$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: e4l0dHfxznuDOFdg3D2PmRWXQztuFBtE+k95uTVu7t0= Subject key identifier: 57:11:DC:38:6F:F2:CD:CD:4C:C7:20:12:6A:CE:D6:69:05:A9:AE:6E Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 02ED Signing time: Wed 25 Mar 2026 00:57:32 +0000 Manifest this update: Wed 25 Mar 2026 00:57:32 +0000 Manifest next update: Wed 01 Apr 2026 00:57:32 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: lNwVZDAla4ijYPXAsyDrVcSsCuFlLDRApEYB3eQE/ns=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: 6FR1v3YI0RhGAgeM3+CGgfy+MyKif0LXk1Vk7lh4i/M=) 3: E79D93681C1F11F1B2DF50D0313D8C67.roa (hash: byUyEX7zew/XiVFNtlIRcBL6+yIP498RzeWT80PskX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:57:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Mar 25 00:57:32 2026 GMT Not After : Apr 1 00:57:32 2026 GMT Subject: CN=69c332fc-d6cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:44:8e:2a:76:05:46:29:2e:ec:d8:bc:4b:a1: 02:96:f8:00:b0:6d:2f:22:3b:6f:c9:08:9b:fe:db: 6e:97:60:f7:ad:71:43:d3:2b:8f:c3:a2:71:ce:a2: db:b2:57:ed:4a:56:58:9b:3b:4d:57:08:d8:77:d8: ef:aa:af:2c:a8:1e:10:c0:e9:9b:62:9c:2f:3f:f7: aa:56:19:47:fd:3a:9a:78:20:42:b9:9f:0f:fd:00: f2:7c:9e:84:bc:5b:01:dd:d1:19:e8:60:59:bd:99: 1c:fa:a0:29:01:b1:cf:84:8e:99:74:43:a3:ea:34: f1:8c:de:0b:ab:e5:ff:5b:fa:47:70:69:76:fd:41: 19:35:62:34:50:3d:9f:11:ab:20:e6:31:3a:a7:f8: 55:e1:2e:b7:5e:4f:b3:9d:2e:96:7f:a5:c2:e1:fe: ad:38:08:23:27:93:a5:ac:de:ab:5f:d2:79:c1:51: 4d:c2:7c:44:7b:3c:8a:e2:ad:b3:4c:e9:1f:4a:8c: 1a:75:5c:a8:95:38:53:48:eb:ac:7d:3b:54:56:ae: dd:9b:77:98:69:29:12:d0:15:9c:8d:c3:94:1a:fb: 18:04:c2:22:50:52:64:51:48:7b:db:a2:c1:0e:41: 02:0f:2e:db:d0:bf:e8:57:1f:86:a0:f6:04:ea:9a: 12:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:11:DC:38:6F:F2:CD:CD:4C:C7:20:12:6A:CE:D6:69:05:A9:AE:6E X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:c7:35:1e:6e:f5:bd:5f:31:f1:e6:7e:e8:c3:55:f7:6d:16: 90:5f:98:da:a7:1c:ab:d3:3c:15:38:3f:7e:18:25:6e:3f:01: e8:96:73:4c:17:14:f3:30:fe:92:fc:48:2c:10:81:c0:a2:8b: 2e:0d:14:e5:12:b3:a0:ab:48:f3:c9:8f:17:09:52:6a:d8:fd: b3:0a:54:35:4e:8c:1e:22:8c:8a:2b:81:f1:96:87:a9:1a:ff: 15:3d:23:23:16:c6:09:67:87:4c:71:6b:05:8b:6c:9b:14:c6: 9a:9a:fd:ae:e7:d5:80:6e:11:3b:d3:7a:71:d3:01:c8:95:93: 1d:e6:2e:d1:7a:2e:bc:64:f4:fb:9a:e0:fd:a6:9e:2e:34:11: f6:96:d5:11:e1:31:c6:02:0c:ab:45:30:6e:32:7d:be:e9:46: 7c:52:2d:ae:de:2a:3d:20:00:89:80:f7:7f:2d:00:64:c4:38: 6f:62:27:b4:20:a3:76:47:92:27:b0:e6:2b:8e:84:b0:3b:40: 07:cc:52:df:bc:c0:fa:dd:0a:21:27:a6:87:24:81:8a:11:42: a8:e0:aa:e7:cd:18:a8:f9:5e:c1:dd:0a:b4:bd:fe:8f:1a:8c: dd:65:8e:ed:35:c9:fb:23:f2:fa:0d:75:b8:2c:39:7b:18:69: db:45:5e:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjYwMzI1MDA1NzMyWhcNMjYwNDAxMDA1NzMyWjAYMRYwFAYD VQQDEw02OWMzMzJmYy1kNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7USOKnYFRiku7Ni8S6EClvgAsG0vIjtvyQib/ttul2D3rXFD0yuPw6JxzqLb slftSlZYmztNVwjYd9jvqq8sqB4QwOmbYpwvP/eqVhlH/TqaeCBCuZ8P/QDyfJ6E vFsB3dEZ6GBZvZkc+qApAbHPhI6ZdEOj6jTxjN4Lq+X/W/pHcGl2/UEZNWI0UD2f Easg5jE6p/hV4S63Xk+znS6Wf6XC4f6tOAgjJ5OlrN6rX9J5wVFNwnxEezyK4q2z TOkfSowadVyolThTSOusfTtUVq7dm3eYaSkS0BWcjcOUGvsYBMIiUFJkUUh726LB DkECDy7b0L/oVx+GoPYE6poS7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFcR3Dhv 8s3NTMcgEmrO1mkFqa5uMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMcc1Hm71vV8x8eZ+6MNV920WkF+Y2qccq9M8FTg/fhglbj8B6JZzTBcU8zD+ kvxILBCBwKKLLg0U5RKzoKtI88mPFwlSatj9swpUNU6MHiKMiiuB8ZaHqRr/FT0j IxbGCWeHTHFrBYtsmxTGmpr9rufVgG4RO9N6cdMByJWTHeYu0XouvGT0+5rg/aae LjQR9pbVEeExxgIMq0UwbjJ9vulGfFItrt4qPSAAiYD3fy0AZMQ4b2IntCCjdkeS J7DmK46EsDtAB8xS37zA+t0KISemhySBihFCqOCq580YqPlewd0KtL3+jxqM3WWO 7TXJ+yPy+g11uCw5exhp20VeRA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:08:09 2026 by rpki-client