c5:b9:cd:6c: 20:06:40:e4:9a:6e:ec:72:70:8e:d3:26:69:da:b6:ae:27:6a: 78:fe:fd:f0:4d:0f:8d:f5:17:95:03:83:3b:b0:33:ff:eb:b8: 29:fb:50:10:32:e3:05:3e:f0:19:07:37:02:36:07:87:7e:5c: 0e:7e:5b:39:4a:8c:dc:c7:79:40:46:20:9d:b4:d2:5e:fc:d8: e4:05:1c:94:69:98:1a:9e:2d:3b:e2:08:75:09:5e:e5:bd:68: 8e:88:a1:c4:f3:71:b8:4f:c4:68:f5:9b:ba:79:1d:71:08:ec: 05:62:b2:3f:b7:c8:b9:8d:41:1b:29:74:59:0f:8f:b3:a4:ca: 0e:9e:f5:0a:e4:5c:8e:3d:6d:f9:b0:e9:12:9a:35:8a:fb:2e: 43:4e:7c:4a:ec:2d:97:6c:38:b0:9c:5b:48:a3:68:25:0a:4a: 38:5d:2f:86:2d:79:2d:c9:e5:e4:0d:43:95:8b:a0:35:e1:10: d6:9f:13:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU2MzcxMTAvBgNVBAUTKDEwOTg1MkJBNURDNEEzNjhDRjc2MTIwNTE1RUNBQzYy RUZEQTNFNDAwHhcNMjYwMzAyMDAxOTQ5WhcNMjYwMzA5MDAxOTQ5WjAYMRYwFAYD VQQDEw02OWE0ZDdhNi1iNTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRGDdc8uKAx50OaI1QqPZUffT/4xj29uAEm8mJojB7Ql4glozJu70Xs0ye1m PjTl2VvAyLgs1lsot8f9jgg0EG+1kN8rCDbfIOATklcAhU1H4JYKuiMdebZstRAE 5O0cPCwdcGcouWU/noHSQC/6N0pcN7Z1/nuKzzVIYtcX1ZcfeO+FLy/LVPJlvWkP mwH/HVyOE+cCwJ5npAUd452hSaG2TKkF14X+RzRln0aap8YLcKP1ApOozKPUS6fj U8vCKmx9BragSkno53/4SJY6GxCCrPHOkkx/CB72Ub70ozwOBhmAWKdGsg1hoXPs jSrpqfKYh7AlZ+HWxFTkKFbVtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOoP0bN2 xZsFTivUaHDjCgzNlUOmMB8GA1UdIwQYMBaAFBCYUrpdxKNoz3YSBRXsrGLv2j5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTYzNy85QkFFQTEzQTk3 NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8yalBkaElGRmV5c1l1X2FQ a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VKaFN1bDNFbzJqUGRoSUZGZXlzWXVfYVBrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTYzNy85QkFFQTEzQTk3NDMxMUU5QkZEOEU1MTlDNEY5QUUwMi9FSmhTdWwzRW8y alBkaElGRmV5c1l1X2FQa0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwkvr0m3HUCngau2F627PC/XZ1WaW++qkxND4JE9X9dWZOyihibOHKCfoeVe/ PEtA+1KTTyGkpTn2YPW2+EO8DohpxWjFuc1sIAZA5Jpu7HJwjtMmadq2ridqeP79 8E0PjfUXlQODO7Az/+u4KftQEDLjBT7wGQc3AjYHh35cDn5bOUqM3Md5QEYgnbTS XvzY5AUclGmYGp4tO+IIdQle5b1ojoihxPNxuE/EaPWbunkdcQjsBWKyP7fIuY1B Gyl0WQ+Ps6TKDp71CuRcjj1t+bDpEpo1ivsuQ058Suwtl2w4sJxbSKNoJQpKOF0v hi15Lcnl5A1DlYugNeEQ1p8T5g== -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:31 2026 by rpki-client