$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft File: UCfzGS691UlQo5w9EwlKcfHTMmY.mft (raw, json) Hash identifier: 8AjzLyOr9CST+3nylSvZsDc7HYfamFBRRMGTqOY2XoM= Subject key identifier: 21:17:1A:B2:14:33:CC:70:A6:48:44:2A:8B:53:D9:E2:4A:3A:E7:01 Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0B9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft Manifest number: 0B78 Signing time: Sat 28 Feb 2026 19:24:46 +0000 Manifest this update: Sat 28 Feb 2026 19:24:45 +0000 Manifest next update: Sat 07 Mar 2026 19:24:45 +0000 Files and hashes: 1: UCfzGS691UlQo5w9EwlKcfHTMmY.crl (hash: 6UtElJRk6ak/kDqQbMb6yGeBMD1ZNnhBLkWN+osc+gI=) 2: CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa (hash: 1vzXkuk5gBSAtT8Ap6QFGP+nwO8EOrey34IwImIdN8Y=) 3: CDD62642854E11EBA2CFDC87C4F9AE02.roa (hash: akjG/5PVNGE/rsrBhM99snQMMaG1O1qYrtyxhwgrNTc=) 4: F3F7D2B0CE9711ECA2477C19C4F9AE02.roa (hash: CZ/ZeGCsZ4+JvC7cPif4XPn1laTuti5DpOFn0CKaSUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2970 (0xb9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078, serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Feb 28 19:24:45 2026 GMT Not After : Mar 7 19:24:45 2026 GMT Subject: CN=69a340fd-58e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0b:1e:3e:ff:b3:22:72:55:b1:59:25:32:c0: b4:7d:9e:80:1f:fd:56:34:4c:7c:ed:df:0f:c7:30: 7f:7a:9f:24:60:23:cd:20:6a:50:17:81:6c:11:eb: a2:df:c0:9c:22:58:39:f1:96:e3:e6:71:91:3f:2b: 9e:3d:49:40:3f:22:a0:b3:a8:9f:2e:34:1d:5c:71: dd:7e:69:16:c2:4a:58:ee:de:bf:73:77:8b:20:f0: c4:20:89:2b:1c:9e:b1:73:cc:d5:08:e8:36:4a:92: b9:21:07:c3:90:cc:d3:da:54:62:a4:35:61:99:69: 3a:f3:66:d7:aa:fc:a9:c5:03:e3:b5:14:ad:53:86: 6b:74:2d:43:d9:30:4d:69:fc:69:df:01:89:7e:c2: bf:80:11:01:41:db:5e:fa:5b:9c:41:8b:d3:ec:b1: b2:67:73:81:26:29:02:b6:63:dc:05:26:f4:15:7e: 1c:02:e2:f6:e1:08:db:9b:97:26:15:b9:4e:30:da: e3:d6:cc:a6:53:e1:94:4a:35:ae:1d:01:97:fc:93: f5:04:b6:a9:7b:0a:a6:ba:99:de:8d:38:a3:a7:3e: 69:cb:4a:55:4e:fa:03:fa:d1:2b:a5:c6:c8:eb:41: ad:da:a3:ec:00:54:09:d9:f4:33:c9:e9:9b:d3:6a: 41:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:17:1A:B2:14:33:CC:70:A6:48:44:2A:8B:53:D9:E2:4A:3A:E7:01 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:bf:a2:65:d0:ca:a9:60:34:63:0f:ac:62:bf:d4:af:46:23: 38:81:3d:d7:19:4d:be:0b:81:5d:1a:a9:41:cd:5e:f2:95:1c: 82:07:ab:4c:ca:c0:7c:1c:f6:fd:39:5a:b6:18:f4:ee:5b:b2: b7:9f:e5:fc:32:52:f8:30:3d:ed:01:cd:30:fc:2d:97:e5:d8: 8f:fc:ff:a9:08:d5:02:8b:31:8c:20:06:a5:91:8a:c4:b8:54: 9e:2e:c1:0e:c1:d4:4a:be:a0:77:43:c1:c8:90:ae:0f:a9:28: 4d:2c:01:4e:f9:34:d7:52:15:55:50:8a:eb:5e:9d:b7:17:10: 4a:28:dd:36:e8:28:ca:d6:84:1b:a0:86:59:83:b9:35:56:de: 77:b4:b3:e1:75:d9:e4:6b:10:7c:6e:b0:20:30:bb:83:7e:70: 99:69:c5:28:99:9d:c0:14:90:1d:96:54:60:cd:84:fa:5c:82: f6:d5:60:5e:b8:35:5a:be:b9:5b:e2:ec:51:92:6f:03:a3:1f: 9b:42:04:fe:ab:a8:8c:a2:f3:66:ec:a4:96:1d:88:c0:b8:93: 7e:70:70:03:4c:b5:75:06:9f:df:fc:34:94:2b:18:8b:a1:21: 7c:50:d1:34:a4:5d:43:f4:49:32:c2:7c:1d:3d:85:34:1d:d4: fa:b7:d8:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjYwMjI4MTkyNDQ1WhcNMjYwMzA3MTkyNDQ1WjAYMRYwFAYD VQQDDA02OWEzNDBmZC01OGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQsePv+zInJVsVklMsC0fZ6AH/1WNEx87d8PxzB/ep8kYCPNIGpQF4FsEeui 38CcIlg58Zbj5nGRPyuePUlAPyKgs6ifLjQdXHHdfmkWwkpY7t6/c3eLIPDEIIkr HJ6xc8zVCOg2SpK5IQfDkMzT2lRipDVhmWk682bXqvypxQPjtRStU4ZrdC1D2TBN afxp3wGJfsK/gBEBQdte+lucQYvT7LGyZ3OBJikCtmPcBSb0FX4cAuL24Qjbm5cm FblOMNrj1symU+GUSjWuHQGX/JP1BLapewqmupnejTijpz5py0pVTvoD+tErpcbI 60Gt2qPsAFQJ2fQzyemb02pB9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCEXGrIU M8xwpkhEKotT2eJKOucBMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA3OC84NjMwQjFDODRDOEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFV bFFvNXc5RXdsS2NmSFRNbVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL7+iZdDKqWA0Yw+sYr/Ur0YjOIE91xlNvguBXRqpQc1e8pUcggerTMrAfBz2 /Tlathj07luyt5/l/DJS+DA97QHNMPwtl+XYj/z/qQjVAosxjCAGpZGKxLhUni7B DsHUSr6gd0PByJCuD6koTSwBTvk011IVVVCK616dtxcQSijdNugoytaEG6CGWYO5 NVbed7Sz4XXZ5GsQfG6wIDC7g35wmWnFKJmdwBSQHZZUYM2E+lyC9tVgXrg1Wr65 W+LsUZJvA6Mfm0IE/quojKLzZuyklh2IwLiTfnBwA0y1dQaf3/w0lCsYi6EhfFDR NKRdQ/RJMsJ8HT2FNB3U+rfYyA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:48:12 2026 by rpki-client