$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: Ll0Wj7DqxvdeIbFx7Gollx1VxqGNY8HcNZ/JTljpv4o= Subject key identifier: C8:64:79:1A:E5:0B:2C:74:9B:EE:FB:8E:01:60:AC:21:A9:C3:8A:AE Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 023B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 0235 Signing time: Wed 25 Mar 2026 01:57:54 +0000 Manifest this update: Wed 25 Mar 2026 01:57:53 +0000 Manifest next update: Wed 01 Apr 2026 01:57:53 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: oQRLuVjL8B5zoLjJpznBZb119C64XjMEXGUpYaXjVvw=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: uBe9trVvTXibsFAdUxncYIdjHBZ+5n+JI/NflInuCrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Mar 25 01:57:53 2026 GMT Not After : Apr 1 01:57:53 2026 GMT Subject: CN=69c34122-62bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:ca:48:38:0e:ef:f2:42:d0:54:64:b2:c9: c2:98:89:44:d4:7a:75:5e:58:b1:84:cb:44:d2:3f: 7f:1a:d9:ed:31:8c:ac:75:e3:20:cb:57:cf:83:39: b5:70:9a:56:e3:56:87:cd:85:4f:da:e2:0b:4b:00: dc:95:2a:04:d6:1f:73:10:cf:36:f7:46:40:96:ff: 45:b5:10:c0:94:c3:89:f0:a2:a1:f8:d2:f8:87:46: 4f:19:31:65:32:4f:30:e9:a3:a1:8d:72:c4:a7:5f: 8d:36:3e:9f:ea:80:25:aa:93:ca:0a:bd:76:3a:24: e4:e0:e0:63:96:06:df:f3:96:e2:09:2c:55:9a:28: 83:97:20:b4:d2:f5:5b:d9:35:c9:5e:aa:4d:0d:ae: 45:47:b3:08:80:bc:48:c3:0d:f1:ca:ad:e3:ec:05: 7d:58:82:c5:2c:62:1b:c0:98:92:be:85:8c:bc:ab: d3:ec:31:81:4a:e4:65:77:b9:62:da:3c:0e:e3:94: 64:80:18:08:7e:48:3e:25:c6:6e:1a:b2:5b:89:bc: d5:ca:cb:07:83:a4:a7:ac:f2:10:92:98:d6:1f:a2: 8b:0d:63:b8:c7:13:8c:53:99:0d:df:4d:72:23:c3: 2d:a4:80:ce:7d:32:41:95:a3:a5:9d:19:16:76:51: 65:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:64:79:1A:E5:0B:2C:74:9B:EE:FB:8E:01:60:AC:21:A9:C3:8A:AE X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:3c:8c:ab:26:e0:fe:be:f5:24:a3:4f:3f:d8:4c:4d:b9:e4: 6c:5a:75:90:8e:ab:fb:43:c6:5a:22:e5:42:70:38:46:9c:b6: c7:13:66:14:ab:be:1a:c6:c0:08:47:8b:67:b1:5d:e7:27:d8: d4:73:37:91:ba:8e:2c:f8:f3:23:53:4b:50:6b:c5:31:be:4b: 30:f6:84:69:93:a5:b7:37:fc:96:18:2f:da:b0:ee:53:32:b8: 26:88:0b:fc:df:dd:ba:e4:dc:5e:ac:3d:94:8d:d5:21:ed:ba: fa:d6:91:7d:89:07:7f:b3:b2:c8:b1:7b:3c:ab:fe:53:13:fa: 11:f7:84:92:0d:ea:af:7c:1c:68:1d:07:5f:e6:c2:68:e5:92: da:b8:08:6b:8c:be:03:d7:cc:77:26:a3:de:7f:71:0c:2e:7f: 06:64:02:0f:00:d9:fe:db:c1:42:95:a5:51:94:b4:d9:53:e0: 4f:d3:a4:9e:cf:b5:79:44:bf:ba:1c:6f:16:9b:ee:16:ba:58: 29:8e:a6:c1:fa:8e:e5:46:d9:80:f1:57:5e:48:24:3b:e3:5a: 5c:f9:20:8c:4f:37:0d:a7:29:c7:2d:cc:db:9f:14:bc:dc:e2: 4a:c7:c2:de:6a:fb:09:73:4a:e2:7b:bc:5a:37:b7:85:34:17: 89:d9:c4:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjYwMzI1MDE1NzUzWhcNMjYwNDAxMDE1NzUzWjAYMRYwFAYD VQQDEw02OWMzNDEyMi02MmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0LKSDgO7/JC0FRkssnCmIlE1Hp1XlixhMtE0j9/GtntMYysdeMgy1fPgzm1 cJpW41aHzYVP2uILSwDclSoE1h9zEM8290ZAlv9FtRDAlMOJ8KKh+NL4h0ZPGTFl Mk8w6aOhjXLEp1+NNj6f6oAlqpPKCr12OiTk4OBjlgbf85biCSxVmiiDlyC00vVb 2TXJXqpNDa5FR7MIgLxIww3xyq3j7AV9WILFLGIbwJiSvoWMvKvT7DGBSuRld7li 2jwO45RkgBgIfkg+JcZuGrJbibzVyssHg6SnrPIQkpjWH6KLDWO4xxOMU5kN301y I8MtpIDOfTJBlaOlnRkWdlFlzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMhkeRrl Cyx0m+77jgFgrCGpw4quMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhzyMqybg/r71JKNPP9hMTbnkbFp1kI6r+0PGWiLlQnA4Rpy2xxNmFKu+GsbA CEeLZ7Fd5yfY1HM3kbqOLPjzI1NLUGvFMb5LMPaEaZOltzf8lhgv2rDuUzK4JogL /N/duuTcXqw9lI3VIe26+taRfYkHf7OyyLF7PKv+UxP6EfeEkg3qr3wcaB0HX+bC aOWS2rgIa4y+A9fMdyaj3n9xDC5/BmQCDwDZ/tvBQpWlUZS02VPgT9Okns+1eUS/ uhxvFpvuFrpYKY6mwfqO5UbZgPFXXkgkO+NaXPkgjE83Dacpxy3M258UvNziSsfC 3mr7CXNK4nu8Wje3hTQXidnEng== -----END CERTIFICATE-----Generated at Thu Mar 26 12:39:49 2026 by rpki-client