$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: OfVJRRPfiINGHYDn5R50rpJ/bt350fZqqlW6LLlFcbc= Subject key identifier: 2B:9C:AD:9A:5C:19:3C:80:8E:55:EA:41:2D:C7:41:86:74:AF:B6:FD Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: CA Signing time: Sun 01 Mar 2026 07:59:14 +0000 Manifest this update: Sun 01 Mar 2026 07:59:13 +0000 Manifest next update: Sun 08 Mar 2026 07:59:13 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: YrNE7OSNfQ0evW6BtABWULD0gRiLN8jYJQ2GbAEEawU=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: LbImQdZW2RSWgtVHcpBhymJAYl7D/59tKMuTPJC97Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Mar 1 07:59:13 2026 GMT Not After : Mar 8 07:59:13 2026 GMT Subject: CN=69a3f1d1-2254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:54:05:67:dc:4f:79:86:09:f8:dd:ba:3b:69: 9c:34:52:a2:14:2b:63:be:0f:ac:ef:8b:4c:17:4b: 0f:af:a2:3f:82:d8:89:b7:eb:73:ab:6d:15:9f:4c: 90:b5:86:2b:9b:41:84:e5:63:39:b9:98:d2:b9:d3: 3f:64:f8:f2:39:40:14:c3:2a:c6:cf:f6:6b:ec:a4: 18:f3:a0:be:71:e2:00:40:46:4c:28:a6:46:f1:d9: 58:62:e2:69:19:99:36:d2:3c:7c:bb:84:5c:05:4f: cf:8a:af:5e:40:11:1f:88:1d:4a:03:a2:1f:a6:55: 41:a1:5a:36:6f:3a:fa:52:93:22:db:17:a9:e1:6b: 30:85:bb:91:7c:61:f3:c1:6f:0a:ba:16:f1:27:ca: d7:0e:78:ac:55:4d:70:53:88:67:d0:e6:da:8a:3f: 25:5c:7e:00:ee:77:98:7b:3c:bd:7a:7f:b9:1d:e9: 9c:b8:60:88:00:67:5c:69:11:b9:e0:17:6d:bd:af: 89:d8:a3:ae:7a:6c:0d:95:af:44:19:a7:78:f7:a9: dc:75:5c:85:69:38:d7:f2:84:70:e3:73:a8:8c:8a: a2:57:c2:25:4f:a3:09:1a:51:9e:2e:a1:25:4a:8f: d7:b5:67:62:df:c0:59:b9:3a:ac:a3:58:c5:c0:36: 7a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9C:AD:9A:5C:19:3C:80:8E:55:EA:41:2D:C7:41:86:74:AF:B6:FD X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:8d:e7:65:be:27:cf:de:e1:26:84:c2:e7:77:af:a6:24:d5: 72:b0:e4:b3:dc:95:53:e3:8f:24:9d:03:c7:5e:26:af:22:fe: 98:1c:f2:55:b5:9b:b2:27:4e:6c:f5:a6:9f:fa:d4:8a:94:f5: fe:10:08:6a:d7:5e:c2:a9:c0:eb:ce:60:7b:23:76:a6:92:8a: d6:e0:3e:bd:bf:b4:f0:2c:d4:53:fa:22:a1:5a:cb:81:be:b6: 75:ca:4f:eb:2c:2f:5f:95:fe:2a:15:23:18:52:b5:da:52:93: 6a:88:6d:99:d5:86:c2:6e:ce:c4:6a:2b:31:5d:14:2f:e3:70: 39:c6:2e:17:f0:65:c1:93:c2:ed:72:47:53:59:1d:8a:9c:cd: ce:f1:ff:b6:07:9d:de:8d:fd:a3:d7:a5:fb:b7:30:de:15:ee: e6:eb:cc:b5:28:5f:34:33:40:09:af:1b:99:20:ac:bb:6c:0f: 02:47:1f:6a:f7:18:6f:4b:08:7a:81:6b:ba:c5:c0:cb:90:4a: 45:1e:01:0d:eb:65:1b:c0:6c:36:91:bd:6d:9b:27:5e:ee:b9: f9:f5:74:9b:bf:c6:0a:d8:83:b6:bd:a1:fa:a0:39:b1:32:e2: 07:7b:54:40:e1:7b:b7:ae:84:54:de:05:79:2f:72:3e:20:7c: db:70:1e:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QzMxMTAvBgNVBAUTKEQ4MjU2NjhCMUFDMUI3RjM4MTVGMDdCQ0RBNTdFNzQ4 QzQ5NjRBOUEwHhcNMjYwMzAxMDc1OTEzWhcNMjYwMzA4MDc1OTEzWjAYMRYwFAYD VQQDEw02OWEzZjFkMS0yMjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lQFZ9xPeYYJ+N26O2mcNFKiFCtjvg+s74tMF0sPr6I/gtiJt+tzq20Vn0yQ tYYrm0GE5WM5uZjSudM/ZPjyOUAUwyrGz/Zr7KQY86C+ceIAQEZMKKZG8dlYYuJp GZk20jx8u4RcBU/Piq9eQBEfiB1KA6IfplVBoVo2bzr6UpMi2xep4WswhbuRfGHz wW8KuhbxJ8rXDnisVU1wU4hn0Obaij8lXH4A7neYezy9en+5HemcuGCIAGdcaRG5 4Bdtva+J2KOuemwNla9EGad496ncdVyFaTjX8oRw43OojIqiV8IlT6MJGlGeLqEl So/XtWdi38BZuTqso1jFwDZ6gwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCucrZpc GTyAjlXqQS3HQYZ0r7b9MB8GA1UdIwQYMBaAFNglZosawbfzgV8HvNpX50jElkqa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZDMy81QkY1MTkyQUUw NjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRfT0JYd2U4MmxmblNNU1dT cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZDMy81QkY1MTkyQUUwNjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRf T0JYd2U4MmxmblNNU1dTcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL43nZb4nz97hJoTC53evpiTVcrDks9yVU+OPJJ0Dx14mryL+mBzyVbWbsidO bPWmn/rUipT1/hAIatdewqnA685geyN2ppKK1uA+vb+08CzUU/oioVrLgb62dcpP 6ywvX5X+KhUjGFK12lKTaohtmdWGwm7OxGorMV0UL+NwOcYuF/BlwZPC7XJHU1kd ipzNzvH/tged3o39o9el+7cw3hXu5uvMtShfNDNACa8bmSCsu2wPAkcfavcYb0sI eoFrusXAy5BKRR4BDetlG8BsNpG9bZsnXu65+fV0m7/GCtiDtr2h+qA5sTLiB3tU QOF7t66EVN4FeS9yPiB823AeOg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:00:38 2026 by rpki-client