$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: 4qgVxB1ppl8Dh7bGCHJM4vrjMAifeMBRSHow2AkyewI= Subject key identifier: 5D:78:07:8F:FC:86:A2:37:CE:82:59:3F:81:35:FD:17:9A:F9:ED:B5 Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 01C6 Signing time: Wed 25 Mar 2026 03:05:37 +0000 Manifest this update: Wed 25 Mar 2026 03:05:37 +0000 Manifest next update: Wed 01 Apr 2026 03:05:37 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: QavDoH4R2owH6fQ491ym7rGQWkMPxR+OHjqPpGb4okQ=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: vSlu+TQyxpav2ADnDaaL7eQcjqlvG5DFjhy5XTFprbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921, serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: Mar 25 03:05:37 2026 GMT Not After : Apr 1 03:05:37 2026 GMT Subject: CN=69c35101-877b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d2:42:06:e6:29:2f:5e:bd:28:9c:73:54:4b: e8:91:c4:88:3c:15:f4:a6:12:bb:a0:82:2b:73:0d: f7:94:e5:d8:23:32:64:eb:ad:df:5a:e0:3d:5c:72: 73:dc:2b:27:b0:be:0a:99:7d:b1:af:76:7f:a0:cd: 3c:72:a3:3f:3d:5e:2d:a8:91:73:42:3e:db:0f:f1: b3:23:fa:1d:13:a5:09:84:6e:7a:db:e0:59:18:6e: 53:91:64:b4:5d:e5:c7:6f:1f:18:5c:fd:64:15:0c: df:28:c8:ec:ff:8d:e0:49:78:c4:68:a1:b9:25:92: 2e:5f:bc:ff:31:f6:77:93:80:5e:cf:50:3e:f1:87: ee:66:82:37:27:bf:09:79:fc:bd:71:be:e2:5e:a6: 66:8c:39:c9:42:63:c2:33:ac:6d:2d:ae:31:60:e9: 43:7a:83:2c:09:95:20:b8:b3:73:a4:78:4b:93:c7: e4:ce:df:f9:00:14:c8:56:93:36:d4:16:f4:87:bc: df:30:2a:40:cd:52:60:f4:55:24:ac:8a:35:43:14: dc:a2:d6:aa:62:cf:fb:b3:63:3c:14:74:15:1b:73: aa:f1:6f:c4:81:74:17:a6:fb:59:ab:c0:6a:71:ee: 9b:e9:45:fa:f4:cb:04:c5:c9:48:a9:d3:3b:b6:88: 02:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:78:07:8F:FC:86:A2:37:CE:82:59:3F:81:35:FD:17:9A:F9:ED:B5 X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4c:b2:16:4d:58:f3:0b:51:9b:7a:0d:91:64:ff:66:7b:25: cd:09:2c:c3:4f:f4:1b:fd:25:a2:0f:2c:2e:22:84:63:76:37: 59:f4:29:41:84:4f:49:36:ef:2d:5e:53:ea:1b:b3:d1:c9:7a: 5f:6c:30:79:37:a4:8d:27:cc:2b:31:15:69:f7:2c:8d:01:db: a3:52:dc:48:7e:7c:16:ee:63:68:7d:30:fc:97:f6:86:e8:5a: 45:e3:2c:fa:be:55:55:90:ee:f4:b8:63:10:0d:2e:68:39:d7: e9:ea:c8:56:9a:d6:3e:50:51:9f:16:05:45:b1:cb:7f:b4:96: b9:83:39:a8:81:e4:85:36:e1:53:42:01:c7:f1:6e:e7:2d:75: f1:d8:ce:5a:cb:ee:c7:5b:15:43:ad:80:e3:95:04:4e:d6:d6: 8d:9d:4a:d3:2a:20:0b:3a:e7:89:53:3d:71:f6:e1:6f:2f:50: dd:8d:10:cf:a4:86:70:10:b9:50:61:0f:b2:49:66:2f:68:10: c4:6c:fb:88:48:5d:30:1c:59:43:74:e4:a3:12:53:55:38:3d: c6:56:75:66:e3:84:d7:8c:cd:7e:b7:39:e5:4e:17:69:09:0d: 26:df:37:ae:27:af:7f:a0:54:74:8e:b2:a5:76:f7:39:0b:ce: 89:9f:1c:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjYwMzI1MDMwNTM3WhcNMjYwNDAxMDMwNTM3WjAYMRYwFAYD VQQDEw02OWMzNTEwMS04NzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNJCBuYpL169KJxzVEvokcSIPBX0phK7oIIrcw33lOXYIzJk663fWuA9XHJz 3CsnsL4KmX2xr3Z/oM08cqM/PV4tqJFzQj7bD/GzI/odE6UJhG562+BZGG5TkWS0 XeXHbx8YXP1kFQzfKMjs/43gSXjEaKG5JZIuX7z/MfZ3k4Bez1A+8YfuZoI3J78J efy9cb7iXqZmjDnJQmPCM6xtLa4xYOlDeoMsCZUguLNzpHhLk8fkzt/5ABTIVpM2 1Bb0h7zfMCpAzVJg9FUkrIo1QxTcotaqYs/7s2M8FHQVG3Oq8W/EgXQXpvtZq8Bq ce6b6UX69MsExclIqdM7togChwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF14B4/8 hqI3zoJZP4E1/Rea+e21MB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACkyyFk1Y8wtRm3oNkWT/ZnslzQksw0/0G/0log8sLiKEY3Y3WfQpQYRPSTbv LV5T6huz0cl6X2wweTekjSfMKzEVafcsjQHbo1LcSH58Fu5jaH0w/Jf2huhaReMs +r5VVZDu9LhjEA0uaDnX6erIVprWPlBRnxYFRbHLf7SWuYM5qIHkhTbhU0IBx/Fu 5y118djOWsvux1sVQ62A45UETtbWjZ1K0yogCzrniVM9cfbhby9Q3Y0Qz6SGcBC5 UGEPsklmL2gQxGz7iEhdMBxZQ3TkoxJTVTg9xlZ1ZuOE14zNfrc55U4XaQkNJt83 rievf6BUdI6ypXb3OQvOiZ8cZg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:41:06 2026 by rpki-client