$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 32A955dKsIZYsXCvBCobrh3wbShuSExRIgvsOgU/zPA= Subject key identifier: AA:15:41:6B:F4:7A:58:46:02:D4:71:74:92:8C:C7:6F:00:BF:96:4F Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 371C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 3713 Signing time: Sun 01 Mar 2026 22:28:13 +0000 Manifest this update: Sun 01 Mar 2026 22:28:12 +0000 Manifest next update: Sun 08 Mar 2026 22:28:12 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: nWGWXcJNv410vZcduPNbFuq8f1o5EOH2hsNGH3lI4Yg=) 2: 15B06ACE01B211F1A8498BCA6C6F56BC.roa (hash: vfgHR88PhYRAzmF0aY8gFJt60hD5VjBXzNXNlgarQHk=) 3: F24EEED208C011F19DFF611F213D8C67.roa (hash: /gkbx1srA1F56awfiVY+OdKOrCaE1EuRaKFkoCCl7Es=) 4: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: 1V5Y25UeERbfVdbakKPHa0VRZFwrN6QXByZST7GnLBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14108 (0x371c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Mar 1 22:28:12 2026 GMT Not After : Mar 8 22:28:12 2026 GMT Subject: CN=69a4bd7c-44aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:22:82:38:c9:61:a3:70:e6:bb:25:78:af:a1: 88:3c:35:d0:84:2c:2f:23:7a:37:81:ad:22:34:c4: 46:2c:6d:1b:fc:3e:f2:21:ba:93:91:84:f4:f7:9d: a6:82:21:3c:8a:cc:31:96:9e:93:22:1c:29:0c:df: 38:9c:b4:28:4f:6c:e1:25:de:3d:1d:b7:be:5e:2b: 79:97:77:a6:83:bd:2b:1a:24:70:10:87:eb:24:9f: 2e:ac:77:f5:8b:5b:ad:29:45:36:90:a8:2e:dc:90: ff:ac:8b:84:0d:de:5c:70:95:16:a1:53:b2:b5:0a: ff:f1:7b:36:d7:0a:54:83:18:cc:7a:9b:ad:ae:1b: fd:db:40:ca:65:64:24:de:d7:9f:47:99:6d:2d:bb: 2a:fe:61:74:af:be:1b:94:be:b3:17:be:65:fd:3e: f7:20:9f:ef:c9:07:26:e4:07:e9:57:1f:7c:bc:df: 36:14:43:1f:68:58:ae:f6:d9:9d:a7:04:db:e5:08: e0:97:b0:2e:ea:19:e7:66:fc:34:53:8b:19:54:ea: 86:63:fc:9a:f8:99:f2:e8:06:73:96:c7:c2:6b:ce: 7a:a9:6a:22:3e:55:18:c7:0b:e1:d2:f1:d8:83:ee: 7c:55:01:43:62:24:b0:89:38:19:21:a5:35:1e:d9: f3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:15:41:6B:F4:7A:58:46:02:D4:71:74:92:8C:C7:6F:00:BF:96:4F X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:50:49:28:0b:8a:67:27:03:ae:cf:d1:ff:f3:76:c2:26:1f: 0d:a9:96:ec:14:a5:d6:2a:c8:b7:4c:39:56:51:7c:af:94:37: 25:10:3e:25:74:6e:b7:61:40:1a:b8:ce:4d:e2:c5:ac:bf:ad: ce:83:61:c9:06:3a:21:b2:77:5d:89:a7:aa:f1:a4:f9:51:67: 2c:63:2c:59:0d:15:72:b4:1e:ff:de:8f:d2:42:62:c6:cc:ef: 74:98:a1:7f:a9:1f:3a:f8:ae:e9:18:28:3c:52:e9:2a:56:5b: 03:7d:ba:f2:60:b6:3d:df:cd:e2:05:e3:95:c3:cf:0f:b8:a2: e8:ae:ed:9a:dd:d9:d1:47:63:a3:5f:75:c6:71:54:72:1e:cd: 65:1b:ba:50:14:01:48:fc:0f:20:04:e8:0a:d8:e4:41:57:11: 1a:6e:76:a1:8a:f0:67:c3:ab:71:a8:2f:63:80:d2:6c:db:c6: d2:c4:12:47:be:8d:36:34:83:00:bf:d4:e2:5f:57:b7:71:8b: de:60:4b:42:d0:f6:45:fc:ca:83:12:c5:a8:e1:2d:fd:0f:ae: 2e:65:d5:ba:e4:4b:40:5f:35:c2:58:6d:46:75:11:a3:fd:d6: bd:63:e4:fa:00:ee:63:db:bd:89:19:73:8e:19:98:7b:16:44: c4:63:9d:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwMzAxMjIyODEyWhcNMjYwMzA4MjIyODEyWjAYMRYwFAYD VQQDEw02OWE0YmQ3Yy00NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCKCOMlho3DmuyV4r6GIPDXQhCwvI3o3ga0iNMRGLG0b/D7yIbqTkYT0952m giE8iswxlp6TIhwpDN84nLQoT2zhJd49Hbe+Xit5l3emg70rGiRwEIfrJJ8urHf1 i1utKUU2kKgu3JD/rIuEDd5ccJUWoVOytQr/8Xs21wpUgxjMeputrhv920DKZWQk 3tefR5ltLbsq/mF0r74blL6zF75l/T73IJ/vyQcm5AfpVx98vN82FEMfaFiu9tmd pwTb5Qjgl7Au6hnnZvw0U4sZVOqGY/ya+Jny6AZzlsfCa856qWoiPlUYxwvh0vHY g+58VQFDYiSwiTgZIaU1HtnzfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKoVQWv0 elhGAtRxdJKMx28Av5ZPMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFFBJKAuKZycDrs/R//N2wiYfDamW7BSl1irIt0w5VlF8r5Q3JRA+JXRut2FA GrjOTeLFrL+tzoNhyQY6IbJ3XYmnqvGk+VFnLGMsWQ0VcrQe/96P0kJixszvdJih f6kfOviu6RgoPFLpKlZbA3268mC2Pd/N4gXjlcPPD7ii6K7tmt3Z0Udjo191xnFU ch7NZRu6UBQBSPwPIAToCtjkQVcRGm52oYrwZ8OrcagvY4DSbNvG0sQSR76NNjSD AL/U4l9Xt3GL3mBLQtD2RfzKgxLFqOEt/Q+uLmXVuuRLQF81wlhtRnURo/3WvWPk +gDuY9u9iRlzjhmYexZExGOdqQ== -----END CERTIFICATE-----Generated at Mon Mar 2 05:57:26 2026 by rpki-client