$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: 4hCDucV1+yrr3WZbnD7CpMWLKhQiQexWjK6ul+jl2lc= Subject key identifier: 89:8B:97:14:ED:D5:E8:5E:14:CE:DE:81:E1:2F:5B:95:CE:7B:50:89 Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 04E4 Signing time: Sun 01 Mar 2026 22:48:05 +0000 Manifest this update: Sun 01 Mar 2026 22:48:05 +0000 Manifest next update: Sun 08 Mar 2026 22:48:05 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: JavxHyEHhPTCL4u8nxZtOkeTWHZD3+5UbsXFy8ik00A=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: Z1lkPboS7Do5JVczgOK46BmhKy5Eyozp7p6CLVvAhpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Mar 1 22:48:05 2026 GMT Not After : Mar 8 22:48:05 2026 GMT Subject: CN=69a4c225-9780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:7e:7f:84:db:32:ee:a0:9f:13:34:92:e4: a0:c8:ee:e5:4d:6d:ef:8a:af:52:e9:f2:93:04:6a: ba:aa:7e:42:1c:43:77:ee:88:d3:4a:99:e9:ab:a7: 03:02:82:b1:dd:9e:87:48:21:b2:e3:07:94:10:e2: c3:a0:47:ac:f9:0c:88:bb:9f:9c:77:b7:94:44:77: d5:76:92:29:b6:81:bc:4b:fd:f9:c8:f2:f5:40:06: 47:fa:4d:8c:b0:89:78:c7:ec:12:f3:c9:41:57:6f: da:03:e0:6b:37:d6:95:0c:6f:2a:63:e2:e7:f3:4b: 48:88:21:ce:c2:10:b5:26:5b:87:47:aa:cb:ee:c0: e1:c3:43:ba:c6:b4:54:9c:ba:f0:be:70:be:38:cf: 71:0c:92:78:fa:43:a4:57:06:26:c2:52:22:54:f3: 90:af:29:9f:31:5e:e8:49:48:16:c4:02:f9:5e:47: 78:15:a4:0f:e0:9d:31:2a:0f:da:1c:29:bd:36:1c: 0b:28:49:f8:fe:c7:31:2b:13:46:c9:ea:4e:98:c3: 13:ab:d7:31:65:78:7e:2f:6b:a5:af:3f:c6:58:e0: 5b:ea:b2:c7:4d:32:a0:96:88:45:a5:82:38:2e:0c: c1:99:76:02:27:e5:ca:c8:0a:62:18:48:7e:2e:d5: a5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:8B:97:14:ED:D5:E8:5E:14:CE:DE:81:E1:2F:5B:95:CE:7B:50:89 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:55:8b:70:92:9f:37:47:1d:8e:df:e2:ca:83:6d:79:30:27: 4f:2c:9d:02:2a:af:f4:a8:86:2c:67:63:07:70:a8:e9:cc:77: c7:7b:b1:36:c4:97:3a:80:c8:a3:9c:6e:ff:86:fa:90:80:c9: df:e8:4e:90:52:57:c4:a5:fa:5b:28:5f:13:9c:a5:2b:d1:18: 73:cb:b8:f5:fd:e9:9d:ba:d4:72:63:34:d4:59:4a:ed:fe:c9: a8:11:52:33:29:3d:00:00:bd:4d:bd:f6:79:32:ed:ac:f9:ef: a8:a6:68:2d:a7:7f:6b:c9:7e:d4:61:25:f8:02:89:02:e1:a4: 6f:ee:8b:35:07:03:ca:6b:0b:d6:3f:db:8c:f1:19:7c:dc:71: d3:4e:8e:d8:54:f6:2f:a7:b3:af:2d:f7:ca:7e:3a:4c:1c:0e: 55:0a:cd:3a:63:fb:63:06:36:66:21:93:94:4d:b5:b7:1c:ee: 1d:77:7e:9c:f3:78:cf:86:82:fb:39:f1:0d:62:0f:2e:2d:6e: 23:b0:fe:27:1b:0f:d0:90:f6:08:2d:10:39:31:ee:f0:eb:2f: 1a:85:67:37:1c:fb:ae:a4:ae:17:44:b6:44:c5:2a:f7:f8:d9: eb:da:30:03:ee:42:94:2e:9f:60:87:73:bf:7c:bf:51:63:39: a6:1e:21:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjYwMzAxMjI0ODA1WhcNMjYwMzA4MjI0ODA1WjAYMRYwFAYD VQQDEw02OWE0YzIyNS05NzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPp+f4TbMu6gnxM0kuSgyO7lTW3viq9S6fKTBGq6qn5CHEN37ojTSpnpq6cD AoKx3Z6HSCGy4weUEOLDoEes+QyIu5+cd7eURHfVdpIptoG8S/35yPL1QAZH+k2M sIl4x+wS88lBV2/aA+BrN9aVDG8qY+Ln80tIiCHOwhC1JluHR6rL7sDhw0O6xrRU nLrwvnC+OM9xDJJ4+kOkVwYmwlIiVPOQrymfMV7oSUgWxAL5Xkd4FaQP4J0xKg/a HCm9NhwLKEn4/scxKxNGyepOmMMTq9cxZXh+L2ulrz/GWOBb6rLHTTKglohFpYI4 LgzBmXYCJ+XKyApiGEh+LtWlmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFImLlxTt 1eheFM7egeEvW5XOe1CJMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgVWLcJKfN0cdjt/iyoNteTAnTyydAiqv9KiGLGdjB3Co6cx3x3uxNsSXOoDI o5xu/4b6kIDJ3+hOkFJXxKX6WyhfE5ylK9EYc8u49f3pnbrUcmM01FlK7f7JqBFS Myk9AAC9Tb32eTLtrPnvqKZoLad/a8l+1GEl+AKJAuGkb+6LNQcDymsL1j/bjPEZ fNxx006O2FT2L6ezry33yn46TBwOVQrNOmP7YwY2ZiGTlE21txzuHXd+nPN4z4aC +znxDWIPLi1uI7D+JxsP0JD2CC0QOTHu8OsvGoVnNxz7rqSuF0S2RMUq9/jZ69ow A+5ClC6fYIdzv3y/UWM5ph4hrw== -----END CERTIFICATE-----Generated at Mon Mar 2 05:38:59 2026 by rpki-client