$ rpki-client -vvf rpki.apnic.net/member_repository/A91652B5/6FFB624AC5B211F094A0792BC4F9AE02/7SOo6J5WvL2hwA5JfEiD15XlLVQ.mft File: 7SOo6J5WvL2hwA5JfEiD15XlLVQ.mft (raw, json) Hash identifier: x6KqRIrCxQlaJDma1eFRnlVzslTye68BP+22QpXz30g= Subject key identifier: 7B:89:29:D2:AB:6D:A8:13:9B:A0:D2:1C:10:A1:47:A1:BF:B3:63:56 Authority key identifier: ED:23:A8:E8:9E:56:BC:BD:A1:C0:0E:49:7C:48:83:D7:95:E5:2D:54 Certificate issuer: /CN=A91652B5/serialNumber=ED23A8E89E56BCBDA1C00E497C4883D795E52D54 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7SOo6J5WvL2hwA5JfEiD15XlLVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652B5/6FFB624AC5B211F094A0792BC4F9AE02/7SOo6J5WvL2hwA5JfEiD15XlLVQ.mft Manifest number: 37 Signing time: Sun 01 Mar 2026 09:58:34 +0000 Manifest this update: Sun 01 Mar 2026 09:58:33 +0000 Manifest next update: Sun 08 Mar 2026 09:58:33 +0000 Files and hashes: 1: 7SOo6J5WvL2hwA5JfEiD15XlLVQ.crl (hash: IOoZWQiZNs+sjo1jilB8D/UKKOaQB7vRVAQEFaAZRd0=) 2: 53D55B1CD1AF11F0AD05C10CC4F9AE02.roa (hash: BFnRmgGCmGi1DlIbxfny1R7E2NmzYkJKxx7x3z4tlxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652B5/6FFB624AC5B211F094A0792BC4F9AE02/7SOo6J5WvL2hwA5JfEiD15XlLVQ.crl rsync://rpki.apnic.net/member_repository/A91652B5/6FFB624AC5B211F094A0792BC4F9AE02/7SOo6J5WvL2hwA5JfEiD15XlLVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7SOo6J5WvL2hwA5JfEiD15XlLVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652B5, serialNumber=ED23A8E89E56BCBDA1C00E497C4883D795E52D54 Validity Not Before: Mar 1 09:58:33 2026 GMT Not After : Mar 8 09:58:33 2026 GMT Subject: CN=69a40dc9-82d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9f:e9:75:72:d3:08:42:2a:1d:29:9d:03:4e: 90:ec:e7:b8:9a:39:a7:52:58:cc:68:83:e4:35:30: 24:55:b9:06:42:38:70:d0:ef:81:82:ed:c2:39:e1: ab:52:f9:c4:90:d0:b8:61:14:2c:e8:b1:0a:97:ad: 21:ce:65:2a:6c:59:12:44:d7:f8:ff:01:b9:04:09: 32:2a:91:db:fe:4b:7a:bb:f1:a2:05:9c:1a:96:92: b6:2a:a7:1e:5f:15:24:38:0d:02:8c:a2:73:da:30: 87:13:ec:22:53:20:9b:ae:68:7c:e4:47:4e:62:37: 3c:28:b7:6a:91:b3:77:8e:12:bf:75:e6:8f:02:35: ca:03:ed:f4:45:a9:8f:b8:59:60:df:91:22:ac:30: b5:98:49:ba:34:b7:ea:0d:c7:97:1d:28:39:b8:a4: a0:5b:7d:54:58:76:b9:11:b3:a8:dc:93:b1:0d:0b: 8e:62:f3:62:8f:8f:ec:40:eb:81:33:16:ce:00:aa: 74:ca:15:74:25:83:da:b7:dd:56:d6:d8:f0:0b:c0: f3:e6:6d:13:5c:50:4e:82:7d:03:68:2a:18:4e:f3: c6:fe:5d:87:b7:8f:93:05:3e:c4:d8:13:b4:92:10: 1c:a5:cb:a4:58:cf:98:ec:1f:95:ed:7b:ff:21:12: 0e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:89:29:D2:AB:6D:A8:13:9B:A0:D2:1C:10:A1:47:A1:BF:B3:63:56 X509v3 Authority Key Identifier: keyid:ED:23:A8:E8:9E:56:BC:BD:A1:C0:0E:49:7C:48:83:D7:95:E5:2D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652B5/6FFB624AC5B211F094A0792BC4F9AE02/7SOo6J5WvL2hwA5JfEiD15XlLVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7SOo6J5WvL2hwA5JfEiD15XlLVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652B5/6FFB624AC5B211F094A0792BC4F9AE02/7SOo6J5WvL2hwA5JfEiD15XlLVQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:53:7b:6f:84:7d:a5:cc:39:74:db:d7:27:f6:f5:11:4b:86: 86:44:47:5d:8f:7b:76:89:41:d8:fe:b0:b3:46:ce:88:82:e5: 57:54:79:f3:18:09:9a:61:46:a4:2d:0a:33:ab:d0:77:f2:fb: 65:ad:6a:c3:82:41:19:ba:85:79:58:3f:5d:46:97:1c:b9:c0: 9c:14:63:27:79:f6:bc:c2:be:ce:cd:78:29:c8:e3:b2:26:fe: 67:6f:6f:b5:20:c7:d1:66:c5:54:91:28:75:a7:99:05:9f:a7: 15:53:f4:58:9a:c7:89:9d:3a:b5:96:e3:76:f0:37:d1:1e:39: a7:30:27:62:76:3a:cf:4a:0f:45:ff:c8:7b:4f:2c:c3:ac:77: 53:4c:26:bf:b2:d6:e0:1c:7e:59:1a:f7:2c:9d:2e:e7:26:0f: 2e:ce:bb:b9:f8:11:ad:d3:d5:90:0b:f4:a7:e0:71:4a:1a:0d: 74:d1:d7:23:a0:03:41:c8:0e:53:4a:18:fa:93:65:c0:f8:34: 31:68:e5:03:2d:ee:c4:ba:0d:33:27:31:54:51:97:55:a4:db: 2e:88:90:bb:4c:7e:d4:93:1e:a8:bf:3a:86:c8:2e:be:07:37: 7b:25:9f:fa:e6:82:99:ce:1e:b7:c4:7d:f0:21:1c:9e:d2:e4: 8b:a3:96:86 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTJCNTExMC8GA1UEBRMoRUQyM0E4RTg5RTU2QkNCREExQzAwRTQ5N0M0ODgzRDc5 NUU1MkQ1NDAeFw0yNjAzMDEwOTU4MzNaFw0yNjAzMDgwOTU4MzNaMBgxFjAUBgNV BAMTDTY5YTQwZGM5LTgyZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpn+l1ctMIQiodKZ0DTpDs57iaOadSWMxog+Q1MCRVuQZCOHDQ74GC7cI54atS +cSQ0LhhFCzosQqXrSHOZSpsWRJE1/j/AbkECTIqkdv+S3q78aIFnBqWkrYqpx5f FSQ4DQKMonPaMIcT7CJTIJuuaHzkR05iNzwot2qRs3eOEr915o8CNcoD7fRFqY+4 WWDfkSKsMLWYSbo0t+oNx5cdKDm4pKBbfVRYdrkRs6jck7ENC45i82KPj+xA64Ez Fs4AqnTKFXQlg9q33VbW2PALwPPmbRNcUE6CfQNoKhhO88b+XYe3j5MFPsTYE7SS EByly6RYz5jsH5Xte/8hEg43AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUe4kp0qtt qBOboNIcEKFHob+zY1YwHwYDVR0jBBgwFoAU7SOo6J5WvL2hwA5JfEiD15XlLVQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MkI1LzZGRkI2MjRBQzVC MjExRjA5NEEwNzkyQkM0RjlBRTAyLzdTT282SjVXdkwyaHdBNUpmRWlEMTVYbExW US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1NPbzZKNVd2TDJod0E1SmZFaUQxNVhsTFZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MkI1LzZGRkI2MjRBQzVCMjExRjA5NEEwNzkyQkM0RjlBRTAyLzdTT282SjVXdkwy aHdBNUpmRWlEMTVYbExWUS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAmU3tvhH2lzDl029cn9vURS4aGREddj3t2iUHY/rCzRs6IguVXVHnzGAmaYUak LQozq9B38vtlrWrDgkEZuoV5WD9dRpccucCcFGMnefa8wr7OzXgpyOOyJv5nb2+1 IMfRZsVUkSh1p5kFn6cVU/RYmseJnTq1luN28DfRHjmnMCdidjrPSg9F/8h7TyzD rHdTTCa/stbgHH5ZGvcsnS7nJg8uzru5+BGt09WQC/Sn4HFKGg100dcjoANByA5T Shj6k2XA+DQxaOUDLe7Eug0zJzFUUZdVpNsuiJC7TH7Ukx6ovzqGyC6+Bzd7JZ/6 5oKZzh63xH3wIRye0uSLo5aG -----END CERTIFICATE-----Generated at Mon Mar 2 08:04:09 2026 by rpki-client