$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: vZuQlWZLIOWesD/JuRrLz6Q4wg15ma7Qxwg2G2EUkyk= Subject key identifier: D4:B9:7D:E5:CF:63:82:96:B3:5E:F5:81:2E:37:77:92:17:06:83:29 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 020D Signing time: Sun 01 Mar 2026 03:42:56 +0000 Manifest this update: Sun 01 Mar 2026 03:42:56 +0000 Manifest next update: Sun 08 Mar 2026 03:42:56 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: 7J7LVqIROg1E9PvPbi+RjGBGUJtAn9abdxvr3mzMais=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Mar 1 03:42:56 2026 GMT Not After : Mar 8 03:42:56 2026 GMT Subject: CN=69a3b5c0-36f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:56:67:5f:68:71:fb:2a:66:4f:d6:72:a1:72: e8:5b:c7:92:75:ed:60:4f:a2:16:c6:5e:50:ca:30: 22:e6:2e:41:e1:99:6f:c4:30:f9:05:ed:c9:76:37: ad:b8:95:d0:4c:6d:c4:83:63:14:16:7c:a6:60:fd: 20:2c:53:d3:1e:dd:34:31:60:d2:1b:38:7f:b7:61: f7:31:d5:31:cc:0a:e4:97:2e:df:8a:9f:bf:1c:a4: 17:0f:5c:4e:ac:3d:d1:ad:ea:c3:d3:31:ea:2d:89: 49:fb:07:2e:85:78:bc:f3:81:c7:88:52:b4:a7:02: 66:74:f2:7d:55:8f:90:29:c8:f0:55:91:7e:85:7c: bc:e2:19:20:ea:ab:49:ef:2a:bc:86:e6:47:f5:78: 60:f4:b5:30:25:37:85:58:9a:c1:8f:43:d5:fd:77: f0:63:80:85:90:40:b8:32:01:70:cb:df:7b:ea:88: 0b:88:91:f5:be:83:30:30:8a:3b:b1:fd:ac:5b:f3: 7e:57:03:52:c0:bd:14:50:93:d5:de:b5:4c:64:2d: 9e:20:03:88:d0:8d:15:a2:05:49:6a:bf:5e:ca:11: 80:73:2a:5d:c8:84:8a:3f:0a:26:12:64:eb:ad:8e: 04:da:53:5c:95:55:e0:d8:b7:7a:b2:87:80:bc:ad: 9b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B9:7D:E5:CF:63:82:96:B3:5E:F5:81:2E:37:77:92:17:06:83:29 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:7a:76:1b:ad:d7:64:db:c3:59:85:47:46:12:0b:62:aa:a6: 7e:ab:59:e3:cf:a4:f6:66:98:9a:44:fb:67:c6:60:19:3b:d8: 94:72:1b:82:7f:d8:94:6e:8c:15:c3:c4:00:97:9b:96:20:ec: 24:59:4c:cd:ae:dd:70:9b:49:c3:67:69:d0:fc:e4:4e:49:88: 84:84:af:9f:b0:ae:be:4e:74:ae:3a:8a:26:34:7a:e5:fe:df: 49:b3:54:35:20:df:b4:62:9b:42:1c:00:00:ee:4f:22:45:65: 7c:e9:f1:ee:4d:ab:90:e4:51:c1:bd:35:fe:0e:4f:e3:6b:6a: 8d:36:2d:13:bb:c3:97:18:7c:85:c4:89:ff:bb:61:6b:96:46: 25:ec:1a:68:27:00:48:d3:d9:0b:95:e0:d1:87:c8:5f:d7:58: 07:12:d6:a6:3c:cf:f2:99:25:35:f9:62:e9:6c:a4:b8:a6:e1: ba:96:47:f6:c6:f5:29:13:ec:79:90:70:01:15:7a:b7:44:7f: 74:62:7b:64:ed:5d:89:f8:c3:a3:2d:90:83:3a:1e:5b:0e:6c: 57:73:aa:95:19:34:8e:a0:06:89:37:73:be:24:67:c9:32:58: 25:6d:88:92:95:9c:78:16:36:41:07:f5:03:d4:b9:33:f5:1a: d0:ab:60:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjYwMzAxMDM0MjU2WhcNMjYwMzA4MDM0MjU2WjAYMRYwFAYD VQQDDA02OWEzYjVjMC0zNmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1ZnX2hx+ypmT9ZyoXLoW8eSde1gT6IWxl5QyjAi5i5B4ZlvxDD5Be3Jdjet uJXQTG3Eg2MUFnymYP0gLFPTHt00MWDSGzh/t2H3MdUxzArkly7fip+/HKQXD1xO rD3RrerD0zHqLYlJ+wcuhXi884HHiFK0pwJmdPJ9VY+QKcjwVZF+hXy84hkg6qtJ 7yq8huZH9Xhg9LUwJTeFWJrBj0PV/XfwY4CFkEC4MgFwy9976ogLiJH1voMwMIo7 sf2sW/N+VwNSwL0UUJPV3rVMZC2eIAOI0I0VogVJar9eyhGAcypdyISKPwomEmTr rY4E2lNclVXg2Ld6soeAvK2b+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNS5feXP Y4KWs171gS43d5IXBoMpMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPHp2G63XZNvDWYVHRhILYqqmfqtZ48+k9maYmkT7Z8ZgGTvYlHIbgn/YlG6M FcPEAJebliDsJFlMza7dcJtJw2dp0PzkTkmIhISvn7Cuvk50rjqKJjR65f7fSbNU NSDftGKbQhwAAO5PIkVlfOnx7k2rkORRwb01/g5P42tqjTYtE7vDlxh8hcSJ/7th a5ZGJewaaCcASNPZC5Xg0YfIX9dYBxLWpjzP8pklNfli6WykuKbhupZH9sb1KRPs eZBwARV6t0R/dGJ7ZO1difjDoy2QgzoeWw5sV3OqlRk0jqAGiTdzviRnyTJYJW2I kpWceBY2QQf1A9S5M/Ua0Ktgpw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:38 2026 by rpki-client