$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: iBTYF0gRdEQzPqOlfpMUoJQeUCL3R9kgDZ4z6gF2c/8= Subject key identifier: 84:4A:55:0F:E1:E0:45:6B:8D:DF:F8:18:70:02:91:D5:9E:A9:B8:29 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: CD Signing time: Sun 01 Mar 2026 08:02:18 +0000 Manifest this update: Sun 01 Mar 2026 08:02:17 +0000 Manifest next update: Sun 08 Mar 2026 08:02:17 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: PLtiwuqgf/G1aNr+734RYGuSys9xdqNfwnJHioxfEMk=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Mar 1 08:02:17 2026 GMT Not After : Mar 8 08:02:17 2026 GMT Subject: CN=69a3f28a-f5f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:20:ea:51:d5:c6:fd:38:d5:04:12:d9:83:ad: 16:0d:77:75:6e:17:fc:67:3d:92:39:09:81:e5:c5: 0c:2a:88:f7:58:9a:c5:10:1d:33:e3:34:c8:03:a6: 1b:84:59:28:d6:50:46:a4:de:8e:c0:04:e2:56:8d: 38:2c:0b:c2:3e:8d:e7:d6:02:2d:cc:ee:81:dd:bd: 01:5f:7c:04:4d:d1:fd:c6:3d:74:48:70:9b:50:72: fc:3b:ed:d4:7b:c5:09:4e:44:92:62:3c:75:75:d8: f0:dd:a0:f0:1a:b5:4a:49:a0:2c:15:20:d3:10:5a: 10:77:23:8c:b2:d9:0d:34:24:41:fc:27:a1:38:64: e2:9e:e1:21:df:6b:11:70:14:f3:40:1a:db:62:09: 3c:54:ec:52:fa:4b:e7:e7:1f:e4:84:b6:bd:4d:bb: a2:46:50:be:ae:be:b8:1f:87:a0:3f:fb:b1:17:a3: 4b:ff:d9:b0:d0:4d:9d:ef:eb:97:35:ed:12:e7:f4: d4:3b:e3:7e:fd:f1:4c:63:1f:6b:25:f1:cc:2e:00: d3:45:cf:69:9f:50:76:c6:85:cd:03:1f:cc:41:cb: 6a:87:19:f2:9b:7a:ad:b4:de:9e:1d:a1:a5:5b:09: 35:a3:bb:d0:55:26:66:69:7b:73:be:f7:eb:d4:d3: 1a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4A:55:0F:E1:E0:45:6B:8D:DF:F8:18:70:02:91:D5:9E:A9:B8:29 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:03:66:75:8d:91:1e:de:23:84:eb:9f:ee:52:7a:b0:e5:59: df:76:b3:2f:13:7c:07:9c:4b:bd:11:65:28:c2:b0:6b:45:4f: a6:15:f4:ce:8a:d2:ed:ac:e3:a0:fa:c6:82:ca:bc:b7:7a:1f: e4:e6:be:8b:15:dc:8b:f5:e6:2a:1e:f4:80:f4:fb:26:db:1f: 5b:83:45:fd:fb:61:99:a2:bd:f0:9c:4e:01:53:00:1e:7e:c9: 15:41:0b:2c:25:8a:bd:37:a9:07:1e:91:40:d9:8a:1d:fa:f6: 6e:58:9f:66:49:f1:b2:6b:ed:27:de:be:1b:32:9d:08:1c:e3: e2:b1:a0:79:aa:4f:f9:80:31:48:86:47:c4:30:a3:00:b7:19: 08:4b:89:f8:b9:ed:d7:03:f3:44:27:09:51:25:18:b3:a2:29: 64:dc:e3:62:cd:b5:c4:3b:05:25:35:7f:c3:c2:ea:5a:7a:3a: 22:ba:84:1e:e5:ec:91:06:3f:72:0f:00:75:c8:64:9e:fc:64: d4:68:c8:7d:4f:a3:ad:8d:eb:33:7c:33:df:5d:6c:00:ac:33: 0c:d2:5e:a5:72:1f:97:26:29:ed:06:be:c0:80:b8:dc:a3:c1: 9a:d7:1a:72:df:07:49:6e:1a:a7:64:27:7c:2f:9b:70:bd:79: ee:bf:1c:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUyMDgxMTAvBgNVBAUTKDY4QUQwRDA0NzBGNkFDNkYxOUM2NEVFRjQwOTRFRTBC QjU4NzFFREEwHhcNMjYwMzAxMDgwMjE3WhcNMjYwMzA4MDgwMjE3WjAYMRYwFAYD VQQDEw02OWEzZjI4YS1mNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSDqUdXG/TjVBBLZg60WDXd1bhf8Zz2SOQmB5cUMKoj3WJrFEB0z4zTIA6Yb hFko1lBGpN6OwATiVo04LAvCPo3n1gItzO6B3b0BX3wETdH9xj10SHCbUHL8O+3U e8UJTkSSYjx1ddjw3aDwGrVKSaAsFSDTEFoQdyOMstkNNCRB/CehOGTinuEh32sR cBTzQBrbYgk8VOxS+kvn5x/khLa9TbuiRlC+rr64H4egP/uxF6NL/9mw0E2d7+uX Ne0S5/TUO+N+/fFMYx9rJfHMLgDTRc9pn1B2xoXNAx/MQctqhxnym3qttN6eHaGl Wwk1o7vQVSZmaXtzvvfr1NMaUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIRKVQ/h 4EVrjd/4GHACkdWeqbgpMB8GA1UdIwQYMBaAFGitDQRw9qxvGcZO70CU7gu1hx7a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTIwOC85RTI4NTU3RUU0 RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJHOFp4azd2UUpUdUM3V0hI dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwOC85RTI4NTU3RUU0RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJH OFp4azd2UUpUdUM3V0hIdG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApQNmdY2RHt4jhOuf7lJ6sOVZ33azLxN8B5xLvRFlKMKwa0VPphX0zorS7azj oPrGgsq8t3of5Oa+ixXci/XmKh70gPT7JtsfW4NF/fthmaK98JxOAVMAHn7JFUEL LCWKvTepBx6RQNmKHfr2blifZknxsmvtJ96+GzKdCBzj4rGgeapP+YAxSIZHxDCj ALcZCEuJ+Lnt1wPzRCcJUSUYs6IpZNzjYs21xDsFJTV/w8LqWno6IrqEHuXskQY/ cg8Adchknvxk1GjIfU+jrY3rM3wz311sAKwzDNJepXIflyYp7Qa+wIC43KPBmtca ct8HSW4ap2QnfC+bcL157r8cyw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:29:57 2026 by rpki-client