$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: ScGq6Irs5diDB+WbIPtjBduX8XjZQPjAGcExr8WMKKQ= Subject key identifier: 48:7B:25:F7:76:3C:50:AD:47:F1:1C:FB:F9:61:C3:C1:CE:80:5B:F2 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 10BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 10A3 Signing time: Sun 01 Mar 2026 23:42:02 +0000 Manifest this update: Sun 01 Mar 2026 23:42:00 +0000 Manifest next update: Sun 08 Mar 2026 23:42:00 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: MBtu10d9biRkdRd00by9vD//qWRAigG9qEMQ0XIggU4=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: FcrkIqa4XDgVdyeOamaFQqlLus8d1JT70DNswdpetnU=) 3: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: dZjVpX0OHFb95lVF9Cf+7jCMCOq6ryMRIoLMcRSlevM=) 4: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: G259aXzfmIb7Wjf23ZuX4t8JWjAE7bM1Vp9GXrerfRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4284 (0x10bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Mar 1 23:42:00 2026 GMT Not After : Mar 8 23:42:00 2026 GMT Subject: CN=69a4ceca-680b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c3:e0:9a:7f:56:41:a9:21:87:f2:15:7a:1b: 56:d6:bd:e2:66:9c:f3:30:70:3d:f1:b0:3d:ec:84: f2:79:40:b7:99:d1:b1:97:69:69:61:a5:73:96:82: d4:c9:fe:7a:b6:80:07:58:08:df:47:9a:db:96:16: cd:db:54:96:d5:b4:8e:9d:6e:f9:7f:16:ee:ec:97: c1:fc:05:fe:25:5e:7c:12:75:23:f7:9a:f9:70:a9: 9d:e8:f5:d1:1a:58:3b:b5:df:6c:81:55:5c:f1:82: 7a:bd:0c:6b:79:0c:8f:25:c0:44:e2:f2:cc:c4:43: c1:55:b0:2d:cb:40:22:2b:d7:59:34:2e:38:8f:98: 4d:ec:ac:d1:87:ee:a4:a3:20:99:90:20:16:16:88: b9:c8:90:d6:21:db:d5:a6:f4:15:5f:67:47:78:9c: 3a:a0:22:8a:bc:43:19:e5:5c:b0:35:23:d7:37:3a: e5:7a:6c:db:a3:c1:96:58:e1:cd:71:cc:9b:54:dd: 32:56:67:65:a2:c1:ce:be:c8:27:4d:11:4f:9b:54: 73:b9:eb:83:87:85:ec:9a:2b:8f:1c:a3:42:4d:a4: bb:da:36:ec:26:41:dd:27:f2:a0:eb:a9:03:d4:f5: 22:68:47:e5:27:7f:7f:62:5c:a9:db:e2:cc:6f:1e: 81:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7B:25:F7:76:3C:50:AD:47:F1:1C:FB:F9:61:C3:C1:CE:80:5B:F2 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:01:91:61:f6:90:49:32:51:84:7a:08:99:93:69:4d:bd:f2: 98:57:03:df:6a:36:0f:18:30:35:6e:cc:e4:1d:df:c1:96:1a: e4:9c:42:06:96:bc:8b:df:50:34:27:a8:58:6a:a0:3c:79:09: 05:55:07:7c:bd:31:b1:61:40:1c:d7:ee:5c:b3:b4:e5:f3:de: 31:5e:f3:de:2b:d0:0b:bf:e3:4c:65:ac:22:89:0f:11:c8:8e: 4a:12:95:69:b0:24:8a:7e:9a:84:af:08:29:49:81:b9:51:02: c2:af:1f:12:b9:d5:3c:2e:1c:4e:f7:1d:4b:12:2d:ee:4a:3c: aa:e6:d5:60:6d:c0:95:1c:10:5f:60:e9:e1:63:01:c1:71:f3: 99:02:4d:8b:19:71:2c:b9:19:9e:25:93:4c:47:1d:cf:a1:15: a5:f4:b3:a9:ef:43:08:d8:a2:bf:aa:af:6e:cb:b8:66:1c:b5: 92:a5:7c:c9:2f:1b:54:c6:eb:0c:60:01:59:9f:5b:6e:07:2b: c4:9e:a5:ac:f5:88:c4:17:3a:89:58:56:69:95:2f:db:57:7e: 4f:5d:8d:93:e6:d6:a8:60:6a:f8:25:78:c3:37:d5:3d:4b:8c: d1:dc:14:7b:a8:4c:5b:f5:a0:cf:32:1d:ac:7e:c5:0b:2f:e5: af:2e:c6:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICELwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjYwMzAxMjM0MjAwWhcNMjYwMzA4MjM0MjAwWjAYMRYwFAYD VQQDEw02OWE0Y2VjYS02ODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcPgmn9WQakhh/IVehtW1r3iZpzzMHA98bA97ITyeUC3mdGxl2lpYaVzloLU yf56toAHWAjfR5rblhbN21SW1bSOnW75fxbu7JfB/AX+JV58EnUj95r5cKmd6PXR Glg7td9sgVVc8YJ6vQxreQyPJcBE4vLMxEPBVbAty0AiK9dZNC44j5hN7KzRh+6k oyCZkCAWFoi5yJDWIdvVpvQVX2dHeJw6oCKKvEMZ5VywNSPXNzrlemzbo8GWWOHN ccybVN0yVmdlosHOvsgnTRFPm1RzueuDh4XsmiuPHKNCTaS72jbsJkHdJ/Kg66kD 1PUiaEflJ39/Ylyp2+LMbx6BewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEh7Jfd2 PFCtR/Ec+/lhw8HOgFvyMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoAGRYfaQSTJRhHoImZNpTb3ymFcD32o2DxgwNW7M5B3fwZYa5JxCBpa8i99Q NCeoWGqgPHkJBVUHfL0xsWFAHNfuXLO05fPeMV7z3ivQC7/jTGWsIokPEciOShKV abAkin6ahK8IKUmBuVECwq8fErnVPC4cTvcdSxIt7ko8qubVYG3AlRwQX2Dp4WMB wXHzmQJNixlxLLkZniWTTEcdz6EVpfSzqe9DCNiiv6qvbsu4Zhy1kqV8yS8bVMbr DGABWZ9bbgcrxJ6lrPWIxBc6iVhWaZUv21d+T12Nk+bWqGBq+CV4wzfVPUuM0dwU e6hMW/WgzzIdrH7FCy/lry7G3g== -----END CERTIFICATE-----Generated at Mon Mar 2 09:50:02 2026 by rpki-client