$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: 9JpHIXFOutHxGOCpbpjzQXpns41mq9Us7XNAcRLb2b4= Subject key identifier: B8:A8:61:56:60:01:FF:54:5D:DE:06:A6:AF:F7:0E:AD:C6:EC:24:22 Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: CB Signing time: Sun 01 Mar 2026 08:09:27 +0000 Manifest this update: Sun 01 Mar 2026 08:09:27 +0000 Manifest next update: Sun 08 Mar 2026 08:09:27 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: kG18otpWH+BaAomgP5dFOlK6oxb7wOuZcv/HLjEv4zo=) 2: 1ED36EFC590C11F0913BCB35C4F9AE02.roa (hash: wJoIO8rrxOY2lnEhXHESkpTbNHFEbKa9o0Fano1+9Pw=) 3: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: aZVXAlADYS+rXA5XDGm5Qeisr3Hsg0gnfPcoglCZC80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Mar 1 08:09:27 2026 GMT Not After : Mar 8 08:09:27 2026 GMT Subject: CN=69a3f437-6c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:14:90:f8:50:d3:08:5c:e6:c9:9c:50:af:9c: bf:ae:90:48:91:25:15:ed:97:49:f7:62:af:57:b2: f6:1b:44:80:6a:4a:59:b1:21:b1:b7:fb:76:35:41: 43:fb:6e:e3:b4:91:63:51:43:19:00:24:ed:05:79: 40:fb:d1:ca:e4:9b:f1:8a:9f:0b:47:73:af:aa:32: 0e:6e:72:d3:5e:3a:12:1e:0d:4b:45:26:a1:b0:4d: 7b:22:54:12:6c:8e:c4:85:0c:76:fa:6d:07:8a:51: a9:8c:ec:d1:50:0d:84:c0:51:3a:23:a7:26:31:52: 30:75:83:3f:17:22:21:64:e7:2d:21:a3:be:da:85: ec:a0:88:e4:cf:8a:eb:28:43:31:0d:db:37:a6:9f: 1e:bf:f6:d3:14:7d:17:7d:a7:dc:f4:41:40:d7:2b: c3:1f:de:90:f2:3f:03:eb:4f:39:dc:bc:e5:33:5c: 51:b9:d6:42:ee:cb:ee:4e:a7:c8:ed:78:b2:01:19: b8:cf:21:bb:16:86:f6:64:d7:6c:17:48:52:cb:6e: 02:fc:98:6e:08:40:66:22:92:80:c5:86:c9:2c:00: ec:f5:ef:9e:12:ae:15:c9:db:c6:41:6f:8b:54:cb: 6a:84:43:7a:cf:5e:f3:c8:d4:c6:a3:56:70:b3:e9: bf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A8:61:56:60:01:FF:54:5D:DE:06:A6:AF:F7:0E:AD:C6:EC:24:22 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b4:28:9e:24:eb:35:b3:82:a9:c0:76:7b:bb:35:ad:07:10: fa:e1:02:4b:0e:46:28:6a:b7:11:41:71:84:f4:b0:59:74:2b: 91:cd:8b:e8:7b:0c:c1:5c:45:ad:67:cc:d7:7a:2e:dd:a2:ff: f4:23:bb:80:da:1e:3a:4d:1a:ec:78:64:1c:59:77:2a:45:ce: e4:64:04:ab:5e:22:89:a5:81:db:3f:95:03:ee:b7:5d:c2:42: 98:84:0e:c8:0c:dc:94:c5:1e:6c:c5:2c:94:11:6a:6f:9a:92: 39:2f:cb:76:99:c5:6b:93:1e:07:a3:75:ba:a4:d8:dd:2b:9d: 7b:af:22:11:2c:50:29:7f:86:41:80:fb:85:a4:f0:e0:19:04: 6a:45:f7:36:64:b6:91:f5:34:5f:51:28:ed:57:5f:75:e6:7e: 36:50:78:25:84:f6:20:9f:ab:2a:b7:94:70:86:ef:ad:b7:65: 9a:87:a9:10:7a:f8:cd:c6:43:29:7a:c7:04:d1:e3:51:fa:42: 2b:5b:05:1c:77:7e:3e:64:99:b7:3a:d3:14:e4:e4:5e:48:c4: 9e:84:51:fa:3c:e9:b6:1e:4d:d6:d9:2e:6e:88:a8:91:2a:2e: 0f:c0:38:f1:92:cb:b1:aa:7b:98:41:27:aa:01:84:4f:50:f1: 57:20:e1:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxQ0MxMTAvBgNVBAUTKDQ0NkZBRjkyM0JFQkFGOTYzNTcyODdGRTI1MDk5MUM3 NTQ5MTQ1NEQwHhcNMjYwMzAxMDgwOTI3WhcNMjYwMzA4MDgwOTI3WjAYMRYwFAYD VQQDEw02OWEzZjQzNy02YzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxSQ+FDTCFzmyZxQr5y/rpBIkSUV7ZdJ92KvV7L2G0SAakpZsSGxt/t2NUFD +27jtJFjUUMZACTtBXlA+9HK5Jvxip8LR3OvqjIObnLTXjoSHg1LRSahsE17IlQS bI7EhQx2+m0HilGpjOzRUA2EwFE6I6cmMVIwdYM/FyIhZOctIaO+2oXsoIjkz4rr KEMxDds3pp8ev/bTFH0Xfafc9EFA1yvDH96Q8j8D60853LzlM1xRudZC7svuTqfI 7XiyARm4zyG7Fob2ZNdsF0hSy24C/JhuCEBmIpKAxYbJLADs9e+eEq4VydvGQW+L VMtqhEN6z17zyNTGo1Zws+m/NQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLioYVZg Af9UXd4Gpq/3Dq3G7CQiMB8GA1UdIwQYMBaAFERvr5I766+WNXKH/iUJkcdUkUVN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjFDQy8zQUZDMzNFMkVG NjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1WTFjb2YtSlFtUngxU1JS VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjFDQy8zQUZDMzNFMkVGNjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1 WTFjb2YtSlFtUngxU1JSVTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe7QoniTrNbOCqcB2e7s1rQcQ+uECSw5GKGq3EUFxhPSwWXQrkc2L6HsMwVxF rWfM13ou3aL/9CO7gNoeOk0a7HhkHFl3KkXO5GQEq14iiaWB2z+VA+63XcJCmIQO yAzclMUebMUslBFqb5qSOS/LdpnFa5MeB6N1uqTY3Sude68iESxQKX+GQYD7haTw 4BkEakX3NmS2kfU0X1Eo7VdfdeZ+NlB4JYT2IJ+rKreUcIbvrbdlmoepEHr4zcZD KXrHBNHjUfpCK1sFHHd+PmSZtzrTFOTkXkjEnoRR+jzpth5N1tkuboiokSouD8A4 8ZLLsap7mEEnqgGET1DxVyDhHA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:09:58 2026 by rpki-client