$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: ZtJGxGGSGrk3k/hONacnsmifVHSTWtfZ5IFx+bnEPjo= Subject key identifier: EE:42:5F:9E:A6:BC:95:DB:0E:65:05:52:ED:64:30:AA:A3:30:4D:06 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 01BF Signing time: Wed 25 Mar 2026 03:12:59 +0000 Manifest this update: Wed 25 Mar 2026 03:12:59 +0000 Manifest next update: Wed 01 Apr 2026 03:12:59 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: Ab3S/ViACATuHZ9VA69OjRfXrcBWcUylPTMI7ibfkVQ=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: /k9F9UoMVvvC6p1jgV3pWpP4PVT7CPpxGz+wVVYMTRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Mar 25 03:12:59 2026 GMT Not After : Apr 1 03:12:59 2026 GMT Subject: CN=69c352bb-2add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:5f:a7:f6:7a:51:fd:28:46:31:4e:b8:e7:37: d6:d5:da:5f:d3:8b:b8:c6:fd:51:fa:15:87:94:23: 34:f5:d5:f9:8b:0f:5b:3c:6f:89:e9:d6:dd:37:73: 5a:0e:45:09:c3:b2:58:51:47:95:9c:3c:a2:d4:3b: d5:64:61:7d:44:a2:68:d6:54:26:2e:fd:e5:e8:2e: 26:16:22:1d:ac:11:23:c4:6e:42:6e:80:2d:a8:9c: 33:ce:ad:74:7d:7f:c0:25:50:e3:21:9f:d3:a7:9a: f8:ec:71:78:ab:3d:fc:e3:51:59:af:58:66:95:80: d6:13:9d:3c:56:c9:cb:b2:b7:e5:43:00:9b:9e:95: 97:18:a7:2c:90:db:7a:9a:ff:17:50:4d:f3:a6:2c: 90:a3:af:e1:13:42:ff:15:a9:1e:42:9c:c7:e5:7b: b9:d5:09:57:5e:4c:20:ac:7d:c9:84:76:1c:07:05: 96:d8:5d:42:0b:19:35:5f:e2:8b:fb:ab:50:08:2b: 6f:f5:33:8b:98:31:4e:85:03:dc:7e:aa:08:3c:13: 9e:fd:55:d8:e4:44:51:62:74:bf:42:44:3f:3a:19: 78:27:9f:d4:e4:de:c9:5b:2f:80:24:b3:97:5a:77: 96:03:d0:a2:97:55:14:17:d5:9b:e1:3b:4c:0a:59: af:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:42:5F:9E:A6:BC:95:DB:0E:65:05:52:ED:64:30:AA:A3:30:4D:06 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a6:be:3e:5d:93:69:a5:c2:6f:4a:28:e6:8a:46:82:b6:99: c9:5e:2c:71:45:a3:79:a0:60:a0:c3:04:ba:be:c3:2a:db:63: 71:12:8c:97:03:76:e4:58:12:09:b0:a7:f4:98:c5:3e:42:91: 8c:43:38:11:bf:e1:c2:b0:de:87:f1:9e:e9:e7:48:cf:b5:57: bc:51:b4:07:75:2f:35:bd:3f:01:d1:c0:c0:4b:33:f8:7b:a2: 01:25:dc:b0:4d:ec:bf:f4:c4:4b:55:e1:4a:0f:4a:49:04:db: c6:7e:7a:50:0a:72:3f:31:36:00:e7:b8:90:40:5d:16:b3:43: d7:de:b4:80:ce:4b:26:0f:5f:70:2a:e1:22:94:1e:2b:80:63: a0:a8:d5:d8:e3:26:8e:d8:e3:eb:83:7a:5d:68:e5:90:22:98: 90:fa:e5:5b:30:e4:00:d6:d3:76:39:fc:41:96:62:68:7c:b6: 3a:88:79:ad:53:83:2f:8b:be:7c:10:91:47:2f:8f:21:11:10: c4:20:db:b8:bf:73:78:46:b6:98:d7:67:f5:2e:c7:95:2c:cc: 9d:ea:7b:32:f6:03:a0:04:d2:10:a7:7f:50:02:23:09:19:8e: a9:9e:88:17:97:3e:63:22:e8:16:b0:6b:01:af:a1:1d:15:1b: 67:c9:99:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjYwMzI1MDMxMjU5WhcNMjYwNDAxMDMxMjU5WjAYMRYwFAYD VQQDEw02OWMzNTJiYi0yYWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAil+n9npR/ShGMU645zfW1dpf04u4xv1R+hWHlCM09dX5iw9bPG+J6dbdN3Na DkUJw7JYUUeVnDyi1DvVZGF9RKJo1lQmLv3l6C4mFiIdrBEjxG5CboAtqJwzzq10 fX/AJVDjIZ/Tp5r47HF4qz3841FZr1hmlYDWE508VsnLsrflQwCbnpWXGKcskNt6 mv8XUE3zpiyQo6/hE0L/FakeQpzH5Xu51QlXXkwgrH3JhHYcBwWW2F1CCxk1X+KL +6tQCCtv9TOLmDFOhQPcfqoIPBOe/VXY5ERRYnS/QkQ/Ohl4J5/U5N7JWy+AJLOX WneWA9Cil1UUF9Wb4TtMClmvHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO5CX56m vJXbDmUFUu1kMKqjME0GMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKKa+Pl2TaaXCb0oo5opGgraZyV4scUWjeaBgoMMEur7DKttjcRKMlwN25FgS CbCn9JjFPkKRjEM4Eb/hwrDeh/Ge6edIz7VXvFG0B3UvNb0/AdHAwEsz+HuiASXc sE3sv/TES1XhSg9KSQTbxn56UApyPzE2AOe4kEBdFrND1960gM5LJg9fcCrhIpQe K4BjoKjV2OMmjtjj64N6XWjlkCKYkPrlWzDkANbTdjn8QZZiaHy2Ooh5rVODL4u+ fBCRRy+PIREQxCDbuL9zeEa2mNdn9S7HlSzMnep7MvYDoATSEKd/UAIjCRmOqZ6I F5c+YyLoFrBrAa+hHRUbZ8mZfg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:32 2026 by rpki-client