$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: iVyg06D7IG7p9zgpqwd+Igvdhto5I+Y1pdOlBUWO2NQ= Subject key identifier: 53:0A:AB:BF:80:1C:DD:EE:07:B1:A8:0E:50:6B:42:00:69:BD:00:13 Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 0674 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 0668 Signing time: Mon 02 Mar 2026 02:59:19 +0000 Manifest this update: Mon 02 Mar 2026 02:59:17 +0000 Manifest next update: Mon 09 Mar 2026 02:59:17 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: 2zdFmyTPyvPbnF6ndO0yb0SpHfwgB2k4tTTyTr03grM=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: bNcDIGQVjYDwGC+Qi+kev9uN9bsK42Q6yOhqCvPo1hY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5, serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Mar 2 02:59:17 2026 GMT Not After : Mar 9 02:59:17 2026 GMT Subject: CN=69a4fd07-457f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d0:8b:74:dd:03:ef:46:ca:a7:ed:e6:ac:86: 80:ed:41:4a:f5:78:fb:1f:6c:bd:fe:2b:c0:80:72: bc:3b:a6:33:db:13:df:7d:1c:66:b3:64:5b:92:6f: 00:e8:9b:54:d5:c1:3c:2c:0d:3a:e6:22:df:fd:c6: 13:c9:55:95:4d:87:f8:a1:f6:6e:11:5b:c2:ec:47: 72:25:ad:19:23:c4:b1:d6:e0:41:14:f9:2f:2d:f5: 09:f2:e0:be:be:86:6b:df:14:4c:14:c0:5b:2a:0b: 1d:8d:7f:bc:af:01:99:93:4f:70:5e:2a:60:5d:73: 08:a3:1a:1d:33:b5:58:41:81:fe:24:0e:58:1b:65: 73:67:8f:59:93:aa:37:56:d0:6a:9b:86:8b:21:11: 77:c4:c8:e6:d7:72:b2:d0:d4:d0:6c:aa:45:ee:63: ff:ce:1d:a1:26:de:0d:f6:66:8f:2c:8e:32:5a:0b: 15:7c:4a:d2:ac:eb:67:6a:49:7d:59:58:b6:64:6a: d6:f9:47:8d:87:0f:4d:39:9b:16:d1:98:75:b4:88: a5:e9:20:b0:35:32:ec:64:ce:a8:de:18:ba:35:80: 7a:3d:dc:57:e7:18:88:81:14:10:c0:39:44:fe:c6: 03:b4:28:3b:0b:57:db:fb:1a:96:46:3c:c3:01:f8: b8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0A:AB:BF:80:1C:DD:EE:07:B1:A8:0E:50:6B:42:00:69:BD:00:13 X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c5:0b:6d:88:f5:19:ed:a0:14:92:86:50:fe:a9:b0:10:25: ae:94:0b:db:db:91:45:25:be:e1:b9:c0:98:8f:dd:59:39:d1: 74:71:ed:33:c4:6d:f0:8b:7d:90:32:17:fb:4a:15:93:42:4b: 17:4b:36:b3:ea:37:25:23:a5:3f:6f:b8:87:e2:e9:13:11:40: ba:fa:7b:01:ec:52:23:df:da:d5:1e:2c:16:39:68:9f:6a:89: 1a:37:76:5a:80:9c:31:17:fd:f8:2f:54:18:60:55:56:5b:4f: 38:c6:01:2a:81:43:72:14:bc:4e:01:e6:59:09:1d:52:71:c9: 78:b2:ef:71:69:44:10:0d:4d:f2:43:97:a7:e6:a7:93:84:b9: 64:96:8b:2b:1f:ed:b7:1a:8b:1b:45:50:ae:3d:aa:b4:a2:14: 43:d7:62:9f:fc:33:29:44:73:60:33:89:15:b0:ed:48:ec:2a: 16:eb:b4:a6:da:a3:29:5b:37:fc:a9:7f:b4:96:7f:a6:6f:04: d2:82:f8:3e:0f:7f:14:d8:a4:d0:3a:03:4c:49:b3:9c:cc:80: 1e:8d:a3:23:5a:8d:13:2a:27:02:05:a8:02:6f:8a:99:13:f1: 0f:72:37:d8:54:7c:b0:3c:0d:a7:6a:34:4a:fb:8e:5c:8d:d9: 01:8c:06:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjYwMzAyMDI1OTE3WhcNMjYwMzA5MDI1OTE3WjAYMRYwFAYD VQQDEw02OWE0ZmQwNy00NTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tCLdN0D70bKp+3mrIaA7UFK9Xj7H2y9/ivAgHK8O6Yz2xPffRxms2Rbkm8A 6JtU1cE8LA065iLf/cYTyVWVTYf4ofZuEVvC7EdyJa0ZI8Sx1uBBFPkvLfUJ8uC+ voZr3xRMFMBbKgsdjX+8rwGZk09wXipgXXMIoxodM7VYQYH+JA5YG2VzZ49Zk6o3 VtBqm4aLIRF3xMjm13Ky0NTQbKpF7mP/zh2hJt4N9maPLI4yWgsVfErSrOtnakl9 WVi2ZGrW+UeNhw9NOZsW0Zh1tIil6SCwNTLsZM6o3hi6NYB6PdxX5xiIgRQQwDlE /sYDtCg7C1fb+xqWRjzDAfi4FQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFMKq7+A HN3uB7GoDlBrQgBpvQATMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfMULbYj1Ge2gFJKGUP6psBAlrpQL29uRRSW+4bnAmI/dWTnRdHHtM8Rt8It9 kDIX+0oVk0JLF0s2s+o3JSOlP2+4h+LpExFAuvp7AexSI9/a1R4sFjlon2qJGjd2 WoCcMRf9+C9UGGBVVltPOMYBKoFDchS8TgHmWQkdUnHJeLLvcWlEEA1N8kOXp+an k4S5ZJaLKx/ttxqLG0VQrj2qtKIUQ9din/wzKURzYDOJFbDtSOwqFuu0ptqjKVs3 /Kl/tJZ/pm8E0oL4Pg9/FNik0DoDTEmznMyAHo2jI1qNEyonAgWoAm+KmRPxD3I3 2FR8sDwNp2o0SvuOXI3ZAYwGnQ== -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:46 2026 by rpki-client