$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: cbbZpAJbLvq0syc3KTx8dyqOrMT/w0nARA3aZgGsRik= Subject key identifier: 30:60:64:BA:F5:0F:E7:E7:0F:D6:37:27:41:70:9D:69:C7:AC:77:35 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 023B Signing time: Sun 05 Apr 2026 02:05:14 +0000 Manifest this update: Sun 05 Apr 2026 02:05:14 +0000 Manifest next update: Sun 12 Apr 2026 02:05:14 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: 4BI7ACEz4ggWlUp9us3IMxt3HmZ7gAyKRlMW78d6ewA=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: uBe9trVvTXibsFAdUxncYIdjHBZ+5n+JI/NflInuCrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Apr 5 02:05:14 2026 GMT Not After : Apr 12 02:05:14 2026 GMT Subject: CN=69d1c35a-caff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:c8:57:bb:36:f2:c5:73:8a:4a:8e:a3:e7:8b: ee:48:a9:38:83:88:b3:ea:2b:50:d0:e4:1c:b1:d8: 33:39:ca:9a:c1:36:b2:14:5b:88:fe:84:c4:e9:ea: 4f:02:e9:42:36:07:37:31:3d:10:03:d6:e6:d9:08: 85:6e:a7:04:d6:09:71:53:28:15:63:fc:9c:d8:80: 4f:0a:b9:fc:cf:a7:04:f6:d9:c0:d9:d0:d2:3f:0c: 7a:5e:6f:04:0f:94:c8:b9:48:23:b9:44:84:41:5d: 7f:e9:1d:87:3c:05:35:92:1c:03:ff:dd:d9:29:3c: e5:24:58:4d:09:da:36:11:96:0d:fd:58:6b:54:f2: 4f:79:9c:93:67:00:57:fc:f7:64:57:08:67:7e:6a: 12:65:1b:cf:10:f4:f9:fa:1f:f2:b6:68:ca:b4:62: 9f:74:11:9a:29:35:14:73:0f:3d:47:86:1c:1d:53: 00:ce:f3:70:bd:1c:ec:8f:a8:e0:e5:49:60:77:d3: a3:ed:8c:67:c3:cf:eb:34:97:21:d7:61:63:cf:a5: f9:b3:b1:93:48:8e:63:0d:11:64:0d:75:f4:3b:70: 0a:d0:06:bd:67:3a:4b:d6:06:54:b7:5c:ce:1f:ed: f5:4e:f2:1e:4c:10:80:a9:a8:b4:55:6a:cc:b1:f1: 74:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:60:64:BA:F5:0F:E7:E7:0F:D6:37:27:41:70:9D:69:C7:AC:77:35 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5b:77:41:3b:4f:f0:4b:d9:ed:b3:02:64:1f:8b:97:fb:b4: 96:39:62:13:f3:d2:d2:bd:98:68:09:dd:bb:a3:95:17:70:c8: 3a:16:8d:a7:55:97:ed:47:9d:5e:4a:df:30:28:4d:3f:e8:68: 34:fe:60:b3:e8:b5:9c:d3:7f:95:b5:a9:9b:e4:88:43:f8:da: ba:b5:04:fb:08:6c:35:15:86:bb:3d:df:70:97:94:33:74:db: 90:b1:c1:a7:05:a6:71:dd:7b:3c:d2:9b:1c:1f:2a:41:66:54: 9d:05:9c:c8:b4:77:94:de:27:59:f4:da:4d:b0:4b:3b:a2:14: 04:e0:5d:6b:04:26:00:1e:4d:03:c2:37:af:c0:3d:52:7a:ef: e5:6d:43:99:fc:60:cc:fc:35:bf:51:de:2c:cc:0f:6d:f7:df: cd:28:85:33:e8:b6:95:f4:81:2b:b1:6f:8d:d2:8d:61:37:15: bb:37:74:3c:99:7a:86:b2:84:e8:8d:b5:15:80:45:5f:ed:26: 34:a8:7a:24:4b:c2:57:0f:f9:e9:a2:3f:fa:3e:2f:d0:8e:4e: 8d:50:94:be:e9:3d:87:2d:56:7c:65:3f:cc:1a:a3:00:59:6b: 8a:b4:57:8c:6b:e7:b9:d3:7b:f8:2f:d0:03:f6:0f:7e:15:36: e8:42:b2:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjYwNDA1MDIwNTE0WhcNMjYwNDEyMDIwNTE0WjAYMRYwFAYD VQQDEw02OWQxYzM1YS1jYWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAishXuzbyxXOKSo6j54vuSKk4g4iz6itQ0OQcsdgzOcqawTayFFuI/oTE6epP AulCNgc3MT0QA9bm2QiFbqcE1glxUygVY/yc2IBPCrn8z6cE9tnA2dDSPwx6Xm8E D5TIuUgjuUSEQV1/6R2HPAU1khwD/93ZKTzlJFhNCdo2EZYN/VhrVPJPeZyTZwBX /PdkVwhnfmoSZRvPEPT5+h/ytmjKtGKfdBGaKTUUcw89R4YcHVMAzvNwvRzsj6jg 5Ulgd9Oj7Yxnw8/rNJch12Fjz6X5s7GTSI5jDRFkDXX0O3AK0Aa9ZzpL1gZUt1zO H+31TvIeTBCAqai0VWrMsfF0vwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDBgZLr1 D+fnD9Y3J0FwnWnHrHc1MB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALVt3QTtP8EvZ7bMCZB+Ll/u0ljliE/PS0r2YaAndu6OVF3DIOhaNp1WX7Ued XkrfMChNP+hoNP5gs+i1nNN/lbWpm+SIQ/jaurUE+whsNRWGuz3fcJeUM3TbkLHB pwWmcd17PNKbHB8qQWZUnQWcyLR3lN4nWfTaTbBLO6IUBOBdawQmAB5NA8I3r8A9 Unrv5W1DmfxgzPw1v1HeLMwPbfffzSiFM+i2lfSBK7FvjdKNYTcVuzd0PJl6hrKE 6I21FYBFX+0mNKh6JEvCVw/56aI/+j4v0I5OjVCUvuk9hy1WfGU/zBqjAFlrirRX jGvnudN7+C/QA/YPfhU26EKy6w== -----END CERTIFICATE-----Generated at Mon Apr 6 08:46:01 2026 by rpki-client