$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: 3PbzV7LcHRRxFMJZHpfALLmsOAlL2KugngueqPMOFrg= Subject key identifier: 03:33:6C:9C:58:F3:8D:69:1A:0A:34:F5:6E:46:A0:BE:BF:59:B8:EE Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A72 Signing time: Mon 02 Mar 2026 01:14:09 +0000 Manifest this update: Mon 02 Mar 2026 01:14:05 +0000 Manifest next update: Mon 09 Mar 2026 01:14:05 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: Wy4U2P8OM4loZ7+Oe0qPqC1uide15wKMlb0znU7W2js=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: zF+J5zFh1poif0hGxgEuq8x4MHnVNaCe2reoxnvlkL0=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: aLRF4zBkBM2y6xKpL1GC5YHsO0D4qoPC3jE5KWFvB9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:14:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2702 (0xa8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Mar 2 01:14:05 2026 GMT Not After : Mar 9 01:14:05 2026 GMT Subject: CN=69a4e460-0f5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:59:da:be:00:a1:5a:28:da:f2:9f:f6:f4:ab: c5:2c:61:60:31:11:c5:80:f0:e9:7c:a3:c3:e8:80: 5f:63:59:d7:a7:5f:ed:3a:83:93:77:4b:6e:b0:d0: a7:56:94:a1:5b:63:3a:3b:3e:db:34:c3:32:a5:e0: 74:6e:25:6d:5b:e8:4f:86:05:a8:23:42:3e:bd:70: 7e:c3:80:f9:fe:be:e4:8c:5b:40:ec:b8:4c:29:11: 8c:e0:90:ae:55:0b:0f:ed:38:7c:e9:1a:5b:36:92: 94:c9:54:2f:b2:d3:60:ac:96:01:32:8f:78:87:e0: 9c:02:bf:9b:5f:6f:ed:8d:cf:1b:86:d3:9a:0a:5d: a4:a4:de:83:0c:68:72:10:ce:7b:13:e8:d0:72:2e: 69:98:cc:60:a7:07:eb:f1:3e:d1:ba:47:f0:56:85: e1:d3:a7:3f:a9:8c:c6:8d:88:fd:c2:07:a5:08:52: 3d:84:f6:82:cd:a1:f5:75:76:7b:f8:1b:8b:d1:03: c9:47:91:79:a1:72:f5:92:f7:70:31:50:3a:1c:ed: 85:67:52:22:61:85:78:74:cd:db:e1:4c:4a:1d:7b: e6:77:a4:f6:e2:06:96:d8:5b:45:f2:80:25:5d:65: 7c:7d:e5:5b:75:e7:c7:b2:15:cf:87:7f:9d:c6:7a: 25:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:33:6C:9C:58:F3:8D:69:1A:0A:34:F5:6E:46:A0:BE:BF:59:B8:EE X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f2:bf:57:de:e9:a3:49:d8:67:59:cf:4d:12:b8:14:6c:11: 21:4d:81:75:e5:cc:44:f5:d7:c4:7e:2e:58:cd:8d:ef:78:3a: cc:0b:05:c7:32:4d:bf:fe:0c:11:a3:2c:bf:43:d3:b3:7f:23: c9:f0:67:e0:85:0d:fe:9a:93:c7:09:86:fb:9d:14:7d:51:a2: 7f:8d:6a:be:27:83:18:1a:08:14:a7:2e:2e:d1:4f:4a:b3:65: 21:d6:25:e9:d3:a2:79:c1:fc:4a:8a:4a:35:23:8b:aa:da:37: 6d:66:3b:52:33:3a:cc:e8:ee:18:58:57:27:e5:46:12:e9:2c: 4e:f9:44:22:ad:7e:74:14:a6:7e:05:75:e1:b6:52:63:92:aa: c5:8a:68:07:38:1b:87:68:ee:02:72:10:b3:67:b5:44:a0:55: 6a:fb:e2:1f:2e:c2:9b:52:44:20:12:a2:f0:19:38:a1:2f:2f: 8a:dc:52:89:c1:61:e0:e8:16:b6:88:5d:f9:18:5a:c6:31:5f: 8e:d8:6d:67:61:0e:a0:48:68:c0:a9:71:6e:f3:25:ff:fd:94: 40:87:62:da:5f:15:49:52:51:59:b4:88:84:8d:f8:99:ea:0d: 78:7d:ae:2c:d5:dc:99:3b:66:7d:64:0a:53:33:21:71:40:15: f2:04:83:dc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjYwMzAyMDExNDA1WhcNMjYwMzA5MDExNDA1WjAYMRYwFAYD VQQDEw02OWE0ZTQ2MC0wZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlnavgChWija8p/29KvFLGFgMRHFgPDpfKPD6IBfY1nXp1/tOoOTd0tusNCn VpShW2M6Oz7bNMMypeB0biVtW+hPhgWoI0I+vXB+w4D5/r7kjFtA7LhMKRGM4JCu VQsP7Th86RpbNpKUyVQvstNgrJYBMo94h+CcAr+bX2/tjc8bhtOaCl2kpN6DDGhy EM57E+jQci5pmMxgpwfr8T7RukfwVoXh06c/qYzGjYj9wgelCFI9hPaCzaH1dXZ7 +BuL0QPJR5F5oXL1kvdwMVA6HO2FZ1IiYYV4dM3b4UxKHXvmd6T24gaW2FtF8oAl XWV8feVbdefHshXPh3+dxnolxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAMzbJxY 841pGgo09W5GoL6/WbjuMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE/K/V97po0nYZ1nPTRK4FGwRIU2BdeXMRPXXxH4uWM2N73g6zAsFxzJNv/4M EaMsv0PTs38jyfBn4IUN/pqTxwmG+50UfVGif41qvieDGBoIFKcuLtFPSrNlIdYl 6dOiecH8SopKNSOLqto3bWY7UjM6zOjuGFhXJ+VGEuksTvlEIq1+dBSmfgV14bZS Y5KqxYpoBzgbh2juAnIQs2e1RKBVavviHy7Cm1JEIBKi8Bk4oS8vitxSicFh4OgW tohd+RhaxjFfjthtZ2EOoEhowKlxbvMl//2UQIdi2l8VSVJRWbSIhI34meoNeH2u LNXcmTtmfWQKUzMhcUAV8gSD3A== -----END CERTIFICATE-----Generated at Mon Mar 2 10:14:13 2026 by rpki-client