$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: ePCYPbBM4pxl4Zip7z+qw4IcTyo3Gy2kIdj4rntazpo= Subject key identifier: 05:6D:FB:7E:0A:E8:47:B1:C4:95:E7:E7:9B:83:1A:8F:66:C3:C3:D1 Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 0662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 065C Signing time: Tue 24 Mar 2026 22:20:34 +0000 Manifest this update: Tue 24 Mar 2026 22:20:33 +0000 Manifest next update: Tue 31 Mar 2026 22:20:33 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: sHf2OCCsSTuHvnT81R2eEaWOfSJy/SoJ8fWDUlAPBk8=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: F2GebCWcaFjXC+R1GW0YWmxK0km0Z1FV+dTDi5Ce6Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Mar 24 22:20:33 2026 GMT Not After : Mar 31 22:20:33 2026 GMT Subject: CN=69c30e32-81c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:00:ad:5f:16:cb:a2:df:0e:9d:4a:f8:d8:d9: 94:8a:38:96:f1:5b:eb:f9:ba:c8:cf:a3:6a:a3:9b: 49:88:5f:c4:64:e4:94:1c:e7:11:f5:3d:bd:9c:0b: 61:98:22:6c:92:a1:b8:3f:24:1d:95:b0:5c:ec:02: 88:2c:2b:a9:0d:75:88:27:cd:cf:27:b3:25:db:96: da:23:db:0a:32:1b:89:a3:f6:35:6a:dd:44:dc:af: dc:d3:7c:01:d1:0b:f4:15:6a:2a:36:50:fd:b8:26: e5:88:d5:db:14:fd:cb:5d:fb:ba:90:ad:27:92:08: dd:b3:be:80:16:d3:06:de:db:6e:82:5d:93:a4:25: 5d:d1:21:48:0d:f8:23:74:76:fd:df:6e:63:9f:f2: d0:ea:3a:e5:26:2b:f1:1c:fb:ae:4e:f1:a4:47:ae: d0:00:6e:d9:ae:7e:22:f1:7f:dd:75:e2:38:fc:51: b1:98:06:d3:98:41:fd:48:4f:a3:29:95:fe:11:bc: d9:bc:01:b9:91:ae:92:b7:2f:8d:70:10:c3:d0:90: 51:48:0e:24:47:76:e2:24:f5:b1:9b:1f:7f:4f:90: 73:62:04:49:2d:ff:ae:ac:76:ba:bf:11:23:b1:bc: aa:b4:dc:6d:2a:6b:14:7c:a2:69:6c:78:7e:84:3b: 33:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6D:FB:7E:0A:E8:47:B1:C4:95:E7:E7:9B:83:1A:8F:66:C3:C3:D1 X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:d2:4b:da:9f:29:d0:37:88:67:b1:a2:ac:28:4c:b2:50:48: 82:5c:62:e3:d6:ef:a3:a1:1c:66:76:37:34:b5:f0:d5:57:66: 93:ff:60:fa:f2:a3:5d:28:df:b2:ca:a9:94:37:03:97:f0:44: 55:ad:1b:a8:eb:33:31:06:d0:6c:1a:ac:43:37:f7:60:b0:da: b9:c1:7c:ad:9e:e9:dc:75:6a:7a:49:ef:68:7e:87:6b:cc:48: 41:48:22:ed:73:18:e4:7a:19:77:f7:a2:ab:a0:2e:aa:ce:7a: 19:64:29:7a:d4:cb:59:c9:9d:2c:bc:e9:9e:e0:4c:f0:41:f8: 94:1c:b9:d1:fe:aa:06:8a:29:45:18:52:26:7a:e2:51:24:cc: 2d:a5:30:7d:48:f4:a1:bd:21:5f:c0:6f:8d:09:6f:b3:2e:05: b9:36:66:bd:ed:83:65:94:8c:b2:2e:cc:03:87:11:98:bf:df: 94:30:89:70:03:bb:f5:5f:3a:29:d3:ed:76:d0:ed:4e:80:e0: 44:2e:e3:2a:55:10:00:51:3f:62:e3:e5:3f:85:2a:2b:35:d3: b6:f9:18:2b:72:e8:db:c3:72:0f:29:4c:e9:40:2a:e4:60:42: 1c:fe:fb:ea:3e:f0:8f:3d:75:af:3f:7f:f6:5d:a1:69:3a:8f: 1e:f3:9f:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjYwMzI0MjIyMDMzWhcNMjYwMzMxMjIyMDMzWjAYMRYwFAYD VQQDEw02OWMzMGUzMi04MWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwCtXxbLot8OnUr42NmUijiW8Vvr+brIz6Nqo5tJiF/EZOSUHOcR9T29nAth mCJskqG4PyQdlbBc7AKILCupDXWIJ83PJ7Ml25baI9sKMhuJo/Y1at1E3K/c03wB 0Qv0FWoqNlD9uCbliNXbFP3LXfu6kK0nkgjds76AFtMG3ttugl2TpCVd0SFIDfgj dHb9325jn/LQ6jrlJivxHPuuTvGkR67QAG7Zrn4i8X/ddeI4/FGxmAbTmEH9SE+j KZX+EbzZvAG5ka6Sty+NcBDD0JBRSA4kR3biJPWxmx9/T5BzYgRJLf+urHa6vxEj sbyqtNxtKmsUfKJpbHh+hDszQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAVt+34K 6EexxJXn55uDGo9mw8PRMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArtJL2p8p0DeIZ7GirChMslBIglxi49bvo6EcZnY3NLXw1Vdmk/9g+vKjXSjf ssqplDcDl/BEVa0bqOszMQbQbBqsQzf3YLDaucF8rZ7p3HVqeknvaH6Ha8xIQUgi 7XMY5HoZd/eiq6Auqs56GWQpetTLWcmdLLzpnuBM8EH4lBy50f6qBoopRRhSJnri USTMLaUwfUj0ob0hX8BvjQlvsy4FuTZmve2DZZSMsi7MA4cRmL/flDCJcAO79V86 KdPtdtDtToDgRC7jKlUQAFE/YuPlP4UqKzXTtvkYK3Lo28NyDylM6UAq5GBCHP77 6j7wjz11rz9/9l2haTqPHvOfng== -----END CERTIFICATE-----Generated at Thu Mar 26 23:47:44 2026 by rpki-client