$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: x/F8hxVj1bPFbK5C1fikzD5HteNF8v4vFmcTvGQoF6o= Subject key identifier: BF:C5:87:2E:55:FB:96:53:86:46:67:F1:44:55:EB:84:08:D3:8C:96 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 0233 Signing time: Sun 01 Mar 2026 03:27:58 +0000 Manifest this update: Sun 01 Mar 2026 03:27:57 +0000 Manifest next update: Sun 08 Mar 2026 03:27:57 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: W/krb/4rc4pUWnoREGR8lIw+qoI2B+3l1BFGjlrZBpA=) 2: D62511F6C41D11F08D2E621EC4F9AE02.roa (hash: KbkzuU5qC68AOUq0JQmcukOnqpcHO3TNFWyQWU16A8E=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: P40/jJ7W+/O+PiJ/8mhL5CI3A7Dxo/gaXDncIVQuKdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Mar 1 03:27:57 2026 GMT Not After : Mar 8 03:27:57 2026 GMT Subject: CN=69a3b23e-ed8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:fa:ce:fc:d7:b8:95:b4:df:84:8a:2f:8c:60: 66:e8:1f:dc:5f:52:c3:1f:52:e2:b0:78:b1:ad:bb: 7c:e4:02:11:89:ff:7c:ed:e2:bc:7f:55:cd:52:03: 34:37:2e:f7:fc:1f:da:e6:4e:64:55:30:56:c0:37: 10:fd:a3:7d:5c:8d:b8:16:dd:57:6e:4a:5e:4a:d8: bd:12:db:3b:3a:d2:58:f7:e8:c8:7f:99:3c:79:f1: 1b:b6:f5:e9:5c:f9:9d:17:38:d3:02:a0:42:94:fe: 55:cd:c0:28:48:b5:6a:ed:45:da:53:c3:b9:fd:3b: a1:e0:b2:6e:3e:f8:a3:31:fb:ae:1b:40:01:b0:d1: 2f:2a:08:c8:5a:ce:81:24:0c:c0:fa:0f:2b:6f:ef: 79:75:a2:f1:ee:94:21:e4:41:81:ca:bd:c5:34:4b: 82:65:79:34:db:53:e8:b1:35:d7:b9:ab:3c:c4:0d: 3b:1d:d4:4c:12:61:a7:29:c9:63:ed:e8:c5:69:63: 07:c7:8d:18:0f:9a:75:94:b5:90:73:cf:f2:d1:43: ef:1e:80:8b:f9:d3:0c:47:ec:40:f1:bb:3f:6d:11: d6:79:08:d2:46:b6:6c:4e:8f:42:7e:cc:9f:4e:94: d5:eb:8b:16:5c:99:ad:59:c6:2b:fb:cc:a3:ed:b1: 61:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C5:87:2E:55:FB:96:53:86:46:67:F1:44:55:EB:84:08:D3:8C:96 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:b0:09:7c:16:ba:1d:c5:20:03:78:45:ed:f7:b8:bf:b3:f8: 42:75:b3:1b:f4:8b:84:49:ff:68:55:9b:57:1b:88:51:b1:76: 0c:10:10:6d:d0:7c:76:5d:3a:c4:87:5e:af:f8:da:e9:04:1d: 0d:14:7a:57:32:3c:0b:bd:8a:bd:bd:18:e1:4c:e7:20:8a:a5: 47:7d:be:30:5f:31:bd:12:6f:e2:d1:11:80:a8:10:39:f6:e7: 2f:12:3a:fe:d5:2e:e0:15:86:9f:e0:4b:fe:72:4b:79:63:23: 70:84:0e:c5:ea:75:3e:0c:18:36:74:b7:87:1e:63:9e:2b:7a: 3a:68:92:d5:37:a8:d7:2d:e3:c8:5e:9a:24:1f:f4:16:da:6a: 91:72:33:a6:87:4c:d0:38:6e:5d:b6:46:f1:34:3a:bb:bd:e1: a6:58:95:56:cb:50:15:88:2d:db:a2:45:51:a2:dc:e9:f3:f5: 31:16:a0:1b:3e:e7:69:8b:b7:94:e6:86:70:76:5a:67:c7:c8: 3f:ba:f3:19:6a:68:14:e7:cc:b4:4b:3b:4f:ec:5c:d5:86:b1: 83:d4:f0:7b:75:92:b8:3a:69:ee:39:0a:06:ad:8a:33:3b:89: 6d:56:8c:b1:5f:0f:a3:bf:66:c8:62:ac:d7:23:95:68:4e:53: cc:d5:09:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjYwMzAxMDMyNzU3WhcNMjYwMzA4MDMyNzU3WjAYMRYwFAYD VQQDDA02OWEzYjIzZS1lZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjfrO/Ne4lbTfhIovjGBm6B/cX1LDH1LisHixrbt85AIRif987eK8f1XNUgM0 Ny73/B/a5k5kVTBWwDcQ/aN9XI24Ft1XbkpeSti9Ets7OtJY9+jIf5k8efEbtvXp XPmdFzjTAqBClP5VzcAoSLVq7UXaU8O5/Tuh4LJuPvijMfuuG0ABsNEvKgjIWs6B JAzA+g8rb+95daLx7pQh5EGByr3FNEuCZXk021PosTXXuas8xA07HdRMEmGnKclj 7ejFaWMHx40YD5p1lLWQc8/y0UPvHoCL+dMMR+xA8bs/bRHWeQjSRrZsTo9Cfsyf TpTV64sWXJmtWcYr+8yj7bFhdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL/Fhy5V +5ZThkZn8URV64QI04yWMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADLAJfBa6HcUgA3hF7fe4v7P4QnWzG/SLhEn/aFWbVxuIUbF2DBAQbdB8dl06 xIder/ja6QQdDRR6VzI8C72Kvb0Y4UznIIqlR32+MF8xvRJv4tERgKgQOfbnLxI6 /tUu4BWGn+BL/nJLeWMjcIQOxep1PgwYNnS3hx5jnit6OmiS1Teo1y3jyF6aJB/0 FtpqkXIzpodM0DhuXbZG8TQ6u73hpliVVstQFYgt26JFUaLc6fP1MRagGz7naYu3 lOaGcHZaZ8fIP7rzGWpoFOfMtEs7T+xc1Yaxg9Twe3WSuDpp7jkKBq2KMzuJbVaM sV8Po79myGKs1yOVaE5TzNUJhQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:30:54 2026 by rpki-client