$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: cEVVyY/jhUoq4VSPfApRrI0McNXCkgo5LuNedWfr8NU= Subject key identifier: 90:C1:77:8D:F4:D4:06:C0:B1:B8:CC:AB:F3:59:F8:B0:1A:07:41:A8 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 0253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 0243 Signing time: Mon 02 Mar 2026 01:35:33 +0000 Manifest this update: Mon 02 Mar 2026 01:35:32 +0000 Manifest next update: Mon 09 Mar 2026 01:35:32 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: f8Xq1VP9tf2B5WD35hp29DnQYoVEsy8oveHHiN36g6c=) 2: 0BBC997C5DB911F0A54D4C6FC4F9AE02.roa (hash: wtwpRqnqeYQSTF5tuYeTMKBYPSpu+aJ0HfsSDYw4/oQ=) 3: 0ADA583C5DB911F0A54D4C6FC4F9AE02.roa (hash: vtHqwtSvpKd0UZw+IVp/WFTlhLrYLk265RmDqE6z7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Mar 2 01:35:32 2026 GMT Not After : Mar 9 01:35:32 2026 GMT Subject: CN=69a4e965-0dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ff:cc:65:d5:31:e9:42:7e:9d:7d:3b:46:9b: a6:13:e0:9a:4a:65:66:75:94:0b:43:91:88:5c:e0: 5b:b0:04:3f:c3:52:58:b4:cb:f4:c6:e7:72:a5:eb: 0a:d3:ac:5c:8a:23:6e:77:14:29:6b:2c:a8:5a:28: 2a:98:c0:ab:96:fd:34:fe:10:6b:f1:2b:0d:18:53: ac:0b:eb:66:33:55:58:8d:ed:72:5a:17:17:b7:a9: 7a:bf:53:d3:be:26:75:86:ad:fc:00:b0:31:04:1d: bd:a6:7b:dc:a6:87:22:81:ab:96:3f:cc:47:3e:74: 2f:5a:8c:a3:3b:2f:a2:0c:e8:b2:38:5e:aa:87:fb: 87:71:cf:61:e9:fc:5b:30:93:d0:71:2a:21:51:63: f7:ed:f3:0c:14:53:29:e0:d3:3d:0f:fc:66:91:00: 3e:4f:da:7f:06:78:ea:03:6d:be:7e:3b:f3:2f:bb: c7:53:6c:e8:ba:22:6c:62:2d:65:72:ad:be:82:3d: 37:9e:4a:c7:a4:f2:f8:37:60:07:e2:05:15:f1:2f: 68:8e:fd:1a:75:3c:59:1d:e6:e0:81:63:de:2a:96: 39:44:da:26:9f:1e:08:35:5a:38:0e:38:12:50:d0: e5:68:38:93:ed:c7:e4:22:e4:05:cd:64:d7:59:12: 4e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C1:77:8D:F4:D4:06:C0:B1:B8:CC:AB:F3:59:F8:B0:1A:07:41:A8 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:31:db:bb:ae:cf:cc:fe:7b:6b:4a:57:80:c7:26:f3:0b:ca: 98:61:9c:c6:9c:7a:33:d8:b6:7c:b0:0e:6f:16:cf:f2:06:bc: 8a:cc:41:3b:3e:21:53:93:c0:a0:64:a3:95:1f:86:df:2b:e4: cf:0c:0d:1b:b7:90:06:1c:cc:c9:07:bb:f9:29:19:de:f0:ab: 4a:47:bd:c5:8e:1b:1e:10:0c:04:92:e5:d6:b0:c2:d8:cf:ce: b9:77:08:f1:a8:5a:77:67:d0:88:46:c1:b3:48:be:f7:ca:e7: aa:58:ab:fd:dd:c9:b4:a0:5a:c5:8f:3d:a8:3d:12:94:d2:9b: 6a:e7:22:9c:f8:97:2b:d2:db:12:02:36:04:ed:d8:7c:9e:da: 45:93:96:7d:22:0a:1d:68:04:34:d4:3f:bb:8e:24:55:56:da: a9:68:42:15:75:c9:eb:e2:d9:aa:1b:e0:c2:ef:91:5d:f6:b5: fa:62:4b:52:38:d7:31:47:75:d7:2e:1c:8e:b9:c5:40:57:fe: 9b:f6:3f:f7:00:c7:74:86:1c:8b:02:8a:df:88:a3:89:91:b4: 78:59:12:cb:7a:0d:0a:61:9a:61:ef:c3:7e:c0:2d:58:1d:59: 0a:fa:bc:f5:c0:ce:e4:a2:0d:0a:7e:a5:1d:28:fc:3f:e7:dd: a9:61:e0:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjYwMzAyMDEzNTMyWhcNMjYwMzA5MDEzNTMyWjAYMRYwFAYD VQQDEw02OWE0ZTk2NS0wZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAov/MZdUx6UJ+nX07RpumE+CaSmVmdZQLQ5GIXOBbsAQ/w1JYtMv0xudypesK 06xciiNudxQpayyoWigqmMCrlv00/hBr8SsNGFOsC+tmM1VYje1yWhcXt6l6v1PT viZ1hq38ALAxBB29pnvcpocigauWP8xHPnQvWoyjOy+iDOiyOF6qh/uHcc9h6fxb MJPQcSohUWP37fMMFFMp4NM9D/xmkQA+T9p/BnjqA22+fjvzL7vHU2zouiJsYi1l cq2+gj03nkrHpPL4N2AH4gUV8S9ojv0adTxZHebggWPeKpY5RNomnx4INVo4DjgS UNDlaDiT7cfkIuQFzWTXWRJOZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJDBd430 1AbAsbjMq/NZ+LAaB0GoMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAizHbu67PzP57a0pXgMcm8wvKmGGcxpx6M9i2fLAObxbP8ga8isxBOz4hU5PA oGSjlR+G3yvkzwwNG7eQBhzMyQe7+SkZ3vCrSke9xY4bHhAMBJLl1rDC2M/OuXcI 8ahad2fQiEbBs0i+98rnqlir/d3JtKBaxY89qD0SlNKbaucinPiXK9LbEgI2BO3Y fJ7aRZOWfSIKHWgENNQ/u44kVVbaqWhCFXXJ6+LZqhvgwu+RXfa1+mJLUjjXMUd1 1y4cjrnFQFf+m/Y/9wDHdIYciwKK34ijiZG0eFkSy3oNCmGaYe/DfsAtWB1ZCvq8 9cDO5KINCn6lHSj8P+fdqWHgUw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:39 2026 by rpki-client