$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: PTFeEJhUEBX3IaKyvnOQis24tN2CgPIWXpR+WKCKWp8= Subject key identifier: 63:6B:00:0A:31:76:A7:87:B6:E5:C3:0C:A5:C3:40:5B:46:8B:B3:67 Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1B12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 22AD Signing time: Thu 26 Mar 2026 15:55:42 +0000 Manifest this update: Thu 26 Mar 2026 15:55:41 +0000 Manifest next update: Thu 02 Apr 2026 15:55:41 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: jVnEZky65yA2XP7DmNuWjf7+m6rDlLY903NLp2R/Wyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6930 (0x1b12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Mar 26 15:55:41 2026 GMT Not After : Apr 2 15:55:41 2026 GMT Subject: CN=69c556fe-8ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0a:70:49:df:25:b9:a6:29:f6:c1:9c:94:f6: 27:ae:28:65:7f:c1:ba:ad:42:1b:a3:6c:7a:a9:98: d6:e6:a1:24:0d:62:b2:2c:34:32:f8:e5:a1:f5:b8: 97:e9:cd:75:65:38:7e:86:27:e9:d4:03:62:1b:c0: f1:30:10:e2:fe:7d:99:d4:80:a8:0d:96:c6:56:69: 11:6c:08:c1:1a:41:23:21:98:b1:ed:88:1f:22:41: 78:ee:57:0a:5c:3b:06:2e:0f:cc:41:91:0b:65:f5: d1:39:40:a1:33:a3:49:73:90:58:4c:a0:ae:bc:5a: cc:05:fe:14:73:83:44:95:2e:d3:56:ed:fa:d7:74: 4f:5d:4b:3a:7c:92:0e:8f:d7:79:de:40:cb:4c:40: d6:13:df:92:4a:5b:0b:b4:8d:30:c4:56:cf:c4:e3: 6e:5f:b7:de:ca:31:f5:30:5a:41:e4:d8:39:33:cd: 12:d9:bb:4d:74:74:9f:53:47:e3:93:11:c4:85:c8: 4e:98:cc:15:70:99:48:04:72:2b:d1:03:b2:e3:ae: 15:87:1f:38:cb:11:9b:a2:11:75:55:c2:7e:1b:2d: 5b:e3:ec:ca:fb:6e:ef:fa:d1:0f:6d:f0:ac:22:08: 97:94:0c:5d:31:47:ac:2b:a8:aa:31:78:f7:b7:de: 30:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:6B:00:0A:31:76:A7:87:B6:E5:C3:0C:A5:C3:40:5B:46:8B:B3:67 X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:68:74:a0:2a:37:5b:c0:a4:a4:b0:da:28:71:ea:f3:21:f1: 34:c2:ff:b7:68:c2:3c:ba:63:78:c2:0d:d2:0a:e1:44:69:7f: 81:cd:b7:1d:2e:25:50:f9:38:e0:18:6f:88:9f:a8:c2:27:6a: 0b:c9:f9:f3:c6:21:1b:a0:bb:c1:bc:e2:59:30:21:a8:50:75: 9d:cd:ed:84:a1:89:e5:ea:8d:a9:ed:76:a6:e5:31:9e:ed:9e: 79:7b:f7:8d:b4:37:81:9a:df:ee:4f:e7:1e:4b:20:6a:3e:7e: 9b:0e:f9:0e:8e:73:26:d3:da:a3:9f:38:59:15:70:f9:a8:cb: c9:80:c1:aa:4c:c9:ac:3f:59:5f:d6:0f:00:3f:2a:22:1e:c1: 6c:38:22:48:38:63:c5:75:6c:a0:85:85:f2:45:71:4b:94:45: 73:1c:0a:9e:a6:a5:63:fd:be:ac:67:29:35:29:73:b6:0c:66: da:6f:35:e5:81:49:f1:91:9f:de:8b:52:93:4b:e7:b6:5b:f0: 3f:1f:f6:c9:0c:05:b7:39:37:90:00:df:23:f8:1d:2c:1b:08: 6d:02:38:66:17:74:e8:85:99:2b:a8:3e:00:2c:ea:f8:9c:e9: cb:cf:88:c8:fc:af:ab:b2:8d:fa:e9:45:d1:54:c7:1a:52:d4: e5:de:ef:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjYwMzI2MTU1NTQxWhcNMjYwNDAyMTU1NTQxWjAYMRYwFAYD VQQDEw02OWM1NTZmZS04YmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QpwSd8luaYp9sGclPYnrihlf8G6rUIbo2x6qZjW5qEkDWKyLDQy+OWh9biX 6c11ZTh+hifp1ANiG8DxMBDi/n2Z1ICoDZbGVmkRbAjBGkEjIZix7YgfIkF47lcK XDsGLg/MQZELZfXROUChM6NJc5BYTKCuvFrMBf4Uc4NElS7TVu3613RPXUs6fJIO j9d53kDLTEDWE9+SSlsLtI0wxFbPxONuX7feyjH1MFpB5Ng5M80S2btNdHSfU0fj kxHEhchOmMwVcJlIBHIr0QOy464Vhx84yxGbohF1VcJ+Gy1b4+zK+27v+tEPbfCs IgiXlAxdMUesK6iqMXj3t94wvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGNrAAox dqeHtuXDDKXDQFtGi7NnMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjWh0oCo3W8CkpLDaKHHq8yHxNML/t2jCPLpjeMIN0grhRGl/gc23HS4lUPk4 4BhviJ+owidqC8n588YhG6C7wbziWTAhqFB1nc3thKGJ5eqNqe12puUxnu2eeXv3 jbQ3gZrf7k/nHksgaj5+mw75Do5zJtPao584WRVw+ajLyYDBqkzJrD9ZX9YPAD8q Ih7BbDgiSDhjxXVsoIWF8kVxS5RFcxwKnqalY/2+rGcpNSlztgxm2m815YFJ8ZGf 3otSk0vntlvwPx/2yQwFtzk3kADfI/gdLBsIbQI4Zhd06IWZK6g+ACzq+Jzpy8+I yPyvq7KN+ulF0VTHGlLU5d7vAw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:42 2026 by rpki-client