$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: A+VH0lK8SdJhtd7My/MY4jDKy+oxixEsz0WLDsPlzHs= Subject key identifier: 05:5B:41:50:79:8C:DF:F0:E8:22:B1:D6:85:D5:16:AA:1F:4B:88:A1 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0CA9 Signing time: Tue 24 Mar 2026 18:21:16 +0000 Manifest this update: Tue 24 Mar 2026 18:21:16 +0000 Manifest next update: Tue 31 Mar 2026 18:21:16 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: QP/BfKai3X/tSjiVT7R4ntI43V2kEkYCpTgxSj2WZ1U=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: JsMxuAz2clvL8td5dPv4MoycNcApjVpvYRYlrs8BPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Mar 24 18:21:16 2026 GMT Not After : Mar 31 18:21:16 2026 GMT Subject: CN=69c2d61c-0041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:80:d7:17:63:95:c6:e9:19:16:b6:75:d3:18: b5:6d:e1:9f:ba:2b:b9:c3:dd:5e:5e:f3:a9:8a:00: 66:83:9c:47:15:22:f4:42:21:05:85:a9:dc:ae:9b: f3:52:0e:36:82:ea:2b:c8:1d:5a:e1:70:cc:72:bd: e3:bd:58:a6:14:4e:52:6d:2e:90:81:ae:3a:a5:c3: 6c:f1:6b:a9:ff:fb:e1:c6:b3:c0:97:a3:5b:1e:d4: 03:f7:4b:5a:06:42:bd:ec:2d:6d:0c:96:35:78:29: 86:26:92:34:e1:3f:6e:10:8c:33:6e:6d:43:77:c7: bc:dd:2c:87:fc:6c:2d:71:7d:f9:7e:58:fb:33:1d: 78:34:5e:d0:2c:b9:5a:94:75:7c:8c:90:33:e2:8b: 0c:85:55:ea:7f:95:86:b0:cf:1a:58:f9:74:f3:10: 6c:31:97:63:ab:4c:76:fe:1e:ea:3f:d3:a0:ca:3e: 7e:e4:83:98:da:28:81:ba:22:21:9e:f5:4a:3d:40: 43:01:3c:1a:80:ad:18:2e:cc:51:b2:e6:3f:63:47: 0c:d9:75:41:88:57:e9:df:8d:df:a1:4b:fa:50:fb: 6d:4c:6e:05:39:3a:4b:32:80:ca:30:45:55:16:31: df:d2:f1:16:de:d3:a7:36:f1:c2:a0:f1:ec:0f:e7: e1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5B:41:50:79:8C:DF:F0:E8:22:B1:D6:85:D5:16:AA:1F:4B:88:A1 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:0e:8d:14:54:41:c4:a0:5e:09:85:86:44:de:73:5a:6d:d5: 3a:a1:98:7e:c2:88:23:96:a0:95:f1:3d:b5:2a:43:32:ac:9d: f6:fe:42:3e:9d:1f:74:3f:b7:ee:be:47:ea:64:ff:da:dd:3d: b1:ab:79:64:1d:ab:ff:00:5c:55:de:76:ad:d5:93:89:62:2c: 5a:ae:19:60:77:a4:e0:47:3b:e2:bc:71:93:57:de:8c:1b:c8: fc:65:fe:d1:24:52:b5:dc:f7:e3:72:9e:5a:e1:f3:8c:ba:72: ae:8f:ed:37:8f:0a:d0:ad:91:30:79:43:27:53:4b:ac:69:6e: d8:9f:36:09:5b:26:50:f3:ec:30:1a:b4:a1:57:01:34:66:d0: 48:f5:c0:0c:30:05:1d:59:12:60:f8:c6:ad:3d:5b:d3:7d:c4: 9c:a6:ac:51:48:31:28:a0:9a:87:31:48:78:29:0e:fa:25:51: 08:3c:84:62:ba:0c:8e:87:d0:13:76:d1:79:5d:8d:4c:13:3c: 34:1f:b9:9a:2d:2e:d5:a2:e9:c0:75:ae:b6:d7:3f:66:ce:2b: 2b:e3:21:e6:57:48:c9:a3:f9:32:6c:a7:e7:c2:16:07:26:94: 02:27:1c:29:05:59:c2:e8:c2:ba:0f:ed:65:64:b1:ec:a1:f8: 7c:1c:76:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjYwMzI0MTgyMTE2WhcNMjYwMzMxMTgyMTE2WjAYMRYwFAYD VQQDEw02OWMyZDYxYy0wMDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoDXF2OVxukZFrZ10xi1beGfuiu5w91eXvOpigBmg5xHFSL0QiEFhancrpvz Ug42guoryB1a4XDMcr3jvVimFE5SbS6Qga46pcNs8Wup//vhxrPAl6NbHtQD90ta BkK97C1tDJY1eCmGJpI04T9uEIwzbm1Dd8e83SyH/GwtcX35flj7Mx14NF7QLLla lHV8jJAz4osMhVXqf5WGsM8aWPl08xBsMZdjq0x2/h7qP9Ogyj5+5IOY2iiBuiIh nvVKPUBDATwagK0YLsxRsuY/Y0cM2XVBiFfp343foUv6UPttTG4FOTpLMoDKMEVV FjHf0vEW3tOnNvHCoPHsD+fhnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAVbQVB5 jN/w6CKx1oXVFqofS4ihMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUg6NFFRBxKBeCYWGRN5zWm3VOqGYfsKII5aglfE9tSpDMqyd9v5CPp0fdD+3 7r5H6mT/2t09sat5ZB2r/wBcVd52rdWTiWIsWq4ZYHek4Ec74rxxk1fejBvI/GX+ 0SRStdz343KeWuHzjLpyro/tN48K0K2RMHlDJ1NLrGlu2J82CVsmUPPsMBq0oVcB NGbQSPXADDAFHVkSYPjGrT1b033EnKasUUgxKKCahzFIeCkO+iVRCDyEYroMjofQ E3bReV2NTBM8NB+5mi0u1aLpwHWuttc/Zs4rK+Mh5ldIyaP5Mmyn58IWByaUAicc KQVZwujCug/tZWSx7KH4fBx29w== -----END CERTIFICATE-----Generated at Thu Mar 26 05:55:01 2026 by rpki-client