$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: yfqkwiu10wxCWTctx77KEesBdWArvWxkteLWee50cKM= Subject key identifier: B0:BD:85:B8:7F:40:B4:E8:55:1C:6A:FF:93:1E:E3:43:0B:0C:A0:3B Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 024F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0241 Signing time: Mon 02 Mar 2026 01:21:49 +0000 Manifest this update: Mon 02 Mar 2026 01:21:47 +0000 Manifest next update: Mon 09 Mar 2026 01:21:47 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: kZQALEM02yOj27asVOWzlpz5G073+tbjjyhqbBq5Y0A=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: WkBrG4Ptn2oOu7MUQprdMpFUUGYiR0bDGLQIFpoza1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Mar 2 01:21:47 2026 GMT Not After : Mar 9 01:21:47 2026 GMT Subject: CN=69a4e62c-b525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:32:14:6a:ed:92:02:da:84:02:2a:d7:4e: 63:62:c8:9d:34:c7:0d:d1:0b:ea:89:c7:13:d9:9a: 77:3e:91:12:01:e9:d8:eb:0f:ed:95:41:f0:fb:74: cc:28:f6:80:07:47:5e:5c:1a:a8:43:fb:3a:c2:aa: 01:4d:5d:0a:e6:02:a4:c1:8b:92:48:0a:6b:05:5b: 29:22:75:86:bc:b2:5b:cc:d0:07:73:92:d9:40:51: 3a:d9:21:d8:c1:35:d4:ed:82:5c:43:e6:26:bb:c0: 31:4d:2a:31:7d:26:c3:34:b1:c8:38:37:ba:23:5f: 59:48:c6:36:22:23:11:09:25:a8:12:0e:4b:18:b0: 1d:46:1f:6f:06:8f:c0:70:15:4e:e9:b0:9a:fe:86: 15:fb:51:8c:db:03:63:34:14:45:59:ee:6b:83:3f: 2e:1e:6c:76:9e:d2:91:4e:8b:a4:1c:f6:5a:55:73: df:e5:26:70:b8:e5:f8:bd:8d:17:f1:b0:36:7b:c5: f7:6c:a7:30:bd:c3:aa:07:1d:a4:a2:97:79:aa:45: f2:ac:b3:00:18:9c:b6:00:79:fd:7d:c2:66:e2:fe: 31:73:a2:18:50:61:e4:36:85:7d:97:2e:c5:ff:fc: 6f:26:9e:52:77:f3:a9:72:94:2e:da:62:e1:8a:45: 28:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BD:85:B8:7F:40:B4:E8:55:1C:6A:FF:93:1E:E3:43:0B:0C:A0:3B X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:4e:24:52:67:91:ef:f7:9c:92:54:76:94:e2:3c:a9:ca:a4: cb:68:3d:1f:5e:53:f8:c1:ff:54:85:7a:d2:a0:26:d7:49:4d: 32:f2:1f:0c:10:dc:ca:d5:39:0e:d9:f6:57:42:41:8b:ec:95: 7f:93:25:bb:c0:b9:6f:48:9e:5f:e3:ab:07:87:64:3e:4c:5c: ea:55:30:f7:20:74:60:18:9d:07:e1:2d:90:27:25:6e:2b:15: d3:be:81:c3:2b:55:39:90:d4:30:fb:19:9d:f1:17:56:07:5f: 2b:00:0a:76:b4:8b:a9:3b:ff:32:8a:7d:50:4a:5b:1d:1b:0a: f4:9a:b4:e1:42:ef:59:88:b2:e3:e8:b8:45:51:64:a5:6f:9a: 2d:be:f9:6c:2b:8d:5b:54:c9:32:4f:00:d4:e8:39:e4:1c:00: b9:c3:0c:1b:54:b1:ab:51:0d:56:a5:af:bf:4f:c7:33:52:1e: 44:3c:21:d2:fa:26:91:db:9d:90:4f:57:43:06:26:a4:bd:72: fb:15:13:5c:dd:3f:a4:58:8e:3e:04:cf:46:ec:9b:90:d5:34: 34:5b:6f:60:d9:b7:69:c7:32:a3:af:79:ea:3f:75:37:ca:0f: 3b:c3:5f:d9:d8:84:3a:7f:82:a4:f3:72:f8:dd:3f:ef:b5:69: 03:26:12:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjYwMzAyMDEyMTQ3WhcNMjYwMzA5MDEyMTQ3WjAYMRYwFAYD VQQDEw02OWE0ZTYyYy1iNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0oyFGrtkgLahAIq105jYsidNMcN0QvqiccT2Zp3PpESAenY6w/tlUHw+3TM KPaAB0deXBqoQ/s6wqoBTV0K5gKkwYuSSAprBVspInWGvLJbzNAHc5LZQFE62SHY wTXU7YJcQ+Ymu8AxTSoxfSbDNLHIODe6I19ZSMY2IiMRCSWoEg5LGLAdRh9vBo/A cBVO6bCa/oYV+1GM2wNjNBRFWe5rgz8uHmx2ntKRToukHPZaVXPf5SZwuOX4vY0X 8bA2e8X3bKcwvcOqBx2kopd5qkXyrLMAGJy2AHn9fcJm4v4xc6IYUGHkNoV9ly7F //xvJp5Sd/OpcpQu2mLhikUoAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLC9hbh/ QLToVRxq/5Me40MLDKA7MB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjE4kUmeR7/ecklR2lOI8qcqky2g9H15T+MH/VIV60qAm10lNMvIfDBDcytU5 Dtn2V0JBi+yVf5Mlu8C5b0ieX+OrB4dkPkxc6lUw9yB0YBidB+EtkCclbisV076B wytVOZDUMPsZnfEXVgdfKwAKdrSLqTv/Mop9UEpbHRsK9Jq04ULvWYiy4+i4RVFk pW+aLb75bCuNW1TJMk8A1Og55BwAucMMG1Sxq1ENVqWvv0/HM1IeRDwh0vomkdud kE9XQwYmpL1y+xUTXN0/pFiOPgTPRuybkNU0NFtvYNm3accyo6956j91N8oPO8Nf 2diEOn+CpPNy+N0/77VpAyYS8w== -----END CERTIFICATE-----Generated at Mon Mar 2 15:33:35 2026 by rpki-client