$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft File: BRnee0hmA7e6W2bauYkgP98ttJQ.mft (raw, json) Hash identifier: 2E6PBvqa7vSrEN7eDCN18RrodFWFjV1rOmT0yzX735g= Subject key identifier: 5A:4A:1D:C6:B2:94:AC:72:AE:20:FC:2F:81:D6:F8:88:C5:85:F9:89 Authority key identifier: 05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 Certificate issuer: /CN=A91912DD/serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Certificate serial: 0CA2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft Manifest number: 0C9A Signing time: Sat 28 Feb 2026 16:41:56 +0000 Manifest this update: Sat 28 Feb 2026 16:41:56 +0000 Manifest next update: Sat 07 Mar 2026 16:41:56 +0000 Files and hashes: 1: BRnee0hmA7e6W2bauYkgP98ttJQ.crl (hash: C+0ikmKr2BfZEDyWeXztIKMSUbE8Zwrb7ugkyPuzRAo=) 2: 05BE20062C5811EAA90F4B0EC4F9AE02.roa (hash: sI3LyucppRwgB6SbFZjr2XQDXv58xJ0gw0cfa9mTOck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 16:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3234 (0xca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD, serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Validity Not Before: Feb 28 16:41:56 2026 GMT Not After : Mar 7 16:41:56 2026 GMT Subject: CN=69a31ad4-b899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:a8:60:fc:e8:86:c5:b5:92:31:dd:d4:95:a8: 2a:3e:f5:6d:91:bb:be:44:8d:6d:a8:d7:a5:e2:4c: 58:5b:8b:51:bc:74:83:78:68:86:52:80:f7:85:09: 57:9f:c0:c0:b3:5a:65:44:b7:9c:0a:93:2e:43:3e: 53:44:86:1b:e5:ae:c9:be:b0:52:48:2c:a5:10:f4: 8a:53:ca:90:6b:c3:55:d7:1f:90:ba:ef:16:c4:39: 38:ba:a0:8a:6a:84:7e:e9:9c:d3:89:c0:57:48:64: fd:da:fb:4b:15:bb:86:57:1e:e2:00:10:f9:21:24: 3f:41:6e:12:19:cc:fd:4d:a3:83:c8:50:19:27:d1: ec:26:1d:bc:99:6c:48:b2:f8:15:94:8a:39:48:da: a6:b3:75:d9:b8:8d:a0:6a:13:c1:dd:6e:9c:f4:80: cf:7d:b7:9f:46:14:29:df:b2:6e:c9:e7:35:13:16: 41:7b:ba:ef:df:80:c3:76:1c:15:6d:98:71:fe:53: 96:f8:98:4c:ad:f5:ad:00:e7:bb:f2:af:86:b7:0b: b2:c0:85:7b:0d:d2:46:0e:b8:9d:c1:54:e0:a8:a7: c2:77:6e:e0:94:a1:9b:0b:e3:02:e8:4e:fa:46:e0: fc:ac:23:3b:d7:4c:70:93:8b:f6:5e:c5:40:e2:af: 7a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4A:1D:C6:B2:94:AC:72:AE:20:FC:2F:81:D6:F8:88:C5:85:F9:89 X509v3 Authority Key Identifier: keyid:05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:94:68:06:e0:e1:fc:6a:2c:f7:dc:a7:aa:f6:b5:7e:21:da: 7b:d5:35:f1:76:d1:69:1a:8d:a0:3b:c5:a7:6c:5f:85:2e:d2: 18:70:87:12:00:c9:a7:15:02:cb:37:73:27:90:08:eb:5a:e6: 94:7f:64:f7:13:ac:6a:43:b2:ce:a5:ef:3e:ae:e3:d9:fe:b3: ce:99:e8:cd:62:e2:c3:c9:8f:90:84:d0:62:7d:95:1c:8a:a7: 95:ea:d0:b9:2f:50:c8:fa:82:97:0e:18:5a:2a:3a:16:6e:84: 9a:dd:8f:a7:fa:22:63:30:87:11:6c:3e:26:0c:e1:ac:90:b3: 48:ae:d0:55:55:da:b6:c1:e9:de:61:33:a9:f0:34:86:89:e9: 27:c8:4b:51:9d:1c:2c:7e:83:8e:23:74:9a:a4:b8:8e:2a:6e: 9f:1c:cd:ae:42:bb:c0:2e:49:c6:a7:ee:2e:94:ee:62:01:ee: 7d:ac:46:6d:6d:54:89:e0:17:6d:18:c2:69:b5:3d:57:14:71: 85:66:af:44:70:63:0a:95:df:11:b7:5a:65:d4:cd:b7:49:ea: 1c:51:b5:b8:3b:7f:aa:e8:c1:6c:2d:ad:ff:21:48:a7:e5:5c: 4a:33:1b:fa:22:d7:94:15:30:a5:3d:57:61:97:19:03:4d:e4: 3d:11:e0:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKDA1MTlERTdCNDg2NjAzQjdCQTVCNjZEQUI5ODkyMDNG REYyREI0OTQwHhcNMjYwMjI4MTY0MTU2WhcNMjYwMzA3MTY0MTU2WjAYMRYwFAYD VQQDDA02OWEzMWFkNC1iODk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgqhg/OiGxbWSMd3UlagqPvVtkbu+RI1tqNel4kxYW4tRvHSDeGiGUoD3hQlX n8DAs1plRLecCpMuQz5TRIYb5a7JvrBSSCylEPSKU8qQa8NV1x+Quu8WxDk4uqCK aoR+6ZzTicBXSGT92vtLFbuGVx7iABD5ISQ/QW4SGcz9TaODyFAZJ9HsJh28mWxI svgVlIo5SNqms3XZuI2gahPB3W6c9IDPfbefRhQp37Juyec1ExZBe7rv34DDdhwV bZhx/lOW+JhMrfWtAOe78q+GtwuywIV7DdJGDridwVTgqKfCd27glKGbC+MC6E76 RuD8rCM710xwk4v2XsVA4q960QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFpKHcay lKxyriD8L4HW+IjFhfmJMB8GA1UdIwQYMBaAFAUZ3ntIZgO3ultm2rmJID/fLbSU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC9EQjRBNkNGQzEw RDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3ZTZXMmJhdVlrZ1A5OHR0 SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JSbmVlMGhtQTdlNlcyYmF1WWtnUDk4dHRKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTJERC9EQjRBNkNGQzEwRDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3 ZTZXMmJhdVlrZ1A5OHR0SlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOpRoBuDh/Gos99ynqva1fiHae9U18XbRaRqNoDvFp2xfhS7SGHCHEgDJpxUC yzdzJ5AI61rmlH9k9xOsakOyzqXvPq7j2f6zzpnozWLiw8mPkITQYn2VHIqnlerQ uS9QyPqClw4YWio6Fm6Emt2Pp/oiYzCHEWw+JgzhrJCzSK7QVVXatsHp3mEzqfA0 honpJ8hLUZ0cLH6DjiN0mqS4jipunxzNrkK7wC5JxqfuLpTuYgHufaxGbW1UieAX bRjCabU9VxRxhWavRHBjCpXfEbdaZdTNt0nqHFG1uDt/qujBbC2t/yFIp+VcSjMb +iLXlBUwpT1XYZcZA03kPRHgHw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:46:00 2026 by rpki-client