$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: tMemHOG4v1fjN8+C3+SwZ3qMUhgQgdBCk7qxV24d0o4= Subject key identifier: D9:12:22:25:1D:29:C6:16:15:83:BB:EF:44:5D:A6:0D:7D:5A:37:44 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0C35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0C16 Signing time: Sat 28 Feb 2026 19:02:29 +0000 Manifest this update: Sat 28 Feb 2026 19:02:29 +0000 Manifest next update: Sat 07 Mar 2026 19:02:29 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: 8iEjvfOfXX9SWTsngtp1NbHFbIWQ8vWtOLYJyZmnOcU=) 2: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: CLQ3/hXK7ryJwut8NCieyr8cQPTKzXF6ACByOsd3FLE=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: lYe/+IkQ+R02IaPZzlGxsHV36S7X3fY0hJQ296NQhrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Feb 28 19:02:29 2026 GMT Not After : Mar 7 19:02:29 2026 GMT Subject: CN=69a33bc5-5c13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d6:e6:32:44:f2:4b:d2:58:ee:32:d8:33:87: 8a:c6:1d:20:09:8d:cf:51:15:34:48:1e:28:b0:60: ff:cf:0d:51:58:6b:f4:20:06:0a:e3:b7:90:30:c2: cf:db:e8:40:3e:4f:a2:b2:02:55:9d:85:b3:24:2c: 6f:f0:85:11:6e:bf:b4:f6:8a:e1:53:e2:42:06:1c: 36:81:bb:9d:a1:f1:fd:9b:20:d4:43:23:77:22:f8: 73:3b:63:17:1a:76:04:ea:0d:83:8c:83:82:be:fe: 46:b3:25:a1:cb:16:e8:a7:36:b4:9f:42:f2:54:2e: 88:1b:c9:3e:a6:d9:89:b7:e0:8b:2d:b9:14:bb:05: 99:fe:20:34:41:3b:e2:23:91:4d:77:f4:70:9d:d9: cf:f6:a3:a7:8b:f7:cc:3f:6a:2e:6c:8a:90:9d:4b: 02:25:37:a2:ac:71:65:6c:f1:62:1e:8a:63:d2:b9: 5c:e4:89:d3:e9:dd:52:bd:56:94:fd:fd:cc:c2:20: a6:aa:9b:98:7c:96:44:a2:aa:39:c8:96:54:c5:67: cb:ca:7c:c0:b0:21:b3:f2:09:f7:4e:ec:20:f3:5f: 62:f4:14:38:04:1f:61:25:d2:af:44:92:cf:65:ea: 5a:86:36:0e:aa:57:c3:98:36:2f:d4:1e:3f:d3:1b: ba:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:12:22:25:1D:29:C6:16:15:83:BB:EF:44:5D:A6:0D:7D:5A:37:44 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:9e:7f:e7:b6:d1:d7:10:88:db:ed:18:20:5b:67:a3:4d:f0: ac:8a:b9:46:48:d7:ab:f3:21:1a:c2:ae:8e:14:cc:6e:37:79: 50:b4:08:ab:90:57:58:8b:77:c7:2c:35:21:7b:20:17:77:31: 2c:87:0f:ae:e1:7c:56:0a:4c:13:67:40:00:5e:d2:7c:f5:b8: 81:05:75:8f:cf:75:35:f0:a5:9f:4f:8b:0b:a2:48:b1:59:6f: 9a:77:02:9a:e3:93:82:a6:b7:0c:f7:d3:88:a6:34:01:a9:95: 27:55:c2:6e:f9:11:50:57:f9:ab:90:f6:f1:e2:17:6a:d1:c0: 20:cc:e3:c7:a6:0d:e5:29:cd:e7:fb:5d:c8:f5:b8:d2:93:45: c3:b3:a1:51:b8:5a:17:01:b3:ed:07:d6:bf:98:07:8c:de:bd: 5e:05:13:01:05:68:99:16:0b:87:fe:37:bf:f8:ba:4a:a9:16: ca:3b:43:2d:98:70:bd:69:42:b8:9b:4f:52:d6:c3:a3:db:ef: 26:02:93:bb:ca:9a:c6:88:bc:4d:14:ea:7b:42:15:00:d9:35: ae:50:a4:8e:41:3f:2c:06:b8:f8:dd:a7:5e:64:d2:13:76:1c: 36:52:79:c4:8c:5f:6f:28:b2:ab:b2:7e:de:79:a7:ed:a8:3c: 14:5b:04:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjYwMjI4MTkwMjI5WhcNMjYwMzA3MTkwMjI5WjAYMRYwFAYD VQQDDA02OWEzM2JjNS01YzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9bmMkTyS9JY7jLYM4eKxh0gCY3PURU0SB4osGD/zw1RWGv0IAYK47eQMMLP 2+hAPk+isgJVnYWzJCxv8IURbr+09orhU+JCBhw2gbudofH9myDUQyN3IvhzO2MX GnYE6g2DjIOCvv5GsyWhyxbopza0n0LyVC6IG8k+ptmJt+CLLbkUuwWZ/iA0QTvi I5FNd/RwndnP9qOni/fMP2oubIqQnUsCJTeirHFlbPFiHopj0rlc5InT6d1SvVaU /f3MwiCmqpuYfJZEoqo5yJZUxWfLynzAsCGz8gn3Tuwg819i9BQ4BB9hJdKvRJLP ZepahjYOqlfDmDYv1B4/0xu68QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNkSIiUd KcYWFYO770Rdpg19WjdEMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr55/57bR1xCI2+0YIFtno03wrIq5RkjXq/MhGsKujhTMbjd5ULQIq5BXWIt3 xyw1IXsgF3cxLIcPruF8VgpME2dAAF7SfPW4gQV1j891NfCln0+LC6JIsVlvmncC muOTgqa3DPfTiKY0AamVJ1XCbvkRUFf5q5D28eIXatHAIMzjx6YN5SnN5/tdyPW4 0pNFw7OhUbhaFwGz7QfWv5gHjN69XgUTAQVomRYLh/43v/i6SqkWyjtDLZhwvWlC uJtPUtbDo9vvJgKTu8qaxoi8TRTqe0IVANk1rlCkjkE/LAa4+N2nXmTSE3YcNlJ5 xIxfbyiyq7J+3nmn7ag8FFsEYg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:39:39 2026 by rpki-client