$ rpki-client -vvf rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft File: WRGN11PwUw7cK4w74mO-2wzOvA4.mft (raw, json) Hash identifier: 1KUzqj7dGwYPqHs2qjQXO2R7KFZIC9Ii9V1Z6P4EKto= Subject key identifier: 00:E6:84:04:2F:B4:8F:26:5B:A5:AC:86:80:94:4E:A7:34:F3:B1:5D Authority key identifier: 59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E Certificate issuer: /CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Certificate serial: 037B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft Manifest number: 0366 Signing time: Wed 11 Mar 2026 00:22:00 +0000 Manifest this update: Wed 11 Mar 2026 00:22:00 +0000 Manifest next update: Wed 18 Mar 2026 00:22:00 +0000 Files and hashes: 1: WRGN11PwUw7cK4w74mO-2wzOvA4.crl (hash: A5pRs+HsgTtFBFWF0eM1HDu6/RdDmHc2WFSNQw2WwiY=) 2: 8409527078B011EE8D737723C4F9AE02.roa (hash: S/EE8dzEnvlxDFYWVTl3pTW1+xiF5BVX2thc9vnDMAU=) 3: 6967C1F494F711EF905E5F13C4F9AE02.roa (hash: pAZV68jGjWuKWqhQJP5ckwM2V0tQYdqN4ZXDEqElElc=) 4: E15780AA32E111EFB163924BC4F9AE02.roa (hash: YJWEr2nrAdnP2NutE9Ms8r6Gtbwk3PCYEKG8MqYno4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 00:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 891 (0x37b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B12FB, serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Validity Not Before: Mar 11 00:22:00 2026 GMT Not After : Mar 18 00:22:00 2026 GMT Subject: CN=69b0b5a8-cb94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f8:b0:86:19:66:94:1d:63:34:79:64:77:97: f1:b7:50:67:cc:fe:cc:49:04:da:5f:ac:25:d0:a1: b6:a6:b8:96:17:26:3e:14:3b:27:06:e6:f7:b1:30: df:9c:36:26:0c:0b:f5:08:81:c7:aa:c1:a9:5b:e0: 3d:49:a5:9c:64:ca:4e:8d:4b:1b:21:1b:c6:5e:95: 5d:47:41:59:4d:88:dc:fb:2d:26:07:d2:09:de:e5: 47:f6:c0:fe:ad:2e:31:f6:b2:93:b1:f5:dc:27:6b: c0:b3:24:51:a4:ac:8b:3d:43:98:af:7d:a6:62:fa: bc:a2:ef:75:3d:bf:99:89:dc:c8:27:a3:7a:bc:ae: 03:74:4f:37:dd:47:cd:91:89:86:96:72:8e:cc:cc: 6f:de:bc:25:fe:2d:ce:21:ea:de:69:5f:69:6a:b3: f7:e3:c0:2c:4b:73:24:cd:30:de:fc:da:0f:83:b2: 80:b5:d4:9e:96:fe:c6:c8:97:87:bb:1a:3e:b8:1e: c4:41:7b:a6:f7:cf:30:62:bb:96:f7:58:08:48:db: 44:10:64:44:dc:0e:86:35:45:93:d3:99:e6:7c:16: 78:1d:18:77:7f:dd:84:05:50:39:0f:f7:0b:b4:ad: cb:7b:c0:d5:2a:71:24:12:67:b4:03:03:8b:3c:b6: 2e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E6:84:04:2F:B4:8F:26:5B:A5:AC:86:80:94:4E:A7:34:F3:B1:5D X509v3 Authority Key Identifier: keyid:59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:3a:12:bb:d6:86:57:03:c5:54:65:06:ea:48:46:93:b4:75: 2b:2f:c0:53:8a:d0:61:2c:3d:8c:93:77:23:ff:70:33:60:f8: f2:f3:2f:b3:13:e0:39:2b:07:c1:18:f5:8b:df:2d:9b:73:45: 30:ee:7f:e5:ca:5d:4c:ed:a9:67:52:1a:82:c7:ab:96:fe:f4: 13:6c:41:0b:44:de:39:ea:34:13:d1:c2:99:be:e7:b9:4c:67: f7:61:82:1c:9d:f2:a2:a2:6a:e9:c1:aa:57:0a:03:c8:94:42: 9d:a1:06:d1:8e:c4:f7:95:c2:23:26:fd:14:fd:94:53:67:6e: 55:d2:e9:a4:a6:dd:0f:80:a2:2d:da:74:6c:81:74:38:5d:c8: c7:1c:89:69:7c:c1:a2:de:84:7a:79:04:5d:39:37:c1:2c:99: 58:53:f2:35:19:ce:57:8f:1a:2b:e7:39:d0:d4:6b:57:9c:2f: cc:13:02:f3:99:e6:39:64:de:ef:fb:25:fa:26:66:05:91:47: eb:3b:fd:13:0c:89:34:f0:82:72:6a:18:33:83:1d:8f:f7:60: b1:5c:79:de:0b:fa:24:e5:6b:17:82:de:55:f0:bb:53:43:73: 25:d6:d2:b6:a4:33:66:e9:3e:fb:24:3b:8c:8a:ac:d0:79:92: 54:c4:1f:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEyRkIxMTAvBgNVBAUTKDU5MTE4REQ3NTNGMDUzMEVEQzJCOEMzQkUyNjNCRURC MENDRUJDMEUwHhcNMjYwMzExMDAyMjAwWhcNMjYwMzE4MDAyMjAwWjAYMRYwFAYD VQQDEw02OWIwYjVhOC1jYjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsviwhhlmlB1jNHlkd5fxt1BnzP7MSQTaX6wl0KG2priWFyY+FDsnBub3sTDf nDYmDAv1CIHHqsGpW+A9SaWcZMpOjUsbIRvGXpVdR0FZTYjc+y0mB9IJ3uVH9sD+ rS4x9rKTsfXcJ2vAsyRRpKyLPUOYr32mYvq8ou91Pb+ZidzIJ6N6vK4DdE833UfN kYmGlnKOzMxv3rwl/i3OIereaV9parP348AsS3MkzTDe/NoPg7KAtdSelv7GyJeH uxo+uB7EQXum988wYruW91gISNtEEGRE3A6GNUWT05nmfBZ4HRh3f92EBVA5D/cL tK3Le8DVKnEkEme0AwOLPLYuUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFADmhAQv tI8mW6WshoCUTqc087FdMB8GA1UdIwQYMBaAFFkRjddT8FMO3CuMO+JjvtsMzrwO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTJGQi9FMEQ2NDUxNEVE MUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3N2NLNHc3NG1PLTJ3ek92 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dSR04xMVB3VXc3Y0s0dzc0bU8tMnd6T3ZBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTJGQi9FMEQ2NDUxNEVEMUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3 N2NLNHc3NG1PLTJ3ek92QTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAujoSu9aGVwPFVGUG6khGk7R1Ky/AU4rQYSw9jJN3I/9wM2D48vMvsxPgOSsH wRj1i98tm3NFMO5/5cpdTO2pZ1Iagserlv70E2xBC0TeOeo0E9HCmb7nuUxn92GC HJ3yoqJq6cGqVwoDyJRCnaEG0Y7E95XCIyb9FP2UU2duVdLppKbdD4CiLdp0bIF0 OF3IxxyJaXzBot6EenkEXTk3wSyZWFPyNRnOV48aK+c50NRrV5wvzBMC85nmOWTe 7/sl+iZmBZFH6zv9EwyJNPCCcmoYM4Mdj/dgsVx53gv6JOVrF4LeVfC7U0NzJdbS tqQzZuk++yQ7jIqs0HmSVMQf6w== -----END CERTIFICATE-----Generated at Thu Mar 12 16:44:17 2026 by rpki-client