$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: 9Z/cH8ZuQ5rqmGA18/yZnFd0i4ZfE2uBN6sD4B37sew= Subject key identifier: BE:BD:58:9C:C1:AE:0A:AC:E4:97:75:93:33:B8:19:D1:6A:EE:01:B9 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 04ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 04E6 Signing time: Tue 24 Mar 2026 23:26:02 +0000 Manifest this update: Tue 24 Mar 2026 23:26:02 +0000 Manifest next update: Tue 31 Mar 2026 23:26:02 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: 73Og27lKAxIlc8MRGEnxO8KBetfrZBayfVZqnMvEut0=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 26ebyWae8kFMiBM0QnNKySSkX8UzW3r5Z0rGEmFhGYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1261 (0x4ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Mar 24 23:26:02 2026 GMT Not After : Mar 31 23:26:02 2026 GMT Subject: CN=69c31d8a-71ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c1:cb:ec:48:3b:75:4c:9b:8f:a2:b9:2c:f0: ab:b1:36:d8:6c:7f:17:7c:b9:e5:c6:27:7c:63:7f: 38:11:ed:66:99:ca:3e:11:4f:be:07:a7:e4:af:99: 8c:44:6b:e8:32:cd:94:a0:a7:c3:32:eb:4e:82:03: 92:62:29:61:9b:16:be:7e:53:c8:a7:66:8b:bf:61: a1:07:7d:66:99:b7:4f:f2:9d:8d:5f:74:e0:61:92: 5c:57:e6:8c:0c:9a:e4:b2:07:0c:ba:d3:67:02:eb: ca:9b:6f:6e:58:58:bc:56:0b:a8:be:9e:9e:61:f9: cf:48:09:ff:9e:fd:ba:3d:25:08:7b:7e:7f:f7:1d: 05:bd:cf:7d:18:ac:5b:41:fc:3b:d7:47:c8:a6:32: 77:d8:fa:0a:e5:92:47:63:d1:70:8d:37:c9:0c:27: fd:ea:fd:36:b2:9d:9f:78:9b:69:24:d0:9e:f5:bc: cc:f4:2d:2d:ca:63:f0:cd:3a:0e:d0:ce:05:ee:cf: f6:1a:87:18:a6:2e:6a:32:6d:73:00:e1:2f:4d:c2: f4:24:61:bf:14:8d:5a:b2:24:d2:77:1c:45:7a:01: 99:e7:a1:47:35:a1:48:0c:0e:dc:f6:df:83:f5:57: ab:31:b2:55:8a:8b:c2:af:79:19:8c:fd:2f:24:e8: 03:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BD:58:9C:C1:AE:0A:AC:E4:97:75:93:33:B8:19:D1:6A:EE:01:B9 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:c8:d1:96:49:50:54:aa:57:68:b7:1b:40:63:d4:7f:3b:a0: 80:76:ec:d6:24:c4:e7:e1:77:29:dd:ac:6a:ae:bf:ec:a3:34: c2:50:20:ad:ea:f4:fa:4d:e9:a6:86:32:ac:3d:96:67:63:47: 2b:f1:e5:b5:9f:41:33:2f:dd:c8:7d:7d:a5:58:0b:cd:9a:33: 39:fd:63:3e:4f:92:92:35:3c:83:38:85:f2:70:12:f3:94:28: 54:a5:b0:4c:54:40:45:d8:ff:07:5f:6e:5f:82:1d:0c:3e:96: bb:92:57:6f:ce:9c:a4:6f:75:86:35:1b:20:fc:e4:a5:83:12: c4:d2:ac:b8:9b:62:c5:16:68:da:ef:ce:70:04:c2:b5:f2:b9: c5:ff:11:d1:9e:33:70:c4:63:bf:89:e9:03:4c:cc:5b:57:fd: cb:1e:a8:08:00:ef:c7:96:65:34:57:41:df:44:7b:9f:48:f2: c9:83:e2:34:79:d8:2a:ae:f8:bd:54:af:c6:43:bc:19:ff:b4: 48:ec:6c:3b:9a:f9:e6:4d:7d:27:a2:1e:83:67:20:33:f6:a2: 4c:42:d3:06:18:de:70:dc:3a:28:c6:d3:08:df:33:fe:7b:61: 05:6d:47:68:d5:6c:e1:ce:79:31:2e:be:3a:31:a6:0d:51:ba: 3b:68:f1:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjYwMzI0MjMyNjAyWhcNMjYwMzMxMjMyNjAyWjAYMRYwFAYD VQQDEw02OWMzMWQ4YS03MWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MHL7Eg7dUybj6K5LPCrsTbYbH8XfLnlxid8Y384Ee1mmco+EU++B6fkr5mM RGvoMs2UoKfDMutOggOSYilhmxa+flPIp2aLv2GhB31mmbdP8p2NX3TgYZJcV+aM DJrksgcMutNnAuvKm29uWFi8Vguovp6eYfnPSAn/nv26PSUIe35/9x0Fvc99GKxb Qfw710fIpjJ32PoK5ZJHY9FwjTfJDCf96v02sp2feJtpJNCe9bzM9C0tymPwzToO 0M4F7s/2GocYpi5qMm1zAOEvTcL0JGG/FI1asiTSdxxFegGZ56FHNaFIDA7c9t+D 9VerMbJViovCr3kZjP0vJOgDJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL69WJzB rgqs5Jd1kzO4GdFq7gG5MB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAx8jRlklQVKpXaLcbQGPUfzuggHbs1iTE5+F3Kd2saq6/7KM0wlAgrer0+k3p poYyrD2WZ2NHK/HltZ9BMy/dyH19pVgLzZozOf1jPk+SkjU8gziF8nAS85QoVKWw TFRARdj/B19uX4IdDD6Wu5JXb86cpG91hjUbIPzkpYMSxNKsuJtixRZo2u/OcATC tfK5xf8R0Z4zcMRjv4npA0zMW1f9yx6oCADvx5ZlNFdB30R7n0jyyYPiNHnYKq74 vVSvxkO8Gf+0SOxsO5r55k19J6Ieg2cgM/aiTELTBhjecNw6KMbTCN8z/nthBW1H aNVs4c55MS6+OjGmDVG6O2jxmw== -----END CERTIFICATE-----Generated at Thu Mar 26 18:28:13 2026 by rpki-client