$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: rqMfSIo9IUyEApLRSqR8WsPTAeskl0qw535oNr+8SKw= Subject key identifier: CE:A1:17:BC:CF:3D:38:53:B6:EF:BC:C3:68:11:F1:12:28:11:4D:47 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0BFB Signing time: Tue 24 Mar 2026 18:40:39 +0000 Manifest this update: Tue 24 Mar 2026 18:40:39 +0000 Manifest next update: Tue 31 Mar 2026 18:40:39 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: qjV4sLKp9nOALLTZ/XlazKcd6dOCY/PmE3ucdnft89g=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: 6Ame+YILGtwLlHXrTSKrMmjZA1zZetCF8/WjYNGZDCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Mar 24 18:40:39 2026 GMT Not After : Mar 31 18:40:39 2026 GMT Subject: CN=69c2daa7-a1fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d5:27:f4:01:96:c4:a5:4c:b0:e5:bf:5e:22: 7a:bd:9d:ec:2e:98:8f:3c:9a:99:f4:7c:74:1d:c2: c9:7b:32:01:87:a1:a0:de:0a:0b:31:0c:89:56:25: a4:da:8f:9b:08:c8:b9:75:47:be:a8:29:c5:75:be: a4:12:f4:db:3a:ff:5d:ab:96:91:8e:dd:8d:21:51: 5f:02:36:e2:86:2e:fd:01:60:76:7d:d2:6a:cf:0b: 33:4d:2e:0b:7b:73:6f:e9:59:8c:1a:69:1b:f1:b9: 4a:45:e8:f1:c7:a9:2d:cd:9c:d4:a8:d8:b7:3f:ba: e6:60:3b:67:3e:85:95:e0:b6:bc:96:d2:49:ff:b7: db:ee:41:a5:25:81:09:9f:62:fd:a0:4f:a7:3d:16: 5e:05:c8:f8:a4:fd:82:36:4d:f7:d5:38:cc:39:b8: 89:e3:f0:54:0b:63:ee:d9:b4:32:6e:b2:fc:7e:67: 72:51:17:4c:65:8a:3f:67:cd:c8:70:b5:27:a5:bf: 76:5d:89:cc:5f:b5:e2:ad:89:15:d0:f6:62:8a:fb: 0a:be:b4:cd:f0:de:29:7b:6d:ba:02:f6:b2:62:90: ee:9a:07:09:10:52:c7:65:95:90:6f:ec:32:c9:4f: ac:84:45:42:37:11:18:97:d6:c3:f8:8d:fc:64:bb: 25:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A1:17:BC:CF:3D:38:53:B6:EF:BC:C3:68:11:F1:12:28:11:4D:47 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:11:b8:63:bc:41:d0:a8:96:30:c8:b9:5f:4a:4c:98:df:83: 7d:54:9c:ce:c2:3c:6f:56:f1:6b:6d:dc:22:7a:9b:d7:36:df: d9:02:15:22:9c:73:e6:71:fb:8c:93:47:43:b2:95:bd:a4:f8: 06:36:cb:aa:af:74:99:b8:30:23:37:20:7c:60:f9:66:67:78: 9a:6c:e0:bf:a9:b7:56:e6:9a:13:d1:84:52:17:b9:81:37:83: d9:84:05:21:0b:89:47:5c:b0:22:21:5c:d1:9d:c2:ea:0d:c1: 51:68:05:22:5f:dd:95:74:aa:2d:31:f7:dc:e9:b7:7e:ab:6d: 81:09:33:9e:e7:4d:e9:d0:40:14:99:ed:8c:5e:39:67:df:92: c8:38:cf:3a:8c:23:fe:2e:70:ea:38:18:37:dc:5f:79:93:8a: db:67:40:d1:aa:06:23:fa:97:f9:94:7c:5a:9a:25:25:a5:d7: b9:43:41:5d:5b:8b:16:c9:1e:6b:14:97:25:30:33:96:89:c4: 2f:21:55:d5:11:81:be:1e:bd:63:cb:12:2f:5f:a0:87:e0:8a: ee:2a:5a:98:5e:d3:3e:e7:95:81:97:31:67:e8:37:19:bd:51: 1b:42:45:f1:93:98:ef:7f:7f:7c:51:e4:57:46:3b:55:09:9b: b2:5b:85:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjYwMzI0MTg0MDM5WhcNMjYwMzMxMTg0MDM5WjAYMRYwFAYD VQQDEw02OWMyZGFhNy1hMWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA89Un9AGWxKVMsOW/XiJ6vZ3sLpiPPJqZ9Hx0HcLJezIBh6Gg3goLMQyJViWk 2o+bCMi5dUe+qCnFdb6kEvTbOv9dq5aRjt2NIVFfAjbihi79AWB2fdJqzwszTS4L e3Nv6VmMGmkb8blKRejxx6ktzZzUqNi3P7rmYDtnPoWV4La8ltJJ/7fb7kGlJYEJ n2L9oE+nPRZeBcj4pP2CNk331TjMObiJ4/BUC2Pu2bQybrL8fmdyURdMZYo/Z83I cLUnpb92XYnMX7XirYkV0PZiivsKvrTN8N4pe226AvayYpDumgcJEFLHZZWQb+wy yU+shEVCNxEYl9bD+I38ZLsl8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM6hF7zP PThTtu+8w2gR8RIoEU1HMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVBG4Y7xB0KiWMMi5X0pMmN+DfVSczsI8b1bxa23cInqb1zbf2QIVIpxz5nH7 jJNHQ7KVvaT4BjbLqq90mbgwIzcgfGD5Zmd4mmzgv6m3VuaaE9GEUhe5gTeD2YQF IQuJR1ywIiFc0Z3C6g3BUWgFIl/dlXSqLTH33Om3fqttgQkznudN6dBAFJntjF45 Z9+SyDjPOowj/i5w6jgYN9xfeZOK22dA0aoGI/qX+ZR8WpolJaXXuUNBXVuLFske axSXJTAzlonELyFV1RGBvh69Y8sSL1+gh+CK7ipamF7TPueVgZcxZ+g3Gb1RG0JF 8ZOY739/fFHkV0Y7VQmbsluFsw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:48:56 2026 by rpki-client