$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft File: grTScd4hLgYzXAtF5mUXtQi4NRY.mft (raw, json) Hash identifier: IFBHCp1AkUGsTKfbqjHunbX/TFaWCDG6sAVp+YWnpGI= Subject key identifier: 6B:C6:19:75:36:2D:06:D0:C2:12:46:81:3A:8B:43:6C:83:E9:0D:3C Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 Certificate issuer: /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft Manifest number: 0146 Signing time: Wed 25 Mar 2026 04:30:47 +0000 Manifest this update: Wed 25 Mar 2026 04:30:47 +0000 Manifest next update: Wed 01 Apr 2026 04:30:47 +0000 Files and hashes: 1: grTScd4hLgYzXAtF5mUXtQi4NRY.crl (hash: +u5dCH32G3avHes92+d5U/+zDpt7IOvToV7gu9HCeJk=) 2: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (hash: w49yHIqbKO5UQXgKCrDZvpiyw+EK/7buhVnIPU9D8V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E379F, serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Validity Not Before: Mar 25 04:30:47 2026 GMT Not After : Apr 1 04:30:47 2026 GMT Subject: CN=69c364f7-9ccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ed:9d:94:7e:d0:42:cc:83:1d:0a:8b:51:20: 24:cb:c6:a7:63:8d:31:28:5a:9f:4d:3c:5d:a1:23: 08:15:f2:a9:4a:72:e0:d8:64:88:e5:83:ea:8a:64: 29:e0:ab:f5:01:c5:4e:d7:a7:8e:c2:93:38:75:ac: 0b:7d:66:6c:5d:48:74:a0:c5:e1:de:3f:de:ee:92: 5d:bd:3b:fe:86:12:8f:f5:ee:0d:a9:38:21:7a:8a: 5a:63:9a:13:b2:58:e9:d4:fc:d0:73:d1:1e:f7:83: ff:0a:0b:8f:9d:20:66:b0:a0:ef:19:2d:54:8b:3a: 54:cc:b4:4f:41:c3:5d:71:f8:fe:4a:dd:19:59:92: 71:dc:ad:7e:f3:bd:9a:3e:12:c1:3b:00:34:a8:99: 74:86:3a:6e:d3:55:61:44:1d:5e:2e:88:9f:f4:66: bd:37:1a:c7:0b:21:8f:57:b0:16:b4:d5:bd:65:76: 55:13:1c:09:a1:9d:23:61:40:9e:88:ba:bc:c1:89: 0f:a2:07:58:d9:1a:a7:bd:d1:5f:ff:2a:da:f7:3d: 4e:3e:fc:c7:0d:55:08:12:f5:6b:6d:b5:e9:5b:9d: 09:c4:0e:58:8c:8d:f5:8c:66:37:c9:5d:75:3c:b0: f7:55:dd:b2:f0:fc:c2:87:b3:be:4c:f8:0d:c3:eb: 9d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C6:19:75:36:2D:06:D0:C2:12:46:81:3A:8B:43:6C:83:E9:0D:3C X509v3 Authority Key Identifier: keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d8:68:c3:70:4d:61:8d:3b:07:99:48:75:6d:b0:85:73:c4: f8:3b:6f:ee:2e:9d:f6:08:0f:f6:68:09:4e:4a:80:44:1b:33: 9f:8f:87:c1:55:61:ef:cc:e1:b3:e6:1f:2b:47:a0:c6:33:1e: 2d:65:12:91:47:39:75:ab:b2:4b:1a:36:0f:7a:e9:d4:a3:a6: 00:26:ce:c4:c9:12:52:6d:04:59:14:3d:f0:95:6a:0e:88:ca: 6f:30:a2:6f:e6:46:72:07:42:6d:22:fc:4d:de:ab:33:be:45: 4b:6c:2f:ff:2d:d1:41:49:5d:77:a1:d1:bb:28:8d:ed:3e:58: c6:8f:a2:29:3c:39:f1:c8:de:ee:c2:5b:b0:db:01:b6:20:7a: 38:2c:c3:73:8a:33:59:27:50:22:ab:a0:c5:3a:0d:3f:3e:68: 01:e3:cf:70:03:d7:bd:5b:8f:5d:52:76:6f:65:6b:a4:d0:a3: 1f:26:5f:d1:15:b1:24:d3:87:09:1d:38:7f:41:fc:fb:74:ca: 90:01:32:5a:a8:d8:80:4a:42:65:a5:b4:47:06:3f:74:9b:89: 50:8f:65:6b:4a:13:5e:07:0e:cd:40:be:fa:07:0c:a1:4f:33: 09:e5:e7:88:dc:d2:11:ad:d8:ae:78:d2:90:3e:93:4d:1a:b8: 99:c8:dc:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3OUYxMTAvBgNVBAUTKDgyQjREMjcxREUyMTJFMDYzMzVDMEI0NUU2NjUxN0I1 MDhCODM1MTYwHhcNMjYwMzI1MDQzMDQ3WhcNMjYwNDAxMDQzMDQ3WjAYMRYwFAYD VQQDEw02OWMzNjRmNy05Y2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlu2dlH7QQsyDHQqLUSAky8anY40xKFqfTTxdoSMIFfKpSnLg2GSI5YPqimQp 4Kv1AcVO16eOwpM4dawLfWZsXUh0oMXh3j/e7pJdvTv+hhKP9e4NqTgheopaY5oT sljp1PzQc9Ee94P/CguPnSBmsKDvGS1UizpUzLRPQcNdcfj+St0ZWZJx3K1+872a PhLBOwA0qJl0hjpu01VhRB1eLoif9Ga9NxrHCyGPV7AWtNW9ZXZVExwJoZ0jYUCe iLq8wYkPogdY2RqnvdFf/yra9z1OPvzHDVUIEvVrbbXpW50JxA5YjI31jGY3yV11 PLD3Vd2y8PzCh7O+TPgNw+ud7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGvGGXU2 LQbQwhJGgTqLQ2yD6Q08MB8GA1UdIwQYMBaAFIK00nHeIS4GM1wLReZlF7UIuDUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzc5Ri82Rjk5RDRGMDND RjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExnWXpYQXRGNW1VWHRRaTRO UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyVFNjZDRoTGdZelhBdEY1bVVYdFFpNE5SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mzc5Ri82Rjk5RDRGMDNDRjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExn WXpYQXRGNW1VWHRRaTROUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp9how3BNYY07B5lIdW2whXPE+Dtv7i6d9ggP9mgJTkqARBszn4+HwVVh78zh s+YfK0egxjMeLWUSkUc5dauySxo2D3rp1KOmACbOxMkSUm0EWRQ98JVqDojKbzCi b+ZGcgdCbSL8Td6rM75FS2wv/y3RQUldd6HRuyiN7T5Yxo+iKTw58cje7sJbsNsB tiB6OCzDc4ozWSdQIqugxToNPz5oAePPcAPXvVuPXVJ2b2VrpNCjHyZf0RWxJNOH CR04f0H8+3TKkAEyWqjYgEpCZaW0RwY/dJuJUI9la0oTXgcOzUC++gcMoU8zCeXn iNzSEa3YrnjSkD6TTRq4mcjcZA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:04:39 2026 by rpki-client