$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: /RxFDFszKHJ85Ve/XQdkpQs9lWlcK0Ge6gVNRJhwZKA= Subject key identifier: 30:A0:69:D8:0F:FE:D9:4D:15:B1:BD:BE:00:38:5D:A2:B9:F4:BC:6D Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 051B Signing time: Tue 24 Mar 2026 23:16:05 +0000 Manifest this update: Tue 24 Mar 2026 23:16:05 +0000 Manifest next update: Tue 31 Mar 2026 23:16:05 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: 00bIWOuE3uUQZP2+NG+epcM8Ixt5eayT4LQQfNUE7JY=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: yrbFlXX+Q20ODJMbiysSXJ6ACMYRj3dlttqVySrHsBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Mar 24 23:16:05 2026 GMT Not After : Mar 31 23:16:05 2026 GMT Subject: CN=69c31b35-f2de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7c:0c:4b:7a:bb:f3:7f:ba:a5:3d:ef:0f:46: e4:74:14:67:b4:9a:07:c5:d7:c8:e1:2a:2b:41:9a: 2d:0c:c9:ea:3d:ce:9c:1b:35:80:1c:29:91:56:59: cd:92:16:f3:fc:85:31:e2:9b:4f:5a:98:fc:63:50: 89:5b:f4:b5:65:37:4e:07:13:28:1b:50:eb:0e:67: 19:92:ac:b7:ab:be:18:a5:5c:b3:aa:7a:f3:e2:ef: b3:f2:2e:ec:d0:53:15:92:45:9c:26:7c:a1:ce:ce: af:05:35:27:ca:13:97:d6:fe:53:42:d3:7b:0a:79: 85:b0:a3:38:3f:e3:3e:13:83:30:be:81:c7:ab:36: 76:31:6c:72:4a:ca:21:69:63:e9:c0:a7:fa:4c:55: f7:ae:d4:d7:e0:fb:bd:69:b3:4e:0b:22:fe:1f:4d: 08:2f:ed:8e:12:ac:dc:b8:4a:66:fb:3a:31:a6:87: ce:5b:df:7d:3b:42:fc:8a:44:4f:fd:39:59:d1:d3: 5f:61:36:e4:fa:ff:67:1f:ae:96:dc:02:66:74:8d: f7:be:f9:8b:7d:d8:cf:11:f6:56:60:dc:9a:7c:18: c1:dc:3c:c9:e0:53:10:10:15:6c:e3:81:b9:15:99: db:34:91:3a:74:b5:1a:0f:f1:3b:30:61:bf:65:f5: 0a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A0:69:D8:0F:FE:D9:4D:15:B1:BD:BE:00:38:5D:A2:B9:F4:BC:6D X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:7a:f1:a2:27:dd:bb:af:32:85:0d:88:5c:c9:67:2c:c5:0e: 58:e7:e5:34:e6:79:b2:bd:eb:14:92:bc:58:eb:da:e6:5c:79: 86:3e:f8:21:e9:fe:f0:72:25:ee:32:a8:7f:15:1b:5b:54:7a: 18:3b:c7:06:5a:bb:e6:e3:f7:53:67:c5:da:46:30:3c:f2:ed: ce:0e:b5:8f:34:fa:e4:c1:3c:7a:b7:34:0e:aa:4c:5b:44:b1: ec:f2:ad:0c:4e:8b:de:d2:81:09:12:ff:e4:05:78:7a:21:d4: ee:50:73:02:c8:a3:34:e0:d9:90:df:37:1a:76:d6:ed:0e:46: 55:3b:e2:4b:f0:80:26:e5:92:50:53:db:36:36:bd:90:e1:e9: 84:14:ef:24:fb:99:3b:a1:85:5a:e9:7b:be:2a:a7:73:ed:ff: 07:50:87:59:36:db:4d:e5:f2:70:4c:47:40:de:a4:e9:3a:a2: 4d:84:78:da:1a:4a:ed:96:eb:ff:73:6e:95:82:d2:01:75:5b: 0d:96:45:8a:b5:91:1e:2e:68:c1:d7:d2:6b:51:2c:66:00:8e: 6a:8a:73:a0:50:b2:c6:7f:a4:4c:3f:48:37:da:6f:54:18:5d: 14:30:c1:64:03:b3:ba:bd:5f:44:4d:0c:08:d9:e0:4b:7a:68: 9a:f0:f6:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjYwMzI0MjMxNjA1WhcNMjYwMzMxMjMxNjA1WjAYMRYwFAYD VQQDEw02OWMzMWIzNS1mMmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXwMS3q783+6pT3vD0bkdBRntJoHxdfI4SorQZotDMnqPc6cGzWAHCmRVlnN khbz/IUx4ptPWpj8Y1CJW/S1ZTdOBxMoG1DrDmcZkqy3q74YpVyzqnrz4u+z8i7s 0FMVkkWcJnyhzs6vBTUnyhOX1v5TQtN7CnmFsKM4P+M+E4MwvoHHqzZ2MWxySsoh aWPpwKf6TFX3rtTX4Pu9abNOCyL+H00IL+2OEqzcuEpm+zoxpofOW999O0L8ikRP /TlZ0dNfYTbk+v9nH66W3AJmdI33vvmLfdjPEfZWYNyafBjB3DzJ4FMQEBVs44G5 FZnbNJE6dLUaD/E7MGG/ZfUKNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDCgadgP /tlNFbG9vgA4XaK59LxtMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABXrxoifdu68yhQ2IXMlnLMUOWOflNOZ5sr3rFJK8WOva5lx5hj74Ien+8HIl 7jKofxUbW1R6GDvHBlq75uP3U2fF2kYwPPLtzg61jzT65ME8erc0DqpMW0Sx7PKt DE6L3tKBCRL/5AV4eiHU7lBzAsijNODZkN83GnbW7Q5GVTviS/CAJuWSUFPbNja9 kOHphBTvJPuZO6GFWul7viqnc+3/B1CHWTbbTeXycExHQN6k6TqiTYR42hpK7Zbr /3NulYLSAXVbDZZFirWRHi5owdfSa1EsZgCOaopzoFCyxn+kTD9IN9pvVBhdFDDB ZAOzur1fRE0MCNngS3pomvD2dw== -----END CERTIFICATE-----Generated at Thu Mar 26 15:58:04 2026 by rpki-client