$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: JT9Sb4dv3qa3X0qeOU7pBWzA2G/KVkpeWw1DETapy6M= Subject key identifier: CB:23:9D:F1:C9:F0:9E:F4:9F:A5:1A:9B:3F:3E:62:FA:46:90:9F:28 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 7E Signing time: Mon 02 Mar 2026 00:29:18 +0000 Manifest this update: Mon 02 Mar 2026 00:29:16 +0000 Manifest next update: Mon 09 Mar 2026 00:29:16 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: xzBI8xtvNVJYg/LU5q7JnF455kPERJbft8Su//d+umc=) 2: 1AC14F60FC1C11F0AA0D3BE4396F56BC.roa (hash: d4/1Al7pieoNWzJ7p3qgYf6c/kIqYCPcAyGt54Cj2Fs=) 3: 1B34EF06FC1C11F0AA0D3BE4396F56BC.roa (hash: Dds/tHpcyRYMFvjsIod+yPijDRVhgC1FwQ1db6dOAxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Mar 2 00:29:16 2026 GMT Not After : Mar 9 00:29:16 2026 GMT Subject: CN=69a4d9dd-9a3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:72:87:12:3d:d1:2a:9a:05:cc:ae:96:c0: 3c:00:66:e6:ad:6b:22:79:ce:7e:ac:ea:16:35:d9: 86:60:71:ac:1e:d8:8f:43:41:6c:3c:95:63:6f:ad: 15:70:e6:c6:fc:d0:dc:7a:22:4d:7d:8b:59:cd:a5: bc:b4:e8:56:17:4b:c4:c4:90:87:bb:8e:34:7b:68: e8:9f:53:0b:2f:05:58:03:e1:40:a1:11:82:38:11: 59:ae:41:e9:b5:03:4c:84:a6:53:c5:c2:2e:fe:bf: dd:68:f4:84:06:16:48:d4:55:b3:8d:ea:1a:ca:e7: c9:0d:2d:38:2f:9e:1d:e9:11:ae:50:b7:8b:53:62: 15:e7:ec:9c:22:0d:0d:6a:89:c9:a3:86:3c:54:76: 45:be:0b:a6:9c:fa:5b:4f:0d:8c:e8:75:e5:ed:0d: 5a:b5:6f:1d:0c:e7:3a:ba:e0:91:43:8f:2d:57:24: 07:57:a3:fc:00:81:2d:6f:5f:c1:f8:89:00:89:a9: ba:3b:3b:fc:62:28:28:27:bd:bd:9e:5f:b2:9f:df: 35:4a:db:3b:17:49:01:5c:3b:32:40:b8:2b:c8:6d: ca:86:4b:2e:4d:85:a4:86:15:09:cd:60:4c:c5:4f: aa:f6:11:6e:44:b0:ad:0c:15:a0:ce:73:8c:b4:45: 5e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:23:9D:F1:C9:F0:9E:F4:9F:A5:1A:9B:3F:3E:62:FA:46:90:9F:28 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:7c:31:25:50:11:61:c6:e5:b3:97:6e:24:ce:23:1b:ca:7f: 39:5b:ae:6b:a6:1e:c5:3e:7e:f4:a0:02:b6:f9:49:f2:1f:10: d2:1e:d8:a0:9c:ea:85:83:89:bb:41:76:e6:b2:15:e2:24:87: 18:23:31:b2:08:cc:40:76:f2:32:eb:b7:1b:f5:3f:de:17:91: 04:cb:60:48:52:89:a1:7f:17:4f:29:c8:4c:ae:35:16:05:de: 10:f1:30:e9:82:5e:ae:66:ba:00:7f:5d:bf:75:f7:3e:2a:65: bc:3f:55:37:5d:ab:d8:7f:85:23:0f:d3:9e:09:88:d0:98:2b: b8:bf:8a:14:02:0e:af:25:67:cb:50:39:cb:93:75:70:1a:7f: 1c:94:db:f3:c0:38:b7:cc:8a:93:95:29:51:73:fe:39:4d:f4: 7a:1c:df:c8:1f:8f:99:a1:b3:1f:e8:c1:13:fa:63:ed:92:64: 61:69:2d:b5:93:41:2b:9a:55:41:07:b0:52:1b:e7:95:2f:b2: 74:f6:6b:db:5f:cd:8f:6f:67:52:0c:62:8b:32:7c:4d:8f:c6: 0d:54:3f:2e:d4:8a:78:01:53:79:5e:d6:0d:83:06:de:f8:d3: 6a:8e:cc:b7:8a:b2:15:18:77:9e:a4:b5:74:58:5d:04:d8:a2: c8:24:b1:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4RUMxMTAvBgNVBAUTKEQ4MjdCNjg0M0VCN0Y2QjlGMEVENUYyRkY3MjM0NEE1 MkMwNEI0OUYwHhcNMjYwMzAyMDAyOTE2WhcNMjYwMzA5MDAyOTE2WjAYMRYwFAYD VQQDEw02OWE0ZDlkZC05YTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHhyhxI90SqaBcyulsA8AGbmrWsiec5+rOoWNdmGYHGsHtiPQ0FsPJVjb60V cObG/NDceiJNfYtZzaW8tOhWF0vExJCHu440e2jon1MLLwVYA+FAoRGCOBFZrkHp tQNMhKZTxcIu/r/daPSEBhZI1FWzjeoayufJDS04L54d6RGuULeLU2IV5+ycIg0N aonJo4Y8VHZFvgumnPpbTw2M6HXl7Q1atW8dDOc6uuCRQ48tVyQHV6P8AIEtb1/B +IkAiam6Ozv8YigoJ729nl+yn981Sts7F0kBXDsyQLgryG3KhksuTYWkhhUJzWBM xU+q9hFuRLCtDBWgznOMtEVezwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMsjnfHJ 8J70n6Uamz8+YvpGkJ8oMB8GA1UdIwQYMBaAFNgntoQ+t/a58O1fL/cjRKUsBLSf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThFQy82QkY4NkI4NDY2 MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzlybnc3Vjh2OXlORXBTd0V0 SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy82QkY4NkI4NDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8yQ2UyaEQ2Mzly bnc3Vjh2OXlORXBTd0V0SjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgnwxJVARYcbls5duJM4jG8p/OVuua6YexT5+9KACtvlJ8h8Q0h7YoJzqhYOJ u0F25rIV4iSHGCMxsgjMQHbyMuu3G/U/3heRBMtgSFKJoX8XTynITK41FgXeEPEw 6YJerma6AH9dv3X3PiplvD9VN12r2H+FIw/TngmI0JgruL+KFAIOryVny1A5y5N1 cBp/HJTb88A4t8yKk5UpUXP+OU30ehzfyB+PmaGzH+jBE/pj7ZJkYWkttZNBK5pV QQewUhvnlS+ydPZr21/Nj29nUgxiizJ8TY/GDVQ/LtSKeAFTeV7WDYMG3vjTao7M t4qyFRh3nqS1dFhdBNiiyCSxaA== -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:55 2026 by rpki-client