$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft File: rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft (raw, json) Hash identifier: 7LuIcpy+E6Wq83Nymt8AoIHsi0QBrgQZi7XYRGyt4fk= Subject key identifier: 12:50:BB:B5:EA:42:59:FA:BE:B1:82:4F:CA:9E:53:C6:7D:C3:92:A2 Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 049B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft Manifest number: 0488 Signing time: Tue 24 Mar 2026 23:46:21 +0000 Manifest this update: Tue 24 Mar 2026 23:46:21 +0000 Manifest next update: Tue 31 Mar 2026 23:46:21 +0000 Files and hashes: 1: rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl (hash: hOvDkhdhFwJabiL3Y7syxYQrteZ972ZIS7e4ntWa36Y=) 2: 2E82E686569E11F08015BC34C4F9AE02.roa (hash: uBxr7p6TwpA9INGB4KedC2EYtx+upfxJFxMsenv5Y3Q=) 3: E37002DA5EEC11F08928266FC4F9AE02.roa (hash: 2HGFVACffkGhDeLHJzK3N3Q2oFmACWhF8TcKRliN94o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1179 (0x49b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: Mar 24 23:46:21 2026 GMT Not After : Mar 31 23:46:21 2026 GMT Subject: CN=69c3224d-834f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:38:68:a3:56:26:dd:f0:44:90:50:8e:8a:57: 9a:56:34:6c:ad:c1:77:d7:be:2c:d5:f1:58:ed:05: c9:bb:9c:11:86:e0:8b:c4:19:fe:ae:12:f6:80:9a: 5c:fb:18:c1:44:07:24:7f:de:66:63:02:da:6f:08: 93:f9:df:34:3c:52:0c:25:63:6b:8b:0a:b4:f4:56: 9f:36:8d:a1:18:30:b4:72:f5:0e:97:97:fd:cf:0f: 76:89:8f:ef:29:05:6f:69:77:51:ca:de:a9:8e:32: 4d:24:4f:47:55:9a:8b:b5:84:c1:50:96:ac:ca:6d: 55:c9:33:05:1d:89:05:d4:1d:8b:9f:01:06:e3:06: 83:d6:cc:67:eb:67:77:40:5f:7c:af:21:a0:62:10: 81:a2:ca:6f:3b:58:15:98:92:a2:cd:b3:be:0c:a2: c6:d1:37:63:88:03:1a:59:c8:b3:6b:24:e4:8a:d6: 5d:1e:12:b7:96:00:93:ee:63:c6:f1:d7:47:bb:6e: a5:e1:90:fa:5a:57:c9:97:20:fd:27:f1:9a:a9:24: fd:a1:e4:ee:29:0b:07:35:1b:9e:7d:c7:48:9c:24: 91:2b:1b:33:d8:e9:1b:74:86:0e:90:f1:59:9f:b3: 26:d6:df:b3:45:01:b0:0c:dd:79:21:ea:d9:67:11: 4c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:50:BB:B5:EA:42:59:FA:BE:B1:82:4F:CA:9E:53:C6:7D:C3:92:A2 X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e0:7c:ac:de:d2:08:83:7c:de:24:e3:3d:3a:dd:60:21:91: bf:95:64:6d:56:83:b4:a3:56:a7:40:f9:c5:a1:59:31:5c:ed: f8:f6:79:34:b5:99:f7:c9:8d:de:7e:b1:bc:19:aa:18:d7:ea: 4d:68:53:84:c9:11:cf:ba:a3:f6:59:64:08:f1:75:ad:41:5a: 1f:66:69:2e:4c:d7:2a:63:cd:71:49:0c:bd:e6:e7:b1:61:af: 14:73:aa:48:d5:bb:c1:76:88:61:0b:d2:2c:d7:b0:d8:ff:03: b4:fc:6d:7b:a9:2c:fa:76:4d:fc:84:64:3b:be:b3:e2:a6:6e: 27:7e:40:a7:61:60:e4:38:9a:b0:c5:24:c6:a4:aa:b7:57:9e: 93:85:29:91:13:3a:45:e4:56:3c:0f:32:c9:90:4a:77:59:96: c7:7d:e9:b9:48:e8:4b:ce:ab:65:e3:3d:19:30:29:9a:1c:21: 5f:a1:cd:fb:cd:6d:f1:28:5f:1e:f1:17:82:c4:d0:96:34:22: 0e:0f:c2:70:6e:4d:48:1d:be:54:13:96:ce:dc:bf:52:dd:16: 4c:81:89:8a:5c:1c:4e:8f:c9:e1:70:a4:ed:3e:7f:f3:08:f9: f8:92:e0:f7:f0:31:6a:ec:c5:e4:6d:71:90:79:96:42:b7:a1: 30:2b:f9:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjYwMzI0MjM0NjIxWhcNMjYwMzMxMjM0NjIxWjAYMRYwFAYD VQQDEw02OWMzMjI0ZC04MzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkjhoo1Ym3fBEkFCOileaVjRsrcF3174s1fFY7QXJu5wRhuCLxBn+rhL2gJpc +xjBRAckf95mYwLabwiT+d80PFIMJWNriwq09FafNo2hGDC0cvUOl5f9zw92iY/v KQVvaXdRyt6pjjJNJE9HVZqLtYTBUJasym1VyTMFHYkF1B2LnwEG4waD1sxn62d3 QF98ryGgYhCBospvO1gVmJKizbO+DKLG0TdjiAMaWcizayTkitZdHhK3lgCT7mPG 8ddHu26l4ZD6WlfJlyD9J/GaqST9oeTuKQsHNRuefcdInCSRKxsz2OkbdIYOkPFZ n7Mm1t+zRQGwDN15IerZZxFMzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBJQu7Xq Qln6vrGCT8qeU8Z9w5KiMB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODNCNC9FNzlFRDQ5MDgzRjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5 bUtlZzJwQlR2Q2NtOG1rRTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALOB8rN7SCIN83iTjPTrdYCGRv5VkbVaDtKNWp0D5xaFZMVzt+PZ5NLWZ98mN 3n6xvBmqGNfqTWhThMkRz7qj9llkCPF1rUFaH2ZpLkzXKmPNcUkMvebnsWGvFHOq SNW7wXaIYQvSLNew2P8DtPxte6ks+nZN/IRkO76z4qZuJ35Ap2Fg5DiasMUkxqSq t1eek4UpkRM6ReRWPA8yyZBKd1mWx33puUjoS86rZeM9GTApmhwhX6HN+81t8Shf HvEXgsTQljQiDg/CcG5NSB2+VBOWzty/Ut0WTIGJilwcTo/J4XCk7T5/8wj5+JLg 9/AxauzF5G1xkHmWQrehMCv5kQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:25:54 2026 by rpki-client