$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft File: b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft (raw, json) Hash identifier: 6Cu62btPOYuNenjKowLk+CVahLqoFQK507pCe33ed8A= Subject key identifier: A8:CE:5B:83:D9:F9:25:61:A2:EF:89:AB:04:BC:A8:6A:F5:71:D8:7C Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 1233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft Manifest number: 11FE Signing time: Sat 28 Feb 2026 17:15:13 +0000 Manifest this update: Sat 28 Feb 2026 17:15:13 +0000 Manifest next update: Sat 07 Mar 2026 17:15:13 +0000 Files and hashes: 1: b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl (hash: iCHoC5C61sQOtZ/ejjhgFv7jBwsVGvWDn9ycGpU00nE=) 2: 95D40AE2497311EAB4873B63C4F9AE02.roa (hash: L9KTvljF01QWUS68uL1ITUuZceQQf452UdFJmG0kCrI=) 3: F85A5EB6C33911E9A9463781C4F9AE02.roa (hash: jot76CXrAz3dE65zS5eFuiF7pvf8X1MVAGSlp7hXRdo=) 4: 8497885E04F911E9AF13ED31C4F9AE02.roa (hash: C3b1kJVj/ZgKAe5Ws86NLC+2MF3aglPyf/qxRhLS+ZQ=) 5: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (hash: IlX871gTVlMjHgxawx+1RHJJOHvxDDWwU+dINDtj5G0=) 6: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (hash: 0Ni5FHtxPqtRB1YXZ5zRXDqJAM/35OEWFhDuPTdXe6o=) 7: F8D520505D0E11EA89C55D65C4F9AE02.roa (hash: NhCnhSZSfkDREQa5IgZy4tILaVnRqHkxPBLk2fQgkMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4659 (0x1233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Feb 28 17:15:13 2026 GMT Not After : Mar 7 17:15:13 2026 GMT Subject: CN=69a322a1-9bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:26:5e:e6:6b:06:9e:54:b2:f3:e2:bb:60:c2: 4f:7f:5b:6f:91:43:ac:bb:2a:b7:61:2e:37:09:b0: 7f:56:99:7e:6f:d3:f5:75:c8:6b:9f:cf:7d:2e:a9: 4c:2f:c4:c9:c9:70:94:d7:c5:eb:d9:87:a8:fd:90: e3:68:30:2e:ba:b4:0a:07:db:85:56:5d:aa:60:5d: 3b:cf:c5:37:f9:25:95:fe:f2:0f:4d:82:17:c2:1f: 21:e2:78:0e:3d:a2:cf:ad:59:21:9e:8c:b7:f2:3c: 02:91:21:bd:b1:f2:97:ca:c3:c0:a2:44:d1:d6:fc: 7c:7b:cd:4f:32:06:3a:e1:99:87:79:dc:e5:45:d6: ad:52:f4:a4:52:b2:02:37:d6:6a:61:94:64:71:4f: 33:f5:68:be:08:53:b4:9a:36:ff:de:4c:d7:55:f7: f9:28:1e:6f:a6:57:e3:33:c8:2f:c6:89:3a:78:f2: 62:53:e6:c1:9d:62:83:24:e6:4e:a4:fa:97:b4:55: 89:fe:e6:e9:f1:ec:6c:8b:05:c9:65:ab:8a:53:23: df:0f:e1:45:be:89:51:f8:f1:d6:ae:d5:3c:ed:83: b3:5a:00:9d:84:03:50:6f:68:fe:de:54:9a:2e:74: d8:fb:87:44:c9:7d:17:b7:99:4b:25:bf:55:1f:d5: e0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:CE:5B:83:D9:F9:25:61:A2:EF:89:AB:04:BC:A8:6A:F5:71:D8:7C X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:f7:e4:50:4b:70:24:81:3a:05:4a:99:2b:ae:d1:5e:b4:26: 21:83:79:97:d0:a6:c0:5a:f2:fe:dc:ab:64:59:2b:6c:7b:a1: e0:c3:62:ca:9f:ef:34:18:ec:3e:2a:01:10:0e:1a:c5:6a:c7: e5:2a:0e:bd:8f:0d:9d:6b:7f:5b:66:50:b2:07:69:0b:b0:59: ad:e1:78:0d:09:1d:e8:5b:49:ea:e7:3d:0e:ec:89:b2:f2:d2: 91:75:67:80:3f:27:5e:bc:55:5a:ad:3e:ef:4a:c8:ed:fe:7b: ca:85:74:01:dd:6f:b6:68:b0:28:6a:89:49:77:d5:9e:ed:c1: cc:a2:5e:b7:8b:e9:b2:19:5f:50:fc:45:cb:4e:fa:51:91:45: 31:31:97:7a:58:8f:d1:c6:45:40:e0:86:1d:16:b9:51:e3:fb: 91:53:99:3a:99:73:81:53:67:7c:27:36:de:6c:68:c9:ae:8d: de:80:48:b3:97:2b:7b:de:9f:e9:d2:92:0f:18:61:49:78:30: 51:0b:99:76:e4:6f:e4:e5:f3:0a:99:05:62:1e:df:4f:2c:3c: 1f:a7:f6:42:8d:d8:37:77:d6:89:6f:5e:d2:1a:89:5f:6e:cf: cf:1c:fd:02:c5:d0:5b:10:f7:c8:80:b2:bb:76:97:02:31:2f: 91:f6:f5:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjYwMjI4MTcxNTEzWhcNMjYwMzA3MTcxNTEzWjAYMRYwFAYD VQQDDA02OWEzMjJhMS05YmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7iZe5msGnlSy8+K7YMJPf1tvkUOsuyq3YS43CbB/Vpl+b9P1dchrn899LqlM L8TJyXCU18Xr2Yeo/ZDjaDAuurQKB9uFVl2qYF07z8U3+SWV/vIPTYIXwh8h4ngO PaLPrVkhnoy38jwCkSG9sfKXysPAokTR1vx8e81PMgY64ZmHedzlRdatUvSkUrIC N9ZqYZRkcU8z9Wi+CFO0mjb/3kzXVff5KB5vplfjM8gvxok6ePJiU+bBnWKDJOZO pPqXtFWJ/ubp8exsiwXJZauKUyPfD+FFvolR+PHWrtU87YOzWgCdhANQb2j+3lSa LnTY+4dEyX0Xt5lLJb9VH9Xg3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKjOW4PZ +SVhou+JqwS8qGr1cdh8MB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJCQy9FQkNGMTY4MjA0RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJo YkhvS1R1RHVhaUtSRHNMZ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ/fkUEtwJIE6BUqZK67RXrQmIYN5l9CmwFry/tyrZFkrbHuh4MNiyp/vNBjs PioBEA4axWrH5SoOvY8NnWt/W2ZQsgdpC7BZreF4DQkd6FtJ6uc9DuyJsvLSkXVn gD8nXrxVWq0+70rI7f57yoV0Ad1vtmiwKGqJSXfVnu3BzKJet4vpshlfUPxFy076 UZFFMTGXeliP0cZFQOCGHRa5UeP7kVOZOplzgVNnfCc23mxoya6N3oBIs5cre96f 6dKSDxhhSXgwUQuZduRv5OXzCpkFYh7fTyw8H6f2Qo3YN3fWiW9e0hqJX27Pzxz9 AsXQWxD3yICyu3aXAjEvkfb17A== -----END CERTIFICATE-----Generated at Mon Mar 2 02:37:11 2026 by rpki-client