$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: 04f6JBzeS18qbpir/MrXW1bBN1TJMa6dylbMyJUShxI= Subject key identifier: 8B:FF:BB:8A:6B:CA:E3:A7:C8:03:FA:1C:8E:31:C8:25:01:21:C1:F6 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0BCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0BBB Signing time: Tue 24 Mar 2026 18:47:40 +0000 Manifest this update: Tue 24 Mar 2026 18:47:40 +0000 Manifest next update: Tue 31 Mar 2026 18:47:40 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: XYLv0hNbAo3aEt3GRti1Yur+YnbgL/YZQ/rIgzncOYA=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: PFnTC09cAoqCoBorNAGMNJ3mW6exO1vhuxEz+nu9KcI=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: pKr8yU46bzkgepRuOhx0qrjQP+ajOBOvuvImXMjNl5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3023 (0xbcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Mar 24 18:47:40 2026 GMT Not After : Mar 31 18:47:40 2026 GMT Subject: CN=69c2dc4c-4895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:19:3c:db:70:61:ac:f7:5a:ec:f4:42:0f:ab: 1b:ad:03:a8:8a:69:ff:3a:2f:60:7a:06:f2:5f:34: 04:69:7f:bb:63:75:1b:98:2b:a7:b8:3a:52:47:03: 1c:3e:0e:ef:44:8b:ae:cf:e0:8d:8f:76:b3:cd:a4: 98:77:9e:ae:cf:5f:3e:33:fd:b5:13:40:8d:1f:a3: 76:1e:57:91:9c:73:42:3b:87:ed:3e:b7:03:a5:e7: 19:3a:15:9d:bc:1a:2f:8d:98:52:c1:49:50:88:7c: 85:2f:22:22:e6:68:7f:06:44:a7:c6:91:19:8c:8a: d2:ca:60:59:96:26:a3:f3:af:8b:93:a2:9f:7b:28: ab:b1:05:e0:f8:b1:44:0a:b7:85:6e:0f:6c:39:6a: 60:21:0b:3e:27:6a:58:9c:1d:b7:d7:6e:1f:79:ef: c6:02:cc:d0:07:d3:84:be:f5:5a:6b:fd:4e:dc:a1: af:09:0f:87:fa:99:cc:5c:3c:ac:3c:14:40:ed:bb: f5:64:c8:e5:85:c5:cd:f9:46:12:c6:24:70:86:a1: 50:5b:09:9c:0c:bb:a2:9b:ab:35:e3:7e:19:46:dd: cf:4b:26:f7:4b:a5:ce:c5:32:7c:8f:9e:ad:f7:c4: 6a:f3:f0:ee:45:f0:6e:0d:12:33:50:0b:83:8c:9d: ef:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:FF:BB:8A:6B:CA:E3:A7:C8:03:FA:1C:8E:31:C8:25:01:21:C1:F6 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b1:56:db:a1:15:f6:16:0c:ca:a4:9a:9e:4b:05:4b:fe:04: 7a:6f:cf:a2:ec:4e:f1:ab:06:3a:0a:ec:81:23:fe:19:00:03: a4:30:5a:83:b2:bd:62:fd:91:59:c2:9d:20:c2:56:13:e4:92: cf:8c:82:3e:7d:11:e2:f3:13:4d:22:3f:86:be:21:1d:08:dd: e5:4a:4c:64:d9:55:71:4d:1b:d1:79:07:ab:fd:51:24:7d:13: fc:7b:f7:89:a7:f2:07:57:da:3e:84:00:f0:6e:48:ba:e7:75: 58:7e:74:d1:74:d3:20:09:be:f4:ae:94:0c:ff:2a:52:07:28: f7:6e:4b:7b:7f:c0:51:0d:17:c8:cb:4b:44:63:f6:02:ba:55: ab:03:1d:77:56:34:af:06:53:10:08:82:e7:ab:e5:54:0d:65: f2:aa:be:29:fc:4c:ac:3c:a9:aa:e9:66:4a:cc:01:1a:96:ec: 84:c7:0f:51:e4:a9:c9:98:c9:0c:9a:46:77:bd:3b:ab:10:4b: a7:1e:1f:3e:26:a9:30:73:a0:42:23:5a:94:6f:76:7a:36:18: d0:92:a8:e4:9e:15:bf:a5:d6:48:ce:bd:d8:94:03:da:f8:98: a2:71:1a:d1:74:65:92:dc:92:91:5d:69:a6:be:b7:b2:fd:96: e3:2d:0f:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjYwMzI0MTg0NzQwWhcNMjYwMzMxMTg0NzQwWjAYMRYwFAYD VQQDEw02OWMyZGM0Yy00ODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhk823BhrPda7PRCD6sbrQOoimn/Oi9gegbyXzQEaX+7Y3UbmCunuDpSRwMc Pg7vRIuuz+CNj3azzaSYd56uz18+M/21E0CNH6N2HleRnHNCO4ftPrcDpecZOhWd vBovjZhSwUlQiHyFLyIi5mh/BkSnxpEZjIrSymBZliaj86+Lk6KfeyirsQXg+LFE CreFbg9sOWpgIQs+J2pYnB23124fee/GAszQB9OEvvVaa/1O3KGvCQ+H+pnMXDys PBRA7bv1ZMjlhcXN+UYSxiRwhqFQWwmcDLuim6s1434ZRt3PSyb3S6XOxTJ8j56t 98Rq8/DuRfBuDRIzUAuDjJ3v5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIv/u4pr yuOnyAP6HI4xyCUBIcH2MB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACrFW26EV9hYMyqSanksFS/4Eem/PouxO8asGOgrsgSP+GQADpDBag7K9Yv2R WcKdIMJWE+SSz4yCPn0R4vMTTSI/hr4hHQjd5UpMZNlVcU0b0XkHq/1RJH0T/Hv3 iafyB1faPoQA8G5Iuud1WH500XTTIAm+9K6UDP8qUgco925Le3/AUQ0XyMtLRGP2 ArpVqwMdd1Y0rwZTEAiC56vlVA1l8qq+KfxMrDypqulmSswBGpbshMcPUeSpyZjJ DJpGd707qxBLpx4fPiapMHOgQiNalG92ejYY0JKo5J4Vv6XWSM692JQD2viYonEa 0XRlktySkV1ppr63sv2W4y0Pkw== -----END CERTIFICATE-----Generated at Thu Mar 26 15:42:14 2026 by rpki-client