$ rpki-client -vvf rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft File: W9l8Mex4xvFX13LBu1drgCSCtyg.mft (raw, json) Hash identifier: fWDcPIOYMXjEIrUSrD/gIjejSJJGocn0bIIsngAlEjk= Subject key identifier: 5B:39:0E:5F:AA:EE:AB:C1:8C:B1:0B:9B:38:AA:BE:16:C0:FF:D4:FC Authority key identifier: 5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 Certificate issuer: /CN=A91764A1/serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Certificate serial: 0CF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft Manifest number: 0CE9 Signing time: Thu 26 Mar 2026 18:08:26 +0000 Manifest this update: Thu 26 Mar 2026 18:08:26 +0000 Manifest next update: Thu 02 Apr 2026 18:08:26 +0000 Files and hashes: 1: W9l8Mex4xvFX13LBu1drgCSCtyg.crl (hash: FQKi05hTqiOOm7RejRn3w3Ulodikah7l1VtDs62Xwbc=) 2: 753703FE045C11EAB8BF0932C4F9AE02.roa (hash: SnoZSRtIjrcDwHwSafUbKJFgKkiBTTP1nknh4YF69A0=) 3: 0328D1B21D3611F1B8D3A442193D8C67.roa (hash: uwx5Uyp3HSjYikMkihiCICXAEqHIxuOwCFMRAQyMQ4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3320 (0xcf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764A1, serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Validity Not Before: Mar 26 18:08:26 2026 GMT Not After : Apr 2 18:08:26 2026 GMT Subject: CN=69c5761a-e025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:86:0a:a9:0b:f7:b1:01:4d:f2:d5:b8:a1:a0: 19:e8:5e:65:9e:dc:43:55:13:df:8d:53:d9:23:99: 91:c1:f1:82:8f:a8:10:a4:65:92:90:3f:e9:ea:0d: f7:c7:1e:be:7e:b3:cf:96:dd:c9:ca:03:28:38:b6: aa:3b:9b:1a:a7:86:2f:fb:ca:ee:2e:7e:e3:e1:3b: b5:66:d3:77:68:02:cb:b5:f1:44:39:76:41:8d:ba: 79:67:e3:13:ce:f1:ce:60:42:26:fb:c3:f6:d4:3e: 72:44:ab:de:5e:cb:44:5d:e0:ff:8b:0c:10:3e:82: 7a:ee:87:8d:73:6a:72:01:31:27:70:c3:eb:30:6d: 71:16:bf:b9:0f:06:5c:00:06:5c:cc:3f:5d:fc:a8: 45:f6:b3:85:73:fc:fa:6a:09:79:a2:4d:46:ba:7c: ca:2f:2c:76:06:36:a0:17:ca:69:5b:c0:90:01:23: 25:3e:3b:2e:72:f6:6e:6f:06:d7:75:33:68:7f:4b: 40:6b:9b:c5:53:4a:9a:e9:0e:ea:df:ea:21:00:87: e4:b8:0f:71:e2:05:90:00:6f:22:7e:41:c6:7a:5d: 7b:b7:ff:4f:69:09:94:fd:d8:69:b1:a4:81:ad:34: f0:e9:50:60:5b:80:aa:d4:79:06:00:e5:e8:39:1c: 35:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:39:0E:5F:AA:EE:AB:C1:8C:B1:0B:9B:38:AA:BE:16:C0:FF:D4:FC X509v3 Authority Key Identifier: keyid:5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:52:5b:dc:8a:66:54:6e:ff:9c:25:02:8d:72:f0:f2:c6:2f: d6:1c:38:46:d8:e9:8d:b4:16:8c:04:3f:72:ec:2b:18:00:36: 65:37:d7:c0:54:56:ca:b5:4f:43:35:2e:d7:87:43:82:64:53: 9b:2a:ac:1f:42:b0:f2:2e:2c:92:fd:d5:ac:49:40:1a:a3:47: 3e:96:ce:7b:7f:22:01:fc:e3:0b:e3:0b:90:da:78:fa:6f:d6: de:90:c7:f3:b8:a4:f2:d8:6b:43:43:cd:d0:26:ad:65:8d:da: 20:60:0c:bf:fb:d4:19:f8:fb:b6:0c:17:a7:db:c7:25:97:ec: 72:67:93:e1:1d:57:93:5b:6e:a4:f7:dc:93:ff:a8:d6:5b:92: 21:9a:e1:a6:30:40:41:b2:19:f1:2a:f2:ca:3e:51:e0:13:3b: 2a:aa:8c:d8:f6:34:f0:fc:f4:9f:9d:55:b1:37:06:19:5f:4b: 77:90:53:fb:e6:3d:a2:92:47:8a:5b:13:1a:e4:36:91:ab:4c: db:38:89:78:ac:68:ae:0a:81:e0:20:64:e1:ed:9c:53:78:78: ef:12:d1:d1:a3:34:a6:28:44:48:e5:2e:5d:71:a2:b1:8b:06: e4:a2:43:7b:dd:c1:6f:8f:a0:f5:bc:0b:19:5c:43:4e:e8:19: ba:32:65:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0QTExMTAvBgNVBAUTKDVCRDk3QzMxRUM3OEM2RjE1N0Q3NzJDMUJCNTc2Qjgw MjQ4MkI3MjgwHhcNMjYwMzI2MTgwODI2WhcNMjYwNDAyMTgwODI2WjAYMRYwFAYD VQQDEw02OWM1NzYxYS1lMDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIYKqQv3sQFN8tW4oaAZ6F5lntxDVRPfjVPZI5mRwfGCj6gQpGWSkD/p6g33 xx6+frPPlt3JygMoOLaqO5sap4Yv+8ruLn7j4Tu1ZtN3aALLtfFEOXZBjbp5Z+MT zvHOYEIm+8P21D5yRKveXstEXeD/iwwQPoJ67oeNc2pyATEncMPrMG1xFr+5DwZc AAZczD9d/KhF9rOFc/z6agl5ok1GunzKLyx2BjagF8ppW8CQASMlPjsucvZubwbX dTNof0tAa5vFU0qa6Q7q3+ohAIfkuA9x4gWQAG8ifkHGel17t/9PaQmU/dhpsaSB rTTw6VBgW4Cq1HkGAOXoORw1QQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFs5Dl+q 7qvBjLELmziqvhbA/9T8MB8GA1UdIwQYMBaAFFvZfDHseMbxV9dywbtXa4Akgrco MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRBMS82QjdENjlBNjA0 NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2RlgxM0xCdTFkcmdDU0N0 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c5bDhNZXg0eHZGWDEzTEJ1MWRyZ0NTQ3R5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRBMS82QjdENjlBNjA0NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2 RlgxM0xCdTFkcmdDU0N0eWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyFJb3IpmVG7/nCUCjXLw8sYv1hw4RtjpjbQWjAQ/cuwrGAA2ZTfXwFRWyrVP QzUu14dDgmRTmyqsH0Kw8i4skv3VrElAGqNHPpbOe38iAfzjC+MLkNp4+m/W3pDH 87ik8thrQ0PN0CatZY3aIGAMv/vUGfj7tgwXp9vHJZfscmeT4R1Xk1tupPfck/+o 1luSIZrhpjBAQbIZ8Sryyj5R4BM7KqqM2PY08Pz0n51VsTcGGV9Ld5BT++Y9opJH ilsTGuQ2katM2ziJeKxorgqB4CBk4e2cU3h47xLR0aM0pihESOUuXXGisYsG5KJD e93Bb4+g9bwLGVxDTugZujJl4g== -----END CERTIFICATE-----Generated at Sat Mar 28 14:29:11 2026 by rpki-client