$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: uTRSV/t9fLX7OpJ1NEJebtqwvhd0WUL/bpdf9XdIC9s= Subject key identifier: E2:35:EC:19:95:07:DC:F3:AB:78:5E:92:7F:B5:BA:6B:75:26:F0:D5 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0E20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0E14 Signing time: Thu 26 Mar 2026 17:46:00 +0000 Manifest this update: Thu 26 Mar 2026 17:45:59 +0000 Manifest next update: Thu 02 Apr 2026 17:45:59 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: SF3RBG1HaZRwOvtvsgfc92RTncz9TKQPUt8y+mBMpAI=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: yYvSgR/d3pmtKa3loQQjhww8sMlH1QWIAa+l4ZsuXaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3616 (0xe20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Mar 26 17:45:59 2026 GMT Not After : Apr 2 17:45:59 2026 GMT Subject: CN=69c570d8-3fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:52:94:45:38:b9:7d:89:f3:32:5d:cd:cf:9f: ce:44:bb:20:c0:1f:43:ed:5b:65:fb:20:6f:d7:98: 9b:b8:39:86:2b:9f:4b:47:b1:bb:9b:dc:a8:b8:6b: f4:33:ac:53:0e:56:b7:5c:e9:e9:f4:c1:e4:91:4a: e6:81:a8:33:c3:b5:14:75:98:99:13:e9:e8:cc:75: ea:8b:c9:a7:f8:7c:fd:50:92:80:b0:34:09:b5:fc: f3:3a:9c:80:6c:37:e8:e3:c5:f4:c1:90:11:bf:1f: eb:a2:c8:fc:08:3e:95:a4:58:10:e0:85:a4:14:d2: 9a:b1:2c:c0:10:31:80:a1:a0:0f:0a:76:9e:2c:52: 52:b3:b3:09:79:ac:c6:9a:c8:83:89:ee:6e:91:b3: 3e:fa:ed:3d:75:82:c3:95:e8:19:2c:71:f1:c1:f0: 69:4a:62:48:e1:ec:8b:c1:73:68:05:fe:2a:70:4b: 6d:5c:97:4c:61:fc:db:d9:6a:93:43:98:47:6e:3d: c3:d8:f4:09:b6:0d:a6:0f:76:1e:b1:29:15:a5:1e: b0:4f:05:2d:22:69:52:b3:e3:b1:12:dd:14:01:39: e4:8b:c7:97:e2:c3:7c:5e:5f:c6:dc:30:0f:b3:a2: b1:9e:59:a5:e8:f1:17:5c:75:13:67:d9:8e:4c:d6: 05:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:35:EC:19:95:07:DC:F3:AB:78:5E:92:7F:B5:BA:6B:75:26:F0:D5 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:b1:ff:fd:36:c5:0f:52:ce:28:c6:75:ea:ad:4e:5d:95:be: 28:95:63:77:b5:98:7e:b3:83:5f:2c:cb:a7:ec:60:d7:fa:d8: d8:b0:1d:0a:85:4d:f1:59:c2:e4:ec:78:56:c1:8f:26:cd:9f: 52:15:6b:6c:48:93:30:8c:5b:ee:9d:01:c7:ef:63:99:20:0a: 3c:64:d0:76:b0:99:c3:24:c9:be:72:ff:65:cd:55:32:d3:07: bc:74:6c:03:65:02:3b:45:46:79:4f:e9:a3:a2:cc:5e:75:e7: 2f:cc:f6:83:3e:f0:69:3d:ff:56:e7:e9:43:b3:27:0d:13:86: b1:b8:26:9f:0f:25:7d:c3:06:e2:4a:36:0f:2c:76:ed:f3:41: cd:8b:52:25:40:b8:a1:4b:1e:d9:9b:26:22:1b:ac:91:c8:65: 14:99:8a:b6:1c:fa:d2:c5:29:d3:80:08:cd:ef:b8:35:69:98: a6:fd:53:48:89:7e:6a:49:36:3f:7e:bb:04:90:5e:fb:3c:d6: 43:2d:e7:53:aa:5c:1e:de:f2:a4:ab:ad:58:66:86:53:27:9c: e4:77:5e:24:7c:89:04:d1:e3:19:22:73:60:17:ae:14:f6:15: 6d:5c:bd:5a:00:36:af:b2:39:33:41:f3:51:44:bd:d2:9a:95: 33:3b:6c:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjYwMzI2MTc0NTU5WhcNMjYwNDAyMTc0NTU5WjAYMRYwFAYD VQQDEw02OWM1NzBkOC0zZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplKURTi5fYnzMl3Nz5/ORLsgwB9D7Vtl+yBv15ibuDmGK59LR7G7m9youGv0 M6xTDla3XOnp9MHkkUrmgagzw7UUdZiZE+nozHXqi8mn+Hz9UJKAsDQJtfzzOpyA bDfo48X0wZARvx/rosj8CD6VpFgQ4IWkFNKasSzAEDGAoaAPCnaeLFJSs7MJeazG msiDie5ukbM++u09dYLDlegZLHHxwfBpSmJI4eyLwXNoBf4qcEttXJdMYfzb2WqT Q5hHbj3D2PQJtg2mD3YesSkVpR6wTwUtImlSs+OxEt0UATnki8eX4sN8Xl/G3DAP s6Kxnlml6PEXXHUTZ9mOTNYFBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOI17BmV B9zzq3hekn+1umt1JvDVMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmrH//TbFD1LOKMZ16q1OXZW+KJVjd7WYfrODXyzLp+xg1/rY2LAdCoVN8VnC 5Ox4VsGPJs2fUhVrbEiTMIxb7p0Bx+9jmSAKPGTQdrCZwyTJvnL/Zc1VMtMHvHRs A2UCO0VGeU/po6LMXnXnL8z2gz7waT3/VufpQ7MnDROGsbgmnw8lfcMG4ko2Dyx2 7fNBzYtSJUC4oUse2ZsmIhuskchlFJmKthz60sUp04AIze+4NWmYpv1TSIl+akk2 P367BJBe+zzWQy3nU6pcHt7ypKutWGaGUyec5HdeJHyJBNHjGSJzYBeuFPYVbVy9 WgA2r7I5M0HzUUS90pqVMztshQ== -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:16 2026 by rpki-client