$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft File: jNGQoUOqLh5IcwOxPcBT7Re86x4.mft (raw, json) Hash identifier: 20b06DvlgknkKyKrz4IOuONlUSjXnD3iKAhJBK5NWsM= Subject key identifier: E9:46:27:41:B9:67:CF:F0:3F:9A:56:E6:37:0B:E3:76:90:D1:D7:3F Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft Manifest number: 99 Signing time: Wed 25 Mar 2026 06:37:51 +0000 Manifest this update: Wed 25 Mar 2026 06:37:50 +0000 Manifest next update: Wed 01 Apr 2026 06:37:50 +0000 Files and hashes: 1: jNGQoUOqLh5IcwOxPcBT7Re86x4.crl (hash: 03qftQc6P0gXlHjyW8fgCBQkag6qVDI728nMxXbtUng=) 2: 653C22F441C311F0999A9935C4F9AE02.roa (hash: iIlQkxBmgXt47gVpNAYfQJLsTOog95JafpEPwLPUz/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Mar 25 06:37:50 2026 GMT Not After : Apr 1 06:37:50 2026 GMT Subject: CN=69c382be-ef98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9d:02:4e:29:14:bb:cb:bb:13:33:4e:72:5c: 52:c6:f1:ba:8b:68:66:74:2e:ed:bc:ab:dd:5e:c6: 10:36:e6:45:c3:cb:0e:59:4b:6e:dd:9b:aa:a4:f1: 9d:7f:40:23:1f:d3:47:4f:83:39:89:a8:17:92:8a: ef:57:d4:17:97:ba:27:66:b9:93:11:13:1c:93:a3: af:8f:07:00:f3:62:47:c3:92:48:44:2b:b2:34:35: 7d:f9:42:98:ac:c1:99:86:bc:cf:f7:b4:58:b3:72: 55:34:ba:2b:ce:ed:c0:d8:f7:53:40:e3:7e:98:d5: a9:08:7a:50:6e:4b:2f:30:66:f4:9b:a7:be:75:05: 9d:41:4c:e5:ff:0e:17:4f:c6:ad:cc:78:c6:e6:22: 67:cf:18:8b:14:7b:35:4c:5b:58:88:16:94:b5:35: e2:5c:44:0a:c0:d7:db:84:58:d2:ce:6b:c0:0d:c2: de:ae:c9:d2:93:83:45:c7:69:47:c2:ea:7e:8b:66: 8d:f5:55:84:cb:09:b6:24:46:35:6e:64:ee:0e:89: 7d:15:59:cc:e8:32:3b:9a:33:73:9b:67:1b:5b:29: 15:61:79:f1:db:d4:aa:a1:6a:69:b8:29:ce:15:7d: d2:59:3f:af:be:a1:f1:2e:df:0d:f5:4f:a6:eb:6b: 6e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:46:27:41:B9:67:CF:F0:3F:9A:56:E6:37:0B:E3:76:90:D1:D7:3F X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:80:28:35:8d:08:ec:7e:86:e1:4b:cd:1a:fb:d8:41:04:66: 32:8a:20:02:f2:a9:5f:3d:6d:49:bd:7d:38:40:14:38:7a:cb: cf:d1:68:90:27:83:77:89:f2:42:a1:d5:cb:4d:e4:bc:db:a1: 73:e6:f7:4f:c0:fb:36:e7:a1:94:ea:ee:87:d7:99:13:9c:af: 71:92:14:67:4b:94:d4:a6:57:63:b5:de:6f:f0:10:4d:27:3c: f4:15:93:e9:89:2d:a8:83:1e:b1:42:5e:aa:d3:d6:1a:ea:ef: ab:86:09:a1:56:d2:7c:d4:74:73:cd:a6:2b:9b:98:f3:e1:f3: 4e:c0:1b:b2:a9:10:c5:18:83:3e:01:cc:26:cc:ef:9c:bb:f1: e3:7b:01:0e:7f:2b:a2:bf:c2:14:c3:b3:f4:65:f2:30:9e:a6: a4:ea:a7:ea:9c:1e:8d:30:56:3e:ca:71:c3:23:42:9b:06:d0: a8:29:6c:26:7e:e7:1a:0e:54:31:bb:5d:76:75:f3:f0:da:3c: 7f:e1:6c:82:31:ec:32:75:06:b8:82:59:ac:b9:1d:2c:4c:d0: 57:15:32:e0:8e:01:7a:0d:fb:76:5d:19:e7:c4:da:a2:3b:e5: da:80:74:2a:a6:b8:f7:21:51:9a:6e:29:9c:4d:db:6f:55:09: e6:cb:26:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRGMkIxMTAvBgNVBAUTKDhDRDE5MEExNDNBQTJFMUU0ODczMDNCMTNEQzA1M0VE MTdCQ0VCMUUwHhcNMjYwMzI1MDYzNzUwWhcNMjYwNDAxMDYzNzUwWjAYMRYwFAYD VQQDEw02OWMzODJiZS1lZjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Z0CTikUu8u7EzNOclxSxvG6i2hmdC7tvKvdXsYQNuZFw8sOWUtu3ZuqpPGd f0AjH9NHT4M5iagXkorvV9QXl7onZrmTERMck6OvjwcA82JHw5JIRCuyNDV9+UKY rMGZhrzP97RYs3JVNLorzu3A2PdTQON+mNWpCHpQbksvMGb0m6e+dQWdQUzl/w4X T8atzHjG5iJnzxiLFHs1TFtYiBaUtTXiXEQKwNfbhFjSzmvADcLersnSk4NFx2lH wup+i2aN9VWEywm2JEY1bmTuDol9FVnM6DI7mjNzm2cbWykVYXnx29SqoWppuCnO FX3SWT+vvqHxLt8N9U+m62tu7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOlGJ0G5 Z8/wP5pW5jcL43aQ0dc/MB8GA1UdIwQYMBaAFIzRkKFDqi4eSHMDsT3AU+0XvOse MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREYyQi82QzJCN0IxQzQx QkIxMUYwQjQ1NkQ4NTdDNEY5QUUwMi9qTkdRb1VPcUxoNUljd094UGNCVDdSZTg2 eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REYyQi82QzJCN0IxQzQxQkIxMUYwQjQ1NkQ4NTdDNEY5QUUwMi9qTkdRb1VPcUxo NUljd094UGNCVDdSZTg2eDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArYAoNY0I7H6G4UvNGvvYQQRmMoogAvKpXz1tSb19OEAUOHrLz9FokCeDd4ny QqHVy03kvNuhc+b3T8D7NuehlOruh9eZE5yvcZIUZ0uU1KZXY7Xeb/AQTSc89BWT 6YktqIMesUJeqtPWGurvq4YJoVbSfNR0c82mK5uY8+HzTsAbsqkQxRiDPgHMJszv nLvx43sBDn8ror/CFMOz9GXyMJ6mpOqn6pwejTBWPspxwyNCmwbQqClsJn7nGg5U MbtddnXz8No8f+FsgjHsMnUGuIJZrLkdLEzQVxUy4I4Beg37dl0Z58Taojvl2oB0 Kqa49yFRmm4pnE3bb1UJ5ssmkg== -----END CERTIFICATE-----Generated at Thu Mar 26 10:21:30 2026 by rpki-client