$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: rGXWfKOBzu2M8xAdLEnP15bLsfzHtsxhpgZuedvo+7k= Subject key identifier: D3:AF:16:FC:F9:A1:A7:E9:26:FE:67:DF:21:8C:92:A4:1F:1D:30:04 Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 069C Signing time: Sun 01 Mar 2026 22:20:13 +0000 Manifest this update: Sun 01 Mar 2026 22:20:13 +0000 Manifest next update: Sun 08 Mar 2026 22:20:13 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: zcJoyeOBmqrrp9dsQQQBPMhmD3dJjXBxVGKWj+M0laI=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: H9bQjSPeahTiFhtLO0uJjbU189cBl39e5cIHw8cFvVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8, serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Mar 1 22:20:13 2026 GMT Not After : Mar 8 22:20:13 2026 GMT Subject: CN=69a4bb9d-844f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:5f:84:ac:3e:8f:cf:3d:76:8a:7f:c1:70: 6c:97:70:bb:56:20:68:a5:bc:05:6b:94:b5:12:f7: b1:27:62:11:78:db:7e:e3:85:f4:a5:f4:9f:c5:6f: 7f:03:3b:cb:66:ac:ad:79:d9:ed:a0:2f:47:c7:7d: ff:3c:df:4f:63:71:02:f6:ac:64:00:80:cf:93:b1: 10:1f:eb:ee:db:95:36:92:84:28:eb:40:1d:ee:05: 68:f2:75:e3:af:b2:ba:9f:b4:b9:2d:f7:68:68:44: 76:80:e0:4f:aa:b7:ef:d8:22:32:7e:17:60:2c:99: 01:c4:77:8d:d9:07:6c:f9:55:d4:0f:e5:b0:0e:f3: cd:b8:3b:72:ca:74:5d:48:53:59:23:d2:66:e0:bb: ee:f0:e4:8a:68:51:82:2c:c1:99:a9:c2:9e:ba:ae: 4c:10:fc:e5:f0:d4:fc:e8:62:b2:a4:40:1f:1c:76: 35:14:e7:20:72:f1:11:f4:da:df:7c:2c:ee:de:0c: f8:36:f8:16:32:d4:bc:aa:e0:87:3c:f1:ec:c4:8e: b5:cc:4e:83:ea:51:82:b3:10:47:8d:2f:4a:78:50: cf:32:bd:56:c1:a9:97:4b:d9:2a:70:23:4e:13:c9: 31:88:ad:98:cc:e2:f6:bc:ac:10:65:36:f2:c2:5f: aa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AF:16:FC:F9:A1:A7:E9:26:FE:67:DF:21:8C:92:A4:1F:1D:30:04 X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d1:15:7f:b8:68:5f:f8:e0:2b:57:e9:ed:2b:fb:f1:48:ab: 01:5f:d4:7f:e6:74:6f:aa:d7:68:0c:65:2e:c3:9c:8a:12:d6: fe:6b:89:77:b9:84:ba:7b:4b:69:6c:e1:3f:4b:5e:0d:41:fc: c7:a9:f8:1a:e2:04:ff:90:5d:2d:ef:a8:98:6a:d4:0d:34:52: 8a:46:d9:22:a2:ee:93:91:9c:3f:86:70:32:17:2a:8c:73:e7: 7b:6e:9c:9b:22:ab:fc:cc:63:24:eb:27:d5:cc:5c:e7:5a:7e: 81:bf:34:14:7e:97:4c:42:f8:47:9b:9f:5a:d9:c9:ae:b5:db: aa:4d:77:95:da:ed:2e:9b:00:ba:d4:62:6c:d6:6c:4b:40:c9: e6:68:10:4c:52:ee:82:1a:3c:f5:59:8c:b7:0e:52:ec:fc:b1: 67:7c:d2:a0:59:2c:8c:f5:16:f3:50:95:60:f0:21:92:29:be: bd:a6:57:9d:f9:1c:a4:1d:cb:d4:f5:04:5c:67:1f:c1:c6:64: 87:db:71:cc:bc:e4:84:66:ac:5d:27:2e:be:14:d7:01:2d:92: ed:57:ad:4b:db:96:67:20:6e:19:69:a3:f8:34:50:68:7b:dd: 49:60:01:a8:f5:1c:41:fe:21:b2:1b:5b:5e:4c:98:d1:aa:e9: 23:d3:9d:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjYwMzAxMjIyMDEzWhcNMjYwMzA4MjIyMDEzWjAYMRYwFAYD VQQDEw02OWE0YmI5ZC04NDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWhfhKw+j889dop/wXBsl3C7ViBopbwFa5S1EvexJ2IReNt+44X0pfSfxW9/ AzvLZqytedntoC9Hx33/PN9PY3EC9qxkAIDPk7EQH+vu25U2koQo60Ad7gVo8nXj r7K6n7S5LfdoaER2gOBPqrfv2CIyfhdgLJkBxHeN2Qds+VXUD+WwDvPNuDtyynRd SFNZI9Jm4Lvu8OSKaFGCLMGZqcKeuq5MEPzl8NT86GKypEAfHHY1FOcgcvER9Nrf fCzu3gz4NvgWMtS8quCHPPHsxI61zE6D6lGCsxBHjS9KeFDPMr1WwamXS9kqcCNO E8kxiK2YzOL2vKwQZTbywl+qqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNOvFvz5 oafpJv5n3yGMkqQfHTAEMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALtEVf7hoX/jgK1fp7Sv78UirAV/Uf+Z0b6rXaAxlLsOcihLW/muJd7mEuntL aWzhP0teDUH8x6n4GuIE/5BdLe+omGrUDTRSikbZIqLuk5GcP4ZwMhcqjHPne26c myKr/MxjJOsn1cxc51p+gb80FH6XTEL4R5ufWtnJrrXbqk13ldrtLpsAutRibNZs S0DJ5mgQTFLugho89VmMtw5S7PyxZ3zSoFksjPUW81CVYPAhkim+vaZXnfkcpB3L 1PUEXGcfwcZkh9txzLzkhGasXScuvhTXAS2S7VetS9uWZyBuGWmj+DRQaHvdSWAB qPUcQf4hshtbXkyY0arpI9OdVg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:50:25 2026 by rpki-client