$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: bZlaZxeR3LK3BSTCEu1EEf5ZAfovPlTUDW6rJQo/dqs= Subject key identifier: 79:72:2D:17:CE:0F:45:1A:00:CB:84:0A:8B:3D:F0:C9:18:AB:E1:AD Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 0A54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 0A40 Signing time: Thu 26 Mar 2026 19:37:58 +0000 Manifest this update: Thu 26 Mar 2026 19:37:57 +0000 Manifest next update: Thu 02 Apr 2026 19:37:57 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: RO/yhhP7kNZQqxtCcigscDpFlGtJ7T5BOt7Wo6JRZBw=) 2: 49484A22DDBE11F0A59AB1524A6F56BC.roa (hash: EUoTZeexjkbb7zufCQtahAm8AEeFMiE7APDK7et0hJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2644 (0xa54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: Mar 26 19:37:57 2026 GMT Not After : Apr 2 19:37:57 2026 GMT Subject: CN=69c58b15-2617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1b:8b:bb:c1:17:ad:ab:26:e7:76:b3:e0:a0: 75:cd:57:19:4e:5b:f8:94:f9:b2:8b:c0:66:87:19: 7a:69:8b:23:cc:be:36:21:b0:85:db:41:35:d7:6b: 5c:68:c2:2c:9d:d4:7c:4b:93:97:d4:a9:bb:53:00: cc:11:fd:69:3e:67:f5:e8:98:a4:6a:bd:11:a6:8b: 30:11:21:e5:dd:e6:ac:9f:71:55:1c:1a:ad:e9:fc: a1:37:02:88:72:c1:30:8a:e7:3b:07:93:52:0e:a8: cd:7e:0d:2a:8f:fa:fe:0b:44:16:af:8e:d5:af:d7: bb:95:ab:18:b5:ab:6a:e2:8a:68:76:d0:04:15:08: 09:25:8c:04:2b:d3:de:93:94:01:ec:35:dd:41:8e: d3:27:46:d2:a8:a1:53:bc:88:77:d6:5f:a2:2a:3e: ce:9e:86:51:b6:54:1f:38:27:f0:0e:39:8b:d4:1f: df:fe:6d:c4:a7:e1:14:f8:17:90:6a:36:86:7a:d9: 7c:5f:bb:de:40:44:74:3f:7d:6a:6e:cd:81:2f:1b: 00:8e:09:d3:ca:a1:c1:c1:1d:f3:2b:ea:c9:3c:8a: d5:d1:f2:39:95:c2:09:77:73:56:2e:bd:cc:9f:45: 05:61:73:f0:4f:09:6a:c6:25:02:cf:d2:02:74:66: 53:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:72:2D:17:CE:0F:45:1A:00:CB:84:0A:8B:3D:F0:C9:18:AB:E1:AD X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:6c:68:2d:fc:03:94:c9:8b:7a:c7:c2:3a:be:d5:bc:6e:9d: 8f:5e:83:63:89:3c:33:af:f5:dd:a7:a8:8b:8f:d2:c8:cd:cc: 4b:fa:7d:a9:b9:b4:fd:73:10:32:d6:0a:99:d1:7e:de:4a:0b: 61:93:e0:1d:82:0a:78:11:a2:54:77:b7:f8:ea:26:f6:3c:64: 28:9a:32:60:2e:15:1b:e6:c4:9f:f1:38:e9:3b:e5:f8:d1:4f: ba:98:08:e0:4b:2f:58:6d:8b:d1:ae:0a:c1:66:7d:53:9f:ce: 15:8b:96:6a:38:86:77:f3:49:39:4b:6e:ee:66:d1:82:7d:34: f1:c2:a7:76:bb:69:9a:1c:fe:84:81:58:e2:e7:25:e0:f1:ca: 0b:51:d6:22:92:69:ab:f2:63:82:8d:2c:3d:6f:b5:d9:d8:3f: a5:50:e0:9d:9d:f0:c5:f4:9e:1e:a7:c2:72:9b:49:35:3d:03: 07:ef:28:85:d3:12:3f:22:1e:f9:18:a6:77:a3:cd:1e:32:4d: 6a:36:4a:c7:b3:cb:25:56:69:34:8c:89:14:b1:5b:8b:bb:5f: ad:fe:8b:e1:e7:12:74:79:23:4e:f8:76:21:66:03:47:d4:b7: 44:67:cc:16:eb:42:03:cf:f9:cc:bc:65:65:71:0c:a6:c4:7b: c0:6f:e1:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjYwMzI2MTkzNzU3WhcNMjYwNDAyMTkzNzU3WjAYMRYwFAYD VQQDEw02OWM1OGIxNS0yNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRuLu8EXrasm53az4KB1zVcZTlv4lPmyi8Bmhxl6aYsjzL42IbCF20E112tc aMIsndR8S5OX1Km7UwDMEf1pPmf16Jikar0RposwESHl3easn3FVHBqt6fyhNwKI csEwiuc7B5NSDqjNfg0qj/r+C0QWr47Vr9e7lasYtatq4opodtAEFQgJJYwEK9Pe k5QB7DXdQY7TJ0bSqKFTvIh31l+iKj7OnoZRtlQfOCfwDjmL1B/f/m3Ep+EU+BeQ ajaGetl8X7veQER0P31qbs2BLxsAjgnTyqHBwR3zK+rJPIrV0fI5lcIJd3NWLr3M n0UFYXPwTwlqxiUCz9ICdGZTUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHlyLRfO D0UaAMuECos98MkYq+GtMB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXmxoLfwDlMmLesfCOr7VvG6dj16DY4k8M6/13aeoi4/SyM3MS/p9qbm0/XMQ MtYKmdF+3koLYZPgHYIKeBGiVHe3+Oom9jxkKJoyYC4VG+bEn/E46Tvl+NFPupgI 4EsvWG2L0a4KwWZ9U5/OFYuWajiGd/NJOUtu7mbRgn008cKndrtpmhz+hIFY4ucl 4PHKC1HWIpJpq/Jjgo0sPW+12dg/pVDgnZ3wxfSeHqfCcptJNT0DB+8ohdMSPyIe +Rimd6PNHjJNajZKx7PLJVZpNIyJFLFbi7tfrf6L4ecSdHkjTvh2IWYDR9S3RGfM FutCA8/5zLxlZXEMpsR7wG/hpQ== -----END CERTIFICATE-----Generated at Thu Mar 26 22:44:10 2026 by rpki-client