$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft File: g1GgqJRYpHQmpXCgKQH45lQuguI.mft (raw, json) Hash identifier: JmP8Ghi72XejyPX5Tm8DRacoFEvzZhprEDtAbDh7v20= Subject key identifier: 0A:EB:EA:F6:12:5E:E4:23:A5:9F:FB:62:09:4B:1F:1A:0A:D0:3D:25 Authority key identifier: 83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 Certificate issuer: /CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Certificate serial: 04EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft Manifest number: 04D5 Signing time: Sat 28 Mar 2026 23:48:08 +0000 Manifest this update: Sat 28 Mar 2026 23:48:07 +0000 Manifest next update: Sat 04 Apr 2026 23:48:07 +0000 Files and hashes: 1: g1GgqJRYpHQmpXCgKQH45lQuguI.crl (hash: Kt/pYBjRb80f1TacIyNe97xDg2vm4xcicVM4uuGg5jA=) 2: D516EA2AA1E611EDABFD7D7FC4F9AE02.roa (hash: vxznBiBVR6YDAJK7LuojHusJdEYCXrwVVLv7TWoRtB8=) 3: D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa (hash: kPi4zM9MhBs1Z7XrTJy2yFMDPKRgd24Q9Ibk3GjMnUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 23:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1260 (0x4ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D3D, serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Validity Not Before: Mar 28 23:48:07 2026 GMT Not After : Apr 4 23:48:07 2026 GMT Subject: CN=69c868b7-362c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5a:03:cc:c9:8e:41:b3:79:d0:1e:d4:44:fc: e7:18:9d:36:56:65:4a:76:69:d8:f3:75:a1:86:06: 03:d6:0f:54:52:97:e1:e4:86:b7:19:2b:cc:54:31: c3:d5:ef:f2:b5:5c:9c:c6:99:4c:3b:52:57:e6:06: 3d:a5:12:85:33:2a:ad:54:dc:e1:07:34:60:1a:f2: 09:6c:10:ac:26:cd:54:d0:9d:bc:ce:bb:11:d6:03: 07:3c:df:dc:3b:7b:7f:da:23:39:cb:84:26:10:9a: 7f:51:c3:2a:83:04:16:a8:4d:a6:69:c8:83:c2:09: 81:dc:93:db:0c:9b:69:bc:f7:70:c2:da:0c:2c:23: 89:45:fb:3c:5f:53:bb:5c:eb:82:38:6e:42:24:97: 0a:b1:2d:30:fc:e2:b5:c4:9d:55:48:22:5c:03:90: 85:fe:e3:8f:7a:bc:13:05:ac:36:88:dc:63:78:f9: c1:7d:70:1e:aa:aa:f8:31:16:1a:7d:c8:87:0c:ac: ce:06:dd:c2:3f:68:b5:24:4a:14:80:92:cb:54:af: 03:a4:91:27:01:20:c2:66:72:2c:0d:d0:5b:73:93: b2:34:75:a5:2c:03:74:f5:92:5b:f9:a7:2d:3a:9d: da:33:2d:45:db:e8:4a:f2:da:9d:f2:21:02:09:ea: 85:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:EB:EA:F6:12:5E:E4:23:A5:9F:FB:62:09:4B:1F:1A:0A:D0:3D:25 X509v3 Authority Key Identifier: keyid:83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:68:c3:2f:5c:bc:23:48:14:26:04:2d:5c:79:00:89:7c:7a: a4:1c:d9:1e:29:08:35:77:06:0a:51:89:8b:ef:b7:04:4f:6d: 3e:28:b8:35:29:b7:b8:18:ed:5e:cf:a8:a1:91:a4:2e:43:3d: 06:77:0b:b3:b6:2b:9a:28:de:5f:02:39:88:af:5a:be:a6:af: a6:c6:35:4b:f1:8b:37:77:02:c7:a6:74:d4:d0:98:9d:37:cc: 04:6c:99:1e:70:54:aa:f5:76:06:d2:86:c0:e8:92:64:2e:36: 17:a6:f2:3f:39:31:82:14:20:5d:05:7d:54:3f:87:e0:4b:56: c6:94:5f:c8:ee:8f:50:6b:6b:a8:1a:24:65:8d:87:66:a1:8d: af:d8:f3:1e:08:5c:8b:78:cc:ce:77:ad:1e:96:b0:db:84:57: 67:e8:9a:57:ba:f6:21:46:e7:f7:6e:a2:2d:bb:7e:91:57:a8: 05:b8:65:e0:ad:7e:38:22:12:05:01:9d:33:ed:85:5a:fc:7e: 6b:90:cd:24:e7:2e:2d:5e:c6:e8:d0:8b:cb:36:01:56:3f:ee: a7:7e:77:3d:33:e1:ba:df:68:3d:87:61:0c:db:98:43:ee:85: e5:85:c7:0e:79:23:be:c9:54:dd:fc:05:fb:6d:0d:d3:63:c1: 7f:a2:33:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEM0QxMTAvBgNVBAUTKDgzNTFBMEE4OTQ1OEE0NzQyNkE1NzBBMDI5MDFGOEU2 NTQyRTgyRTIwHhcNMjYwMzI4MjM0ODA3WhcNMjYwNDA0MjM0ODA3WjAYMRYwFAYD VQQDEw02OWM4NjhiNy0zNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1oDzMmOQbN50B7URPznGJ02VmVKdmnY83WhhgYD1g9UUpfh5Ia3GSvMVDHD 1e/ytVycxplMO1JX5gY9pRKFMyqtVNzhBzRgGvIJbBCsJs1U0J28zrsR1gMHPN/c O3t/2iM5y4QmEJp/UcMqgwQWqE2maciDwgmB3JPbDJtpvPdwwtoMLCOJRfs8X1O7 XOuCOG5CJJcKsS0w/OK1xJ1VSCJcA5CF/uOPerwTBaw2iNxjePnBfXAeqqr4MRYa fciHDKzOBt3CP2i1JEoUgJLLVK8DpJEnASDCZnIsDdBbc5OyNHWlLAN09ZJb+act Op3aMy1F2+hK8tqd8iECCeqFcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFArr6vYS XuQjpZ/7YglLHxoK0D0lMB8GA1UdIwQYMBaAFINRoKiUWKR0JqVwoCkB+OZULoLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QzRC8yMzNDMEI0NjYz QkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBIUW1wWENnS1FINDVsUXVn dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxR2dxSlJZcEhRbXBYQ2dLUUg0NWxRdWd1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QzRC8yMzNDMEI0NjYzQkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBI UW1wWENnS1FINDVsUXVndUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjGjDL1y8I0gUJgQtXHkAiXx6pBzZHikINXcGClGJi++3BE9tPii4NSm3uBjt Xs+ooZGkLkM9BncLs7YrmijeXwI5iK9avqavpsY1S/GLN3cCx6Z01NCYnTfMBGyZ HnBUqvV2BtKGwOiSZC42F6byPzkxghQgXQV9VD+H4EtWxpRfyO6PUGtrqBokZY2H ZqGNr9jzHghci3jMznetHpaw24RXZ+iaV7r2IUbn926iLbt+kVeoBbhl4K1+OCIS BQGdM+2FWvx+a5DNJOcuLV7G6NCLyzYBVj/up353PTPhut9oPYdhDNuYQ+6F5YXH DnkjvslU3fwF+20N02PBf6Izng== -----END CERTIFICATE-----Generated at Mon Mar 30 17:45:59 2026 by rpki-client