$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: 5qVgFzyodGuAfpV5ihtyO9B4cO/Z2c1m9DLrwa8BsA8= Subject key identifier: 29:C5:93:3B:88:EE:93:90:1D:6C:6A:62:82:11:25:FE:B8:C0:72:4F Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 0300 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 02E2 Signing time: Sun 01 Mar 2026 23:43:24 +0000 Manifest this update: Sun 01 Mar 2026 23:43:23 +0000 Manifest next update: Sun 08 Mar 2026 23:43:23 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: ScdCRbTotMJU4mNzCu50wRGgLC6UCl9rs7dQc5ISIsM=) 2: E1870478616C11F0A254E10BC4F9AE02.roa (hash: ftAew0EQNdkbc3/2VDTlGHSmCcRqc+rg4bUvOtG8DsI=) 3: 984E33E4E01F11F0913A4E89646F56BC.roa (hash: OcYvm4nslT9HEXifrXrZRqsFAS3xrQM7cYF+95ESEVE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Mar 1 23:43:23 2026 GMT Not After : Mar 8 23:43:23 2026 GMT Subject: CN=69a4cf1c-714a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:75:cc:0b:c0:4d:94:dc:13:ac:6e:66:56: 7c:74:bd:cc:05:ed:dc:d2:09:52:f3:ba:da:88:20: 95:9f:d3:5c:ff:a1:6c:42:41:86:9f:7b:48:98:ab: 98:ca:47:a1:2d:2a:e8:b5:c8:0d:94:d8:17:99:cc: 0d:48:63:79:f2:d1:b9:75:be:2b:88:5c:42:00:43: 46:f6:d1:57:c1:ef:b8:61:af:9a:41:6b:24:59:93: a5:21:07:0b:11:3b:6e:b9:6b:59:20:32:bb:ec:23: 42:83:f3:e8:36:65:7d:18:ce:79:33:1e:ce:94:34: f6:75:cd:ba:cf:34:e9:77:74:c8:2e:b6:19:4a:4c: 9b:b9:71:b5:3d:e9:87:54:79:b0:19:fe:7d:35:6b: 15:89:59:2b:27:bc:e1:2a:88:1a:89:c1:09:6f:42: 6a:02:36:69:c1:d7:c9:2a:65:6f:af:65:6b:e0:79: 19:db:8d:0e:3d:07:5d:2a:f4:b2:f5:08:43:47:4d: b8:10:09:9a:49:58:ec:08:4a:91:d2:7b:67:cd:76: 7d:77:e1:1c:39:5d:8e:05:14:8e:8e:18:e0:5e:8f: 69:e5:fe:1c:85:00:ed:78:f4:00:f8:75:e6:d3:42: be:60:4e:10:8f:1f:9a:09:89:ba:2a:34:7e:e1:ae: 42:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C5:93:3B:88:EE:93:90:1D:6C:6A:62:82:11:25:FE:B8:C0:72:4F X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:a7:f8:ee:57:71:1a:ac:65:a7:10:9d:c9:e0:c0:09:55:c7: 0a:17:79:6b:94:c1:82:b0:b5:6a:fa:6b:7c:67:50:49:d8:ba: 99:7a:45:8b:56:54:26:52:f4:af:c1:ef:d9:8d:6a:5d:b5:d9: c2:c6:aa:13:f3:b6:9e:bb:83:78:ae:18:f1:38:93:50:04:4e: 85:71:e0:0d:ff:6d:5f:4c:bf:ae:2e:bf:83:68:1e:d3:87:52: 7b:af:9c:14:1a:5a:36:85:0b:ad:35:41:14:31:4e:c9:0f:3a: f4:17:a5:8e:1f:26:c9:ef:18:2c:00:54:d4:25:05:bd:1f:f4: c0:25:df:c5:ad:e4:88:69:c6:ef:10:bb:9b:f7:79:f6:13:99: 30:31:a8:2e:2a:45:df:1e:bc:92:4f:26:25:73:fd:32:dc:94: 56:b5:70:d2:57:40:a3:28:42:e6:f8:7e:41:e3:df:51:cb:3d: 51:79:65:68:7c:82:9e:8f:0d:4a:2e:97:32:2b:98:3f:b7:8b: 3e:c5:5c:57:d3:7e:fe:8b:c8:76:22:bc:e6:5b:69:35:91:28: d8:d5:50:a4:0a:be:4d:67:c2:05:57:74:c8:9d:f7:15:85:fe: 9b:8e:ec:81:26:a3:70:06:78:86:7c:82:a3:18:02:71:35:37: 7f:ba:15:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjYwMzAxMjM0MzIzWhcNMjYwMzA4MjM0MzIzWjAYMRYwFAYD VQQDEw02OWE0Y2YxYy03MTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi11zAvATZTcE6xuZlZ8dL3MBe3c0glS87raiCCVn9Nc/6FsQkGGn3tImKuY ykehLSrotcgNlNgXmcwNSGN58tG5db4riFxCAENG9tFXwe+4Ya+aQWskWZOlIQcL ETtuuWtZIDK77CNCg/PoNmV9GM55Mx7OlDT2dc26zzTpd3TILrYZSkybuXG1PemH VHmwGf59NWsViVkrJ7zhKogaicEJb0JqAjZpwdfJKmVvr2Vr4HkZ240OPQddKvSy 9QhDR024EAmaSVjsCEqR0ntnzXZ9d+EcOV2OBRSOjhjgXo9p5f4chQDtePQA+HXm 00K+YE4Qjx+aCYm6KjR+4a5CywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCnFkzuI 7pOQHWxqYoIRJf64wHJPMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArKf47ldxGqxlpxCdyeDACVXHChd5a5TBgrC1avprfGdQSdi6mXpFi1ZUJlL0 r8Hv2Y1qXbXZwsaqE/O2nruDeK4Y8TiTUAROhXHgDf9tX0y/ri6/g2ge04dSe6+c FBpaNoULrTVBFDFOyQ869Beljh8mye8YLABU1CUFvR/0wCXfxa3kiGnG7xC7m/d5 9hOZMDGoLipF3x68kk8mJXP9MtyUVrVw0ldAoyhC5vh+QePfUcs9UXllaHyCno8N Si6XMiuYP7eLPsVcV9N+/ovIdiK85ltpNZEo2NVQpAq+TWfCBVd0yJ33FYX+m47s gSajcAZ4hnyCoxgCcTU3f7oVCw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:02:11 2026 by rpki-client