$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: xhdCrNAM7lv9LUBw1dDMSxOv4h14QnVl+vsg4WVgZJE= Subject key identifier: 32:F1:4A:83:02:66:73:4C:E4:60:20:31:03:E1:1B:AA:F4:BE:0D:54 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0293 Signing time: Fri 27 Mar 2026 01:16:22 +0000 Manifest this update: Fri 27 Mar 2026 01:16:22 +0000 Manifest next update: Fri 03 Apr 2026 01:16:22 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: Jn/pQPhckQqyn1fxErHUr3yKCyQG2ioDk7F1cypoTkw=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: /OmusQFGUMLnSfPvaQeL+Y1Ye83OM/m03GrlGqmFNO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Mar 27 01:16:22 2026 GMT Not After : Apr 3 01:16:22 2026 GMT Subject: CN=69c5da66-64ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:dd:90:56:28:5c:06:28:fa:b4:11:25:1c:a9: 38:9e:62:b4:f0:6e:17:f9:c7:96:f3:a5:1d:e9:c1: c4:94:3f:06:3c:04:3b:e5:74:57:4f:bf:26:49:5e: 1a:b2:ea:68:ea:a9:f2:83:c4:82:5a:48:1f:02:e6: 02:7d:a5:20:d3:a4:10:99:bc:12:5c:6a:4c:7d:47: 4b:ff:ae:84:0c:dd:6b:bd:d4:47:12:66:c9:ce:26: a4:79:18:c4:da:6f:3d:2e:5a:32:8c:35:8e:e9:f1: ab:ee:04:01:76:f1:5d:15:30:a6:eb:75:1b:67:32: ca:78:f2:b3:c4:18:b5:99:e3:df:99:f6:4d:b8:26: 6a:f8:18:63:18:db:6d:34:0c:79:63:64:67:ed:f6: b8:a3:67:ec:51:77:18:09:40:a3:2a:5d:36:02:c6: e3:dc:22:d8:83:42:85:22:a6:a8:41:22:b4:ce:70: 0b:ca:08:8d:fe:95:10:46:b6:3e:56:ab:01:67:a4: ce:00:7c:c9:fc:fb:d1:a3:2f:e3:67:4c:97:91:b7: b1:67:f8:71:bc:0b:f6:d0:32:10:c3:f3:47:b6:4c: 38:66:db:1d:bd:82:60:22:72:a6:4a:d5:a8:34:b3: f0:be:db:88:ff:79:e9:89:b9:66:a8:85:d0:71:11: 17:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F1:4A:83:02:66:73:4C:E4:60:20:31:03:E1:1B:AA:F4:BE:0D:54 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:00:4f:b1:67:5a:a9:e0:47:c1:8d:7b:52:5a:80:ee:d8:b1: 1f:9a:ca:83:e1:29:87:01:93:9e:05:71:9c:a2:a1:ab:02:c8: d5:6d:3b:dd:18:19:92:e8:df:66:ad:21:7f:e6:a0:06:b3:e6: 4a:87:20:e1:15:f9:71:70:bb:47:b7:e2:b3:f8:e7:30:bb:48: 36:fc:9f:3d:69:df:e0:45:6c:3b:fe:1c:c5:ac:91:f7:82:fc: 67:29:1a:cd:21:7f:71:c0:ae:71:86:aa:45:47:4a:11:e6:a7: cf:ed:1d:32:61:36:18:c8:a0:18:d4:a3:2e:a6:1e:da:09:4a: 8f:a3:48:3f:4c:41:29:8c:3f:a1:46:c2:e3:4a:97:86:16:c9: a6:8a:8b:0d:3f:55:23:77:c6:27:93:a1:b3:1a:eb:55:4e:85: 59:c3:d5:de:24:55:0e:8a:e0:40:31:da:37:aa:a8:5f:f9:0e: 3e:9c:0b:e2:e3:24:b1:68:12:3d:fa:1b:21:e3:be:44:5c:02: 46:ff:46:58:10:d9:b9:10:bc:f7:9a:49:7b:66:13:36:ea:50: 81:a1:7d:8f:51:34:57:e4:36:02:43:0c:f6:52:a6:4d:67:3a: b0:09:54:19:ba:2b:a3:14:e0:c3:a6:bb:f7:c8:17:11:7a:6a: 54:43:fc:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjYwMzI3MDExNjIyWhcNMjYwNDAzMDExNjIyWjAYMRYwFAYD VQQDEw02OWM1ZGE2Ni02NGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqN2QVihcBij6tBElHKk4nmK08G4X+ceW86Ud6cHElD8GPAQ75XRXT78mSV4a supo6qnyg8SCWkgfAuYCfaUg06QQmbwSXGpMfUdL/66EDN1rvdRHEmbJziakeRjE 2m89LloyjDWO6fGr7gQBdvFdFTCm63UbZzLKePKzxBi1mePfmfZNuCZq+BhjGNtt NAx5Y2Rn7fa4o2fsUXcYCUCjKl02Asbj3CLYg0KFIqaoQSK0znALygiN/pUQRrY+ VqsBZ6TOAHzJ/PvRoy/jZ0yXkbexZ/hxvAv20DIQw/NHtkw4ZtsdvYJgInKmStWo NLPwvtuI/3npiblmqIXQcREX1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDLxSoMC ZnNM5GAgMQPhG6r0vg1UMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZQBPsWdaqeBHwY17UlqA7tixH5rKg+EphwGTngVxnKKhqwLI1W073RgZkujf Zq0hf+agBrPmSocg4RX5cXC7R7fis/jnMLtINvyfPWnf4EVsO/4cxayR94L8Zyka zSF/ccCucYaqRUdKEeanz+0dMmE2GMigGNSjLqYe2glKj6NIP0xBKYw/oUbC40qX hhbJpoqLDT9VI3fGJ5OhsxrrVU6FWcPV3iRVDorgQDHaN6qoX/kOPpwL4uMksWgS PfobIeO+RFwCRv9GWBDZuRC895pJe2YTNupQgaF9j1E0V+Q2AkMM9lKmTWc6sAlU GboroxTgw6a798gXEXpqVEP8YA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:20:13 2026 by rpki-client