$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft File: PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json) Hash identifier: TKAa10Oz7cqPMzjfjaLOsMzsNi2huGHMyVyZImvbkKo= Subject key identifier: 17:DE:6D:9C:C3:2F:56:D4:5F:CB:81:4E:3B:51:F0:13:5F:02:FC:A5 Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 Certificate issuer: /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft Manifest number: 03D7 Signing time: Sun 01 Mar 2026 23:00:00 +0000 Manifest this update: Sun 01 Mar 2026 22:59:59 +0000 Manifest next update: Sun 08 Mar 2026 22:59:59 +0000 Files and hashes: 1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: YSttLcTu1vRrIFX87kCJfXv1cTQG3e8C4i2tOyF0y58=) 2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: lCNfDmCO6Vy6uu5QW43aJqJrNK0XuY+KKPY1oeY2SkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91607DE, serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Validity Not Before: Mar 1 22:59:59 2026 GMT Not After : Mar 8 22:59:59 2026 GMT Subject: CN=69a4c4ef-f55f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2a:91:61:e7:64:2d:b6:cc:02:12:20:e7:3f: 75:ab:d7:a1:1c:08:6c:bc:c3:bf:b3:3f:8f:44:39: ac:36:d7:e5:d8:d1:5c:f1:a3:dc:0c:ee:fa:e0:9a: 6c:71:39:b1:11:a1:ed:e4:71:60:b9:3a:69:34:bc: 93:91:66:a6:a5:92:ea:96:f3:08:c8:e7:3e:e0:88: f8:02:67:b1:c5:ea:4a:c0:e9:d3:2a:3c:e1:5e:99: 14:73:19:3e:1c:8e:70:e8:9a:2d:3a:d0:ff:b7:41: ec:d2:1d:e3:32:90:d7:47:99:22:af:5e:b5:f8:73: b6:ca:e0:a3:41:6d:7e:3f:e7:c8:30:0c:44:99:f1: 52:36:b1:8b:46:97:b1:67:a1:d3:c6:33:21:6a:21: 3a:b2:39:67:cf:64:49:1f:04:81:f9:34:db:76:09: 68:5c:56:7c:94:a8:9b:c6:a8:3c:40:11:4a:ee:27: 55:eb:a1:6d:4f:57:cf:87:65:08:c2:ba:c0:6e:49: 7c:ab:80:e6:79:90:cc:df:bb:39:66:ea:c1:4d:41: 37:aa:69:49:92:c2:9b:d7:0b:57:4a:dc:4b:b1:53: e1:96:6a:96:8c:f5:a9:44:e7:3f:aa:e7:8a:ec:e9: 08:1a:8b:58:66:be:27:01:f0:cd:56:47:30:70:21: 43:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DE:6D:9C:C3:2F:56:D4:5F:CB:81:4E:3B:51:F0:13:5F:02:FC:A5 X509v3 Authority Key Identifier: keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:63:71:4a:b6:ae:16:eb:aa:4a:f0:21:4e:af:28:da:cf:5f: 6d:ec:a1:a0:32:57:74:1e:d9:6d:42:49:10:25:1e:5b:06:08: 0a:a3:d7:ff:c4:a1:0b:d4:c1:16:28:75:26:f1:36:a3:fa:6b: 3f:89:ad:d8:bd:a2:da:e4:22:04:07:3f:b7:e8:f8:2f:d2:3e: 40:e3:ea:de:f1:07:30:bc:ea:5f:45:14:b7:b4:8b:a1:f2:b2: 11:fa:7c:e1:b1:79:cc:9e:02:ea:60:71:1f:ff:ca:ad:2b:db: 68:36:c4:1a:ba:31:58:3f:87:6f:bb:c8:a2:03:b6:31:c3:ce: 58:8f:d5:6b:47:6b:66:b6:e7:76:6c:b5:e6:ca:98:1f:24:65: a5:3a:dc:09:0e:4b:da:40:fd:6f:54:59:cd:1b:a7:51:79:4d: 8b:4d:4a:c4:3a:16:ea:32:f8:2e:30:a4:bd:aa:55:d8:7b:71: d7:8a:05:3a:ef:6a:ae:f1:95:77:57:77:fc:c7:23:84:b4:e3: d7:7c:ae:bf:1e:ae:58:8e:d9:56:fa:ca:5a:d0:22:3f:22:6b: 65:f2:5c:e7:2a:4e:20:6c:86:1d:e5:e6:2b:d3:bf:85:94:09: ce:0e:fe:8b:b8:a3:1f:5d:63:37:70:55:2f:00:32:82:93:0f: 09:01:aa:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3REUxMTAvBgNVBAUTKDNEMEE4OEMwQ0NBM0VFODY3N0NEMTdERjNFRTg2REU3 MURGQzExMjkwHhcNMjYwMzAxMjI1OTU5WhcNMjYwMzA4MjI1OTU5WjAYMRYwFAYD VQQDEw02OWE0YzRlZi1mNTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyqRYedkLbbMAhIg5z91q9ehHAhsvMO/sz+PRDmsNtfl2NFc8aPcDO764Jps cTmxEaHt5HFguTppNLyTkWampZLqlvMIyOc+4Ij4AmexxepKwOnTKjzhXpkUcxk+ HI5w6JotOtD/t0Hs0h3jMpDXR5kir161+HO2yuCjQW1+P+fIMAxEmfFSNrGLRpex Z6HTxjMhaiE6sjlnz2RJHwSB+TTbdgloXFZ8lKibxqg8QBFK7idV66FtT1fPh2UI wrrAbkl8q4DmeZDM37s5ZurBTUE3qmlJksKb1wtXStxLsVPhlmqWjPWpROc/queK 7OkIGotYZr4nAfDNVkcwcCFDjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBfebZzD L1bUX8uBTjtR8BNfAvylMB8GA1UdIwQYMBaAFD0KiMDMo+6Gd80X3z7obecd/BEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDdERS9DNzY4MTRDNkJC NUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdvWjN6UmZmUHVodDV4MzhF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRcUl3TXlqN29aM3pSZmZQdWh0NXgzOEVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDdERS9DNzY4MTRDNkJCNUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdv WjN6UmZmUHVodDV4MzhFU2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL2NxSrauFuuqSvAhTq8o2s9fbeyhoDJXdB7ZbUJJECUeWwYICqPX/8ShC9TB Fih1JvE2o/prP4mt2L2i2uQiBAc/t+j4L9I+QOPq3vEHMLzqX0UUt7SLofKyEfp8 4bF5zJ4C6mBxH//KrSvbaDbEGroxWD+Hb7vIogO2McPOWI/Va0drZrbndmy15sqY HyRlpTrcCQ5L2kD9b1RZzRunUXlNi01KxDoW6jL4LjCkvapV2Htx14oFOu9qrvGV d1d3/McjhLTj13yuvx6uWI7ZVvrKWtAiPyJrZfJc5ypOIGyGHeXmK9O/hZQJzg7+ i7ijH11jN3BVLwAygpMPCQGqmA== -----END CERTIFICATE-----Generated at Mon Mar 2 08:08:19 2026 by rpki-client