$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: 5udXFx95BeAN+MnYuapb6Jm/aWuSiPwx5o3Ujv0kiG0= Subject key identifier: A2:4C:25:7C:AA:7F:7C:85:B5:45:8E:EF:F3:7E:BE:E6:2D:FE:64:38 Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 19E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 2005 Signing time: Tue 24 Mar 2026 16:16:51 +0000 Manifest this update: Tue 24 Mar 2026 16:16:51 +0000 Manifest next update: Tue 31 Mar 2026 16:16:51 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: 7XzkBAh0hWacQoiFcrPnW9JGKpjaQnERUc6Muoe8aCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6625 (0x19e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: Mar 24 16:16:51 2026 GMT Not After : Mar 31 16:16:51 2026 GMT Subject: CN=69c2b8f3-78b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:c2:3d:7f:6a:4f:c4:e9:d7:bd:c9:bf:a4: 42:2b:67:db:86:d1:66:73:3b:4e:1d:cb:58:e8:34: 12:b4:b7:8b:b9:23:73:e4:9a:74:ee:1c:63:e4:62: 5f:e2:9c:c4:87:99:03:d2:0c:01:b3:77:53:8b:bd: 35:c1:cd:2e:27:6b:d3:5b:4a:cd:5c:52:a7:63:c4: 38:ed:97:f6:e9:6f:2b:7a:ac:9e:eb:a5:8a:a1:67: 2a:b4:08:af:ad:ea:42:1a:18:eb:ef:50:d1:ac:e3: 46:d5:a1:b1:6c:9f:a8:69:08:e6:f8:57:73:ea:09: 0f:de:bd:f1:9c:09:44:48:43:6a:ad:63:21:05:78: 83:40:f5:65:db:23:ef:9d:95:40:12:8c:ea:5a:8b: af:9e:fc:da:7b:67:06:f0:c2:05:5a:96:d9:49:6d: 5c:45:f0:e4:0e:98:72:49:34:31:87:53:a9:c0:b4: 18:5b:35:2a:db:2d:7f:d0:69:e0:da:bf:e6:9a:cf: c5:c7:ad:56:9c:19:b7:79:51:2b:1a:d3:12:b4:37: 0f:e4:c9:31:18:9b:dd:eb:ea:65:63:8f:79:d8:e1: db:7f:b4:e6:4b:51:46:f6:c8:37:4a:f0:d5:d2:c4: c0:27:83:c7:00:93:a5:0a:f1:c4:c4:ce:87:94:29: 79:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4C:25:7C:AA:7F:7C:85:B5:45:8E:EF:F3:7E:BE:E6:2D:FE:64:38 X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:dc:65:ed:c6:cd:d4:e7:e6:c0:c5:a5:99:25:d1:56:70:95: 9b:0d:40:f8:93:17:e8:77:69:be:25:f0:1e:8c:0e:a9:af:51: 09:cd:68:2e:8a:47:1d:20:41:02:dd:25:d2:d3:23:8b:42:0c: 4a:88:0f:7e:00:43:9e:0e:5f:75:13:03:72:8f:a5:10:ed:ca: d2:38:bd:ba:8b:bf:e3:6d:a0:74:6a:16:09:c5:8e:b7:3f:eb: a9:95:fc:97:b1:df:54:ae:d5:f5:96:d3:3f:ed:b2:b7:4d:74: 28:1a:a6:2c:aa:72:f1:96:d2:de:77:a0:34:39:17:6c:ac:eb: 8c:1f:e3:00:af:45:1c:4c:71:80:b8:31:83:8d:dd:fa:62:0a: 97:e0:f0:c7:12:a3:fb:e8:01:f9:ec:0e:f3:8d:2d:b8:cf:20: 6b:cd:b8:5b:1a:84:1d:de:f1:82:f9:1f:33:99:1d:38:43:61: 4d:d8:54:31:6d:9d:dc:44:90:1b:f2:4c:79:77:9b:2d:9a:e6: 8c:33:0e:c8:4b:15:f8:26:d7:4b:50:04:f8:41:d0:6d:ec:bd: 16:55:ca:2b:e4:05:a8:87:b0:7f:da:76:3b:ef:f7:0b:88:81: 49:19:4c:b9:73:19:b1:3c:d5:69:1d:20:d0:99:4f:16:c5:f0: 55:cf:fd:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjYwMzI0MTYxNjUxWhcNMjYwMzMxMTYxNjUxWjAYMRYwFAYD VQQDEw02OWMyYjhmMy03OGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtevCPX9qT8Tp173Jv6RCK2fbhtFmcztOHctY6DQStLeLuSNz5Jp07hxj5GJf 4pzEh5kD0gwBs3dTi701wc0uJ2vTW0rNXFKnY8Q47Zf26W8reqye66WKoWcqtAiv repCGhjr71DRrONG1aGxbJ+oaQjm+Fdz6gkP3r3xnAlESENqrWMhBXiDQPVl2yPv nZVAEozqWouvnvzae2cG8MIFWpbZSW1cRfDkDphySTQxh1OpwLQYWzUq2y1/0Gng 2r/mms/Fx61WnBm3eVErGtMStDcP5MkxGJvd6+plY4952OHbf7TmS1FG9sg3SvDV 0sTAJ4PHAJOlCvHExM6HlCl5fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKJMJXyq f3yFtUWO7/N+vuYt/mQ4MB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcNxl7cbN1OfmwMWlmSXRVnCVmw1A+JMX6HdpviXwHowOqa9RCc1oLopHHSBB At0l0tMji0IMSogPfgBDng5fdRMDco+lEO3K0ji9uou/422gdGoWCcWOtz/rqZX8 l7HfVK7V9ZbTP+2yt010KBqmLKpy8ZbS3negNDkXbKzrjB/jAK9FHExxgLgxg43d +mIKl+DwxxKj++gB+ewO840tuM8ga824WxqEHd7xgvkfM5kdOENhTdhUMW2d3ESQ G/JMeXebLZrmjDMOyEsV+CbXS1AE+EHQbey9FlXKK+QFqIewf9p2O+/3C4iBSRlM uXMZsTzVaR0g0JlPFsXwVc/9rw== -----END CERTIFICATE-----Generated at Thu Mar 26 06:05:30 2026 by rpki-client