$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: WKvAQ9ZlSRvgkQ2NxGBYdASSQCmRclB3WnwF7ijbaGw= Subject key identifier: 98:DD:F3:46:E5:75:E6:CD:D4:16:5D:B4:00:98:26:13:1F:28:B6:68 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 3145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 313E Signing time: Sun 01 Mar 2026 22:46:14 +0000 Manifest this update: Sun 01 Mar 2026 22:46:13 +0000 Manifest next update: Sun 08 Mar 2026 22:46:13 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: nh2dJskEmr/vfjgl5GA+PHhPMyCM93bJn+/vJn5F3ks=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: 0vDdF5Q2CBbIYCt1K0qEfBzpG6K1ble6M+V06+WiDaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12613 (0x3145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Mar 1 22:46:13 2026 GMT Not After : Mar 8 22:46:13 2026 GMT Subject: CN=69a4c1b6-de81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:cb:26:0c:6d:e1:ea:7f:50:90:3d:ce:35:45: 0b:05:3a:da:e8:94:1b:27:24:ca:0f:1c:67:c8:66: 6a:3d:fe:f8:21:7a:24:70:ff:6a:ba:8c:cf:a1:09: 65:d3:14:e6:73:80:e9:3c:9c:ef:15:ed:ed:d4:fd: a0:de:62:05:46:94:c3:a0:0e:96:af:70:ec:62:79: 39:05:4b:01:c4:26:97:e7:50:24:8b:d7:0d:bd:f6: 71:77:69:f7:17:ab:a1:9d:06:56:fa:68:a7:16:0b: 01:21:b3:e2:85:7f:81:06:eb:f5:c9:bd:b3:3b:11: bd:6f:a9:dc:92:d4:d3:43:09:e6:80:54:75:58:c7: 7e:d1:94:46:72:0b:e5:39:37:61:24:27:6a:36:db: 38:8a:ed:94:65:fa:0e:b6:ba:82:4c:37:8e:3c:3a: 32:85:c7:8b:d6:49:23:90:b5:ee:ea:93:24:84:49: 75:af:03:f2:d2:58:b4:d2:8b:41:cd:81:b8:a8:84: d6:7d:9b:c4:91:d0:c9:3a:e6:b0:ca:66:11:83:ae: 92:a8:e7:a5:0f:68:63:e9:16:10:ec:fb:79:fe:8c: 03:37:a4:6e:6a:af:8d:9f:4a:ca:88:ba:61:db:12: 1a:e1:e6:e5:1d:94:26:b7:b2:ee:1f:e1:e1:21:45: 83:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:DD:F3:46:E5:75:E6:CD:D4:16:5D:B4:00:98:26:13:1F:28:B6:68 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:f5:25:99:fc:df:a2:14:48:de:44:c3:84:a3:aa:e6:cf:6a: 38:51:f4:e0:4f:00:bb:76:e0:84:69:98:61:be:fa:5a:62:04: a8:58:94:a8:b5:5d:1e:84:2c:3c:b2:c1:ee:d1:9c:86:8c:bb: 58:3b:97:6d:8f:55:c8:3c:e0:fe:d1:4f:61:ce:d2:ef:e1:eb: 72:cb:52:5d:23:b8:38:a1:45:f8:0b:9e:a6:63:a6:3c:be:e4: d1:a1:08:d2:a3:08:57:f2:18:d1:ca:b8:49:30:4f:8a:fe:f2: 70:65:a2:cd:da:4a:50:b6:59:24:fd:f8:11:e0:8e:69:7b:ff: c5:cc:55:ce:fd:f0:19:c7:e5:28:fe:20:83:f8:e9:f0:41:8c: fe:54:3c:7b:21:b6:a2:46:9d:82:ca:fe:48:87:86:e3:bb:da: bb:c5:df:43:1c:31:bf:b6:dd:3c:72:2c:04:ed:b8:34:73:12: fd:a7:79:7f:91:2f:7a:0b:49:cb:b8:3f:c5:19:d3:51:2a:ee: 1a:6d:eb:a9:e8:d0:f8:0e:42:35:f1:c5:f7:7f:fd:f3:52:34: 87:67:06:d3:3f:80:3d:0a:a6:a0:ca:46:1d:98:d9:5e:c9:0a: b6:c3:59:4e:06:40:03:b9:ce:54:09:50:37:88:c5:05:7e:4c: be:48:22:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjYwMzAxMjI0NjEzWhcNMjYwMzA4MjI0NjEzWjAYMRYwFAYD VQQDEw02OWE0YzFiNi1kZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkMsmDG3h6n9QkD3ONUULBTra6JQbJyTKDxxnyGZqPf74IXokcP9quozPoQll 0xTmc4DpPJzvFe3t1P2g3mIFRpTDoA6Wr3DsYnk5BUsBxCaX51Aki9cNvfZxd2n3 F6uhnQZW+minFgsBIbPihX+BBuv1yb2zOxG9b6ncktTTQwnmgFR1WMd+0ZRGcgvl OTdhJCdqNts4iu2UZfoOtrqCTDeOPDoyhceL1kkjkLXu6pMkhEl1rwPy0li00otB zYG4qITWfZvEkdDJOuawymYRg66SqOelD2hj6RYQ7Pt5/owDN6Ruaq+Nn0rKiLph 2xIa4eblHZQmt7LuH+HhIUWDmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJjd80bl debN1BZdtACYJhMfKLZoMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABfUlmfzfohRI3kTDhKOq5s9qOFH04E8Au3bghGmYYb76WmIEqFiUqLVdHoQs PLLB7tGchoy7WDuXbY9VyDzg/tFPYc7S7+HrcstSXSO4OKFF+AuepmOmPL7k0aEI 0qMIV/IY0cq4STBPiv7ycGWizdpKULZZJP34EeCOaXv/xcxVzv3wGcflKP4gg/jp 8EGM/lQ8eyG2okadgsr+SIeG47vau8XfQxwxv7bdPHIsBO24NHMS/ad5f5EvegtJ y7g/xRnTUSruGm3rqejQ+A5CNfHF93/981I0h2cG0z+APQqmoMpGHZjZXskKtsNZ TgZAA7nOVAlQN4jFBX5MvkgiNA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:44:18 2026 by rpki-client