$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: Qhg3kf4xzFANU1J8vgvPMbLqcSc1lB8JMqTD+qPhDcM= Subject key identifier: BF:25:C5:AE:88:DD:7D:8D:70:D2:06:18:E4:C5:CF:9F:70:57:DB:0F Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 0157 Signing time: Thu 26 Mar 2026 15:43:28 +0000 Manifest this update: Thu 26 Mar 2026 15:43:28 +0000 Manifest next update: Thu 02 Apr 2026 15:43:28 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: EQmZIfcw6EB2h0sXEW2gSXpz7FrWqGPuDWjCrgIs+VY=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: hOp5C3KdQglyoPlRpzdVUK1HCVo7MMXzvUe8s9/qr10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Mar 26 15:43:28 2026 GMT Not After : Apr 2 15:43:28 2026 GMT Subject: CN=69c55420-e5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:71:34:78:63:8d:1b:8e:50:28:be:cf:de:ec: c6:88:43:46:74:d3:9c:0f:ae:6b:3c:33:80:52:bc: b6:12:9c:3f:2c:e9:9f:90:8c:34:e7:a7:17:76:b5: 88:9d:f2:ca:7e:62:65:fe:b3:50:6d:8f:f3:b4:62: a8:c4:34:4a:38:df:d6:f0:a3:d3:b7:42:99:fc:29: d5:0c:e8:73:87:18:0d:cd:ce:44:c3:f9:ed:2a:93: b9:6a:b5:81:04:63:73:0f:72:84:bb:3a:53:7c:d9: 5d:6c:51:cb:4f:53:3f:16:8a:23:c9:55:24:7e:e0: c5:06:67:27:08:46:3b:0d:0a:cd:41:2d:81:43:5f: c4:b1:b9:ac:92:86:c7:43:b8:65:e5:aa:6b:29:cd: 16:b0:0b:22:7f:c7:0e:5f:bd:d6:fd:f8:68:ae:7d: c1:4d:af:6b:68:b2:83:72:fb:37:4e:76:8a:2f:6d: cf:9a:8d:54:7d:a8:99:9b:c8:50:3d:84:1a:d1:93: 19:93:24:5e:2e:b0:15:8d:c9:fb:86:e2:0a:dd:af: 6d:e6:d8:56:34:5b:cf:fd:a0:6a:37:b4:09:49:d0: 00:83:47:39:c0:01:2b:23:a9:d9:b3:e4:34:c1:e4: a5:af:3b:3b:17:a7:32:30:1c:71:d0:62:bd:8c:a4: c5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:25:C5:AE:88:DD:7D:8D:70:D2:06:18:E4:C5:CF:9F:70:57:DB:0F X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:2d:d7:42:5a:3f:8e:1b:6c:1c:0d:f8:c9:e3:75:f3:0e:fd: 52:36:3a:75:b9:e2:33:89:f9:2d:08:24:30:52:aa:26:c6:48: 46:20:6b:5a:09:32:1c:2b:61:95:7f:1e:e8:28:4f:62:07:ea: 3c:fb:e5:bd:85:07:11:ca:41:f1:51:d5:38:8d:51:c1:f9:4d: 72:7d:59:a9:5e:a1:e6:7f:c5:6a:54:76:5f:61:92:43:35:e4: 43:2c:bb:db:f7:8b:52:b9:79:c6:29:ac:b4:bf:43:f0:f4:73: 4a:a4:2a:ca:71:8d:63:a2:67:29:01:6e:f4:14:c1:74:02:12: 79:8d:e2:bc:74:17:53:83:c6:e9:46:64:1c:87:6b:6a:d9:ed: 80:f7:49:e9:d6:fd:65:58:0f:f5:90:19:71:3d:1c:5c:fc:ba: 66:c5:08:9c:07:71:3a:ff:89:86:97:6c:d2:ea:82:54:39:f7: 6a:2d:af:57:30:90:86:c2:39:9b:43:8c:76:78:b0:19:f7:b0: 86:6d:38:54:47:08:df:76:4e:9f:05:76:92:15:45:df:6b:5a: 88:0b:9e:7b:36:47:3b:ed:b0:a6:14:82:69:d8:f9:72:53:f3: 41:e8:6f:b4:36:bd:3b:92:7c:b5:2b:a7:a4:24:dc:dd:7c:cc: 46:a1:e9:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjYwMzI2MTU0MzI4WhcNMjYwNDAyMTU0MzI4WjAYMRYwFAYD VQQDEw02OWM1NTQyMC1lNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHE0eGONG45QKL7P3uzGiENGdNOcD65rPDOAUry2Epw/LOmfkIw056cXdrWI nfLKfmJl/rNQbY/ztGKoxDRKON/W8KPTt0KZ/CnVDOhzhxgNzc5Ew/ntKpO5arWB BGNzD3KEuzpTfNldbFHLT1M/FoojyVUkfuDFBmcnCEY7DQrNQS2BQ1/EsbmskobH Q7hl5aprKc0WsAsif8cOX73W/fhorn3BTa9raLKDcvs3TnaKL23Pmo1UfaiZm8hQ PYQa0ZMZkyReLrAVjcn7huIK3a9t5thWNFvP/aBqN7QJSdAAg0c5wAErI6nZs+Q0 weSlrzs7F6cyMBxx0GK9jKTFJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL8lxa6I 3X2NcNIGGOTFz59wV9sPMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqi3XQlo/jhtsHA34yeN18w79UjY6dbniM4n5LQgkMFKqJsZIRiBrWgkyHCth lX8e6ChPYgfqPPvlvYUHEcpB8VHVOI1RwflNcn1ZqV6h5n/FalR2X2GSQzXkQyy7 2/eLUrl5ximstL9D8PRzSqQqynGNY6JnKQFu9BTBdAISeY3ivHQXU4PG6UZkHIdr atntgPdJ6db9ZVgP9ZAZcT0cXPy6ZsUInAdxOv+Jhpds0uqCVDn3ai2vVzCQhsI5 m0OMdniwGfewhm04VEcI33ZOnwV2khVF32taiAueezZHO+2wphSCadj5clPzQehv tDa9O5J8tSunpCTc3XzMRqHphw== -----END CERTIFICATE-----Generated at Thu Mar 26 21:51:00 2026 by rpki-client