$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: GDS5tSmJ+E8wA986HWwTE6KxdcjTzl3F79B69Z3oTxI= Subject key identifier: 2A:58:06:FC:32:EB:EE:7B:EF:28:87:74:8A:84:D3:FB:59:7E:BD:E6 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 0634 Signing time: Sat 28 Mar 2026 22:39:42 +0000 Manifest this update: Sat 28 Mar 2026 22:39:42 +0000 Manifest next update: Sat 04 Apr 2026 22:39:42 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: WHjpxazj2NvUA3SLClAzLYd87VzQFHmKaitjLVEzWVs=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: GBummmykHnsRNOp2UTZVHW61aelGglaz1bE3tCnWo5M=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: ljhzAAAHOEbQtw8/O2WirKoWv6XtLYHxhjuJKY3iiZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 22:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Mar 28 22:39:42 2026 GMT Not After : Apr 4 22:39:42 2026 GMT Subject: CN=69c858ae-1617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f3:d8:c5:f8:76:22:79:77:db:00:da:b7:24: 5c:d2:e1:04:80:bc:3c:e7:1d:91:6f:fe:c3:c0:0d: 16:52:4f:79:d0:b7:26:98:a2:e5:48:d4:80:0f:45: 58:7d:44:9a:99:60:4c:b8:66:28:8b:ea:1b:ed:6d: 77:86:c9:2f:4f:a6:51:7c:a9:a0:91:7a:58:47:52: 11:d8:61:9b:20:17:74:2e:51:47:2e:1e:34:cc:39: 29:1b:af:82:b1:f2:89:3f:a5:d6:34:42:8d:5a:11: 54:62:c7:21:ff:d0:9e:d9:bd:0c:6d:7f:ef:85:ef: 5c:03:78:a7:63:21:78:d1:ae:47:4c:2b:58:13:10: 5d:6c:a9:ce:57:81:d7:19:a7:22:e1:c0:45:ed:91: 14:83:dc:f7:ac:fb:77:3c:de:64:36:bd:63:04:99: f8:8c:aa:63:21:a1:39:9e:b7:e6:24:27:f5:aa:78: 9d:4d:90:2c:4a:47:de:5e:d2:6a:7d:b2:c6:4d:f1: 65:a0:ab:9d:5f:18:f9:3d:a0:2a:dd:00:e4:2b:15: 79:88:cd:f5:d7:07:54:1d:55:cd:36:cd:9f:a2:fa: 07:13:02:bc:f5:21:8b:9d:b4:4f:ef:b4:70:ee:e2: d7:ca:fd:51:1a:42:f3:1a:59:c0:04:41:3f:68:3f: f2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:58:06:FC:32:EB:EE:7B:EF:28:87:74:8A:84:D3:FB:59:7E:BD:E6 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:db:02:0e:46:04:b5:70:f0:d8:6a:34:17:ec:2d:8c:46:20: 8b:12:fc:d1:be:de:83:e7:f9:ef:ab:41:5f:ba:c5:6e:15:89: 7b:d0:53:90:25:af:3d:71:20:5b:1b:0b:3c:6c:28:fb:06:dc: 15:29:a1:ad:53:0d:4e:35:8d:55:ac:37:72:08:f1:9d:96:0d: 04:2b:cc:8b:07:6c:c4:77:34:11:ce:a9:74:dc:58:46:00:92: 2e:0a:35:ea:dc:52:63:e0:33:d3:7c:ec:5a:46:5e:b7:a2:89: f9:02:27:f6:70:a0:76:70:25:a8:43:b4:7e:91:64:55:df:1b: 19:fb:99:3d:d0:92:5d:67:66:b6:5b:1a:d7:87:ec:71:8d:d2: b3:52:01:bc:9a:3d:f2:5c:0d:8f:7a:20:26:a7:9a:e5:c7:39: ab:a8:6b:68:8c:59:6b:16:41:71:fb:36:f7:c5:30:f6:27:43: ed:06:d5:9d:45:ee:40:5c:3e:b3:48:64:3f:14:53:b3:70:46: 44:e0:40:b6:02:1d:a3:06:42:62:81:8b:6d:ca:dd:2c:76:fe: 54:da:44:3f:cd:04:f1:e6:94:5f:6d:88:c2:09:f8:3b:3d:18: 22:6f:02:8c:44:18:75:7d:95:1a:14:ec:c7:b8:df:5b:61:04: 30:f5:5e:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjYwMzI4MjIzOTQyWhcNMjYwNDA0MjIzOTQyWjAYMRYwFAYD VQQDEw02OWM4NThhZS0xNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvPYxfh2Inl32wDatyRc0uEEgLw85x2Rb/7DwA0WUk950LcmmKLlSNSAD0VY fUSamWBMuGYoi+ob7W13hskvT6ZRfKmgkXpYR1IR2GGbIBd0LlFHLh40zDkpG6+C sfKJP6XWNEKNWhFUYsch/9Ce2b0MbX/vhe9cA3inYyF40a5HTCtYExBdbKnOV4HX Gaci4cBF7ZEUg9z3rPt3PN5kNr1jBJn4jKpjIaE5nrfmJCf1qnidTZAsSkfeXtJq fbLGTfFloKudXxj5PaAq3QDkKxV5iM311wdUHVXNNs2fovoHEwK89SGLnbRP77Rw 7uLXyv1RGkLzGlnABEE/aD/y8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCpYBvwy 6+577yiHdIqE0/tZfr3mMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA39sCDkYEtXDw2Go0F+wtjEYgixL80b7eg+f576tBX7rFbhWJe9BTkCWvPXEg WxsLPGwo+wbcFSmhrVMNTjWNVaw3cgjxnZYNBCvMiwdsxHc0Ec6pdNxYRgCSLgo1 6txSY+Az03zsWkZet6KJ+QIn9nCgdnAlqEO0fpFkVd8bGfuZPdCSXWdmtlsa14fs cY3Ss1IBvJo98lwNj3ogJqea5cc5q6hraIxZaxZBcfs298Uw9idD7QbVnUXuQFw+ s0hkPxRTs3BGROBAtgIdowZCYoGLbcrdLHb+VNpEP80E8eaUX22Iwgn4Oz0YIm8C jEQYdX2VGhTsx7jfW2EEMPVeLQ== -----END CERTIFICATE-----Generated at Sun Mar 29 23:44:05 2026 by rpki-client