$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: hiUslCXssHeyS9+N5r9HG/M8lxeFNr0CZT7lMzT2raM= Subject key identifier: AC:63:9E:16:8A:30:C7:E1:D4:C5:62:C9:22:CC:AE:47:C8:84:E6:1D Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0B07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0ABC Signing time: Sat 04 Apr 2026 19:17:54 +0000 Manifest this update: Sat 04 Apr 2026 19:17:54 +0000 Manifest next update: Sat 11 Apr 2026 19:17:54 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: 8GTBNCd4j2rlSCq05aWvs+VAjRARcNk8cHOejy3BCHE=) 2: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: 2CxBlSEZ4s9h+CG+sdkPtbZiMyYV71gXHZ/DNWmS4OY=) 3: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: fFsNR12R3pP/AJUsoiljuBLUKnPB5wu9KTa5f+JWnzE=) 4: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: 3zmhoqDN3914HCGCg2WBUkiHp98MLEWrF9AHJiv1VWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2823 (0xb07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Apr 4 19:17:54 2026 GMT Not After : Apr 11 19:17:54 2026 GMT Subject: CN=69d163e2-edd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0e:34:e8:02:49:4e:4a:39:c3:d5:08:b1:e4: 0a:ed:d6:81:a6:f6:17:23:12:70:33:6e:bc:7a:26: 6c:a8:93:4c:a8:1b:7e:94:12:3e:cf:f6:9c:c9:e4: 01:72:28:b4:c1:7d:e9:8a:f8:f8:25:17:b7:50:10: a2:29:47:87:a8:e5:a3:ee:32:d0:de:28:9b:65:ef: a9:58:0b:48:95:81:87:5c:da:7a:d8:c7:13:ee:26: 3c:2f:19:74:4e:09:2b:c4:0e:06:b0:6e:7b:2c:83: c6:52:cd:1b:53:13:dd:c4:6f:f6:fc:31:9a:e3:85: e7:98:ff:1a:23:d8:db:fa:dd:c3:03:2f:a1:8b:23: ce:af:38:4b:d4:ff:7a:75:d5:97:5d:67:eb:0d:5a: cd:bd:a0:b6:4f:ce:90:fa:b8:37:c6:f9:38:a3:da: 46:8b:64:21:43:ff:a3:ea:bb:7f:16:d8:01:0f:bf: de:af:cf:ef:b1:6f:60:38:ca:5e:5f:ab:e2:a2:2e: d4:3c:a4:e2:12:6d:af:db:3d:ee:de:dd:df:37:17: 7f:95:ae:4c:08:2c:39:d5:34:c3:93:8c:27:f8:ca: bd:b6:79:99:0e:83:86:49:d5:c1:b5:56:73:bb:a1: 4e:2e:ca:66:35:a4:72:99:7d:b6:ae:dc:ee:1a:0e: e6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:63:9E:16:8A:30:C7:E1:D4:C5:62:C9:22:CC:AE:47:C8:84:E6:1D X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:62:52:a0:38:0e:85:47:89:b2:8a:8d:cd:8a:21:88:8d:eb: 79:73:bb:44:a2:d5:64:37:6a:5a:19:e2:46:5f:2d:53:cf:66: a8:80:df:3d:00:2d:a7:aa:42:3d:70:e8:26:24:48:db:d0:9f: 18:68:39:12:6f:cc:37:86:39:ae:f2:da:a1:7b:8b:0d:68:0b: 7a:db:52:73:b0:0c:a1:ff:05:f6:1a:25:f0:a9:6e:11:4b:45: b6:36:67:93:84:34:b4:78:e6:93:90:ce:b2:6f:52:ba:4d:32: cf:13:92:47:53:8d:fe:56:32:99:1a:1c:22:fe:89:99:f1:25: 0a:88:2c:bf:8c:94:ef:da:5f:8a:95:8a:16:5d:91:b6:d2:f1: 2f:32:1f:59:e5:0a:95:d8:f8:75:f4:9d:0f:ec:76:65:81:c5: 2b:84:76:88:21:51:ea:19:b3:1c:2c:a3:89:db:52:7b:5f:a4: c4:54:5b:cd:06:3d:61:31:97:08:79:80:22:ff:64:f5:7f:0d: 24:5d:7a:78:2b:5c:96:27:91:a9:2b:1e:73:75:ec:93:74:bd: b9:fb:7f:10:29:93:15:16:dc:fe:bb:ad:e3:e1:e3:63:a7:f0: ab:3f:d0:f3:cb:53:ee:9e:43:3e:97:44:32:94:ba:12:25:b5: ad:4f:d4:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjYwNDA0MTkxNzU0WhcNMjYwNDExMTkxNzU0WjAYMRYwFAYD VQQDEw02OWQxNjNlMi1lZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQ406AJJTko5w9UIseQK7daBpvYXIxJwM268eiZsqJNMqBt+lBI+z/acyeQB cii0wX3pivj4JRe3UBCiKUeHqOWj7jLQ3iibZe+pWAtIlYGHXNp62McT7iY8Lxl0 TgkrxA4GsG57LIPGUs0bUxPdxG/2/DGa44XnmP8aI9jb+t3DAy+hiyPOrzhL1P96 ddWXXWfrDVrNvaC2T86Q+rg3xvk4o9pGi2QhQ/+j6rt/FtgBD7/er8/vsW9gOMpe X6vioi7UPKTiEm2v2z3u3t3fNxd/la5MCCw51TTDk4wn+Mq9tnmZDoOGSdXBtVZz u6FOLspmNaRymX22rtzuGg7m2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKxjnhaK MMfh1MViySLMrkfIhOYdMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQWJSoDgOhUeJsoqNzYohiI3reXO7RKLVZDdqWhniRl8tU89mqIDfPQAtp6pC PXDoJiRI29CfGGg5Em/MN4Y5rvLaoXuLDWgLettSc7AMof8F9hol8KluEUtFtjZn k4Q0tHjmk5DOsm9Suk0yzxOSR1ON/lYymRocIv6JmfElCogsv4yU79pfipWKFl2R ttLxLzIfWeUKldj4dfSdD+x2ZYHFK4R2iCFR6hmzHCyjidtSe1+kxFRbzQY9YTGX CHmAIv9k9X8NJF16eCtclieRqSsec3Xsk3S9uft/ECmTFRbc/rut4+HjY6fwqz/Q 88tT7p5DPpdEMpS6EiW1rU/U7w== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:56 2026 by rpki-client