$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft File: W2pwDO4aU9VRnlolxk0a0ro3zac.mft (raw, json) Hash identifier: NfYuh4gV7D89QlDYA4mWIXjtMwCY9UC1WfJaSP9gJsg= Subject key identifier: DA:78:46:62:68:2B:54:A2:E4:8D:EC:C2:F2:E2:BF:B8:78:74:4E:BE Authority key identifier: 5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 Certificate issuer: /CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Certificate serial: 0302 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft Manifest number: 02FB Signing time: Wed 25 Mar 2026 00:54:35 +0000 Manifest this update: Wed 25 Mar 2026 00:54:35 +0000 Manifest next update: Wed 01 Apr 2026 00:54:35 +0000 Files and hashes: 1: W2pwDO4aU9VRnlolxk0a0ro3zac.crl (hash: 2BQ/9rgOJV5pfeYaI/ltHSwabdlb6is0nea/NWzFf5Y=) 2: 53AA673C16A911ED88058C80C4F9AE02.roa (hash: TnwXtb5MfhCK20XeLeq1l+qvHKIr2uVnJlZNM+FxEW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAB94, serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Validity Not Before: Mar 25 00:54:35 2026 GMT Not After : Apr 1 00:54:35 2026 GMT Subject: CN=69c3324b-d38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1c:e4:58:69:ca:c2:d1:4b:d2:41:e8:01:8b: 74:5d:87:59:68:44:ce:c7:ea:9e:7d:15:12:b9:70: bc:e8:b8:cb:04:3d:e6:77:fc:91:70:d9:65:78:c9: 2c:41:6c:d2:0a:fa:49:da:cc:d8:53:15:7c:8f:82: 0c:47:2f:bd:51:ba:30:29:a7:b3:6e:55:88:3c:a4: c2:c3:6c:31:34:74:ef:da:68:01:e5:e8:d6:e5:2a: 42:32:6a:8a:26:90:1d:69:91:69:fa:9c:c6:fc:55: 32:b6:8a:b2:c8:ed:59:b7:96:6a:ea:7f:1c:58:16: ec:86:7a:af:b2:d9:69:56:df:78:e3:6f:54:6d:9c: ea:a1:25:44:5b:ca:e2:41:b4:25:e9:c7:ba:90:e9: 5d:6d:2b:f7:01:2b:ab:f6:6b:93:bd:2d:29:31:0a: 11:e6:cf:1b:37:3a:5f:60:e2:88:62:47:00:20:57: e5:0e:77:79:29:7d:2f:9d:39:5d:5d:82:dd:b8:9a: ed:1e:5f:e4:a0:d1:a9:35:03:55:1f:2b:e1:a1:d7: 95:eb:90:6c:09:d4:06:39:62:30:d2:6d:a6:a7:a4: 76:f5:fb:21:ac:84:a5:fb:ee:f2:07:fc:fd:f3:51: 5e:31:a3:62:05:94:9a:64:12:2a:42:2d:b5:7b:85: e7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:78:46:62:68:2B:54:A2:E4:8D:EC:C2:F2:E2:BF:B8:78:74:4E:BE X509v3 Authority Key Identifier: keyid:5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:c3:41:6e:cf:77:e3:f2:0c:52:01:91:7b:09:c7:a3:b5:1e: 0e:14:69:7a:84:35:68:0e:bf:89:f8:e4:c5:99:5f:4a:d6:44: ef:9d:02:ae:0f:a1:2e:5a:b1:16:8d:35:6b:7e:2c:33:da:2a: 12:e5:ec:c9:04:d8:e7:a1:a0:24:23:14:55:be:c0:c4:69:b9: 0f:48:2e:a3:2e:c3:9a:a5:d0:c8:8f:81:08:2a:41:02:4f:d8: 6b:51:da:d4:a1:79:95:21:55:9d:a9:3a:7d:19:5e:92:b4:df: 6d:e2:c0:83:43:50:b9:7e:02:e1:0c:0b:24:f8:6e:fd:e1:76: 1f:bb:03:5e:73:9b:b7:15:1f:26:a2:80:58:6f:0c:b4:e7:8c: df:c1:0d:96:ef:2b:19:fb:b8:f1:ac:b8:3e:0a:ff:1d:c8:b9: e9:bc:84:c1:9c:34:b6:39:cf:76:8e:e2:ec:1a:96:6e:4c:1e: 4d:60:ab:d9:2e:f4:97:d0:64:8c:4b:62:a1:44:18:78:94:fc: f5:36:12:6b:ea:37:b7:32:8c:9b:a0:f4:68:7e:b5:3c:dc:f7: 5f:4d:91:49:60:be:ef:e5:dc:fb:0f:3f:e4:c4:0e:da:96:a9: 11:9a:d9:ce:e1:c1:69:45:d5:47:80:3c:a9:b4:66:52:4b:fd: 8f:a4:8c:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCOTQxMTAvBgNVBAUTKDVCNkE3MDBDRUUxQTUzRDU1MTlFNUEyNUM2NEQxQUQy QkEzN0NEQTcwHhcNMjYwMzI1MDA1NDM1WhcNMjYwNDAxMDA1NDM1WjAYMRYwFAYD VQQDEw02OWMzMzI0Yi1kMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6BzkWGnKwtFL0kHoAYt0XYdZaETOx+qefRUSuXC86LjLBD3md/yRcNlleMks QWzSCvpJ2szYUxV8j4IMRy+9UbowKaezblWIPKTCw2wxNHTv2mgB5ejW5SpCMmqK JpAdaZFp+pzG/FUytoqyyO1Zt5Zq6n8cWBbshnqvstlpVt94429UbZzqoSVEW8ri QbQl6ce6kOldbSv3ASur9muTvS0pMQoR5s8bNzpfYOKIYkcAIFflDnd5KX0vnTld XYLduJrtHl/koNGpNQNVHyvhodeV65BsCdQGOWIw0m2mp6R29fshrISl++7yB/z9 81FeMaNiBZSaZBIqQi21e4XnKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNp4RmJo K1Si5I3swvLiv7h4dE6+MB8GA1UdIwQYMBaAFFtqcAzuGlPVUZ5aJcZNGtK6N82n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUI5NC83MDcwMjNGQTE2 QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5VlJubG9seGswYTBybzN6 YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cycHdETzRhVTlWUm5sb2x4azBhMHJvM3phYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUI5NC83MDcwMjNGQTE2QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5 VlJubG9seGswYTBybzN6YWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAicNBbs934/IMUgGRewnHo7UeDhRpeoQ1aA6/ifjkxZlfStZE750Crg+hLlqx Fo01a34sM9oqEuXsyQTY56GgJCMUVb7AxGm5D0guoy7DmqXQyI+BCCpBAk/Ya1Ha 1KF5lSFVnak6fRlekrTfbeLAg0NQuX4C4QwLJPhu/eF2H7sDXnObtxUfJqKAWG8M tOeM38ENlu8rGfu48ay4Pgr/Hci56byEwZw0tjnPdo7i7BqWbkweTWCr2S70l9Bk jEtioUQYeJT89TYSa+o3tzKMm6D0aH61PNz3X02RSWC+7+Xc+w8/5MQO2papEZrZ zuHBaUXVR4A8qbRmUkv9j6SMcw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:29 2026 by rpki-client