$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft File: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft (raw, json) Hash identifier: prrI0ahB66pyVs/32ubASMZQVXdZKH7BwDPFtGX3KII= Subject key identifier: 42:EE:32:71:A1:D9:99:7C:C7:43:8D:50:74:2F:3B:EC:4B:6D:E1:05 Authority key identifier: F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 Certificate issuer: /CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Certificate serial: 06FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft Manifest number: 06D3 Signing time: Tue 24 Mar 2026 22:01:02 +0000 Manifest this update: Tue 24 Mar 2026 22:01:01 +0000 Manifest next update: Tue 31 Mar 2026 22:01:01 +0000 Files and hashes: 1: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl (hash: Wjz7HwiTkaAZ0NfvnBHXqDjg9ZzbJaO1SagSeUbCHTM=) 2: 105CB01A830711ECB472CA0AC4F9AE02.roa (hash: vlSukquMRVvRP714pQfSW9JCKpx/XhQZSDVUjHWXm3o=) 3: 0F6980C0830711ECB472CA0AC4F9AE02.roa (hash: ZiymFWnj3M1tXq26ZhLnNIDxD9Ed+EUoE2p91PflS5A=) 4: 0E2711E6830711ECB472CA0AC4F9AE02.roa (hash: WguzFNpnFOiKG7d1mZy9kPuySEP+TVOdHsdPXP/TGHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1786 (0x6fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D91, serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Validity Not Before: Mar 24 22:01:01 2026 GMT Not After : Mar 31 22:01:01 2026 GMT Subject: CN=69c3099e-ed8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ed:32:7c:02:2b:a1:54:b8:c9:d4:eb:e3:ae: a7:c1:4c:5e:5b:af:50:c6:fb:70:90:ab:4f:7c:23: 6c:13:b0:e0:aa:ab:03:71:e6:a3:6a:3c:69:fd:06: 28:60:98:b7:2c:c3:09:95:37:59:3a:af:c6:7b:b6: 3c:cb:90:7a:f1:86:36:bf:54:87:99:db:d4:bd:20: ff:45:c9:45:f1:93:2a:4d:65:79:06:9e:3a:7a:7c: de:46:b0:6a:9a:c8:eb:d2:05:a8:7c:8d:d5:a2:df: 07:6d:e4:8e:c8:8b:5a:2b:71:b5:00:56:82:63:34: e9:a7:54:81:f2:a4:4d:c6:c2:3c:b9:9e:54:4f:d1: 69:f0:47:73:87:bb:d5:02:c6:78:79:e3:64:dd:a7: 6d:51:22:c2:43:cb:81:97:59:a4:9b:da:d8:68:46: 81:58:7b:38:04:73:da:49:da:5f:ec:b3:b8:0f:c4: 85:4b:69:ed:d9:fd:08:7a:bf:f7:0b:85:84:35:bd: 63:df:c7:38:8b:0b:b5:50:bc:04:ff:37:5c:43:ba: 35:f4:0d:ba:ef:c4:1e:a0:8a:38:57:19:a6:cc:02: 6c:e1:17:b4:e9:be:f7:22:6d:ad:8f:ad:43:11:9d: 0d:04:a4:dd:a8:eb:b3:f2:e3:8b:a0:b2:bb:70:82: ce:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EE:32:71:A1:D9:99:7C:C7:43:8D:50:74:2F:3B:EC:4B:6D:E1:05 X509v3 Authority Key Identifier: keyid:F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:9b:35:5b:5a:90:d7:0d:20:3b:a0:ee:51:96:b7:1c:11:94: fe:f1:2d:4b:1f:f7:ec:04:42:3a:2a:db:53:dd:4d:1f:1b:fa: a4:6f:b6:8e:67:94:85:09:b4:16:be:13:df:c1:e9:f8:31:4a: 91:64:65:2e:ce:8f:35:b7:43:bf:fe:0e:df:51:79:38:54:cf: 7c:da:08:8f:b0:c5:5f:0d:88:a5:2c:2d:71:c3:62:5f:8f:38: d1:d8:59:d1:d8:53:e6:5d:f0:32:17:2e:a5:2f:72:a2:e9:b6: 22:e5:6f:c8:ad:4d:39:86:a4:d3:65:f4:c7:df:9b:4c:ea:e2: 1d:d4:3e:94:b8:00:6a:57:21:dc:c3:56:cd:b5:dc:87:27:22: cb:ff:11:bd:2e:3c:5a:03:92:96:a7:88:1a:d7:b3:23:89:3d: 5d:7f:bd:32:a9:64:69:18:78:e2:b1:41:07:72:fc:e4:cd:87: 71:66:07:14:5f:95:24:be:e5:cc:67:ea:76:57:07:17:bb:b7: a1:28:5b:d4:b4:c0:a1:48:69:5d:88:68:ec:31:0d:60:63:fe: 4a:b7:75:d3:72:3c:3a:50:e4:75:7f:9d:22:c9:5e:e5:de:be: cd:72:d8:d8:e1:16:02:1e:33:b0:55:35:71:bd:5d:91:d0:9c: cc:b7:09:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZEOTExMTAvBgNVBAUTKEY2NzE4QTVFNUU0MkQwOEUyNTNBMkZCMzAwRkYwOUMz RjUzNTFEMzIwHhcNMjYwMzI0MjIwMTAxWhcNMjYwMzMxMjIwMTAxWjAYMRYwFAYD VQQDEw02OWMzMDk5ZS1lZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAue0yfAIroVS4ydTr466nwUxeW69QxvtwkKtPfCNsE7DgqqsDceajajxp/QYo YJi3LMMJlTdZOq/Ge7Y8y5B68YY2v1SHmdvUvSD/RclF8ZMqTWV5Bp46enzeRrBq msjr0gWofI3Vot8HbeSOyItaK3G1AFaCYzTpp1SB8qRNxsI8uZ5UT9Fp8Edzh7vV AsZ4eeNk3adtUSLCQ8uBl1mkm9rYaEaBWHs4BHPaSdpf7LO4D8SFS2nt2f0Ier/3 C4WENb1j38c4iwu1ULwE/zdcQ7o19A2678QeoIo4VxmmzAJs4Re06b73Im2tj61D EZ0NBKTdqOuz8uOLoLK7cILOIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFELuMnGh 2Zl8x0ONUHQvO+xLbeEFMB8GA1UdIwQYMBaAFPZxil5eQtCOJTovswD/CcP1NR0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ5MS9FNTE3RjJCNjlB RTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJNGxPaS16QVA4SndfVTFI VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluR0tYbDVDMEk0bE9pLXpBUDhKd19VMUhUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ5MS9FNTE3RjJCNjlBRTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJ NGxPaS16QVA4SndfVTFIVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuJs1W1qQ1w0gO6DuUZa3HBGU/vEtSx/37ARCOirbU91NHxv6pG+2jmeUhQm0 Fr4T38Hp+DFKkWRlLs6PNbdDv/4O31F5OFTPfNoIj7DFXw2IpSwtccNiX4840dhZ 0dhT5l3wMhcupS9youm2IuVvyK1NOYak02X0x9+bTOriHdQ+lLgAalch3MNWzbXc hyciy/8RvS48WgOSlqeIGtezI4k9XX+9MqlkaRh44rFBB3L85M2HcWYHFF+VJL7l zGfqdlcHF7u3oShb1LTAoUhpXYho7DENYGP+Srd103I8OlDkdX+dIsle5d6+zXLY 2OEWAh4zsFU1cb1dkdCczLcJkg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:09:05 2026 by rpki-client