$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: Z32zFUVC8NMHo4oAYRW/GdS3BbJ0XhHezICqqtMZUsY= Subject key identifier: 52:DC:4D:8D:DF:D5:65:96:98:A4:76:44:65:28:2D:B5:0E:64:01:77 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: 01A2 Signing time: Wed 25 Mar 2026 03:28:06 +0000 Manifest this update: Wed 25 Mar 2026 03:28:06 +0000 Manifest next update: Wed 01 Apr 2026 03:28:06 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: SVeWkrzlct146a1pKKrMdHtBZEyz5Gifc8Be73FPOnY=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: I3Aip9lEI/tB1p617YVnjX7fZuimKLHKae3IrKIw1Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Mar 25 03:28:06 2026 GMT Not After : Apr 1 03:28:06 2026 GMT Subject: CN=69c35646-271e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:70:ae:ff:c3:de:cd:65:f5:0a:30:01:76:36: 65:5f:51:a9:cf:2e:23:db:e9:88:ba:3b:db:91:8b: 09:34:75:5f:af:59:c0:02:a2:39:a9:55:ff:74:f2: be:fa:84:ef:5a:e6:07:1c:88:ec:5a:e2:50:01:45: f6:24:52:ed:eb:74:56:52:79:68:24:00:f7:dd:fb: f6:4d:9d:e9:ba:20:ee:8d:28:7f:b4:dd:3a:c4:7a: f7:0a:af:49:37:d1:b0:f6:71:3c:c8:be:7f:6a:c0: 89:8f:56:08:8a:fb:e0:dd:24:41:1c:13:d3:eb:31: e5:96:9d:c7:bd:ac:d1:92:aa:eb:3e:de:83:d3:b7: 36:41:d9:73:d5:f9:81:d5:c5:50:a2:55:48:10:56: 0d:10:33:11:3a:1d:58:9a:a4:d3:15:1c:7b:b1:17: 51:58:57:14:b3:17:11:d7:a1:b3:dd:c4:76:80:c0: bf:73:63:b5:0b:10:78:aa:63:18:85:d2:dd:7f:a0: a8:88:3f:ee:3a:d8:66:e1:e5:9f:3f:52:73:57:d1: a0:dc:e6:37:16:68:f4:a1:15:1c:bb:a2:62:da:f1: 30:35:30:62:73:d2:45:93:77:2c:52:86:75:21:2c: 10:8a:42:3a:16:bc:fc:d0:0b:a4:e5:74:5b:ea:3c: f6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:DC:4D:8D:DF:D5:65:96:98:A4:76:44:65:28:2D:B5:0E:64:01:77 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:dd:8a:32:1d:03:ca:20:c3:f9:69:11:45:04:02:30:aa:70: 53:a7:cd:a2:41:51:56:7d:6d:8a:f1:20:4c:ef:0c:f3:ed:89: 02:6d:41:b9:fe:a1:43:a3:d8:b1:b0:0b:2a:fb:6a:0f:bd:b3: 44:11:66:ba:26:92:a5:1b:63:9b:66:45:c4:8e:51:50:6d:7f: 2d:d5:d7:41:17:dc:08:7f:75:76:30:71:99:64:6f:4a:fb:e5: ce:12:be:8d:76:8a:2d:39:da:31:d9:77:37:8f:89:06:ff:c0: 7c:46:93:b8:0c:92:f9:78:3c:91:b8:00:23:6b:19:25:a4:2a: 05:e4:39:42:40:4e:0b:3d:05:b7:1c:ef:69:db:c5:b1:81:4c: f3:51:a0:6a:5b:2a:62:b2:bb:d9:0f:dd:6d:ce:87:8a:f9:44: 08:c0:df:95:6b:11:bc:46:bf:24:b1:68:90:61:8e:fa:60:88: b8:97:25:3d:4a:6d:e7:41:5b:83:1b:d2:a6:08:b1:cb:dc:3a: f8:21:4b:bd:f8:3d:21:7e:28:c7:fe:35:cd:87:df:86:d0:45: 96:02:8e:54:6d:96:41:44:12:52:01:06:c7:34:45:c8:a0:25: 5e:45:7e:93:fa:5b:0d:79:00:9d:91:d6:9f:d3:88:33:3a:bb: 22:2c:d0:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjYwMzI1MDMyODA2WhcNMjYwNDAxMDMyODA2WjAYMRYwFAYD VQQDEw02OWMzNTY0Ni0yNzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nCu/8PezWX1CjABdjZlX1Gpzy4j2+mIujvbkYsJNHVfr1nAAqI5qVX/dPK+ +oTvWuYHHIjsWuJQAUX2JFLt63RWUnloJAD33fv2TZ3puiDujSh/tN06xHr3Cq9J N9Gw9nE8yL5/asCJj1YIivvg3SRBHBPT6zHllp3HvazRkqrrPt6D07c2Qdlz1fmB 1cVQolVIEFYNEDMROh1YmqTTFRx7sRdRWFcUsxcR16Gz3cR2gMC/c2O1CxB4qmMY hdLdf6CoiD/uOthm4eWfP1JzV9Gg3OY3Fmj0oRUcu6Ji2vEwNTBic9JFk3csUoZ1 ISwQikI6Frz80Auk5XRb6jz2XwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFLcTY3f 1WWWmKR2RGUoLbUOZAF3MB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbd2KMh0DyiDD+WkRRQQCMKpwU6fNokFRVn1tivEgTO8M8+2JAm1Buf6hQ6PY sbALKvtqD72zRBFmuiaSpRtjm2ZFxI5RUG1/LdXXQRfcCH91djBxmWRvSvvlzhK+ jXaKLTnaMdl3N4+JBv/AfEaTuAyS+Xg8kbgAI2sZJaQqBeQ5QkBOCz0FtxzvadvF sYFM81GgalsqYrK72Q/dbc6HivlECMDflWsRvEa/JLFokGGO+mCIuJclPUpt50Fb gxvSpgixy9w6+CFLvfg9IX4ox/41zYffhtBFlgKOVG2WQUQSUgEGxzRFyKAlXkV+ k/pbDXkAnZHWn9OIMzq7IizQ+A== -----END CERTIFICATE-----Generated at Thu Mar 26 23:48:14 2026 by rpki-client