$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: vWm+MA7uWK8Tj2oxc/0SeFQ4+CWrtFpBCDZmYxOr+pU= Subject key identifier: 7F:A9:B7:B8:1B:74:89:7E:8F:F2:C3:8F:CA:83:22:BB:CD:09:88:8C Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0283 Signing time: Sun 01 Mar 2026 02:25:24 +0000 Manifest this update: Sun 01 Mar 2026 02:25:24 +0000 Manifest next update: Sun 08 Mar 2026 02:25:24 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: LkapYmS2wI01WYtiYlxuH9ye4u8TW6buS/nFM6zGj7g=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: tO/Vg+1jM6TnaROUPSYxvRElxqw/2z5ZN8ZDcSK7tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Mar 1 02:25:24 2026 GMT Not After : Mar 8 02:25:24 2026 GMT Subject: CN=69a3a394-d50f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f6:56:87:35:b0:29:f3:45:d6:35:71:30:b3: 97:48:10:06:bd:cb:05:ef:bd:6c:e7:dd:27:9d:ca: 24:c2:7b:3c:ef:2e:ea:9c:0e:23:07:58:32:27:64: f4:ed:53:f8:73:d4:eb:76:03:39:28:23:d3:fa:c9: e5:d5:44:e4:9f:79:c2:7a:04:3a:06:30:92:3e:58: 27:d6:12:d4:f1:8a:15:9f:cd:c1:d9:05:89:ff:9c: 6a:f7:5a:a9:b8:c9:8d:3d:59:bf:a4:a5:a1:fc:a0: 02:80:a9:ba:8a:b4:e7:f6:00:7e:e1:6a:4e:d3:e1: 0c:d3:40:3d:d6:44:35:82:d5:14:ef:1d:76:a3:77: 35:bf:cd:7b:0b:f4:60:11:2b:76:18:52:37:e3:a1: 52:96:4e:51:b5:44:78:2b:db:2d:9b:0b:d5:16:89: f9:df:a8:20:9f:6d:06:39:df:48:6a:f7:77:85:d1: 22:2a:78:25:19:f2:ba:bd:4a:f9:48:e7:71:1f:45: 43:80:ec:b5:d8:90:84:9c:07:9c:cb:6c:36:22:67: 83:bc:55:d9:5d:68:9a:ee:11:a6:59:81:b5:b1:2a: 77:c7:f6:e0:a1:27:09:53:19:73:24:f4:c2:aa:7f: 1c:1d:31:26:98:bb:40:10:a4:be:da:4a:e3:3e:57: 13:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A9:B7:B8:1B:74:89:7E:8F:F2:C3:8F:CA:83:22:BB:CD:09:88:8C X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:48:e4:e5:ca:b3:b3:19:3a:06:ea:e7:31:28:ab:9c:25:dd: 65:7b:f1:a7:5a:e7:b5:f7:ef:50:ae:86:22:73:fd:05:71:f7: 00:70:5d:d7:49:7a:ad:b3:08:16:2f:c0:eb:e8:b3:ed:5d:09: 0f:6b:3c:2e:66:6c:75:b7:9f:5d:e0:00:5f:64:3d:26:b2:31: a4:0e:b8:7d:99:a2:10:9f:fe:57:eb:69:ec:53:ef:50:e5:72: d6:3e:90:4b:1c:26:5d:79:61:1a:ba:53:fa:5c:08:bc:40:e1: 46:a2:a1:bb:42:32:c6:ab:2f:78:50:d6:2b:b4:70:63:08:ce: a8:7c:8c:a8:b1:f9:47:ae:ed:bf:7a:cc:5a:7b:ed:28:a1:bd: be:0c:ea:ab:5b:ab:86:40:5e:53:9b:42:3b:33:e7:9c:58:6f: 16:03:2b:50:3c:bc:94:c3:59:f2:a6:2e:57:ba:65:99:12:82: 1a:bc:47:f3:d5:3c:c8:b6:6d:b9:07:75:d0:16:90:f8:7d:9e: 31:9b:5b:0f:0c:95:08:05:75:5f:c3:08:e9:1b:a2:94:ae:90: a1:e5:b6:51:3a:6d:70:79:c1:3f:f9:16:20:e7:81:0e:02:dc: 0b:94:86:d4:6e:7e:97:b5:3c:57:be:77:f4:07:85:b2:19:5e: 33:4b:ec:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjYwMzAxMDIyNTI0WhcNMjYwMzA4MDIyNTI0WjAYMRYwFAYD VQQDDA02OWEzYTM5NC1kNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkfZWhzWwKfNF1jVxMLOXSBAGvcsF771s590nncokwns87y7qnA4jB1gyJ2T0 7VP4c9TrdgM5KCPT+snl1UTkn3nCegQ6BjCSPlgn1hLU8YoVn83B2QWJ/5xq91qp uMmNPVm/pKWh/KACgKm6irTn9gB+4WpO0+EM00A91kQ1gtUU7x12o3c1v817C/Rg ESt2GFI346FSlk5RtUR4K9stmwvVFon536ggn20GOd9Iavd3hdEiKnglGfK6vUr5 SOdxH0VDgOy12JCEnAecy2w2ImeDvFXZXWia7hGmWYG1sSp3x/bgoScJUxlzJPTC qn8cHTEmmLtAEKS+2krjPlcTCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH+pt7gb dIl+j/LDj8qDIrvNCYiMMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFEjk5cqzsxk6BurnMSirnCXdZXvxp1rntffvUK6GInP9BXH3AHBd10l6rbMI Fi/A6+iz7V0JD2s8LmZsdbefXeAAX2Q9JrIxpA64fZmiEJ/+V+tp7FPvUOVy1j6Q SxwmXXlhGrpT+lwIvEDhRqKhu0IyxqsveFDWK7RwYwjOqHyMqLH5R67tv3rMWnvt KKG9vgzqq1urhkBeU5tCOzPnnFhvFgMrUDy8lMNZ8qYuV7plmRKCGrxH89U8yLZt uQd10BaQ+H2eMZtbDwyVCAV1X8MI6RuilK6QoeW2UTptcHnBP/kWIOeBDgLcC5SG 1G5+l7U8V7539AeFshleM0vsJQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:48:14 2026 by rpki-client