$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft File: J39oYmhAcrYqFW3fdd13JcOPUdA.mft (raw, json) Hash identifier: g+aDkHvZzMVXF7XeXTdBPAvJZkqTeuGWSn54kYGmRoE= Subject key identifier: B5:D5:A6:7F:35:B5:58:89:C6:F9:D4:D1:5B:5B:B3:68:08:61:B2:C6 Authority key identifier: 27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 Certificate issuer: /CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Certificate serial: 0AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft Manifest number: 0AE1 Signing time: Mon 02 Mar 2026 02:34:41 +0000 Manifest this update: Mon 02 Mar 2026 02:34:40 +0000 Manifest next update: Mon 09 Mar 2026 02:34:40 +0000 Files and hashes: 1: J39oYmhAcrYqFW3fdd13JcOPUdA.crl (hash: 6pfxeyOtbezhS51z1avDJCmRLur/kPuPHKMakIy1AWE=) 2: F0EC7AEAE48C11EF8BA4602AC4F9AE02.roa (hash: CCWU/slr79ct4FNV5i0TIXfHecnrZ2GwArH1P9tumgo=) 3: 8AAEC8AEE48D11EF98A3562BC4F9AE02.roa (hash: Ela4JYI8D8rs4ZlHfvA7O7Ltq8JCZsgjs+g9KLkdTMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0BEC, serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Validity Not Before: Mar 2 02:34:40 2026 GMT Not After : Mar 9 02:34:40 2026 GMT Subject: CN=69a4f741-e8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:f1:72:a4:2f:92:6f:18:4a:89:2b:4f:61:7a: 1a:51:50:43:78:86:04:76:a0:c5:6b:72:60:65:5d: 3d:7d:53:9c:59:4d:4e:f7:e0:4c:36:b7:15:59:9e: 9f:18:59:3d:4a:b2:26:ba:50:06:e0:23:e1:9d:42: ce:de:db:c1:88:d4:06:95:0d:1c:46:18:f3:67:00: a1:ef:ab:7c:d4:c4:03:f5:30:d4:79:44:62:02:37: 10:2a:3d:c1:72:ad:7b:fa:06:03:eb:d2:9b:f0:41: 58:e5:d2:e1:ff:e7:f7:19:fa:5d:3a:1a:05:80:96: 51:f4:f2:98:97:0a:ff:fe:92:7d:01:e7:63:3e:bb: ae:b8:31:4c:10:15:83:6a:52:2b:fa:31:00:9f:9e: c5:9f:5f:ee:b0:5b:a3:8a:ae:e8:48:4e:e9:d7:12: 49:fe:98:fa:4d:16:9a:c9:de:ef:2c:9a:8f:37:49: 57:d6:38:a7:f6:38:61:7d:1c:1a:a0:08:a1:25:b2: d7:88:31:ba:2c:59:af:37:ec:2c:44:7c:de:92:94: 1e:12:31:10:be:53:9c:a8:d1:4a:a8:04:8b:1b:f4: eb:1c:f5:25:1e:82:51:ae:6e:09:42:93:56:8f:8c: b5:5d:a8:2c:9b:f3:22:62:8c:ba:2c:a6:9a:63:47: 99:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D5:A6:7F:35:B5:58:89:C6:F9:D4:D1:5B:5B:B3:68:08:61:B2:C6 X509v3 Authority Key Identifier: keyid:27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:ae:dc:43:2d:00:26:f1:79:29:7c:74:0c:84:f2:ca:c4:30: c3:e4:be:0d:0d:9a:b2:bf:b5:08:dd:f1:26:27:26:0a:cf:15: 53:b8:96:aa:96:dc:ab:42:b4:ff:13:23:43:83:b7:91:48:48: 89:21:bc:8c:f1:01:5c:61:15:43:1c:00:18:0a:69:0a:e2:89: 3a:fb:ee:8f:68:00:ad:c3:0b:5e:36:d5:00:0f:b7:4d:37:7c: b4:f8:9d:91:ac:a3:55:29:16:8d:24:5d:d9:aa:89:2a:30:ba: ae:f0:cb:4f:87:77:f6:54:b5:ce:58:0e:ed:93:88:d8:13:fa: 69:87:1a:49:bc:bc:09:36:ab:37:98:db:2d:8a:4d:d6:e0:cd: 02:4b:26:b4:14:9a:2f:58:1e:c9:ce:fb:ad:f8:cd:5c:46:bd: d5:16:aa:07:41:45:5c:8d:c7:66:41:7c:a7:63:05:0f:86:1a: 1d:90:06:7c:9d:6a:42:10:1e:62:57:17:9e:e3:00:85:8c:54: ca:f2:01:48:ba:f1:89:82:49:ea:95:e1:04:67:0a:a5:70:83: d9:1d:dc:02:d4:33:10:51:6b:55:6c:f2:1d:10:5e:6e:19:8a: 35:49:20:50:a1:81:1e:a7:d4:62:53:9d:18:98:73:af:8a:de: f4:f3:66:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBCRUMxMTAvBgNVBAUTKDI3N0Y2ODYyNjg0MDcyQjYyQTE1NkRERjc1REQ3NzI1 QzM4RjUxRDAwHhcNMjYwMzAyMDIzNDQwWhcNMjYwMzA5MDIzNDQwWjAYMRYwFAYD VQQDEw02OWE0Zjc0MS1lOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjfFypC+SbxhKiStPYXoaUVBDeIYEdqDFa3JgZV09fVOcWU1O9+BMNrcVWZ6f GFk9SrImulAG4CPhnULO3tvBiNQGlQ0cRhjzZwCh76t81MQD9TDUeURiAjcQKj3B cq17+gYD69Kb8EFY5dLh/+f3GfpdOhoFgJZR9PKYlwr//pJ9AedjPruuuDFMEBWD alIr+jEAn57Fn1/usFujiq7oSE7p1xJJ/pj6TRaayd7vLJqPN0lX1jin9jhhfRwa oAihJbLXiDG6LFmvN+wsRHzekpQeEjEQvlOcqNFKqASLG/TrHPUlHoJRrm4JQpNW j4y1Xagsm/MiYoy6LKaaY0eZNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLXVpn81 tViJxvnU0Vtbs2gIYbLGMB8GA1UdIwQYMBaAFCd/aGJoQHK2KhVt33XddyXDj1HQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEJFQy83QjdGMjhFMjY3 N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNyWXFGVzNmZGQxM0pjT1BV ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozOW9ZbWhBY3JZcUZXM2ZkZDEzSmNPUFVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEJFQy83QjdGMjhFMjY3N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNy WXFGVzNmZGQxM0pjT1BVZEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIa7cQy0AJvF5KXx0DITyysQww+S+DQ2asr+1CN3xJicmCs8VU7iWqpbcq0K0 /xMjQ4O3kUhIiSG8jPEBXGEVQxwAGAppCuKJOvvuj2gArcMLXjbVAA+3TTd8tPid kayjVSkWjSRd2aqJKjC6rvDLT4d39lS1zlgO7ZOI2BP6aYcaSby8CTarN5jbLYpN 1uDNAksmtBSaL1geyc77rfjNXEa91RaqB0FFXI3HZkF8p2MFD4YaHZAGfJ1qQhAe YlcXnuMAhYxUyvIBSLrxiYJJ6pXhBGcKpXCD2R3cAtQzEFFrVWzyHRBebhmKNUkg UKGBHqfUYlOdGJhzr4re9PNm5g== -----END CERTIFICATE-----Generated at Mon Mar 2 15:53:40 2026 by rpki-client