$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: kLV1Oe2OzMaS6c/KUZ9YEwdMM3hBR68kpkMCLFYkep8= Subject key identifier: 34:BA:A3:25:83:7B:F0:B1:DC:04:4E:DF:78:98:82:C9:EA:3E:B5:1B Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0CAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C67 Signing time: Mon 02 Mar 2026 00:41:54 +0000 Manifest this update: Mon 02 Mar 2026 00:41:54 +0000 Manifest next update: Mon 09 Mar 2026 00:41:54 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: zEyYgv80X05eVBwaOTpBMQk7ofsnEzEz0oUefgKGkk0=) 2: 16C56390B6FF11F096DEAA71C4F9AE02.roa (hash: /XLi+JoFopcNaQS+dz0I9QQbByJLgyqvV+UDc3RM9XQ=) 3: 336E2134D0FF11F0904A3785C4F9AE02.roa (hash: /2RNIkBIhtZT+yQtCchMfxU/aFUT25YRMpbrC+A9cdA=) 4: 45DE9550BADF11F09B91D509C4F9AE02.roa (hash: VFxaFuE3kLPbmnaiebPltW71W8wxxR4QeAfyqtq3Fsc=) 5: 78E949B8BA2B11F091659A18C4F9AE02.roa (hash: VOBPRXqiWHsxxicImatBXQPFpdPNhWUthBewKk/mSYs=) 6: FD9DD964D0FE11F09871A984C4F9AE02.roa (hash: fCNwY+bFmbNIKvRtyJc3Fedqpi08Sju/q2nGO6Ir4oQ=) 7: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: TdD366YPbDVh8M4hWGlCIcUx+fM9FgqZUJ2TV/gnPRw=) 8: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: zZKkU5m5jrELsXLPpU2iKiEvYddsb6m7m0BK+ZsPDg0=) 9: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: 2LqeRUOZAwgxybnlCEWpL5xaNP5BZabdtxW3D8ogqXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Mar 2 00:41:54 2026 GMT Not After : Mar 9 00:41:54 2026 GMT Subject: CN=69a4dcd2-5de6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:44:9a:55:53:85:8a:3f:e6:80:fd:db:5a:4e: ab:35:63:af:dd:81:2f:10:3a:bf:28:a7:69:eb:f3: 2f:0a:e5:68:64:8c:30:e6:32:73:ba:ca:9e:f2:b2: 42:a1:6b:6d:2e:13:d9:d3:37:20:df:76:23:09:eb: cc:e6:a8:3a:67:2e:e9:ea:4e:b8:b7:67:1c:b1:14: 21:f1:3b:2d:3e:20:93:87:e5:a6:d1:fe:23:00:58: 1a:47:03:1c:ed:13:69:41:bc:a1:eb:a3:b1:be:48: 63:fd:db:0c:8a:f1:20:c3:74:14:ad:b1:3d:e8:0f: 01:df:4c:28:32:4e:a4:0d:8b:29:67:17:a4:8e:93: 43:eb:20:34:e2:6a:8a:d8:ef:67:6b:fb:33:48:f4: 34:6a:92:35:83:db:aa:4d:64:28:bc:aa:ea:4c:96: a3:7a:7d:32:c0:f4:04:ff:3e:91:30:ff:e2:0f:9b: 2b:7e:2e:b4:86:06:d0:2a:c3:49:fd:e0:a6:eb:75: 46:2e:4c:70:68:8e:6b:d8:e7:1e:d4:c2:7a:6f:dc: bc:bc:ca:24:80:e4:f6:84:d4:96:e5:80:79:eb:e0: c9:16:19:b0:2f:87:34:6a:cc:9b:c9:96:17:e7:b8: bc:e1:83:f1:47:51:74:72:f3:2d:eb:e5:22:f6:c3: 1a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BA:A3:25:83:7B:F0:B1:DC:04:4E:DF:78:98:82:C9:EA:3E:B5:1B X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:11:a1:c3:95:9d:0a:cf:90:74:53:81:9e:91:ab:df:ef:24: 1e:fd:5f:b1:5c:f1:3f:5d:6b:3e:2a:e2:0a:d6:a5:29:65:b3: b4:af:5a:b9:90:17:f9:88:d1:f4:b9:13:37:08:b7:b2:fa:d8: c9:02:d9:63:0f:87:e3:dd:bc:2c:c6:66:1f:3b:4e:5f:39:d3: 17:cd:90:e0:12:17:34:47:4c:59:7b:71:28:bd:c4:98:b3:50: 8e:1d:b1:57:43:12:f7:c4:85:79:9f:3b:ab:db:ca:5b:76:1d: 97:0c:36:04:85:21:b5:1d:dc:62:b1:fa:d0:f5:9b:f1:b7:b1: db:c1:da:c5:fb:ce:5a:d4:4f:f0:d1:23:4d:2b:2f:5c:41:c5: a6:63:c5:9c:ac:ef:4b:96:d0:49:27:ba:48:be:c5:9e:23:0b: 0a:2a:c7:fe:93:88:a2:9d:2a:3c:c1:eb:62:f1:08:46:c7:d5: 8b:58:73:25:38:41:e9:b8:57:1a:29:e5:48:49:95:5f:c5:cd: ca:29:dc:1b:95:0c:a5:8c:00:2d:4d:85:83:3c:1b:7e:bd:e6: b0:8e:1e:03:52:0a:e6:0d:1b:c4:dd:02:ac:0b:20:5b:c8:97: 34:6e:56:fd:97:56:d6:82:81:a2:2d:30:7c:d7:96:15:78:69: 79:16:72:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjYwMzAyMDA0MTU0WhcNMjYwMzA5MDA0MTU0WjAYMRYwFAYD VQQDEw02OWE0ZGNkMi01ZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0SaVVOFij/mgP3bWk6rNWOv3YEvEDq/KKdp6/MvCuVoZIww5jJzusqe8rJC oWttLhPZ0zcg33YjCevM5qg6Zy7p6k64t2ccsRQh8TstPiCTh+Wm0f4jAFgaRwMc 7RNpQbyh66Oxvkhj/dsMivEgw3QUrbE96A8B30woMk6kDYspZxekjpND6yA04mqK 2O9na/szSPQ0apI1g9uqTWQovKrqTJajen0ywPQE/z6RMP/iD5srfi60hgbQKsNJ /eCm63VGLkxwaI5r2Oce1MJ6b9y8vMokgOT2hNSW5YB56+DJFhmwL4c0asybyZYX 57i84YPxR1F0cvMt6+Ui9sMawQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDS6oyWD e/Cx3ARO33iYgsnqPrUbMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjxGhw5WdCs+QdFOBnpGr3+8kHv1fsVzxP11rPiriCtalKWWztK9auZAX+YjR 9LkTNwi3svrYyQLZYw+H4928LMZmHztOXznTF82Q4BIXNEdMWXtxKL3EmLNQjh2x V0MS98SFeZ87q9vKW3Ydlww2BIUhtR3cYrH60PWb8bex28HaxfvOWtRP8NEjTSsv XEHFpmPFnKzvS5bQSSe6SL7FniMLCirH/pOIop0qPMHrYvEIRsfVi1hzJThB6bhX GinlSEmVX8XNyincG5UMpYwALU2Fgzwbfr3msI4eA1IK5g0bxN0CrAsgW8iXNG5W /ZdW1oKBoi0wfNeWFXhpeRZymg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:09 2026 by rpki-client