$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: vLfWYG85Ox0rY7pRbxLfeERiAjAj8NlMTfd3gTWNrpI= Subject key identifier: E0:ED:20:2D:8B:04:92:59:06:50:D8:43:C7:CD:60:38:D8:BC:1F:78 Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 0211 Signing time: Wed 25 Mar 2026 02:16:43 +0000 Manifest this update: Wed 25 Mar 2026 02:16:42 +0000 Manifest next update: Wed 01 Apr 2026 02:16:42 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: HRq4A9hSYauEMhp5QHz9L8TVDkXpVHUWrsPZT189Sho=) 2: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: 4YIOdgZToNd6AkQxJEZ/tpO5YcOz0+4fIKBE30sHvQQ=) 3: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: q1UHSMWRHkyPM5/ZpC9nIF7x6czgaR9lk1C/QVX3U48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Mar 25 02:16:42 2026 GMT Not After : Apr 1 02:16:42 2026 GMT Subject: CN=69c3458b-509f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6d:65:6c:94:1d:4f:d7:36:12:fe:14:ef:9b: 9f:ce:01:6f:4b:05:c1:65:9b:73:58:a6:f4:71:04: f4:eb:53:65:00:a4:76:66:cb:8c:5b:21:30:fd:d8: ff:4e:f9:3e:d6:63:2c:b8:45:b1:49:83:f2:08:fc: 56:a4:cd:dc:52:64:de:32:01:d1:db:c2:92:ee:17: 38:26:66:1d:99:85:31:ab:cd:2a:2d:90:a8:98:53: 37:16:0d:74:8c:c2:a6:3b:8f:b0:65:06:d4:77:30: e7:89:c0:34:37:a6:3a:90:3d:a4:6f:41:21:ad:50: af:cd:fe:20:3a:6c:b7:93:e0:99:26:0b:85:58:82: 7c:77:96:bf:f2:82:ce:c8:e0:c6:d2:36:50:07:31: 16:08:0b:2e:57:a8:f4:b3:01:92:86:12:20:c7:fe: da:4f:f0:69:53:61:6f:d1:96:e2:01:5f:f9:8a:d2: 98:bf:f4:9e:d4:30:b5:f9:0f:49:f2:82:7e:bf:26: 65:a5:ee:cb:b2:87:e4:f0:4a:e6:15:e8:4f:d9:3b: ac:30:1a:3b:9f:5f:96:52:d2:c1:c4:ca:35:fc:86: 30:13:45:36:90:0e:a6:26:88:6d:d2:cf:d7:06:c9: 77:0a:fb:1b:5e:d6:05:5c:72:7e:5f:80:53:19:44: 71:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:ED:20:2D:8B:04:92:59:06:50:D8:43:C7:CD:60:38:D8:BC:1F:78 X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:53:02:ab:6f:b1:19:71:41:b6:9a:b5:5e:e7:e2:8c:30:b8: 1a:04:4e:43:7c:78:ba:f7:c3:92:00:36:ef:cb:c0:17:ba:ac: 0a:f0:cd:df:d5:74:8c:55:e9:1c:94:6b:f2:8f:c0:45:14:2e: e3:9b:a0:9d:b3:54:c1:d0:12:21:26:a2:c4:c4:2f:41:9c:77: 84:10:3a:09:0e:d6:16:37:40:d6:49:78:a1:59:c6:cb:93:7b: 0b:cb:2f:70:fd:69:d6:de:b5:4d:8e:77:25:bf:b7:02:b9:27: b1:c9:80:97:13:01:08:66:b4:ba:e4:2e:8e:9e:70:bb:62:d9: c5:fd:7a:57:a5:7f:a7:34:73:ea:e2:83:cb:67:64:b0:5a:f1: bd:e0:00:b2:f6:64:30:c7:dc:c3:ca:3f:09:50:12:c0:50:37: 5a:e8:48:a2:40:75:93:0b:1f:49:37:16:13:11:d2:d4:ba:83: 32:03:e6:d3:d3:7c:15:96:81:04:c5:d2:5f:81:77:9c:c4:03: b3:c8:87:63:f5:09:b9:1b:e8:57:1e:ea:f8:e9:07:76:23:66: 90:12:98:61:94:de:ee:be:6d:eb:d1:fa:a4:d6:2e:b2:41:6c: 4f:af:22:63:2e:07:ff:dd:53:d1:2b:27:3a:7f:07:53:14:29: 59:43:4e:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjYwMzI1MDIxNjQyWhcNMjYwNDAxMDIxNjQyWjAYMRYwFAYD VQQDEw02OWMzNDU4Yi01MDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtG1lbJQdT9c2Ev4U75ufzgFvSwXBZZtzWKb0cQT061NlAKR2ZsuMWyEw/dj/ Tvk+1mMsuEWxSYPyCPxWpM3cUmTeMgHR28KS7hc4JmYdmYUxq80qLZComFM3Fg10 jMKmO4+wZQbUdzDnicA0N6Y6kD2kb0EhrVCvzf4gOmy3k+CZJguFWIJ8d5a/8oLO yODG0jZQBzEWCAsuV6j0swGShhIgx/7aT/BpU2Fv0ZbiAV/5itKYv/Se1DC1+Q9J 8oJ+vyZlpe7Lsofk8ErmFehP2TusMBo7n1+WUtLBxMo1/IYwE0U2kA6mJoht0s/X Bsl3CvsbXtYFXHJ+X4BTGURxLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODtIC2L BJJZBlDYQ8fNYDjYvB94MB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAklMCq2+xGXFBtpq1XufijDC4GgROQ3x4uvfDkgA278vAF7qsCvDN39V0jFXp HJRr8o/ARRQu45ugnbNUwdASISaixMQvQZx3hBA6CQ7WFjdA1kl4oVnGy5N7C8sv cP1p1t61TY53Jb+3ArknscmAlxMBCGa0uuQujp5wu2LZxf16V6V/pzRz6uKDy2dk sFrxveAAsvZkMMfcw8o/CVASwFA3WuhIokB1kwsfSTcWExHS1LqDMgPm09N8FZaB BMXSX4F3nMQDs8iHY/UJuRvoVx7q+OkHdiNmkBKYYZTe7r5t69H6pNYuskFsT68i Yy4H/91T0SsnOn8HUxQpWUNOUQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:00:00 2026 by rpki-client