$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json) Hash identifier: AoQ55VXTl0doV87X6EbCqbFEj/a9BGexPoDM70Lcol8= Subject key identifier: EA:7A:33:25:CA:F7:4F:16:B3:0E:8C:6E:86:57:37:36:BD:4D:F1:1B Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft Manifest number: 7A Signing time: Sun 01 Mar 2026 23:32:00 +0000 Manifest this update: Sun 01 Mar 2026 23:31:58 +0000 Manifest next update: Sun 08 Mar 2026 23:31:58 +0000 Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: 7BAuv2guyYHOlcPJJO4RXoKetKOxZSYyK4cSEjz/ILI=) 2: 224FBC52EFCF11F0A018F59D746F56BC.roa (hash: l6zP7eAxKoViI6F3M9uDYfZY33CWARrIielkD1703l4=) 3: 8C538C5AEFCF11F0889DE39E746F56BC.roa (hash: eiSYQZ4JbJxsufS9RcJajhzup1MJX6NMX/+qc2RSIq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Validity Not Before: Mar 1 23:31:58 2026 GMT Not After : Mar 8 23:31:58 2026 GMT Subject: CN=69a4cc70-edc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:56:c2:fb:a2:77:06:5c:3e:0a:f7:60:96: 08:16:1d:31:7c:7a:41:03:ef:cb:d5:54:e8:e8:68: c9:49:6b:42:05:cc:a8:7e:2c:f7:81:d9:cc:3a:fb: 84:61:66:e8:bf:86:9b:a6:33:b2:95:ec:c6:53:5a: d5:ef:0a:e0:79:82:5f:80:93:46:29:5c:54:61:58: b8:d2:2a:99:1f:e6:d6:3b:bd:24:2b:d8:6f:f9:fe: 2c:21:2d:db:66:ac:53:6d:f6:ad:8f:8d:2f:c1:b9: af:d3:50:83:f8:79:6e:79:93:b5:c3:a6:6d:0c:de: e7:6e:1d:31:98:97:e7:6d:4f:78:93:51:37:ed:00: 78:57:6d:41:b0:8f:8c:3e:1a:e0:f5:d4:97:e6:5d: ff:b8:8e:6b:47:e7:6c:9b:ee:37:22:d0:30:71:ac: fd:02:f8:06:30:50:d6:7a:f5:d1:49:81:fa:97:71: 73:a4:a3:ae:2a:b1:be:13:55:96:a5:ea:f4:1b:56: 8c:12:bf:ff:e3:d1:48:6f:69:21:2f:2b:cc:f8:7f: 0f:3d:16:a2:f6:6f:1e:6c:3f:6d:1e:13:56:d4:da: 74:fc:0b:0a:91:77:e4:cf:08:ff:38:8a:fc:10:f0: 41:a0:9d:d7:76:4e:ca:50:74:3d:95:5e:db:41:5a: 0c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7A:33:25:CA:F7:4F:16:B3:0E:8C:6E:86:57:37:36:BD:4D:F1:1B X509v3 Authority Key Identifier: keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:4d:86:b3:bf:05:83:31:0d:7f:ec:e0:70:cc:1e:de:32:a7: 14:33:f7:c8:fd:81:df:92:9a:e5:6f:75:00:15:10:d7:4c:db: fd:ce:e8:24:c9:6b:f3:e7:8e:f0:3e:81:e5:bb:7b:6a:bf:28: d3:60:48:d6:1c:58:bf:44:9e:67:77:4d:18:21:ef:1e:27:1e: 18:4e:9b:21:1d:b0:c7:f5:dc:6f:7b:80:9d:7c:fb:69:d2:1a: eb:a8:eb:b3:c3:34:ec:09:e1:05:0e:cc:98:b7:95:7f:60:c2: 15:cb:45:f2:6d:b0:f0:ff:83:91:67:59:86:b8:60:0e:04:48: 46:1c:9a:12:0f:1b:3d:7e:b2:49:22:7c:fe:c3:5e:dc:89:1f: 1b:83:4f:c1:b7:de:57:01:aa:00:6a:24:93:b4:b8:60:5e:e9: 18:a3:19:82:1c:7b:b1:b8:54:49:82:4e:79:53:0c:b5:81:c8: d0:aa:59:e1:b2:7a:ea:7d:77:0c:61:ba:72:14:3b:b4:b7:03: a7:dd:f7:3d:40:52:ee:54:35:f0:92:83:dc:91:f2:da:36:d9: 60:0f:d1:d9:e3:ac:c3:2a:e2:b3:6c:a6:3c:51:f2:5f:77:76: 06:37:a6:fc:4b:51:0f:75:ad:cf:0a:74:43:ed:89:ba:6d:fb: 58:c9:c4:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1QzMxMTAvBgNVBAUTKDlFQkRBMTIzRDlFRTgzMDk0MzA1QTExODBDMkEwODA1 N0ZFNTQwNkEwHhcNMjYwMzAxMjMzMTU4WhcNMjYwMzA4MjMzMTU4WjAYMRYwFAYD VQQDEw02OWE0Y2M3MC1lZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUJWwvuidwZcPgr3YJYIFh0xfHpBA+/L1VTo6GjJSWtCBcyofiz3gdnMOvuE YWbov4abpjOylezGU1rV7wrgeYJfgJNGKVxUYVi40iqZH+bWO70kK9hv+f4sIS3b ZqxTbfatj40vwbmv01CD+HlueZO1w6ZtDN7nbh0xmJfnbU94k1E37QB4V21BsI+M Phrg9dSX5l3/uI5rR+dsm+43ItAwcaz9AvgGMFDWevXRSYH6l3FzpKOuKrG+E1WW per0G1aMEr//49FIb2khLyvM+H8PPRai9m8ebD9tHhNW1Np0/AsKkXfkzwj/OIr8 EPBBoJ3Xdk7KUHQ9lV7bQVoMoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOp6MyXK 908Wsw6MboZXNza9TfEbMB8GA1UdIwQYMBaAFJ69oSPZ7oMJQwWhGAwqCAV/5UBq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjVDMy8yMzI2QzYzRTY2 MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3bERCYUVZRENvSUJYX2xR R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25yMmhJOW51Z3dsREJhRVlEQ29JQlhfbFFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjVDMy8yMzI2QzYzRTY2MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi9ucjJoSTludWd3 bERCYUVZRENvSUJYX2xRR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiU2Gs78FgzENf+zgcMwe3jKnFDP3yP2B35Ka5W91ABUQ10zb/c7oJMlr8+eO 8D6B5bt7ar8o02BI1hxYv0SeZ3dNGCHvHiceGE6bIR2wx/Xcb3uAnXz7adIa66jr s8M07AnhBQ7MmLeVf2DCFctF8m2w8P+DkWdZhrhgDgRIRhyaEg8bPX6ySSJ8/sNe 3IkfG4NPwbfeVwGqAGokk7S4YF7pGKMZghx7sbhUSYJOeVMMtYHI0KpZ4bJ66n13 DGG6chQ7tLcDp933PUBS7lQ18JKD3JHy2jbZYA/R2eOswyris2ymPFHyX3d2Bjem /EtRD3Wtzwp0Q+2Jum37WMnESg== -----END CERTIFICATE-----Generated at Mon Mar 2 02:15:04 2026 by rpki-client