$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: hllaVbMpqCl0vv1G6K+CaZzLCQMZg5G0dy/J01ORxMc= Subject key identifier: 51:BA:8C:D3:5A:58:BC:24:FA:FF:B9:11:07:D8:36:D1:75:B6:6E:E3 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0ADC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0AA9 Signing time: Mon 02 Mar 2026 00:37:42 +0000 Manifest this update: Mon 02 Mar 2026 00:37:40 +0000 Manifest next update: Mon 09 Mar 2026 00:37:40 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: Y/svoUtI/o4CuwaVfpRzZnomHvDW68dyeo8LuV2I9Js=) 2: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: VDytKa3oASt9OTdZc+aGUvmktKBET9wZ7geLWdEBN+s=) 3: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: DOtqTBDuFV5NUMg1NextFU4v/B6B86gmDdmCd9qeLO8=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: pHay9DF999/OlwpI742vGfgzpmSA77WXIuLQYV6IvFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2780 (0xadc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Mar 2 00:37:40 2026 GMT Not After : Mar 9 00:37:40 2026 GMT Subject: CN=69a4dbd6-3184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:48:db:7f:82:a7:2f:bc:f1:71:a8:a0:2c:36: 51:f6:ab:7c:09:4e:85:a5:1d:31:51:ee:0d:27:0b: 85:c6:53:8c:40:f1:a1:ed:a4:f8:5f:b0:c4:7e:d7: a5:56:75:97:a1:8c:6b:26:09:59:08:cb:cb:bd:fb: 75:68:58:15:b9:7a:57:84:66:40:e3:09:88:00:0e: 0a:99:e7:df:3e:76:09:e4:4c:9d:2f:a1:f3:09:5b: 18:bc:f5:58:38:eb:2b:eb:61:99:02:f8:25:cd:66: 7f:9f:97:1a:86:63:8b:d1:61:71:13:af:4c:9c:cc: 1b:bc:72:ff:74:8c:39:bf:b1:2c:ce:cc:80:36:cb: 2a:66:f9:26:0a:b3:bf:b4:6d:83:b3:49:c1:05:25: e5:c8:71:c4:36:4d:00:68:89:64:42:2c:11:b8:29: 5a:7a:dc:6d:be:a9:84:49:02:49:55:b1:c1:9b:de: 60:d9:0c:b2:7b:80:73:ef:7b:a3:de:22:cd:b4:91: d8:a0:45:4a:e5:0a:09:9e:bd:58:d7:c9:58:26:73: b5:cb:44:5f:f9:07:6d:21:3d:e8:e6:03:a7:a5:3e: 7d:bc:ab:68:31:40:7b:e9:98:f3:78:de:ec:7e:bc: f8:5f:e2:92:b8:34:07:72:55:b8:63:c0:97:7d:be: 6d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BA:8C:D3:5A:58:BC:24:FA:FF:B9:11:07:D8:36:D1:75:B6:6E:E3 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:a0:9b:6f:25:01:75:1b:fa:df:60:2a:1f:17:2a:7d:a7:bb: 50:22:0a:85:ca:1f:c0:d3:8e:36:6b:da:d9:da:e5:ea:4f:18: 78:52:be:66:33:b0:44:c9:6b:48:19:af:65:c8:fe:b7:fc:3c: b9:5b:8b:b0:9d:85:b6:a2:ae:1a:62:b7:a7:e8:5e:4f:cc:7c: f0:0d:b1:30:d2:a8:a5:17:99:17:73:2d:24:c4:3f:20:9c:da: 4b:31:74:63:3c:7d:a4:d3:3a:2d:02:35:d6:bd:91:ea:42:5e: d7:0d:5f:a8:94:5d:b0:d2:b2:9e:8b:f1:4e:fb:5a:3e:86:71: ed:55:ac:6b:fb:ce:50:fc:fe:4b:79:71:61:19:ed:db:8b:9f: 83:f5:61:d0:3f:39:0a:6d:eb:10:d6:79:49:f6:a4:24:da:3b: 6f:ab:e1:f3:15:13:8d:95:f6:a0:b6:df:8e:70:cd:a1:90:07: c3:51:fc:1f:15:dd:11:ba:6d:5e:b8:7b:a5:db:eb:6c:e5:a2: e6:2d:96:71:cf:66:da:d0:f1:b0:ba:c9:34:2f:0d:f9:54:b0: de:0f:69:27:d8:6a:29:f6:b0:46:7e:6c:17:7e:03:50:53:b4: 81:d8:ef:99:c3:ad:f3:85:46:17:f7:69:52:5c:d3:7f:c5:51: 4e:54:36:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjYwMzAyMDAzNzQwWhcNMjYwMzA5MDAzNzQwWjAYMRYwFAYD VQQDEw02OWE0ZGJkNi0zMTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkjbf4KnL7zxcaigLDZR9qt8CU6FpR0xUe4NJwuFxlOMQPGh7aT4X7DEftel VnWXoYxrJglZCMvLvft1aFgVuXpXhGZA4wmIAA4KmeffPnYJ5EydL6HzCVsYvPVY OOsr62GZAvglzWZ/n5cahmOL0WFxE69MnMwbvHL/dIw5v7EszsyANssqZvkmCrO/ tG2Ds0nBBSXlyHHENk0AaIlkQiwRuClaetxtvqmESQJJVbHBm95g2Qyye4Bz73uj 3iLNtJHYoEVK5QoJnr1Y18lYJnO1y0Rf+QdtIT3o5gOnpT59vKtoMUB76ZjzeN7s frz4X+KSuDQHclW4Y8CXfb5tFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFG6jNNa WLwk+v+5EQfYNtF1tm7jMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI6CbbyUBdRv632AqHxcqfae7UCIKhcofwNOONmva2drl6k8YeFK+ZjOwRMlr SBmvZcj+t/w8uVuLsJ2FtqKuGmK3p+heT8x88A2xMNKopReZF3MtJMQ/IJzaSzF0 Yzx9pNM6LQI11r2R6kJe1w1fqJRdsNKynovxTvtaPoZx7VWsa/vOUPz+S3lxYRnt 24ufg/Vh0D85Cm3rENZ5SfakJNo7b6vh8xUTjZX2oLbfjnDNoZAHw1H8HxXdEbpt Xrh7pdvrbOWi5i2Wcc9m2tDxsLrJNC8N+VSw3g9pJ9hqKfawRn5sF34DUFO0gdjv mcOt84VGF/dpUlzTf8VRTlQ2ag== -----END CERTIFICATE-----Generated at Mon Mar 2 07:40:21 2026 by rpki-client