$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: D4pbewWVgeFsuYPgjPrUwMTDP6h8+GH0D/iCb8OQYTk= Subject key identifier: B7:A5:7C:C6:94:5C:E0:AF:38:FA:1A:66:61:B0:58:AF:EA:BD:EE:75 Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0AE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0ACA Signing time: Tue 24 Mar 2026 19:15:28 +0000 Manifest this update: Tue 24 Mar 2026 19:15:27 +0000 Manifest next update: Tue 31 Mar 2026 19:15:27 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: aNM9FOySWZgGRgxK2q2NcsB5zKi6ouCF9t4kDkd2ywU=) 2: 6E71C43EF80A11F0BD0E5DB76F6F56BC.roa (hash: exImyAeQnH2e+Miw5tPRziDVGs9lzMXANWdN6H9jKss=) 3: 6EE80A72F80A11F0BD0E5DB76F6F56BC.roa (hash: Jh4Ff7zuJk/wuhEY+gYNdPlenkcVzVFWzJ8Ffm4/pSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: Mar 24 19:15:27 2026 GMT Not After : Mar 31 19:15:27 2026 GMT Subject: CN=69c2e2cf-684d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5f:6f:f0:71:1b:09:07:8b:99:d9:96:af:e4: b9:bf:3f:1c:c3:46:71:6d:74:02:f6:74:a0:40:db: fd:d0:68:f0:64:87:3f:1b:6a:8c:8e:fd:f6:5a:50: b8:11:29:06:ad:32:0b:f0:f9:8c:ca:7d:2c:94:6b: f9:fc:45:be:e9:85:fa:e0:04:79:20:2d:28:ad:40: 7b:45:3c:fe:29:39:ee:d1:1b:ae:69:bf:06:8c:a7: 89:f0:a5:00:ad:7d:13:70:18:49:8a:55:a5:80:6a: ab:8c:dc:e8:71:60:31:92:3f:f6:36:4f:59:65:65: 08:ae:6e:86:4d:8f:7e:e0:b4:37:1d:58:b5:eb:cf: f6:68:bb:8f:4c:7c:8a:c7:c5:2d:08:c5:ef:e2:08: c0:65:9b:50:b9:e0:67:68:9f:b1:b1:7a:d0:58:42: 28:d3:10:b7:61:98:70:48:17:66:4f:a1:11:9a:dd: 7e:f9:97:d3:a5:60:56:50:dd:de:d7:ae:49:76:bf: 88:32:c2:8d:8c:70:99:97:50:a0:3d:53:60:46:bf: 38:97:0a:b2:5b:5b:96:95:0e:0e:97:ae:9d:90:1e: 40:cd:e3:a2:6e:9f:74:3b:a3:80:73:8f:9d:61:2a: ae:f3:75:44:1a:d8:b5:b1:f4:c6:a8:31:38:52:b7: c9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A5:7C:C6:94:5C:E0:AF:38:FA:1A:66:61:B0:58:AF:EA:BD:EE:75 X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:90:39:fa:2c:fc:ae:3e:d7:eb:d2:9e:3c:c3:ae:2a:a4:03: 19:d6:e4:fe:08:28:f6:93:4e:7d:45:54:bf:d8:e0:cc:92:ea: 7b:c7:88:d0:ea:26:46:d5:b0:d7:f6:ce:68:49:d6:5f:57:b0: 3d:eb:ff:6c:2c:c8:be:5c:92:d0:61:c6:b9:87:77:2a:c3:6b: a2:12:f3:db:28:41:b7:de:8f:fe:de:7c:ba:66:59:ab:57:71: c4:14:65:34:01:ea:69:02:f9:68:d8:31:53:28:09:78:a4:ce: 29:fe:7a:98:34:92:a3:3e:55:92:f2:90:8b:ba:69:c7:ae:bc: 16:11:aa:ef:2e:09:c7:0d:20:7f:b3:2c:e2:73:3e:21:a9:51: 32:70:ec:ed:45:5f:70:f9:e8:46:3f:98:b8:f0:f0:32:7c:a0: f2:ff:df:4c:e1:f3:43:d6:2f:0a:6f:8e:86:5c:ce:e0:af:1c: b5:0a:86:b6:00:6b:91:8a:91:d3:b9:94:15:26:06:26:38:83: cc:3b:fd:f7:ce:d1:dc:97:29:7a:19:ec:0a:d5:6b:89:24:25: c8:a2:88:4f:65:1b:40:15:56:f6:b5:40:32:ad:ec:31:1c:5b: 75:21:ad:48:1d:ad:44:3a:02:a1:1e:cf:2f:c2:97:e0:2d:71: 12:37:c0:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjYwMzI0MTkxNTI3WhcNMjYwMzMxMTkxNTI3WjAYMRYwFAYD VQQDEw02OWMyZTJjZi02ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl9v8HEbCQeLmdmWr+S5vz8cw0ZxbXQC9nSgQNv90GjwZIc/G2qMjv32WlC4 ESkGrTIL8PmMyn0slGv5/EW+6YX64AR5IC0orUB7RTz+KTnu0Ruuab8GjKeJ8KUA rX0TcBhJilWlgGqrjNzocWAxkj/2Nk9ZZWUIrm6GTY9+4LQ3HVi168/2aLuPTHyK x8UtCMXv4gjAZZtQueBnaJ+xsXrQWEIo0xC3YZhwSBdmT6ERmt1++ZfTpWBWUN3e 165Jdr+IMsKNjHCZl1CgPVNgRr84lwqyW1uWlQ4Ol66dkB5AzeOibp90O6OAc4+d YSqu83VEGti1sfTGqDE4UrfJuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLelfMaU XOCvOPoaZmGwWK/qve51MB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlZA5+iz8rj7X69KePMOuKqQDGdbk/ggo9pNOfUVUv9jgzJLqe8eI0OomRtWw 1/bOaEnWX1ewPev/bCzIvlyS0GHGuYd3KsNrohLz2yhBt96P/t58umZZq1dxxBRl NAHqaQL5aNgxUygJeKTOKf56mDSSoz5VkvKQi7ppx668FhGq7y4Jxw0gf7Ms4nM+ IalRMnDs7UVfcPnoRj+YuPDwMnyg8v/fTOHzQ9YvCm+OhlzO4K8ctQqGtgBrkYqR 07mUFSYGJjiDzDv9987R3JcpehnsCtVriSQlyKKIT2UbQBVW9rVAMq3sMRxbdSGt SB2tRDoCoR7PL8KX4C1xEjfA1A== -----END CERTIFICATE-----Generated at Thu Mar 26 15:41:55 2026 by rpki-client