$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: GDuKUk+bDwGh/DBmvlGXtxvy3tChRroHFc2Aiy+6xkc= Subject key identifier: E8:D8:69:9C:76:45:2D:92:93:90:24:B2:3B:DC:D3:D4:AE:DB:8F:EC Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 10F8 Signing time: Mon 02 Mar 2026 00:05:37 +0000 Manifest this update: Mon 02 Mar 2026 00:05:35 +0000 Manifest next update: Mon 09 Mar 2026 00:05:35 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: t8SHebNV8V3zhRUZSWo98cqUheWWDMfbTv/osFc/5+A=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: DsIwZYdi4SacKjdzdVQxI7lHNk1gpuA8TWHS7qF8ppc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4356 (0x1104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Mar 2 00:05:35 2026 GMT Not After : Mar 9 00:05:35 2026 GMT Subject: CN=69a4d451-3909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c6:f7:aa:77:ca:97:67:d5:36:04:e5:29:06: 73:4d:53:b4:12:9f:b7:7a:cc:a3:ea:12:c6:4d:3b: 89:9b:66:ca:af:f1:3a:5a:69:00:d1:24:49:6c:34: 7e:6e:c2:95:62:8d:de:2c:7b:4f:7c:c5:51:18:b5: 7b:26:8b:f9:e0:ab:e1:63:c8:cb:ff:9e:bb:bf:4b: c3:a7:fe:68:fe:a5:1b:5c:2c:3c:7d:d6:90:64:85: ac:75:02:17:02:00:ba:ea:61:d9:27:d9:87:f5:3b: 9a:67:95:1d:16:f7:f8:a9:82:ff:50:c8:09:44:2d: b0:6b:e0:15:66:c5:4f:dd:3f:1f:31:9a:3e:f7:02: 4d:34:73:ad:01:65:63:13:c9:f7:a1:40:76:5c:1f: e5:42:56:e6:d0:d5:22:59:66:bd:33:43:59:90:e9: 84:5d:33:1c:71:e3:7e:e0:70:b9:ad:d1:28:c7:ba: ac:0c:ad:8d:49:2f:99:18:09:5d:a3:28:a0:1c:79: f8:e8:79:9f:38:f0:80:dd:09:ec:7e:97:34:3a:55: f3:42:02:4c:54:e7:1d:fb:96:44:f6:77:6a:c6:67: e0:b5:ac:a5:b4:46:08:7a:f6:27:7e:74:08:92:d9: 92:d6:9b:ec:92:57:d7:f9:ab:ec:16:59:10:f5:37: d3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D8:69:9C:76:45:2D:92:93:90:24:B2:3B:DC:D3:D4:AE:DB:8F:EC X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:78:eb:45:db:ad:c3:37:ce:db:3a:9d:3b:39:6f:e1:f4:32: 75:e4:f9:bf:5b:3e:db:bd:8c:62:ca:4c:e4:a7:41:b1:aa:55: fb:1e:b6:41:b1:2a:df:cb:27:60:9b:fb:39:f6:98:e3:56:b2: 59:7c:a7:de:39:a0:6f:16:2e:d0:81:e6:7e:b2:5c:5f:31:9b: 77:d0:1c:01:36:91:b9:f6:9e:07:e5:f8:13:88:71:b9:b5:d1: a4:d6:23:66:f4:7e:5a:9c:87:07:fe:82:88:57:1b:19:90:ef: 76:01:33:1e:99:ce:67:fe:4b:5f:35:7a:03:13:cb:04:43:00: 62:65:38:01:0e:bf:dd:a9:ac:cd:ee:66:3c:38:07:fd:e4:27: c9:14:cb:cd:7c:d6:73:9b:d6:c0:32:0e:21:2d:e7:d2:c7:e3: a3:b7:c8:b6:14:ae:25:8a:8d:f6:16:1c:ab:37:af:ec:ff:92: b7:d7:71:a8:f1:8f:23:07:f2:fe:bb:fe:d2:51:dd:c4:b4:03: 53:a1:07:fa:34:b7:e7:41:2e:bb:7e:ce:47:ce:d1:05:bd:65: 46:90:95:6d:73:86:ff:34:fe:c9:54:7e:6a:77:54:28:1c:d4: b7:f6:bb:4f:f1:b0:28:d0:79:7e:95:fe:3c:1a:ef:13:12:67: f8:a0:d9:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjYwMzAyMDAwNTM1WhcNMjYwMzA5MDAwNTM1WjAYMRYwFAYD VQQDEw02OWE0ZDQ1MS0zOTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcb3qnfKl2fVNgTlKQZzTVO0Ep+3esyj6hLGTTuJm2bKr/E6WmkA0SRJbDR+ bsKVYo3eLHtPfMVRGLV7Jov54KvhY8jL/567v0vDp/5o/qUbXCw8fdaQZIWsdQIX AgC66mHZJ9mH9TuaZ5UdFvf4qYL/UMgJRC2wa+AVZsVP3T8fMZo+9wJNNHOtAWVj E8n3oUB2XB/lQlbm0NUiWWa9M0NZkOmEXTMcceN+4HC5rdEox7qsDK2NSS+ZGAld oyigHHn46HmfOPCA3Qnsfpc0OlXzQgJMVOcd+5ZE9ndqxmfgtayltEYIevYnfnQI ktmS1pvsklfX+avsFlkQ9TfTLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOjYaZx2 RS2Sk5Aksjvc09Su24/sMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPXjrRdutwzfO2zqdOzlv4fQydeT5v1s+272MYspM5KdBsapV+x62QbEq38sn YJv7OfaY41ayWXyn3jmgbxYu0IHmfrJcXzGbd9AcATaRufaeB+X4E4hxubXRpNYj ZvR+WpyHB/6CiFcbGZDvdgEzHpnOZ/5LXzV6AxPLBEMAYmU4AQ6/3amsze5mPDgH /eQnyRTLzXzWc5vWwDIOIS3n0sfjo7fIthSuJYqN9hYcqzev7P+St9dxqPGPIwfy /rv+0lHdxLQDU6EH+jS350Euu37OR87RBb1lRpCVbXOG/zT+yVR+andUKBzUt/a7 T/GwKNB5fpX+PBrvExJn+KDZNg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:12 2026 by rpki-client