$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: bR6upqd5F4Y6P6DXp6SxFGL2iHjfRJHSmyiCo/x0hio= Subject key identifier: BC:19:04:57:78:14:80:22:D9:9B:EE:04:D5:08:C4:09:0C:D3:45:A9 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E5D Signing time: Tue 24 Mar 2026 15:26:26 +0000 Manifest this update: Tue 24 Mar 2026 15:26:26 +0000 Manifest next update: Tue 31 Mar 2026 15:26:26 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: KIKvVOnvsxxxLxUgo9+peoXO9o3uqNYkW6dBvLPAQoc=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: 6f1TkFWNlMl/F/acGbghOLoUP+OqCJaMnvA5r+odhLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11900 (0x2e7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Mar 24 15:26:26 2026 GMT Not After : Mar 31 15:26:26 2026 GMT Subject: CN=69c2ad22-5677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:90:3a:fb:94:08:ca:b1:4a:4f:0a:a2:35:db: 67:2a:ae:48:e5:e0:d2:19:8e:30:73:b8:44:b1:3b: 83:e5:ed:ae:89:2e:4e:b4:20:e6:46:88:e5:e0:3d: 5d:fc:68:ef:9a:93:75:d0:4e:98:90:4a:86:38:18: bd:4e:44:aa:77:2a:be:63:d1:63:9b:75:b4:3c:7c: 64:89:84:c2:75:a1:9a:89:f9:20:99:d1:dc:1b:aa: 77:cb:a3:3e:88:37:87:f8:a9:f8:f9:69:e1:d0:92: 1a:7f:ae:00:ce:06:ff:fe:84:93:73:cc:6a:db:78: a1:8d:cb:9b:d2:39:1e:6c:a6:33:16:80:7b:e2:4c: 7a:3f:d0:9b:d3:04:73:29:99:49:91:5a:6b:c9:5a: cc:2d:0f:c4:97:cc:35:37:d1:f8:51:b1:06:c2:32: a6:6d:f7:7d:c0:6a:7f:7f:ce:36:ef:c5:77:5d:20: 6e:2d:f8:8a:09:50:be:5f:a6:43:c2:8e:f2:a1:09: 28:d0:48:df:3d:98:0c:e1:94:ac:f4:3e:55:4b:a3: eb:86:7f:b1:b6:e9:2c:25:3b:89:ad:fc:73:05:07: 2e:30:82:8c:8a:27:d3:88:88:44:1f:a8:0c:7a:d2: e1:88:0f:8c:64:2d:95:d2:52:34:7d:6d:44:4f:e1: 6a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:19:04:57:78:14:80:22:D9:9B:EE:04:D5:08:C4:09:0C:D3:45:A9 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:5d:de:72:40:ec:4b:c4:b9:62:2f:ff:72:bd:9d:25:f6:c8: af:72:0a:ad:85:c5:a7:fe:28:20:bf:02:7f:2f:53:e8:f5:16: 45:37:70:6a:c0:0b:b7:50:fa:14:c6:0e:6d:ad:be:b6:ff:66: a9:12:9a:3d:eb:f3:99:0f:dd:c3:b9:1d:a7:a2:e7:fd:0e:ec: 55:38:f8:b4:2a:28:96:a8:3f:19:5a:ca:33:42:c6:2c:50:9e: 76:30:30:99:74:13:ed:a5:71:28:0a:32:b1:86:cc:ae:d7:98: f5:1b:40:cb:26:b7:00:8e:f0:67:76:28:bc:70:ab:c0:05:b1: 76:39:4d:cf:24:43:2c:37:94:bd:c8:55:4f:e9:8c:db:a6:eb: 84:07:b0:c0:40:84:0b:06:e5:ec:fa:1a:6b:1c:fb:2f:33:da: c4:b6:9b:ec:d8:95:c8:25:78:10:b8:5c:28:d6:ef:1e:f6:39: a7:c8:bd:b0:98:d9:1c:ed:8c:80:89:1f:6d:52:0f:8b:95:6b: e0:95:75:e7:e1:91:31:44:2b:8c:f6:37:9e:31:b5:17:fc:59: 9f:70:22:45:29:2f:61:43:92:0c:48:d7:8c:84:63:81:01:20: a0:13:1f:cd:99:fa:b0:b1:4b:6f:7a:d6:c5:dc:0e:e5:58:72: 5a:6f:b8:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjYwMzI0MTUyNjI2WhcNMjYwMzMxMTUyNjI2WjAYMRYwFAYD VQQDEw02OWMyYWQyMi01Njc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6pA6+5QIyrFKTwqiNdtnKq5I5eDSGY4wc7hEsTuD5e2uiS5OtCDmRojl4D1d /GjvmpN10E6YkEqGOBi9TkSqdyq+Y9Fjm3W0PHxkiYTCdaGaifkgmdHcG6p3y6M+ iDeH+Kn4+Wnh0JIaf64Azgb//oSTc8xq23ihjcub0jkebKYzFoB74kx6P9Cb0wRz KZlJkVpryVrMLQ/El8w1N9H4UbEGwjKmbfd9wGp/f84278V3XSBuLfiKCVC+X6ZD wo7yoQko0EjfPZgM4ZSs9D5VS6Prhn+xtuksJTuJrfxzBQcuMIKMiifTiIhEH6gM etLhiA+MZC2V0lI0fW1ET+FqQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLwZBFd4 FIAi2ZvuBNUIxAkM00WpMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdl3eckDsS8S5Yi//cr2dJfbIr3IKrYXFp/4oIL8Cfy9T6PUWRTdwasALt1D6 FMYOba2+tv9mqRKaPevzmQ/dw7kdp6Ln/Q7sVTj4tCoolqg/GVrKM0LGLFCedjAw mXQT7aVxKAoysYbMrteY9RtAyya3AI7wZ3YovHCrwAWxdjlNzyRDLDeUvchVT+mM 26brhAewwECECwbl7Poaaxz7LzPaxLab7NiVyCV4ELhcKNbvHvY5p8i9sJjZHO2M gIkfbVIPi5Vr4JV15+GRMUQrjPY3njG1F/xZn3AiRSkvYUOSDEjXjIRjgQEgoBMf zZn6sLFLb3rWxdwO5VhyWm+4qQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:55:34 2026 by rpki-client