$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: p1ktM8oCPy1fNJhVzRfwdziDE2yI+oIN6JDdmIBPe0k= Subject key identifier: 95:BD:78:F9:6F:BD:71:42:91:1B:FF:3B:14:1A:77:93:9A:B5:7C:4B Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: 0194 Signing time: Sun 01 Mar 2026 23:57:33 +0000 Manifest this update: Sun 01 Mar 2026 23:57:30 +0000 Manifest next update: Sun 08 Mar 2026 23:57:30 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: dOmvE9kLSVdvSEG3nqFUhQJ8SULPcyONs/AG4kw7HUo=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: 78Mach3u1Hpq95prgzHg3H++44jua6B7iti/Tslbs6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Mar 1 23:57:30 2026 GMT Not After : Mar 8 23:57:30 2026 GMT Subject: CN=69a4d26c-422b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:95:6b:92:a2:e8:53:1a:2d:92:a8:ba:d2:a9: 0c:9a:58:0e:65:0a:b4:c0:fe:18:9c:27:cb:50:eb: 00:35:41:df:de:6b:b9:48:f4:bb:3c:6e:40:be:2f: e3:00:da:77:5e:a4:67:7f:6f:c5:49:0c:13:52:1f: 1c:6c:9f:3a:d6:5d:37:c1:d0:7d:20:61:3f:55:b0: 79:a4:5f:c1:2a:ce:e7:85:2a:1a:b7:e7:68:54:9b: 64:21:98:31:ba:7e:53:20:a7:4e:8c:6e:c7:00:0c: 60:c1:f1:1a:ce:84:61:26:7b:5f:e5:06:eb:df:b5: f8:1a:35:c6:cf:22:eb:36:d3:ad:00:76:ec:ac:c5: 3a:0c:17:f7:ba:35:dd:84:65:b8:14:f1:2d:3b:d7: 7f:80:65:27:64:f7:2d:d0:ec:cf:e7:4c:64:41:88: 1d:4a:5a:59:72:4c:91:6c:09:5f:20:db:5f:0f:4c: 5a:f4:69:04:34:73:50:ec:48:e1:dc:94:6a:a0:13: f8:1d:03:01:bc:ac:6c:e5:62:78:86:cc:7a:37:d5: 77:ab:ce:19:47:dd:0e:ab:72:e8:c5:82:78:7b:bf: 7e:ff:df:16:db:bb:4a:7d:7a:a9:04:a5:74:6d:fa: d1:54:5b:b6:21:09:9e:5c:37:9d:4c:9f:fc:0d:8d: 14:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BD:78:F9:6F:BD:71:42:91:1B:FF:3B:14:1A:77:93:9A:B5:7C:4B X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:1a:e9:18:3a:83:a0:5c:a7:13:d8:02:0b:21:0e:ea:bf:86: 5a:04:51:a3:0a:27:30:36:b1:ed:d7:60:cc:7f:dc:8d:ec:78: 16:c4:27:ef:66:d1:5a:8c:d9:fc:02:85:fd:00:93:1d:e3:14: 55:76:68:90:d5:57:c9:ad:2a:6e:ea:3c:03:b5:cb:33:1e:73: 03:f2:61:6a:a2:37:1f:84:80:cd:71:c8:a0:84:59:47:2c:f2: d1:3d:46:f8:34:11:6a:26:8b:4c:d7:fc:2e:86:74:75:3a:7c: c9:0e:23:f9:79:07:ee:a1:81:4a:a7:c1:5e:e6:39:26:73:a8: 3e:4d:22:2d:78:23:62:8c:9b:d4:e7:4d:79:48:54:c0:ab:0e: 6a:2b:1b:6d:51:4e:a6:7c:e0:45:56:98:e7:c7:64:93:f3:74: a3:14:08:2f:95:35:22:e4:d9:86:1a:f9:35:4f:7b:bf:a5:b0: 4e:64:ea:0c:64:b9:2f:29:9c:ec:e0:e0:32:dc:eb:6a:0b:d9: 58:ba:a6:48:0c:79:14:63:48:87:a8:bb:8a:2f:84:a9:ea:74: 78:c1:51:55:f6:24:63:8c:c8:d9:24:b0:ae:17:dd:71:f2:e9: 26:7c:91:90:aa:65:7d:10:89:44:bb:47:fb:4c:42:5b:45:62: 69:33:f2:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjYwMzAxMjM1NzMwWhcNMjYwMzA4MjM1NzMwWjAYMRYwFAYD VQQDEw02OWE0ZDI2Yy00MjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5VrkqLoUxotkqi60qkMmlgOZQq0wP4YnCfLUOsANUHf3mu5SPS7PG5Avi/j ANp3XqRnf2/FSQwTUh8cbJ861l03wdB9IGE/VbB5pF/BKs7nhSoat+doVJtkIZgx un5TIKdOjG7HAAxgwfEazoRhJntf5Qbr37X4GjXGzyLrNtOtAHbsrMU6DBf3ujXd hGW4FPEtO9d/gGUnZPct0OzP50xkQYgdSlpZckyRbAlfINtfD0xa9GkENHNQ7Ejh 3JRqoBP4HQMBvKxs5WJ4hsx6N9V3q84ZR90Oq3LoxYJ4e79+/98W27tKfXqpBKV0 bfrRVFu2IQmeXDedTJ/8DY0U9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJW9ePlv vXFCkRv/OxQad5OatXxLMB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXhrpGDqDoFynE9gCCyEO6r+GWgRRowonMDax7ddgzH/cjex4FsQn72bRWozZ /AKF/QCTHeMUVXZokNVXya0qbuo8A7XLMx5zA/JhaqI3H4SAzXHIoIRZRyzy0T1G +DQRaiaLTNf8LoZ0dTp8yQ4j+XkH7qGBSqfBXuY5JnOoPk0iLXgjYoyb1OdNeUhU wKsOaisbbVFOpnzgRVaY58dkk/N0oxQIL5U1IuTZhhr5NU97v6WwTmTqDGS5Lymc 7ODgMtzragvZWLqmSAx5FGNIh6i7ii+Eqep0eMFRVfYkY4zI2SSwrhfdcfLpJnyR kKplfRCJRLtH+0xCW0ViaTPyag== -----END CERTIFICATE-----Generated at Mon Mar 2 17:32:24 2026 by rpki-client