$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft (raw, json) Hash identifier: vw42KtgAOJMWXgANEkYjVtNBFsW874844JBAKjdE1dQ= Subject key identifier: 55:17:E8:90:36:37:FE:0C:05:72:8C:61:97:78:D0:24:3A:48:07:88 Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft Manifest number: BA Signing time: Mon 02 Mar 2026 15:17:01 +0000 Manifest this update: Mon 02 Mar 2026 15:17:01 +0000 Manifest next update: Mon 09 Mar 2026 15:17:01 +0000 Files and hashes: 1: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl (hash: rOvMWZfltlicS/VpKONBCVHeMqvAHnOopM4uMO/Ucg8=) 2: 572A655C6E8E11F0BC00AD68C4F9AE02.roa (hash: FmJuf298hS3Cq5FkDNYaTuFTUFK1cdgTe8R72xFRVHQ=) 3: 692243D640AA11F096F2746AC4F9AE02.roa (hash: hrId0XK3QT59rfCxOyEsibtNRieUfn4KutYpjg3t3lE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Mar 2 15:17:01 2026 GMT Not After : Mar 9 15:17:01 2026 GMT Subject: CN=69a5a9ed-9118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6e:1c:99:9f:df:00:e9:27:ed:c1:90:82:b7: 30:9f:53:b0:01:cd:47:89:63:f9:ff:df:0c:58:b5: 91:fe:d3:30:29:06:96:7d:91:d9:40:d4:b1:d5:2c: c1:44:e8:50:01:dc:93:8a:a9:b6:92:1b:5c:b5:ba: f5:50:83:a8:59:50:8f:6b:fb:9b:5b:e6:8e:62:5e: 36:c4:57:60:e3:9c:c8:eb:18:85:fc:aa:63:1e:92: 87:3e:00:3b:43:af:98:58:af:c0:1e:e7:5e:1f:02: 66:f0:82:cb:d8:81:21:6a:bc:28:43:66:91:8f:39: 7a:78:c0:e3:14:b2:d9:44:9d:1c:b6:26:17:4c:30: 21:e3:2a:3c:a9:33:51:11:9d:3d:0d:0f:dc:ff:ff: 0b:37:3d:a0:9d:9c:d6:be:0b:e1:ee:32:f8:1e:e4: cd:2c:8b:88:2e:c7:1b:b0:e8:af:c8:04:a9:b9:10: 67:4b:63:d3:e6:67:c3:09:33:4f:87:77:b6:90:fe: 4b:99:0c:73:7e:86:47:91:d7:5e:7c:05:a6:1a:de: cd:ff:a9:25:7a:70:03:bb:1f:f2:53:82:fe:59:14: 90:89:4d:95:1d:6f:f1:51:b9:83:1b:d3:aa:83:66: e0:da:da:80:98:95:03:ac:f5:d3:ba:9f:6c:ca:44: aa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:17:E8:90:36:37:FE:0C:05:72:8C:61:97:78:D0:24:3A:48:07:88 X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c7:37:70:b8:a1:48:63:f5:16:4a:9d:52:63:51:03:2e:b4: a0:96:a9:c3:c7:bc:cf:1b:aa:95:01:cd:9c:34:97:46:a0:9f: 1d:03:b1:0c:e0:16:37:f1:84:b5:d4:73:44:7e:5c:f2:dd:dc: 85:b6:de:74:05:a2:f0:64:c1:90:3d:1e:28:ae:cc:df:a4:15: 77:10:b0:95:48:8f:72:4b:1d:b3:05:d5:9c:40:c2:86:47:c0: d1:25:7e:02:cb:96:8f:f6:48:ba:08:d1:6e:34:88:23:22:d9: 37:05:6f:56:de:1a:e3:12:24:ba:01:00:6a:c1:dc:d1:ae:5a: d0:c8:24:96:9d:b7:1b:b0:05:2a:b2:bc:ba:58:30:15:7f:b3: f1:14:d8:81:95:35:8b:cf:f1:39:a4:c9:ab:95:65:37:33:9c: 23:7a:2c:0f:58:02:00:17:d3:51:c7:fc:51:20:61:8d:a1:d2: 5f:07:7a:66:bf:55:fa:80:6d:79:86:65:97:eb:47:49:89:ac: 36:6f:33:c0:26:2f:c6:53:34:d1:fe:ff:cb:b5:c5:5f:46:f5: 0f:68:ed:c0:e8:26:9a:69:58:14:0f:f2:3c:27:ef:88:e2:20: 55:7a:39:fd:10:fb:4c:de:85:b8:a7:32:50:b7:27:bc:c7:04: fb:2a:a0:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2RkYxMTAvBgNVBAUTKERGQ0E4RkRBQTVGRUY5NDhFMEVDRjZGOUM3MDM2MzlC NTY1MzlEOTkwHhcNMjYwMzAyMTUxNzAxWhcNMjYwMzA5MTUxNzAxWjAYMRYwFAYD VQQDEw02OWE1YTllZC05MTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqG4cmZ/fAOkn7cGQgrcwn1OwAc1HiWP5/98MWLWR/tMwKQaWfZHZQNSx1SzB ROhQAdyTiqm2khtctbr1UIOoWVCPa/ubW+aOYl42xFdg45zI6xiF/KpjHpKHPgA7 Q6+YWK/AHudeHwJm8ILL2IEharwoQ2aRjzl6eMDjFLLZRJ0ctiYXTDAh4yo8qTNR EZ09DQ/c//8LNz2gnZzWvgvh7jL4HuTNLIuILscbsOivyASpuRBnS2PT5mfDCTNP h3e2kP5LmQxzfoZHkddefAWmGt7N/6klenADux/yU4L+WRSQiU2VHW/xUbmDG9Oq g2bg2tqAmJUDrPXTup9sykSqtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFUX6JA2 N/4MBXKMYZd40CQ6SAeIMB8GA1UdIwQYMBaAFN/Kj9ql/vlI4Oz2+ccDY5tWU52Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTZGRi8yREE1NTkxMjE0 MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1Vamc3UGI1eHdOam0xWlRu WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTZGRi8yREE1NTkxMjE0MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1V amc3UGI1eHdOam0xWlRuWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh8c3cLihSGP1FkqdUmNRAy60oJapw8e8zxuqlQHNnDSXRqCfHQOxDOAWN/GE tdRzRH5c8t3chbbedAWi8GTBkD0eKK7M36QVdxCwlUiPcksdswXVnEDChkfA0SV+ AsuWj/ZIugjRbjSIIyLZNwVvVt4a4xIkugEAasHc0a5a0Mgklp23G7AFKrK8ulgw FX+z8RTYgZU1i8/xOaTJq5VlNzOcI3osD1gCABfTUcf8USBhjaHSXwd6Zr9V+oBt eYZll+tHSYmsNm8zwCYvxlM00f7/y7XFX0b1D2jtwOgmmmlYFA/yPCfviOIgVXo5 /RD7TN6FuKcyULcnvMcE+yqgjg== -----END CERTIFICATE-----Generated at Mon Mar 2 21:26:20 2026 by rpki-client