$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: 5tmLUmmikgEe9oiCCegnCaSL90ZyXLhU8XgHRKO2ZcY= Subject key identifier: ED:93:50:B7:CA:3B:0A:B7:42:4B:54:BE:DD:0D:A9:F5:09:F9:3B:B1 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0665 Signing time: Thu 26 Mar 2026 22:27:22 +0000 Manifest this update: Thu 26 Mar 2026 22:27:21 +0000 Manifest next update: Thu 02 Apr 2026 22:27:21 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: 9YUWBjrXWEmei9uglMGj+SiJwae8eYcvHpaQzsfyMZ4=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: bKcpZZTwqhEmSY3fiKvwEaekoELTPNXoKQx4Ji8+Zvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Mar 26 22:27:21 2026 GMT Not After : Apr 2 22:27:21 2026 GMT Subject: CN=69c5b2ca-929c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3b:4b:31:07:ed:2a:06:cf:22:2c:68:17:f3: a0:db:74:81:d9:10:70:fc:8d:38:95:aa:c4:b7:e8: 95:c1:e4:f6:36:ad:71:da:de:82:53:1b:61:f8:0e: 34:d5:bc:f0:dc:55:88:ec:b1:7c:08:8c:6d:3c:c3: be:7e:92:6a:77:9c:ca:80:c2:bf:03:3b:50:08:2f: 74:60:9a:e5:8a:d8:2b:1b:d0:f1:8a:91:02:09:e1: d3:83:45:e1:4d:70:cc:70:26:00:f9:45:77:2f:91: ba:0d:0c:83:d5:2e:f6:b3:a0:9a:53:ae:33:07:4e: 6e:28:47:eb:a4:9b:1c:d8:18:9b:cc:38:1a:3c:3b: dd:ce:c1:9a:82:3c:90:5c:23:da:5f:4d:fc:60:93: bb:83:0e:71:56:7c:0f:45:5f:a8:86:99:f0:03:96: 75:88:a4:71:c5:4c:97:58:d2:b8:e5:2a:26:4b:23: 9b:c8:b5:4d:a7:77:b5:be:8a:90:35:12:eb:f6:2a: 49:61:00:a4:49:b8:80:3f:e4:93:b1:78:d0:82:78: c6:36:54:7b:47:30:12:36:9d:9b:14:b8:28:a6:bd: f6:00:41:5c:5d:43:4a:80:d6:f8:19:9e:47:5a:86: fe:9e:fc:56:77:91:e8:d2:64:cb:7d:a2:33:11:39: d1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:93:50:B7:CA:3B:0A:B7:42:4B:54:BE:DD:0D:A9:F5:09:F9:3B:B1 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:0c:3a:e1:49:43:c7:17:19:f1:1b:9d:f4:16:d8:fc:65:a9: 45:f2:92:1e:b0:3c:f5:a4:83:80:70:7c:97:04:28:62:9d:60: 93:9c:07:63:18:70:c4:20:cc:ce:e0:24:10:ba:7a:90:8a:c9: 6d:50:4f:3c:a5:ca:56:ac:14:58:f4:d7:94:97:b6:6d:e7:a2: 05:b7:a5:22:85:2a:a6:0d:af:d0:fe:12:da:c6:43:d6:43:a1: 6c:8c:9c:78:40:ae:6c:70:65:08:ce:4d:99:c7:cc:59:ec:b8: ac:90:24:97:ae:10:d7:2f:2a:3a:49:03:69:c8:6f:27:8a:dc: 92:e5:18:7d:6e:6d:b1:2d:ac:7b:c5:9f:d8:c1:6b:92:6f:74: 51:b1:45:55:30:25:2e:76:b9:af:5b:0a:04:f1:ba:bd:59:8b: 3c:eb:cd:8f:ea:96:6d:33:1a:e2:c1:b6:d6:cc:7d:bc:5c:ba: 95:98:cc:59:76:b0:db:a0:7f:d3:eb:6a:cf:a7:5d:cb:1a:e9: ec:b4:94:8d:79:a3:d2:04:3d:2f:cc:39:21:19:67:8f:8e:25: 52:65:10:fa:a0:5b:fe:7a:36:a7:31:38:ab:13:ac:26:26:a2: 9b:76:07:52:1e:bd:07:b7:1a:fe:c0:7d:75:7d:86:40:1e:12: 0a:4b:57:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjYwMzI2MjIyNzIxWhcNMjYwNDAyMjIyNzIxWjAYMRYwFAYD VQQDEw02OWM1YjJjYS05MjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TtLMQftKgbPIixoF/Og23SB2RBw/I04larEt+iVweT2Nq1x2t6CUxth+A40 1bzw3FWI7LF8CIxtPMO+fpJqd5zKgMK/AztQCC90YJrlitgrG9DxipECCeHTg0Xh TXDMcCYA+UV3L5G6DQyD1S72s6CaU64zB05uKEfrpJsc2BibzDgaPDvdzsGagjyQ XCPaX038YJO7gw5xVnwPRV+ohpnwA5Z1iKRxxUyXWNK45SomSyObyLVNp3e1voqQ NRLr9ipJYQCkSbiAP+STsXjQgnjGNlR7RzASNp2bFLgopr32AEFcXUNKgNb4GZ5H Wob+nvxWd5Ho0mTLfaIzETnR7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO2TULfK Owq3QktUvt0NqfUJ+TuxMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACQw64UlDxxcZ8Rud9BbY/GWpRfKSHrA89aSDgHB8lwQoYp1gk5wHYxhwxCDM zuAkELp6kIrJbVBPPKXKVqwUWPTXlJe2beeiBbelIoUqpg2v0P4S2sZD1kOhbIyc eECubHBlCM5NmcfMWey4rJAkl64Q1y8qOkkDachvJ4rckuUYfW5tsS2se8Wf2MFr km90UbFFVTAlLna5r1sKBPG6vVmLPOvNj+qWbTMa4sG21sx9vFy6lZjMWXaw26B/ 0+tqz6ddyxrp7LSUjXmj0gQ9L8w5IRlnj44lUmUQ+qBb/no2pzE4qxOsJiaim3YH Uh69B7ca/sB9dX2GQB4SCktX4g== -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:36 2026 by rpki-client