$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: dVqJhJtu1Y0xD7xgaNlLnfI1JrGeHMERldrFpbzJty8= Subject key identifier: DC:60:AC:19:F4:05:A2:52:0C:97:38:3C:58:0A:95:0B:49:2D:DF:E2 Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 0556 Signing time: Tue 24 Mar 2026 23:10:19 +0000 Manifest this update: Tue 24 Mar 2026 23:10:19 +0000 Manifest next update: Tue 31 Mar 2026 23:10:19 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: 5LJfmgzKiI+neyAGImOMzuSrumAmreZHI/CJyEehgZo=) 2: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: arq5+h3KHX6t5y5Zj2CBCAg4COLqYpvoHOLbprQdcjc=) 3: EFFA034837D111EC9337B812C4F9AE02.roa (hash: N/0bVIyC0MPM6KEQ2d3ilkuUkeyn80eIzEQ24nUZdi8=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: MgGvtEJxOhpocdjEABKQeXDE9AITBRXrKCKdxOChgec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: Mar 24 23:10:19 2026 GMT Not After : Mar 31 23:10:19 2026 GMT Subject: CN=69c319db-784d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3f:8b:d3:86:cc:98:b4:16:a6:a4:4a:06:d1: 18:9b:fe:d6:a1:36:35:5c:67:05:37:e5:53:ac:a2: 63:25:8b:92:28:70:78:18:3f:53:f5:bf:f9:47:73: 16:a7:75:32:a4:3d:03:c6:c1:3a:1d:1e:37:b4:be: 04:07:2e:cb:9e:65:37:31:8d:1f:8d:d2:0e:dd:d7: 07:db:96:5a:18:a6:d9:f8:d8:7b:9b:f4:aa:51:4b: b7:ff:93:5a:bb:ea:cf:d3:5d:b5:b8:04:29:02:9b: 0f:ca:aa:bd:92:fb:da:b6:1b:0d:d0:e6:e3:87:da: 6c:06:eb:3a:30:e7:78:55:72:eb:b3:af:c4:3f:07: ec:f6:5f:b3:0a:fe:ef:39:6d:16:0c:64:a5:51:06: d5:89:2b:ff:64:fc:4f:7c:15:c0:19:dd:74:a5:09: c8:d4:24:a2:bd:b6:a8:1c:e8:c9:6f:9f:e3:d6:c0: 54:19:82:c7:e6:c7:48:ae:50:c8:66:90:39:1f:91: 05:ce:87:8e:6c:4e:ac:ee:1b:6e:39:81:a9:fe:ba: 92:3a:14:d0:b7:52:4a:3b:68:cf:3d:86:cd:de:21: b9:79:44:35:cb:4d:d0:10:c5:4c:f5:a1:61:39:62: 86:d3:fb:04:67:ba:d3:7b:b3:30:13:21:7e:94:ed: b1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:60:AC:19:F4:05:A2:52:0C:97:38:3C:58:0A:95:0B:49:2D:DF:E2 X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:38:4b:cc:73:de:91:6d:4c:00:4d:a4:9f:07:7d:f5:6f:e8: ca:4e:46:eb:0f:09:f1:d2:cc:2b:3e:01:37:87:ff:de:24:eb: 38:19:45:42:94:95:42:84:86:59:b4:16:b3:31:7d:1b:53:dd: 0a:d9:46:f7:a1:65:f8:40:b2:98:3e:73:e3:20:86:32:91:99: b1:5c:ea:2f:f8:b1:45:fc:ef:25:94:9f:9f:17:5a:36:6d:00: e2:63:2e:6b:71:8c:24:97:ab:8f:4c:d5:68:1f:ee:fa:70:1c: c6:b3:fa:c6:61:60:0d:88:eb:01:6b:e2:7f:44:c4:da:96:0b: 27:62:68:64:0c:65:4b:3a:2b:c1:6f:86:cd:1d:8e:b1:a6:b2: cc:c5:36:1d:8f:23:fb:53:45:33:ad:88:cb:a4:47:46:67:5a: 0f:10:f0:21:93:cf:d3:e7:23:c8:ef:9b:ab:8e:3a:2b:62:d8: d4:c5:81:90:f8:6b:e7:59:b0:ba:55:d6:a4:73:de:b9:45:95: 30:d8:27:d7:03:60:cf:bc:be:98:28:8d:87:da:f4:72:bb:22: 4f:52:21:b9:6d:79:f4:9c:50:a5:f4:df:9d:e3:89:9f:a8:cc: 50:c8:2c:9f:fe:d6:cb:96:eb:57:9f:08:6f:64:80:af:f6:d3: 64:08:3a:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjYwMzI0MjMxMDE5WhcNMjYwMzMxMjMxMDE5WjAYMRYwFAYD VQQDEw02OWMzMTlkYi03ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApT+L04bMmLQWpqRKBtEYm/7WoTY1XGcFN+VTrKJjJYuSKHB4GD9T9b/5R3MW p3UypD0DxsE6HR43tL4EBy7LnmU3MY0fjdIO3dcH25ZaGKbZ+Nh7m/SqUUu3/5Na u+rP0121uAQpApsPyqq9kvvathsN0Objh9psBus6MOd4VXLrs6/EPwfs9l+zCv7v OW0WDGSlUQbViSv/ZPxPfBXAGd10pQnI1CSivbaoHOjJb5/j1sBUGYLH5sdIrlDI ZpA5H5EFzoeObE6s7htuOYGp/rqSOhTQt1JKO2jPPYbN3iG5eUQ1y03QEMVM9aFh OWKG0/sEZ7rTe7MwEyF+lO2xSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNxgrBn0 BaJSDJc4PFgKlQtJLd/iMB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaThLzHPekW1MAE2knwd99W/oyk5G6w8J8dLMKz4BN4f/3iTrOBlFQpSVQoSG WbQWszF9G1PdCtlG96Fl+ECymD5z4yCGMpGZsVzqL/ixRfzvJZSfnxdaNm0A4mMu a3GMJJerj0zVaB/u+nAcxrP6xmFgDYjrAWvif0TE2pYLJ2JoZAxlSzorwW+GzR2O saayzMU2HY8j+1NFM62Iy6RHRmdaDxDwIZPP0+cjyO+bq446K2LY1MWBkPhr51mw ulXWpHPeuUWVMNgn1wNgz7y+mCiNh9r0crsiT1IhuW159JxQpfTfneOJn6jMUMgs n/7Wy5brV58Ib2SAr/bTZAg6NA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:05 2026 by rpki-client