$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: i4xi1mTY6fVzb6wWsYfbva5qZztfl4eBLo4h5qbfxk8= Subject key identifier: 49:8B:5F:67:F4:F2:CE:CC:FE:C5:E6:3C:5C:AE:A3:9E:99:68:EF:B2 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 0300 Signing time: Wed 25 Mar 2026 01:04:19 +0000 Manifest this update: Wed 25 Mar 2026 01:04:19 +0000 Manifest next update: Wed 01 Apr 2026 01:04:19 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: wgJHrF2gZ3dSFP1sRfBIyRGvHcoBz45yiR0ksmtS6r0=) 2: 826A614C16D911F183D175C0323D8C67.roa (hash: ycmuh8Nj0r0LWzIjLbjrvo9pWQhXULrkKa+U8zn3Gr8=) 3: D6D1A360323911F0BDA2E834C4F9AE02.roa (hash: 6w7CckVV6rG/tG2tTXK+P2qxsctnyNA9gMl+grLKt2E=) 4: DF9C04F4897811F08A9D002AC4F9AE02.roa (hash: 1eWJrnzvRDCq+R12qi5MDc8zwDz6onremzl8rIyFdWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Mar 25 01:04:19 2026 GMT Not After : Apr 1 01:04:19 2026 GMT Subject: CN=69c33493-8214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ea:c2:c9:40:e0:76:2f:a3:b1:65:8b:b8:74: 8b:e1:fa:4f:0a:ba:d7:8b:f2:64:b5:e4:3b:fb:6a: a1:0a:3d:79:19:bf:48:f4:e5:ac:35:a1:ea:15:9e: 26:7e:7c:ee:9d:1e:e1:1d:f5:40:08:71:a5:ed:9e: 5c:da:15:a3:87:b7:8d:fb:41:5b:a9:ad:da:f6:a4: 75:a9:ba:d2:28:a9:a2:1f:fd:18:26:03:ac:41:e9: c6:93:cd:62:3b:f6:97:ce:56:16:3e:83:04:a6:98: 97:47:8e:6f:41:19:71:00:ea:72:c1:93:63:99:f9: dd:ba:b3:c1:45:80:7e:db:af:2c:38:4a:bf:c2:70: 94:dd:99:fb:97:4f:87:fb:e5:68:6b:60:81:a0:9d: af:90:e5:c2:a2:a2:23:12:38:52:a8:99:4a:93:bc: a5:61:24:48:e5:00:fc:fb:80:22:fb:e0:8b:64:08: 95:91:f3:61:80:04:7c:90:1c:53:e8:55:05:69:d9: 28:43:c0:fe:97:cf:97:cd:64:6e:2b:e1:84:6b:53: a0:ba:2d:84:5e:c3:58:79:16:e8:69:71:db:81:c5: 94:2c:bd:c4:86:d6:84:0b:81:ff:d4:0e:e8:36:57: fa:9a:b2:7a:f2:83:b5:0f:87:a0:44:76:83:f1:51: fa:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8B:5F:67:F4:F2:CE:CC:FE:C5:E6:3C:5C:AE:A3:9E:99:68:EF:B2 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:de:48:15:52:e8:36:3e:61:55:c6:12:7d:82:8f:5f:26:b2: bc:af:b3:2b:b5:70:47:69:a5:2a:69:a4:03:32:5f:61:15:88: 00:14:b4:de:85:6d:4b:4d:5f:37:57:51:70:ca:b4:3d:ba:96: 90:81:93:df:e0:e2:80:80:31:5b:e3:02:7e:a4:c9:d6:05:87: e1:39:0d:c5:3a:20:11:1e:65:cd:20:fa:7e:66:46:4b:da:1d: fe:93:ba:51:94:ef:dd:cd:dd:26:c6:aa:c0:21:58:ba:08:6b: df:e8:1d:a8:c2:ef:0d:8c:ba:2e:42:4e:9e:49:69:3e:34:a4: 32:55:1b:04:8a:a1:a4:f5:db:aa:fc:45:8c:e6:88:90:ae:49: c9:d0:bb:8e:56:f6:3c:8c:1d:74:45:c1:9f:81:f1:79:a9:4a: 8f:5d:48:19:fd:38:a4:1f:39:df:b7:39:9b:a8:8d:36:63:3c: c0:e2:e4:9e:b4:2d:ed:a9:8e:39:eb:47:12:ea:30:a7:6d:68: 35:4d:10:7c:6c:9a:83:ba:80:89:00:e1:9b:eb:04:4d:08:ed: 89:5d:dc:74:20:9b:8b:fd:d5:1b:5b:07:9a:f2:01:41:1d:e6: 5d:0c:4a:58:1a:2d:8a:f0:c6:44:33:43:9a:3f:5d:c4:d6:37: b4:8f:08:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjYwMzI1MDEwNDE5WhcNMjYwNDAxMDEwNDE5WjAYMRYwFAYD VQQDEw02OWMzMzQ5My04MjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAterCyUDgdi+jsWWLuHSL4fpPCrrXi/JkteQ7+2qhCj15Gb9I9OWsNaHqFZ4m fnzunR7hHfVACHGl7Z5c2hWjh7eN+0Fbqa3a9qR1qbrSKKmiH/0YJgOsQenGk81i O/aXzlYWPoMEppiXR45vQRlxAOpywZNjmfndurPBRYB+268sOEq/wnCU3Zn7l0+H ++Voa2CBoJ2vkOXCoqIjEjhSqJlKk7ylYSRI5QD8+4Ai++CLZAiVkfNhgAR8kBxT 6FUFadkoQ8D+l8+XzWRuK+GEa1Ogui2EXsNYeRboaXHbgcWULL3EhtaEC4H/1A7o Nlf6mrJ68oO1D4egRHaD8VH6bwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEmLX2f0 8s7M/sXmPFyuo56ZaO+yMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC95IFVLoNj5hVcYSfYKPXyayvK+zK7VwR2mlKmmkAzJfYRWIABS03oVtS01f N1dRcMq0PbqWkIGT3+DigIAxW+MCfqTJ1gWH4TkNxTogER5lzSD6fmZGS9od/pO6 UZTv3c3dJsaqwCFYughr3+gdqMLvDYy6LkJOnklpPjSkMlUbBIqhpPXbqvxFjOaI kK5JydC7jlb2PIwddEXBn4HxealKj11IGf04pB8537c5m6iNNmM8wOLknrQt7amO OetHEuowp21oNU0QfGyag7qAiQDhm+sETQjtiV3cdCCbi/3VG1sHmvIBQR3mXQxK WBotivDGRDNDmj9dxNY3tI8ITA== -----END CERTIFICATE-----Generated at Thu Mar 26 09:20:28 2026 by rpki-client