$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: NK+uW1F8Bi/AOWivQo/k7ugQzjWfAyJZJ4QBdUqUUJ8= Subject key identifier: 9E:A6:4B:95:01:D3:46:3C:CC:BC:40:30:1C:6A:33:EE:0F:77:B3:54 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 092C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08EC Signing time: Mon 02 Mar 2026 01:11:45 +0000 Manifest this update: Mon 02 Mar 2026 01:11:44 +0000 Manifest next update: Mon 09 Mar 2026 01:11:44 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: I40JUjKe9mnA9qpZcH+RPVNrqbKCIE9t0mipIchtJ+U=) 2: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: GzxogbU8QiwwF++aswC6YdHu3ZoZCEYz5G0xx5UJTJQ=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: FW+6trj4ky9MIx0ol9teJ9/ApDWDbFtG0371+JMzJmo=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: VWFn1ywKze4+Ch1d/UV7Lhp1ynMlJZLSKyiTkidd1hM=) 5: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: oRxcNHxks0xSpQQ3xzQ2CValnLK9KvTZJVfHvaOGSxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Mar 2 01:11:44 2026 GMT Not After : Mar 9 01:11:44 2026 GMT Subject: CN=69a4e3d1-29f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:12:39:45:35:30:9c:0d:6b:35:90:1a:fe:e0: f1:7d:ab:ef:73:a2:92:e8:89:ec:11:cc:54:1d:02: ac:80:4e:0a:dd:69:8f:73:21:f4:84:07:8a:18:cc: 27:16:cc:b4:a1:a4:78:56:1a:0e:94:19:49:a4:d9: 47:0d:80:7e:dc:34:9a:02:59:62:ab:f6:b9:04:05: fc:3a:df:74:21:96:5e:3b:ba:4f:12:4b:bd:be:32: 32:3b:3a:67:ca:0c:67:73:ad:e4:f0:d5:cd:fd:11: 19:a4:0d:dc:99:d7:ae:20:6f:29:1f:cd:8f:39:bd: 44:54:a0:fc:8c:df:96:b0:58:02:07:7d:72:aa:f2: 24:d7:cc:0b:5c:87:4c:ec:71:56:46:8a:35:98:ce: 1e:15:c0:87:b8:59:3d:39:22:2e:79:b0:43:5d:a5: e6:34:e6:45:45:1f:1b:84:21:8d:81:1a:8f:77:2e: a7:88:a4:ff:07:66:b5:6b:5b:a5:c5:e9:27:52:b2: c5:1e:4c:0b:90:17:e5:bd:be:6e:d3:28:33:48:a7: 5f:a7:bf:85:ed:b3:51:73:82:e9:1b:b5:d2:cf:11: df:d7:ad:9f:ac:68:6d:f7:3b:eb:65:1e:9d:01:ed: 96:78:bd:6c:fe:01:3e:bd:30:94:cd:14:58:35:77: 63:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A6:4B:95:01:D3:46:3C:CC:BC:40:30:1C:6A:33:EE:0F:77:B3:54 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:61:b7:d3:94:ae:56:a5:d8:f0:e7:49:f4:94:20:db:29:0e: 6b:30:6e:7d:13:c9:ca:d6:3e:54:82:b9:b2:bb:9b:d5:2f:b0: 8d:45:41:d3:47:fe:35:16:52:15:ff:90:6b:c6:e1:33:4c:af: 2a:df:7b:ee:6f:bb:16:fd:9e:37:a2:07:2e:5a:ef:50:9a:f1: d5:12:62:af:c9:44:36:31:59:06:5d:7d:83:19:9e:ba:b8:a4: 4f:5c:da:c6:e5:59:1b:13:4a:a8:8d:f4:b2:2f:90:1a:ad:ce: 11:b7:58:e5:45:96:4f:ed:3b:27:7e:fe:9f:00:fb:ab:d9:74: 9a:66:2f:16:c6:a1:f3:6a:8e:09:82:8d:2a:89:1d:9b:f5:e6: 7a:cb:b2:3e:40:97:b5:f9:8d:5c:1b:1c:81:c9:2b:0d:ab:88: 3a:73:0b:09:d9:ca:c3:55:4a:da:0e:11:39:84:5c:6f:65:aa: b5:5b:0b:62:ff:e7:7b:42:34:1f:5f:99:71:b8:a4:ac:cb:1d: 5d:7c:ca:9d:2e:92:72:a1:86:76:63:63:83:0f:2f:ea:68:75: 64:a3:61:f8:d3:db:97:e5:b4:a0:93:d9:7d:16:b7:8a:d9:5a: d0:08:f4:95:4f:99:c3:4c:08:c9:ce:d4:42:8e:32:d7:51:7a: 98:bf:76:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjYwMzAyMDExMTQ0WhcNMjYwMzA5MDExMTQ0WjAYMRYwFAYD VQQDEw02OWE0ZTNkMS0yOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmhI5RTUwnA1rNZAa/uDxfavvc6KS6InsEcxUHQKsgE4K3WmPcyH0hAeKGMwn Fsy0oaR4VhoOlBlJpNlHDYB+3DSaAlliq/a5BAX8Ot90IZZeO7pPEku9vjIyOzpn ygxnc63k8NXN/REZpA3cmdeuIG8pH82POb1EVKD8jN+WsFgCB31yqvIk18wLXIdM 7HFWRoo1mM4eFcCHuFk9OSIuebBDXaXmNOZFRR8bhCGNgRqPdy6niKT/B2a1a1ul xeknUrLFHkwLkBflvb5u0ygzSKdfp7+F7bNRc4LpG7XSzxHf162frGht9zvrZR6d Ae2WeL1s/gE+vTCUzRRYNXdjwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ6mS5UB 00Y8zLxAMBxqM+4Pd7NUMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcWG305SuVqXY8OdJ9JQg2ykOazBufRPJytY+VIK5srub1S+wjUVB00f+NRZS Ff+Qa8bhM0yvKt977m+7Fv2eN6IHLlrvUJrx1RJir8lENjFZBl19gxmeurikT1za xuVZGxNKqI30si+QGq3OEbdY5UWWT+07J37+nwD7q9l0mmYvFsah82qOCYKNKokd m/XmesuyPkCXtfmNXBscgckrDauIOnMLCdnKw1VK2g4ROYRcb2WqtVsLYv/ne0I0 H1+ZcbikrMsdXXzKnS6ScqGGdmNjgw8v6mh1ZKNh+NPbl+W0oJPZfRa3itla0Aj0 lU+Zw0wIyc7UQo4y11F6mL92ew== -----END CERTIFICATE-----Generated at Mon Mar 2 15:30:45 2026 by rpki-client