$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft File: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft (raw, json) Hash identifier: i1E5fqqr20rDTeXbz1ib2KEEGcPzB2WG2P3mjwZ2Of8= Subject key identifier: 4F:60:27:CD:ED:3B:3F:22:29:4E:06:3D:87:41:2D:AA:E4:71:70:93 Authority key identifier: 08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 Certificate issuer: /CN=A91A2C5D/serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft Manifest number: 0231 Signing time: Sun 01 Mar 2026 23:49:01 +0000 Manifest this update: Sun 01 Mar 2026 23:48:59 +0000 Manifest next update: Sun 08 Mar 2026 23:48:59 +0000 Files and hashes: 1: CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl (hash: vTqapGJqVssnnEgd7DR52pOiA+LYDoI66p3a5qMZAJc=) 2: 218937DC5E5011F0B9404662C4F9AE02.roa (hash: TfhxYXEuzGwCmeMd3nNc0DOls3QWgWihrLMEBQlhbYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Validity Not Before: Mar 1 23:48:59 2026 GMT Not After : Mar 8 23:48:59 2026 GMT Subject: CN=69a4d06c-3f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6c:7c:15:39:ea:78:a9:51:a9:2a:5f:29:70: 02:77:a3:ff:78:7f:78:80:93:34:c5:7c:59:4f:fc: 59:73:36:9a:6d:f0:61:98:59:92:88:bb:d6:85:8b: ad:84:3f:ca:37:fc:18:d9:5d:cb:71:37:5b:1d:9f: 37:df:2d:56:04:b7:e3:89:ea:84:c7:a0:a9:5b:18: d4:d7:fd:5e:cb:e5:e7:3f:69:4f:fd:23:c4:78:1d: b2:86:1d:20:85:fd:e0:c9:e4:2c:69:a6:90:12:77: 80:f4:11:16:61:79:21:10:00:f0:da:7f:d4:ba:7c: 67:7d:17:5c:1d:c5:ef:63:87:75:16:1c:18:c7:3a: bd:47:f2:f0:3d:25:9a:ba:c3:22:c4:aa:a6:07:27: e3:82:37:aa:34:71:83:11:25:68:01:14:47:10:3d: c1:70:99:1e:d1:8e:c3:bc:6d:c8:65:d5:8e:14:62: 0e:92:ce:83:54:21:97:c1:32:5f:cf:ff:dc:3f:41: 2f:ce:c9:4d:d9:1e:90:c7:8a:ae:6b:3d:57:20:70: b1:2f:a4:40:df:fd:86:d0:55:1b:22:f3:75:1e:4b: f4:2c:e6:03:e7:2d:6e:1b:76:00:1f:a8:88:dd:b6: 28:c4:21:1a:86:94:9c:ae:cb:b6:4c:82:87:59:34: 0f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:60:27:CD:ED:3B:3F:22:29:4E:06:3D:87:41:2D:AA:E4:71:70:93 X509v3 Authority Key Identifier: keyid:08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:88:f4:63:b4:24:7a:8e:e7:82:f4:4d:32:79:d6:44:70:ef: 7d:69:4b:c3:14:04:5b:65:7b:27:ff:cf:d1:75:4a:f6:a5:8a: 84:5f:3c:bb:4b:2c:2a:c8:34:f3:ba:bf:14:e3:0b:2c:9e:43: c7:f1:d0:c3:ac:ff:d5:01:56:ec:2e:72:17:6f:70:36:4c:02: 59:94:b1:aa:94:eb:0c:24:86:db:56:da:fb:42:58:cf:5f:80: 2c:6b:57:37:61:37:c9:38:10:fb:ba:ea:b1:33:1c:cb:ba:d4: 45:fb:35:6f:23:f0:08:33:0c:c4:7b:30:67:df:76:88:f6:bb: b0:34:be:7d:39:2e:7a:f7:0c:47:62:41:ff:43:0a:52:da:33: 0d:c5:c9:63:e5:06:c0:b8:56:2f:16:e0:30:9e:3a:11:c9:61: 41:f9:09:42:d8:1c:8d:0a:b0:92:12:f9:e0:f8:91:ad:df:78: 27:ea:23:05:78:20:18:6d:bf:21:28:6e:5f:8c:71:a6:d8:ec: 85:12:8a:00:2a:dc:27:a8:b8:b1:9e:2b:bc:ac:18:ce:7b:2a: d6:cb:3c:01:8b:8e:d5:e2:e4:e0:f4:91:d2:ef:dc:24:5f:ff: 62:c3:89:b3:14:7d:24:27:26:e1:e4:21:ec:d8:85:f0:7b:05: 7d:55:1e:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJDNUQxMTAvBgNVBAUTKDA4Nzc3RkEzODFCRjI1OEUwQ0FDMzdENTA5RUYwQkFD NzA2NjQ4NDQwHhcNMjYwMzAxMjM0ODU5WhcNMjYwMzA4MjM0ODU5WjAYMRYwFAYD VQQDEw02OWE0ZDA2Yy0zZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mx8FTnqeKlRqSpfKXACd6P/eH94gJM0xXxZT/xZczaabfBhmFmSiLvWhYut hD/KN/wY2V3LcTdbHZ833y1WBLfjieqEx6CpWxjU1/1ey+XnP2lP/SPEeB2yhh0g hf3gyeQsaaaQEneA9BEWYXkhEADw2n/UunxnfRdcHcXvY4d1FhwYxzq9R/LwPSWa usMixKqmByfjgjeqNHGDESVoARRHED3BcJke0Y7DvG3IZdWOFGIOks6DVCGXwTJf z//cP0EvzslN2R6Qx4quaz1XIHCxL6RA3/2G0FUbIvN1Hkv0LOYD5y1uG3YAH6iI 3bYoxCEahpScrsu2TIKHWTQPtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE9gJ83t Oz8iKU4GPYdBLarkcXCTMB8GA1UdIwQYMBaAFAh3f6OBvyWODKw31QnvC6xwZkhE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkM1RC8zQjlERDQxMDky QzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9DSGRfbzRHX0pZNE1yRGZWQ2U4THJIQm1T RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIZF9vNEdfSlk0TXJEZlZDZThMckhCbVNFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi9DSGRfbzRHX0pZ NE1yRGZWQ2U4THJIQm1TRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJoj0Y7Qkeo7ngvRNMnnWRHDvfWlLwxQEW2V7J//P0XVK9qWKhF88u0ssKsg0 87q/FOMLLJ5Dx/HQw6z/1QFW7C5yF29wNkwCWZSxqpTrDCSG21ba+0JYz1+ALGtX N2E3yTgQ+7rqsTMcy7rURfs1byPwCDMMxHswZ992iPa7sDS+fTkuevcMR2JB/0MK UtozDcXJY+UGwLhWLxbgMJ46EclhQfkJQtgcjQqwkhL54PiRrd94J+ojBXggGG2/ IShuX4xxptjshRKKACrcJ6i4sZ4rvKwYznsq1ss8AYuO1eLk4PSR0u/cJF//YsOJ sxR9JCcm4eQh7NiF8HsFfVUe0Q== -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:35 2026 by rpki-client