$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: Qmcnx30OLx0jfCK/++RJGnv3KlopOk7CwXem5KopjZc= Subject key identifier: B7:52:DA:37:7D:20:C7:F9:B2:61:C8:F8:7F:E7:C9:EB:67:09:F9:8D Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 04FE Signing time: Fri 27 Mar 2026 00:38:47 +0000 Manifest this update: Fri 27 Mar 2026 00:38:46 +0000 Manifest next update: Fri 03 Apr 2026 00:38:46 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: +1vDDZcEjggBN2q0Bt1SYsRzK2uifMDFvs02zNIlExk=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: Z1lkPboS7Do5JVczgOK46BmhKy5Eyozp7p6CLVvAhpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Mar 27 00:38:46 2026 GMT Not After : Apr 3 00:38:46 2026 GMT Subject: CN=69c5d196-2269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:73:5c:04:e5:ec:c0:6d:0e:6a:bc:59:da:eb: ee:6b:78:7f:37:07:a4:86:4b:30:6c:cc:cf:90:fd: 94:99:3c:f2:69:57:43:3a:84:e6:e0:9f:d2:24:83: 70:e7:45:b5:f5:d4:2c:16:f9:4c:16:10:62:fb:f8: 10:5f:52:2e:71:a8:0e:13:22:bf:15:44:14:77:81: a5:a0:71:fb:63:95:27:4e:a7:d2:1e:d6:3e:ec:25: ef:5a:8c:ba:35:f1:34:13:2d:28:2c:08:80:b3:0d: 63:4f:c4:20:f2:96:d3:63:98:87:ea:b9:5d:b1:b0: 90:70:ae:25:0a:96:aa:f9:2c:ff:0d:aa:72:07:7a: a2:8f:24:17:96:c2:56:9b:34:af:4c:0e:64:29:db: 9f:03:42:b7:e2:63:5a:c8:50:9f:8a:8f:3d:3b:09: 2e:3e:c4:67:81:a4:6d:64:fe:2f:1d:bb:da:35:24: e6:f9:3d:fc:d9:b9:ea:21:f5:af:ee:cf:58:ef:99: 25:b6:a4:8b:7f:8a:51:ea:cd:f1:7e:9d:e3:c7:0d: 1d:5f:e2:63:f8:43:92:63:a6:1a:a2:f8:95:42:da: 3e:1f:41:4f:b3:67:34:49:93:97:3a:fc:8e:41:eb: 44:c0:85:0f:d8:9f:93:81:fb:bb:ee:52:20:78:5e: e3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:52:DA:37:7D:20:C7:F9:B2:61:C8:F8:7F:E7:C9:EB:67:09:F9:8D X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:d0:7b:ae:c1:57:70:98:ff:4e:8f:f9:68:05:55:0c:00:77: c3:d0:5f:20:48:35:2b:6c:d3:62:67:fb:98:00:97:2e:d2:3b: 8b:1c:b5:2b:82:a3:d4:90:e3:e2:12:8b:c4:27:f0:7c:65:b2: 3c:3c:4d:20:73:87:11:ed:27:13:13:b4:eb:bd:e1:f2:5d:a0: 97:1f:4a:8d:23:80:9d:11:e6:73:90:16:9f:84:8b:01:90:c2: 9a:0d:12:7b:d1:65:a2:45:b0:cb:5b:9b:d2:73:ac:7a:96:9c: 7b:62:68:ba:67:69:55:c0:07:7e:72:5b:0e:2d:5d:d4:eb:6d: 56:fb:fe:74:f7:8e:b2:3d:94:66:5e:fa:3d:eb:a7:1e:60:6a: 67:6a:07:c1:7a:3d:a6:a8:38:09:89:ef:79:4a:fc:de:b2:98: a5:14:f3:77:05:31:60:ed:6a:6d:27:c5:bb:e0:46:96:16:69: c4:0b:79:3e:63:58:d9:28:05:85:8a:4e:62:b3:3b:f6:bc:f6: 0e:cc:73:e0:59:1c:e7:5d:9b:e4:e1:73:fb:4c:cc:de:d8:d5: cf:a4:23:5b:1f:3b:f3:5c:98:7e:46:da:ff:36:e7:0d:54:96: 09:62:2a:6e:43:a7:f5:d5:01:18:e4:42:25:62:27:24:ca:3d: 4d:45:fd:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjYwMzI3MDAzODQ2WhcNMjYwNDAzMDAzODQ2WjAYMRYwFAYD VQQDEw02OWM1ZDE5Ni0yMjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3NcBOXswG0OarxZ2uvua3h/NwekhkswbMzPkP2UmTzyaVdDOoTm4J/SJINw 50W19dQsFvlMFhBi+/gQX1IucagOEyK/FUQUd4GloHH7Y5UnTqfSHtY+7CXvWoy6 NfE0Ey0oLAiAsw1jT8Qg8pbTY5iH6rldsbCQcK4lCpaq+Sz/DapyB3qijyQXlsJW mzSvTA5kKdufA0K34mNayFCfio89OwkuPsRngaRtZP4vHbvaNSTm+T382bnqIfWv 7s9Y75kltqSLf4pR6s3xfp3jxw0dX+Jj+EOSY6YaoviVQto+H0FPs2c0SZOXOvyO QetEwIUP2J+Tgfu77lIgeF7jFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLdS2jd9 IMf5smHI+H/nyetnCfmNMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArtB7rsFXcJj/To/5aAVVDAB3w9BfIEg1K2zTYmf7mACXLtI7ixy1K4Kj1JDj 4hKLxCfwfGWyPDxNIHOHEe0nExO0673h8l2glx9KjSOAnRHmc5AWn4SLAZDCmg0S e9FlokWwy1ub0nOsepace2JoumdpVcAHfnJbDi1d1OttVvv+dPeOsj2UZl76Peun HmBqZ2oHwXo9pqg4CYnveUr83rKYpRTzdwUxYO1qbSfFu+BGlhZpxAt5PmNY2SgF hYpOYrM79rz2Dsxz4Fkc512b5OFz+0zM3tjVz6QjWx8781yYfkba/zbnDVSWCWIq bkOn9dUBGORCJWInJMo9TUX9bg== -----END CERTIFICATE-----Generated at Sat Mar 28 10:34:57 2026 by rpki-client