$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: 4ZXGr3oTvjWTc0rmd9nHSIGbIy3IwniKchG4xGEAop8= Subject key identifier: 2C:5E:8E:D1:7B:AE:AB:C3:2D:6D:D9:5C:01:2B:2C:8C:CA:85:9B:68 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0B01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0AB6 Signing time: Tue 24 Mar 2026 19:17:32 +0000 Manifest this update: Tue 24 Mar 2026 19:17:31 +0000 Manifest next update: Tue 31 Mar 2026 19:17:31 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: QdHPKPAlGjkFlDwuelowEJRvTxJnIB0vNhKHgqu9Q/M=) 2: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: 3zmhoqDN3914HCGCg2WBUkiHp98MLEWrF9AHJiv1VWs=) 3: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: 2CxBlSEZ4s9h+CG+sdkPtbZiMyYV71gXHZ/DNWmS4OY=) 4: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: fFsNR12R3pP/AJUsoiljuBLUKnPB5wu9KTa5f+JWnzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2817 (0xb01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Mar 24 19:17:31 2026 GMT Not After : Mar 31 19:17:31 2026 GMT Subject: CN=69c2e34c-b1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e0:3e:17:09:87:7f:0c:c8:76:b7:79:1e:93: 96:2b:99:bb:fc:33:d2:a8:9c:e4:bf:26:34:2b:b6: 2a:bd:30:93:48:fe:c5:95:2b:4a:a7:d2:d0:74:31: 76:2e:50:34:a6:a5:16:c6:53:cb:af:53:85:11:91: 9b:b7:78:3d:8f:3a:bc:bc:a7:d4:42:03:c2:50:53: a0:e6:67:0c:a6:a8:80:71:a8:9a:30:b8:0c:c5:6f: 22:70:dc:13:8c:6b:eb:69:fb:d2:0d:51:ce:f3:6e: 25:0c:ff:ab:52:44:24:c0:56:0a:1b:76:9c:5d:90: 98:f1:fd:d1:4b:e0:4f:7c:c0:da:ec:2f:f5:f0:68: 94:45:9d:e7:0e:96:eb:40:c4:2c:34:5c:1f:95:c9: c3:9d:00:9b:c0:26:11:8d:1b:99:4c:6f:70:25:e0: 1c:5d:38:d3:96:8b:45:24:ef:01:7f:75:81:a1:c1: 75:fb:d2:9e:b5:66:11:56:97:16:4b:88:43:e9:03: 2e:fc:63:1b:a6:31:04:8b:14:10:58:12:ba:32:34: 3c:21:09:46:f9:ec:cb:42:0f:7d:59:d4:e7:30:c6: ca:fc:d9:66:36:cb:2c:e6:d3:54:a2:41:23:0e:d1: 68:6a:b3:5e:d3:ee:4c:0a:ab:d5:44:ed:13:62:c8: 19:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:5E:8E:D1:7B:AE:AB:C3:2D:6D:D9:5C:01:2B:2C:8C:CA:85:9B:68 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:b7:a0:54:2c:d8:ae:cb:96:ac:49:1a:32:13:66:76:ee:b6: 4f:e7:db:fe:a8:cb:b5:e3:32:d4:3d:f9:48:9e:46:81:68:ec: 72:e4:8d:79:a3:31:3d:d9:f4:d2:4f:5f:70:22:56:cc:47:35: 88:48:4a:32:99:bf:db:aa:37:ea:e9:3e:38:f7:da:8a:0d:69: 29:28:17:7c:2f:7a:c8:55:2d:3d:00:3d:b6:db:2d:90:c2:81: c3:e4:77:be:54:b6:49:a5:f2:5b:1b:7d:a2:3a:e6:03:3a:b4: 36:2d:a8:f3:3c:4f:75:e6:d2:7b:f6:70:d7:6f:a7:cc:50:d8: 11:c3:67:69:af:a9:30:c1:06:e3:6a:cd:bb:b0:0f:2a:82:03: b2:1f:2b:59:12:b9:94:2a:ab:42:09:5a:e9:8f:8c:f0:72:d8: 77:15:f8:ee:50:94:57:50:58:00:7b:e0:3e:4b:96:c4:03:cf: 37:02:07:9a:76:49:19:c0:95:a5:d2:9d:7d:69:c3:3d:05:8d: 7e:98:b6:d0:ba:d4:b3:fb:0b:90:bd:44:f5:fb:65:7a:be:0e: 20:ed:a3:5d:7e:a7:c6:43:8d:e6:87:20:e1:ed:55:98:a5:07: e4:e1:35:21:49:f8:c7:84:40:8b:69:eb:8e:65:ca:79:3b:c3: 01:9b:9c:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjYwMzI0MTkxNzMxWhcNMjYwMzMxMTkxNzMxWjAYMRYwFAYD VQQDEw02OWMyZTM0Yy1iMWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+A+FwmHfwzIdrd5HpOWK5m7/DPSqJzkvyY0K7YqvTCTSP7FlStKp9LQdDF2 LlA0pqUWxlPLr1OFEZGbt3g9jzq8vKfUQgPCUFOg5mcMpqiAcaiaMLgMxW8icNwT jGvrafvSDVHO824lDP+rUkQkwFYKG3acXZCY8f3RS+BPfMDa7C/18GiURZ3nDpbr QMQsNFwflcnDnQCbwCYRjRuZTG9wJeAcXTjTlotFJO8Bf3WBocF1+9KetWYRVpcW S4hD6QMu/GMbpjEEixQQWBK6MjQ8IQlG+ezLQg99WdTnMMbK/NlmNsss5tNUokEj DtFoarNe0+5MCqvVRO0TYsgZQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCxejtF7 rqvDLW3ZXAErLIzKhZtoMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY7egVCzYrsuWrEkaMhNmdu62T+fb/qjLteMy1D35SJ5GgWjscuSNeaMxPdn0 0k9fcCJWzEc1iEhKMpm/26o36uk+OPfaig1pKSgXfC96yFUtPQA9ttstkMKBw+R3 vlS2SaXyWxt9ojrmAzq0Ni2o8zxPdebSe/Zw12+nzFDYEcNnaa+pMMEG42rNu7AP KoIDsh8rWRK5lCqrQgla6Y+M8HLYdxX47lCUV1BYAHvgPkuWxAPPNwIHmnZJGcCV pdKdfWnDPQWNfpi20LrUs/sLkL1E9ftler4OIO2jXX6nxkON5ocg4e1VmKUH5OE1 IUn4x4RAi2nrjmXKeTvDAZuchA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:02 2026 by rpki-client