$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: 25pE7cs+hhnWECELrqbT9p+gOJ1MHp5/DbX1Lpi5Mns= Subject key identifier: 1A:F9:12:E7:D8:B0:54:86:19:1B:E8:A9:61:3F:88:3E:06:75:60:FF Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0252 Signing time: Sun 01 Mar 2026 03:05:50 +0000 Manifest this update: Sun 01 Mar 2026 03:05:50 +0000 Manifest next update: Sun 08 Mar 2026 03:05:50 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: AxyrRqBBeGHLwkJ1QUdcIN//NDkxpmzMUQeTuIW/zvc=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Mar 1 03:05:50 2026 GMT Not After : Mar 8 03:05:50 2026 GMT Subject: CN=69a3ad0e-bdd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:45:e1:7e:9e:ef:6e:17:c0:e3:d8:76:d4:9c: 24:88:12:ae:f4:f4:94:f6:ba:a8:a3:95:a5:c2:4d: 5b:01:58:8f:25:5d:8d:5c:46:e6:ec:81:f6:20:39: 7a:7f:c3:89:94:fb:eb:fd:c3:4d:d5:e7:ef:f4:68: 18:21:09:61:1b:45:7e:18:39:8d:10:ed:77:81:c8: 61:8e:5d:99:83:7f:cb:ef:4b:9a:4f:de:f8:66:aa: ed:62:94:7a:46:75:98:69:63:02:c7:89:41:aa:fa: d1:ae:24:34:7e:ba:99:a9:26:f3:ab:b2:4a:48:11: 2d:ca:5e:af:b6:9e:2c:a8:5e:dc:67:95:0f:0c:32: ca:9b:62:a6:6a:9c:1e:3a:7a:1f:b7:09:20:5b:72: 14:e4:65:b4:1f:b7:e7:61:4a:b0:26:f7:c7:1f:83: 1c:79:6c:8b:64:0f:07:cc:11:0c:62:81:4c:e5:4a: f6:76:de:e5:c2:99:56:93:a2:1e:3b:dc:93:23:a0: 74:2c:27:bc:cd:b9:dd:b8:3f:f2:d5:c7:46:cc:c1: ad:06:64:a1:c0:37:7e:00:0c:bc:60:df:1c:49:04: 88:8c:5e:82:14:17:70:a4:3d:66:38:57:b0:99:6a: 27:b0:da:0d:08:ac:2d:84:54:0b:c0:d5:2f:39:01: 4b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F9:12:E7:D8:B0:54:86:19:1B:E8:A9:61:3F:88:3E:06:75:60:FF X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:57:ac:cf:cd:ab:28:5d:b8:3e:de:80:ab:93:9a:c9:9e:06: 5a:da:93:a6:b9:10:9b:c6:b6:5e:13:1b:6d:83:aa:67:d2:a5: bd:e3:d0:ec:00:d6:bf:a0:2c:54:c4:24:85:ac:17:c5:b6:61: 5c:66:64:35:cc:22:bd:9c:8a:84:3c:18:00:ee:3e:36:64:f0: 4a:7b:3f:11:c2:95:27:ab:11:44:63:69:79:7a:61:86:5f:fe: 62:b8:d0:f6:7c:fa:25:f8:05:1e:ca:fa:6a:22:4d:be:e7:5f: ad:4a:42:34:39:fc:93:92:98:76:cd:93:e6:ee:2e:3c:e4:f3: 20:4d:b6:75:a0:88:a6:dc:ea:e7:ad:b0:12:b7:7b:a7:94:87: 87:0a:f5:6c:12:cb:e8:68:b2:6e:96:32:5e:f1:4d:e5:41:58: c0:61:86:36:ea:a5:90:4e:25:6d:c5:3c:32:75:ee:9f:41:5c: b5:1b:bb:dd:07:e9:7e:fd:f5:21:43:90:78:35:16:8c:6a:e7: 97:3b:45:a3:e8:8e:8d:17:20:80:6c:6a:72:dc:eb:a0:10:7e: 76:48:df:25:6c:d0:8c:25:6d:97:aa:ee:9c:e4:a6:71:2d:0d: 1d:d7:11:95:ca:ef:37:d7:f2:48:c3:e5:00:a4:ef:3f:8b:b1: e8:d6:93:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjYwMzAxMDMwNTUwWhcNMjYwMzA4MDMwNTUwWjAYMRYwFAYD VQQDDA02OWEzYWQwZS1iZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUXhfp7vbhfA49h21JwkiBKu9PSU9rqoo5Wlwk1bAViPJV2NXEbm7IH2IDl6 f8OJlPvr/cNN1efv9GgYIQlhG0V+GDmNEO13gchhjl2Zg3/L70uaT974ZqrtYpR6 RnWYaWMCx4lBqvrRriQ0frqZqSbzq7JKSBEtyl6vtp4sqF7cZ5UPDDLKm2Kmapwe OnoftwkgW3IU5GW0H7fnYUqwJvfHH4MceWyLZA8HzBEMYoFM5Ur2dt7lwplWk6Ie O9yTI6B0LCe8zbnduD/y1cdGzMGtBmShwDd+AAy8YN8cSQSIjF6CFBdwpD1mOFew mWonsNoNCKwthFQLwNUvOQFLywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBr5EufY sFSGGRvoqWE/iD4GdWD/MB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhVesz82rKF24Pt6Aq5OayZ4GWtqTprkQm8a2XhMbbYOqZ9KlvePQ7ADWv6As VMQkhawXxbZhXGZkNcwivZyKhDwYAO4+NmTwSns/EcKVJ6sRRGNpeXphhl/+YrjQ 9nz6JfgFHsr6aiJNvudfrUpCNDn8k5KYds2T5u4uPOTzIE22daCIptzq562wErd7 p5SHhwr1bBLL6GiybpYyXvFN5UFYwGGGNuqlkE4lbcU8MnXun0FctRu73Qfpfv31 IUOQeDUWjGrnlztFo+iOjRcggGxqctzroBB+dkjfJWzQjCVtl6runOSmcS0NHdcR lcrvN9fySMPlAKTvP4ux6NaTYA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:58:14 2026 by rpki-client