$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: YQPcw8LdzchLM6FyTzDaVo9QSC3rOMcfkqwHsD+nFdY= Subject key identifier: 4D:9D:58:C5:32:48:5A:86:CC:F7:D9:F1:3E:65:CA:42:6A:B2:76:5F Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 015C Signing time: Sat 04 Apr 2026 15:39:36 +0000 Manifest this update: Sat 04 Apr 2026 15:39:35 +0000 Manifest next update: Sat 11 Apr 2026 15:39:35 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: 4uClRRuE7PueCxqB5RZL4PoRST4TYjHpLaCNhiDe6fA=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: hOp5C3KdQglyoPlRpzdVUK1HCVo7MMXzvUe8s9/qr10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Apr 4 15:39:35 2026 GMT Not After : Apr 11 15:39:35 2026 GMT Subject: CN=69d130b8-f0dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:80:e5:66:c1:4f:4e:58:04:ac:d9:48:7a:3d: 8e:37:95:b7:0e:ba:24:f2:cb:c6:a6:a9:8b:8d:15: 0f:da:e3:52:b1:e4:ed:30:3d:1c:54:e3:01:76:2a: 57:57:7b:b2:2c:d0:77:e2:80:c0:c7:a1:fa:e4:af: 8b:c5:be:64:0f:15:bc:6f:7f:98:9c:52:70:5e:76: 4b:ef:be:40:2b:cf:5c:cd:06:92:03:f7:8f:5e:e2: 8a:f5:dd:d6:74:d9:c6:34:92:f6:9d:14:10:b0:f2: 14:5a:0e:77:07:61:38:13:7e:4d:5b:99:40:51:00: 00:27:24:03:3a:4a:80:f9:12:1e:e3:8d:22:22:87: 38:80:ac:e0:77:b1:d6:5d:21:b5:3e:88:c5:b5:d2: 2c:1e:7e:67:87:bb:5f:07:10:09:9d:d4:a1:1a:92: bb:a2:5c:b1:0d:6a:de:74:44:1c:b2:82:03:61:b2: b5:f0:44:43:2e:2a:7e:2f:40:40:09:51:b8:d5:1d: a2:c2:9c:fc:4b:ee:5e:33:d8:ba:23:20:3a:46:8f: cd:f5:c9:4b:53:0d:2d:56:b3:b3:92:47:ce:d8:f4: 3f:92:76:73:4c:b5:bb:b0:76:14:05:a5:fa:1b:c4: 5f:78:df:57:af:4a:c4:e7:3a:69:85:12:41:c7:77: 8b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9D:58:C5:32:48:5A:86:CC:F7:D9:F1:3E:65:CA:42:6A:B2:76:5F X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:94:2c:d7:cf:df:8d:41:ab:05:9f:85:17:db:b9:a5:95:65: 97:dc:8d:ae:8f:0f:95:61:55:1c:e1:98:32:c8:42:55:a7:9b: ba:e7:13:13:48:6e:52:0a:34:1b:8b:d8:d0:00:cf:cf:12:bb: fb:54:04:0b:61:39:b9:02:47:e2:f3:bf:f5:61:c1:aa:f7:80: 86:c8:f2:5e:74:66:80:23:cb:89:f5:fc:07:ad:f8:cf:d3:45: 38:68:e9:05:91:7a:a1:c0:e1:12:c1:c2:9e:28:53:70:07:69: 5a:e6:21:57:e2:86:1b:a5:0b:ab:5e:45:99:c9:f0:1f:70:7e: 53:2c:54:1d:69:49:6d:cd:6c:23:1c:c1:dd:d3:cc:ad:4f:20: da:50:f0:cb:7e:91:d7:99:17:ae:34:e4:aa:6e:fa:df:ce:bf: f7:7e:cc:df:6f:62:d5:10:df:35:8e:16:a1:d0:9f:0a:e6:6e: 41:87:f6:26:e6:6f:df:9e:d0:79:97:4c:38:de:19:9e:f6:be: c5:29:73:fa:ca:dd:b9:77:0a:d6:65:0f:4f:50:58:3b:c2:30: 43:08:e3:2a:5e:7d:be:5e:4e:70:38:16:f2:0c:46:9e:90:60: 76:a5:bd:a4:22:b3:a4:a2:41:1b:f2:27:34:13:6f:02:74:03: 0e:a8:a1:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjYwNDA0MTUzOTM1WhcNMjYwNDExMTUzOTM1WjAYMRYwFAYD VQQDEw02OWQxMzBiOC1mMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkYDlZsFPTlgErNlIej2ON5W3Drok8svGpqmLjRUP2uNSseTtMD0cVOMBdipX V3uyLNB34oDAx6H65K+Lxb5kDxW8b3+YnFJwXnZL775AK89czQaSA/ePXuKK9d3W dNnGNJL2nRQQsPIUWg53B2E4E35NW5lAUQAAJyQDOkqA+RIe440iIoc4gKzgd7HW XSG1PojFtdIsHn5nh7tfBxAJndShGpK7olyxDWredEQcsoIDYbK18ERDLip+L0BA CVG41R2iwpz8S+5eM9i6IyA6Ro/N9clLUw0tVrOzkkfO2PQ/knZzTLW7sHYUBaX6 G8RfeN9Xr0rE5zpphRJBx3eLDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE2dWMUy SFqGzPfZ8T5lykJqsnZfMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkJQs18/fjUGrBZ+FF9u5pZVll9yNro8PlWFVHOGYMshCVaebuucTE0huUgo0 G4vY0ADPzxK7+1QEC2E5uQJH4vO/9WHBqveAhsjyXnRmgCPLifX8B634z9NFOGjp BZF6ocDhEsHCnihTcAdpWuYhV+KGG6ULq15FmcnwH3B+UyxUHWlJbc1sIxzB3dPM rU8g2lDwy36R15kXrjTkqm76386/937M329i1RDfNY4WodCfCuZuQYf2JuZv357Q eZdMON4Znva+xSlz+srduXcK1mUPT1BYO8IwQwjjKl59vl5OcDgW8gxGnpBgdqW9 pCKzpKJBG/InNBNvAnQDDqih6Q== -----END CERTIFICATE-----Generated at Mon Apr 6 15:10:00 2026 by rpki-client