$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: EAM4SCudgzTD1b/a2uo8TgS2k1SUoeN+iFbSyOswSME= Subject key identifier: B5:46:B5:E2:E3:F8:65:60:BF:61:59:36:99:AB:19:14:F6:92:20:B9 Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0EEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0EE3 Signing time: Mon 02 Mar 2026 02:50:49 +0000 Manifest this update: Mon 02 Mar 2026 02:50:47 +0000 Manifest next update: Mon 09 Mar 2026 02:50:47 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: zIl5LczvDpcbt1xqtTpSYgTMQudJKMSRByWRmYPPv4I=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: 7Zntvgptxi7t6rq+AQ6AjwkrN9jO9paj8Ccr/LfGYDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3822 (0xeee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3, serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: Mar 2 02:50:47 2026 GMT Not After : Mar 9 02:50:47 2026 GMT Subject: CN=69a4fb08-8a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:21:06:07:00:93:7b:82:3d:dc:c7:60:78:cc: 2f:0f:08:4d:91:8e:d9:a0:3d:0e:0d:e2:0e:41:72: cc:9a:9a:a8:08:33:d7:39:22:75:74:cf:d6:9c:bf: 7f:29:48:e3:36:da:ab:87:a7:7e:5e:42:f0:bd:eb: 0a:24:42:e4:df:52:8a:c9:73:65:5c:13:ce:4e:9b: 16:43:87:77:23:a9:35:bf:d7:45:f6:d8:97:d1:f2: 99:a8:8b:bf:a8:ef:01:04:39:96:7b:04:92:65:73: da:62:3a:ca:37:f8:b7:45:38:99:45:44:18:df:f3: 60:1f:9e:35:d0:df:2c:da:4a:2e:a9:2b:ef:f3:e1: 1c:14:39:f7:07:6e:19:2d:09:47:2c:b1:d7:c7:dd: 57:c7:1b:d4:16:14:9b:77:9f:ea:d6:ce:a1:38:6a: 36:6c:98:45:43:f8:19:1d:67:9d:89:dc:22:47:28: 6b:7e:a3:43:13:90:02:c9:2e:33:fb:63:97:a7:4c: 81:89:2a:38:8d:1f:8a:ce:2a:9e:9a:92:9b:95:58: da:27:69:38:3d:a2:38:1b:8b:ff:57:c3:e9:22:6b: 0d:95:57:20:c2:3f:90:7b:66:72:6c:01:bf:f6:d5: f9:b3:6c:6f:78:94:ce:90:09:c0:2d:78:c2:6d:d2: f7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:46:B5:E2:E3:F8:65:60:BF:61:59:36:99:AB:19:14:F6:92:20:B9 X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:90:00:5d:46:eb:73:73:a6:56:b4:3a:1c:d0:c6:f3:71:91: fa:a4:84:9b:d7:c2:5a:34:fa:b5:5d:cf:fd:c3:83:e4:69:84: d4:55:2f:0d:23:6e:c1:73:e6:86:1a:41:ec:d4:32:d2:79:26: d7:56:38:77:f4:a3:e6:b8:fa:a1:cd:be:80:62:86:d8:af:25: 74:6c:11:04:fc:00:b1:e6:4a:ac:8e:19:7b:66:be:5e:09:22: 1f:c7:29:a0:59:06:be:ea:93:59:11:6d:c4:08:8f:97:e6:15: 99:24:dd:1f:17:76:3c:44:9d:f1:a6:dc:95:90:43:c2:ae:a4: 37:f7:13:2c:93:c1:aa:48:10:1b:05:0f:9f:84:ac:47:a2:36: b0:4d:24:39:ba:46:3c:83:f2:23:eb:ac:19:28:3d:92:02:af: 77:09:2c:d3:58:73:35:40:78:d2:6a:11:d6:06:82:b6:26:12: 92:29:68:d7:5b:d9:3a:e8:2d:30:dc:2b:2b:28:a6:6e:b8:b3: d9:ab:60:84:3c:41:42:df:44:b8:c9:88:33:5d:ae:d8:0e:80: 80:10:94:eb:76:6a:43:3e:f5:36:e7:db:5d:dc:42:bd:ca:15: 1d:b2:96:d7:75:c9:50:59:e5:4e:ae:f6:16:ff:a0:a7:a7:18: e2:19:d6:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjYwMzAyMDI1MDQ3WhcNMjYwMzA5MDI1MDQ3WjAYMRYwFAYD VQQDEw02OWE0ZmIwOC04YTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yEGBwCTe4I93MdgeMwvDwhNkY7ZoD0ODeIOQXLMmpqoCDPXOSJ1dM/WnL9/ KUjjNtqrh6d+XkLwvesKJELk31KKyXNlXBPOTpsWQ4d3I6k1v9dF9tiX0fKZqIu/ qO8BBDmWewSSZXPaYjrKN/i3RTiZRUQY3/NgH5410N8s2kouqSvv8+EcFDn3B24Z LQlHLLHXx91XxxvUFhSbd5/q1s6hOGo2bJhFQ/gZHWedidwiRyhrfqNDE5ACyS4z +2OXp0yBiSo4jR+KziqempKblVjaJ2k4PaI4G4v/V8PpImsNlVcgwj+Qe2ZybAG/ 9tX5s2xveJTOkAnALXjCbdL3mQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLVGteLj +GVgv2FZNpmrGRT2kiC5MB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM5AAXUbrc3OmVrQ6HNDG83GR+qSEm9fCWjT6tV3P/cOD5GmE1FUvDSNuwXPm hhpB7NQy0nkm11Y4d/Sj5rj6oc2+gGKG2K8ldGwRBPwAseZKrI4Ze2a+XgkiH8cp oFkGvuqTWRFtxAiPl+YVmSTdHxd2PESd8abclZBDwq6kN/cTLJPBqkgQGwUPn4Ss R6I2sE0kObpGPIPyI+usGSg9kgKvdwks01hzNUB40moR1gaCtiYSkilo11vZOugt MNwrKyimbriz2atghDxBQt9EuMmIM12u2A6AgBCU63ZqQz71NufbXdxCvcoVHbKW 13XJUFnlTq72Fv+gp6cY4hnWcg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:50:56 2026 by rpki-client