$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft File: SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft (raw, json) Hash identifier: HtcfwGUbqnFaXov6RJmzA1KtFdt/MJB4YY7ex/6ONFQ= Subject key identifier: 84:B1:A3:F4:B7:75:F1:E8:DE:1F:65:5F:18:66:AA:D5:0B:50:20:DB Authority key identifier: 49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00 Certificate issuer: /CN=A91D2B9A/serialNumber=499D691B0F732D9006E9513C60B7366B4E690400 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft Manifest number: 2B Signing time: Wed 25 Mar 2026 07:57:46 +0000 Manifest this update: Wed 25 Mar 2026 07:57:46 +0000 Manifest next update: Wed 01 Apr 2026 07:57:46 +0000 Files and hashes: 1: SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl (hash: bzNj8w0NLpV2zBkvDHXHtiP5REy4zOOscL4s0wC8pHI=) 2: 75BE67B2F12311F09E054F8D4F6F56BC.roa (hash: QeHn1agdKxmdJdH278JH44lkIuCADGys4RpsqprN2FU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B9A, serialNumber=499D691B0F732D9006E9513C60B7366B4E690400 Validity Not Before: Mar 25 07:57:46 2026 GMT Not After : Apr 1 07:57:46 2026 GMT Subject: CN=69c3957a-4160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8d:4c:39:91:8d:2a:eb:f8:ef:64:b1:fd:f6: ed:44:b7:4d:e4:57:82:8b:c3:cb:ba:36:09:23:34: e0:e7:84:7b:92:0d:08:a2:22:86:83:36:55:a4:f4: 2a:53:7d:cb:7e:bb:6a:a7:35:8c:ad:d2:9a:66:64: 35:3e:b2:7d:d9:e2:dc:fa:f4:41:81:a6:3d:3a:16: b1:ec:0a:32:3f:2a:ae:39:d3:33:48:d2:ad:33:5f: 4a:01:6c:25:0f:50:60:c7:4f:f5:3a:4b:e5:2e:98: fc:f9:85:d7:fa:d3:37:48:57:98:54:9a:ee:2b:29: fe:1d:cb:4d:78:21:77:0e:ff:5a:9d:27:bd:f6:c9: a0:23:5c:6d:c4:61:e4:a6:88:56:15:d2:10:16:fd: 95:75:50:2e:29:26:66:d9:e9:dd:a2:76:a6:61:b0: c6:02:c3:97:78:1f:1a:ac:a9:92:df:81:94:84:d2: 7f:96:7b:cd:13:28:75:b0:c0:69:60:07:1d:37:68: bb:73:71:ba:95:40:ca:c9:40:af:ff:de:07:31:4e: 08:06:b9:8d:ee:f2:9e:36:82:9c:3a:ce:33:21:07: f4:ba:07:bb:21:30:83:51:b5:dd:c5:ff:6d:9d:05: 6c:72:50:34:f7:27:42:78:5a:26:e4:e0:79:a3:bb: 1b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B1:A3:F4:B7:75:F1:E8:DE:1F:65:5F:18:66:AA:D5:0B:50:20:DB X509v3 Authority Key Identifier: keyid:49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:e8:e0:a8:dc:8d:1f:c3:01:21:30:0d:26:b9:72:c3:c6:43: 90:62:19:09:75:73:a0:00:f7:27:92:44:4b:bc:54:b3:a6:52: 8e:b8:aa:d2:62:eb:55:3d:15:56:ea:22:4a:f1:83:2d:91:f9: f7:e5:8e:f8:38:7e:1f:2f:bb:47:13:52:d5:3d:c3:a0:8f:1b: 18:02:bc:57:69:19:2b:94:09:64:9e:62:08:e1:e9:fe:b4:28: eb:e8:86:22:72:f7:dc:eb:13:31:fd:61:f9:f2:fa:4a:8d:f5: e2:5a:35:8b:c2:f0:e3:c7:3c:5b:a8:ee:09:0b:09:04:a5:20: fb:77:0c:3d:6b:e4:cb:cd:3c:4b:12:4f:d1:95:f5:c9:b1:bc: cd:5a:cf:79:fc:70:b6:c2:c5:07:a9:0b:e7:35:f9:29:65:1c: a2:ad:22:fa:be:71:84:05:45:40:d2:0c:b1:73:89:eb:fc:1a: 93:4a:35:a4:0d:73:59:c2:b3:b0:d1:89:9f:33:18:0a:4c:f2: 0c:b4:65:25:ac:2b:5c:a7:d5:40:29:ee:47:09:39:e3:ef:5c: be:01:c5:2e:98:d7:eb:fd:96:db:e0:6d:a1:6b:21:03:26:2f: f1:cc:77:a5:67:a2:1c:03:e7:1b:27:b2:91:22:f1:58:5d:15: 0c:5b:40:f1 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkI5QTExMC8GA1UEBRMoNDk5RDY5MUIwRjczMkQ5MDA2RTk1MTNDNjBCNzM2NkI0 RTY5MDQwMDAeFw0yNjAzMjUwNzU3NDZaFw0yNjA0MDEwNzU3NDZaMBgxFjAUBgNV BAMTDTY5YzM5NTdhLTQxNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/jUw5kY0q6/jvZLH99u1Et03kV4KLw8u6NgkjNODnhHuSDQiiIoaDNlWk9CpT fct+u2qnNYyt0ppmZDU+sn3Z4tz69EGBpj06FrHsCjI/Kq450zNI0q0zX0oBbCUP UGDHT/U6S+UumPz5hdf60zdIV5hUmu4rKf4dy014IXcO/1qdJ732yaAjXG3EYeSm iFYV0hAW/ZV1UC4pJmbZ6d2idqZhsMYCw5d4HxqsqZLfgZSE0n+We80TKHWwwGlg Bx03aLtzcbqVQMrJQK//3gcxTggGuY3u8p42gpw6zjMhB/S6B7shMINRtd3F/22d BWxyUDT3J0J4Wibk4HmjuxvRAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUhLGj9Ld1 8ejeH2VfGGaq1QtQINswHwYDVR0jBBgwFoAUSZ1pGw9zLZAG6VE8YLc2a05pBAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjlBLzc3OTY5QjhDRjEy MjExRjBBQzVDREE3RTRFNkY1NkJDL1NaMXBHdzl6TFpBRzZWRThZTGMyYTA1cEJB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvU1oxcEd3OXpMWkFHNlZFOFlMYzJhMDVwQkFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QjlBLzc3OTY5QjhDRjEyMjExRjBBQzVDREE3RTRFNkY1NkJDL1NaMXBHdzl6TFpB RzZWRThZTGMyYTA1cEJBQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAm6OCo3I0fwwEhMA0muXLDxkOQYhkJdXOgAPcnkkRLvFSzplKOuKrSYutVPRVW 6iJK8YMtkfn35Y74OH4fL7tHE1LVPcOgjxsYArxXaRkrlAlknmII4en+tCjr6IYi cvfc6xMx/WH58vpKjfXiWjWLwvDjxzxbqO4JCwkEpSD7dww9a+TLzTxLEk/RlfXJ sbzNWs95/HC2wsUHqQvnNfkpZRyirSL6vnGEBUVA0gyxc4nr/BqTSjWkDXNZwrOw 0YmfMxgKTPIMtGUlrCtcp9VAKe5HCTnj71y+AcUumNfr/Zbb4G2hayEDJi/xzHel Z6IcA+cbJ7KRIvFYXRUMW0Dx -----END CERTIFICATE-----Generated at Thu Mar 26 22:42:33 2026 by rpki-client