$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: ReOCXNRorwW86eN9e+H0S+Q/U0EQ6Qm2s1KTyI01YGg= Subject key identifier: F1:54:FD:B3:17:07:1B:8D:CF:BB:A7:B3:4F:2D:5D:68:84:F6:ED:39 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 07A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 07A8 Signing time: Thu 26 Mar 2026 14:50:53 +0000 Manifest this update: Thu 26 Mar 2026 14:50:53 +0000 Manifest next update: Thu 02 Apr 2026 14:50:53 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: idnMn9ZZ2bX97kYGaJWS0ymvMfWi1XgVdbsKEJ5vBSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1960 (0x7a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Mar 26 14:50:53 2026 GMT Not After : Apr 2 14:50:53 2026 GMT Subject: CN=69c547cd-e248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e5:75:07:ac:c4:b4:33:36:40:6b:50:04:b5: ce:09:ad:5d:33:f5:27:1c:5e:a7:a3:ec:3b:d6:0c: 12:1b:42:a9:67:70:c9:a4:c3:78:05:65:a5:f4:f0: 42:c3:b2:fe:ad:93:1e:98:81:e2:fe:ba:9a:e4:38: 7f:f4:c9:2a:bc:53:cb:4b:a2:7a:86:30:e2:e9:44: 68:6c:29:7f:5e:b8:bc:52:23:02:b0:54:74:b2:5a: 0b:c8:3e:6f:76:79:95:75:73:d8:23:a1:50:45:37: 12:03:f7:44:0a:bf:86:b8:cd:f9:f1:d7:44:9c:af: 8f:0f:2b:d3:15:a0:e2:8a:03:9a:55:96:a0:a8:3a: b1:7e:90:f7:61:ab:ab:e9:d5:45:c6:72:73:5b:f7: cf:d5:69:e4:d2:2d:9b:a1:75:be:ee:1d:b2:ed:90: 76:c0:2b:bf:15:fb:70:12:00:17:73:2b:53:d5:a4: a1:6c:62:29:d4:8a:c4:c0:a8:e7:23:92:a9:cf:4c: f4:cc:ed:5d:bb:2b:af:c2:89:80:85:8f:90:71:10: a5:ea:ca:fd:b3:23:6a:c2:0c:10:06:4a:a4:ae:4a: 9b:f3:74:da:77:c3:12:00:c8:0f:c0:28:2d:c0:d5: b7:6f:63:56:48:c8:01:38:11:ff:bf:a3:76:fc:17: 2e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:54:FD:B3:17:07:1B:8D:CF:BB:A7:B3:4F:2D:5D:68:84:F6:ED:39 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:09:6d:f2:b6:b3:d3:dd:67:66:8a:42:96:58:c5:03:7c:f6: b6:b6:44:68:7c:e0:4c:1d:a8:6a:63:ca:ab:e4:4e:18:3c:7c: 62:bd:0c:dd:ee:db:97:22:a7:32:9d:41:ea:2b:08:b2:32:cd: d3:19:b3:c3:27:78:f0:b8:41:26:81:e2:f6:85:c3:6e:06:84: de:15:6d:7c:61:98:e0:81:3d:df:49:4e:da:3e:4b:6e:b6:ab: a9:17:e2:91:23:eb:ea:43:47:90:33:da:55:84:d6:41:cc:cc: 9e:e6:9c:bb:27:5d:4c:42:04:56:4e:ae:0c:0c:f1:92:07:61: 1f:6e:63:d6:26:13:a7:d5:e4:ed:f6:ca:51:7d:66:c5:22:78: b1:e9:3d:45:09:8c:08:1e:96:fd:eb:74:4c:55:f5:1b:8d:9a: d1:bd:d1:c1:3c:52:b8:1e:e6:59:46:70:4f:94:12:71:7e:97: 2a:a3:13:13:0e:ae:35:a3:a3:79:3c:9d:c8:15:ef:ba:c4:4e: a4:7c:e5:91:59:2b:65:39:e0:52:6e:84:d3:65:43:cc:50:7c: f5:a1:a8:5b:a1:ae:ae:76:1b:4c:ed:66:a6:31:96:8e:cd:9a: ff:62:94:31:98:d7:0e:43:41:06:18:7a:af:d1:5a:d8:88:f7: 18:41:b4:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjYwMzI2MTQ1MDUzWhcNMjYwNDAyMTQ1MDUzWjAYMRYwFAYD VQQDEw02OWM1NDdjZC1lMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneV1B6zEtDM2QGtQBLXOCa1dM/UnHF6no+w71gwSG0KpZ3DJpMN4BWWl9PBC w7L+rZMemIHi/rqa5Dh/9MkqvFPLS6J6hjDi6URobCl/Xri8UiMCsFR0sloLyD5v dnmVdXPYI6FQRTcSA/dECr+GuM358ddEnK+PDyvTFaDiigOaVZagqDqxfpD3Yaur 6dVFxnJzW/fP1Wnk0i2boXW+7h2y7ZB2wCu/FftwEgAXcytT1aShbGIp1IrEwKjn I5Kpz0z0zO1duyuvwomAhY+QcRCl6sr9syNqwgwQBkqkrkqb83Tad8MSAMgPwCgt wNW3b2NWSMgBOBH/v6N2/Bcu/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPFU/bMX BxuNz7uns08tXWiE9u05MB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkQlt8raz091nZopClljFA3z2trZEaHzgTB2oamPKq+ROGDx8Yr0M3e7blyKn Mp1B6isIsjLN0xmzwyd48LhBJoHi9oXDbgaE3hVtfGGY4IE930lO2j5LbrarqRfi kSPr6kNHkDPaVYTWQczMnuacuyddTEIEVk6uDAzxkgdhH25j1iYTp9Xk7fbKUX1m xSJ4sek9RQmMCB6W/et0TFX1G42a0b3RwTxSuB7mWUZwT5QScX6XKqMTEw6uNaOj eTydyBXvusROpHzlkVkrZTngUm6E02VDzFB89aGoW6GurnYbTO1mpjGWjs2a/2KU MZjXDkNBBhh6r9Fa2Ij3GEG0sA== -----END CERTIFICATE-----Generated at Thu Mar 26 20:24:30 2026 by rpki-client