$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: 93YY6okxvaz58j5+HubXU/zw1lYALbaDkTt6Q2w2syM= Subject key identifier: 34:EA:E1:B0:9E:31:8E:36:1F:17:7D:70:47:09:A4:82:56:E2:12:F5 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0BC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0BBA Signing time: Tue 24 Mar 2026 18:47:54 +0000 Manifest this update: Tue 24 Mar 2026 18:47:53 +0000 Manifest next update: Tue 31 Mar 2026 18:47:53 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: G/zH0V/IyrVWsu09cJGMbUCBXuT86WswJCTtIYhvPKA=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: yHiEBDvlcyXKE4TpKn114IGYxQdtuGdLDYmaaMzfwkk=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: +7Lf6kxVJqd3BCYCOdcg2bt/oX1o6nqQAFJ3/VpyaiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Mar 24 18:47:53 2026 GMT Not After : Mar 31 18:47:53 2026 GMT Subject: CN=69c2dc59-1526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fb:8c:dc:f0:33:53:ef:8a:1f:aa:89:4b:4d: 5d:6a:46:f2:c2:8d:a3:15:b9:76:cc:fe:c3:ae:89: 24:0c:80:41:cf:e9:cc:ab:c5:ce:95:89:af:e2:f9: 4c:f4:33:c9:3c:f2:f9:e7:4b:e4:b8:00:6b:7a:37: cf:12:90:64:a8:10:42:23:77:17:03:ab:33:18:34: 68:cf:d1:ec:3d:89:ea:71:38:34:b6:ee:ac:2f:5a: 57:09:dc:3e:a1:e6:e7:b0:ce:21:48:70:81:b1:78: 0d:46:e7:62:ca:84:dd:e0:47:27:92:7b:b1:dc:fe: 5e:99:68:8d:36:87:8c:c2:98:21:f6:be:5a:53:50: f5:5d:1a:4d:e0:b4:ec:81:f8:5a:7c:70:cb:2d:06: 3a:cc:6d:9d:03:b8:4c:14:13:7e:c5:40:16:3d:2d: 8c:75:14:07:c4:64:16:e2:1a:8c:15:f0:cc:3a:83: 83:51:8a:85:fd:5d:0c:6b:5b:3c:f8:c4:c6:a5:0d: b2:d0:5b:3d:fe:85:d1:f7:39:10:1d:89:cf:3b:f1: 1e:b0:ad:4f:db:85:d4:66:a7:9f:66:de:6c:f1:8b: 75:8d:53:80:46:a6:04:b7:e8:18:5b:41:a8:27:2e: f5:1e:ac:5a:b0:b4:43:67:36:c7:70:4f:a3:6b:0c: 93:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:EA:E1:B0:9E:31:8E:36:1F:17:7D:70:47:09:A4:82:56:E2:12:F5 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:89:eb:ba:bf:8f:c4:06:7e:91:86:4c:03:1b:d8:32:b5:6f: 16:fb:29:5b:95:2d:dc:74:1d:6a:d1:57:dd:d5:98:4f:fd:a8: 46:b3:73:d4:d3:4c:12:63:28:e3:fe:cb:8d:e4:9c:58:78:b1: 9e:3b:84:1b:2f:31:77:b5:d8:b8:fd:09:a5:3f:ae:33:21:2c: 25:e6:e7:9b:53:2f:0e:a0:9f:17:82:af:7e:7a:06:f2:c5:d8: be:9e:b8:8c:d7:5a:fe:00:2e:0c:19:f0:b1:9d:65:5b:3b:98: 40:9e:f4:a6:72:bd:58:6f:84:35:25:df:22:e9:48:38:7e:11: cc:52:c8:72:36:17:f9:79:2e:f7:55:e2:da:52:84:23:1e:d1: b3:5d:0b:fa:88:0e:04:85:13:8a:b0:dc:1a:10:aa:58:6d:ac: f5:89:87:86:3f:53:21:59:9c:03:48:bb:30:a3:24:0e:d5:07: 8d:15:bc:52:8e:cc:33:64:32:57:a1:10:7f:09:1e:bf:3e:ec: 91:c5:8f:04:6a:c7:a4:59:20:1c:08:60:aa:80:04:bc:f9:30: 76:5c:3f:4d:78:da:81:ae:20:92:33:c0:d6:bc:be:43:c9:31: 4d:87:91:b2:15:84:ca:f6:4f:a6:53:87:5c:0d:33:20:6c:fc: 5a:13:88:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjYwMzI0MTg0NzUzWhcNMjYwMzMxMTg0NzUzWjAYMRYwFAYD VQQDEw02OWMyZGM1OS0xNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofuM3PAzU++KH6qJS01dakbywo2jFbl2zP7DrokkDIBBz+nMq8XOlYmv4vlM 9DPJPPL550vkuABrejfPEpBkqBBCI3cXA6szGDRoz9HsPYnqcTg0tu6sL1pXCdw+ oebnsM4hSHCBsXgNRudiyoTd4Ecnknux3P5emWiNNoeMwpgh9r5aU1D1XRpN4LTs gfhafHDLLQY6zG2dA7hMFBN+xUAWPS2MdRQHxGQW4hqMFfDMOoODUYqF/V0Ma1s8 +MTGpQ2y0Fs9/oXR9zkQHYnPO/EesK1P24XUZqefZt5s8Yt1jVOARqYEt+gYW0Go Jy71HqxasLRDZzbHcE+jawyT+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDTq4bCe MY42Hxd9cEcJpIJW4hL1MB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb4nrur+PxAZ+kYZMAxvYMrVvFvspW5Ut3HQdatFX3dWYT/2oRrNz1NNMEmMo 4/7LjeScWHixnjuEGy8xd7XYuP0JpT+uMyEsJebnm1MvDqCfF4KvfnoG8sXYvp64 jNda/gAuDBnwsZ1lWzuYQJ70pnK9WG+ENSXfIulIOH4RzFLIcjYX+Xku91Xi2lKE Ix7Rs10L+ogOBIUTirDcGhCqWG2s9YmHhj9TIVmcA0i7MKMkDtUHjRW8Uo7MM2Qy V6EQfwkevz7skcWPBGrHpFkgHAhgqoAEvPkwdlw/TXjaga4gkjPA1ry+Q8kxTYeR shWEyvZPplOHXA0zIGz8WhOIjQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:03:45 2026 by rpki-client