$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: rIFYU4OKoGJ1CbIsFE8ElW7b9vLy50zW46w2ahGKjKo= Subject key identifier: 01:7D:F3:19:71:A5:17:55:34:E8:E9:2C:E5:01:ED:DC:29:75:B4:65 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 0269 Signing time: Sun 01 Mar 2026 02:45:52 +0000 Manifest this update: Sun 01 Mar 2026 02:45:51 +0000 Manifest next update: Sun 08 Mar 2026 02:45:51 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: RkIl0j4o7x38cdVtlGQVMC5OFoiNMvTC/upO/8KVZnk=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: hnWOAVNNVjpwPt+sg7y8J3JT5iAGiugDu6nm76aqOVc=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: N4N6z+ShNHdfv2TpH8m+QzYFlSHMZaSqRN2n0a3q4so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:45:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Mar 1 02:45:51 2026 GMT Not After : Mar 8 02:45:51 2026 GMT Subject: CN=69a3a85f-96a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:07:13:f2:ee:80:a9:a1:2e:7b:3f:9f:57:f5: 3e:94:45:8b:0e:e2:00:da:e6:6f:59:e2:f8:8f:9f: 72:05:35:e7:c0:1e:94:83:eb:28:cf:72:10:15:c5: 5a:9b:ae:74:45:81:65:67:ad:d8:09:5e:c9:76:d2: 21:cf:70:a1:76:7c:76:dc:b8:45:7b:ef:75:81:78: 55:3f:2f:aa:66:61:db:49:ec:be:9c:7b:a5:83:37: 0d:c5:2f:af:5f:cb:5f:2c:a5:77:8e:74:89:45:3c: 81:cb:34:2b:e8:33:98:e1:8d:51:81:b9:1a:6f:39: 95:2e:b0:31:20:ea:27:80:eb:28:20:f9:89:af:9e: 07:1b:66:d2:a2:46:99:ef:f4:bf:72:07:0c:9a:b8: 51:35:00:6b:47:03:9d:61:df:1d:4d:59:31:c6:90: 32:4f:d2:55:fb:9a:70:c1:10:b4:ef:7e:b6:1b:e3: e6:7f:24:46:de:5e:13:50:e2:a0:ef:9c:f7:39:3c: c9:f7:40:d5:01:bc:07:bb:5f:68:44:b6:24:e9:78: 92:51:18:90:86:1b:e0:8b:b9:d9:19:14:2e:58:b1: 30:47:9b:68:f2:9e:69:f0:98:60:48:71:f2:d6:d7: 7c:f5:c5:4c:5c:6f:4a:f4:75:80:0a:ca:db:ea:f5: 02:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7D:F3:19:71:A5:17:55:34:E8:E9:2C:E5:01:ED:DC:29:75:B4:65 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:67:69:4e:d9:5f:91:c8:52:ac:4f:f1:78:31:5d:c3:4d:e8: 02:69:eb:7d:97:ce:cc:5f:2a:96:ae:f4:57:b9:a1:44:df:49: 80:e4:19:10:6c:94:65:c0:bb:3b:79:bf:c6:7f:29:9e:d8:3a: bd:6c:c1:77:08:f5:8d:87:18:a8:6e:d6:2a:18:20:4f:b0:8a: 59:91:b4:b5:20:f2:ef:c5:d3:62:83:ff:5c:41:e0:31:e8:83: 29:13:20:59:5d:78:bd:37:ad:ba:5c:76:28:fd:f0:62:5f:9c: ba:c4:0b:72:44:2e:e8:92:01:27:4e:fb:9b:6c:97:88:14:56: 30:35:61:f0:2c:de:c8:1e:f5:4e:0f:09:3c:d3:cd:ca:3a:3c: 5e:d1:2e:0f:0d:23:b0:bb:25:7b:64:81:90:5f:dd:d2:3e:c1: 24:88:11:85:dd:d3:f5:49:e0:a4:8b:b7:74:d6:8f:c7:bf:94: 6b:00:12:fe:0b:ef:71:fb:e1:0f:84:82:b9:89:c0:1f:fd:3d: e5:ab:39:da:db:81:ab:3c:47:d9:b2:21:c0:0c:4f:e1:6a:3e: 28:60:c5:ea:97:d7:9e:c7:ea:cf:f0:9a:96:2c:61:3b:fe:06: 63:2d:a8:49:ff:43:88:78:3f:5f:98:22:0f:7e:f1:42:c9:ee: 00:2c:11:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjYwMzAxMDI0NTUxWhcNMjYwMzA4MDI0NTUxWjAYMRYwFAYD VQQDDA02OWEzYTg1Zi05NmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AcT8u6AqaEuez+fV/U+lEWLDuIA2uZvWeL4j59yBTXnwB6Ug+soz3IQFcVa m650RYFlZ63YCV7JdtIhz3Chdnx23LhFe+91gXhVPy+qZmHbSey+nHulgzcNxS+v X8tfLKV3jnSJRTyByzQr6DOY4Y1RgbkabzmVLrAxIOongOsoIPmJr54HG2bSokaZ 7/S/cgcMmrhRNQBrRwOdYd8dTVkxxpAyT9JV+5pwwRC07362G+PmfyRG3l4TUOKg 75z3OTzJ90DVAbwHu19oRLYk6XiSURiQhhvgi7nZGRQuWLEwR5to8p5p8JhgSHHy 1td89cVMXG9K9HWACsrb6vUCIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAF98xlx pRdVNOjpLOUB7dwpdbRlMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQWdpTtlfkchSrE/xeDFdw03oAmnrfZfOzF8qlq70V7mhRN9JgOQZEGyUZcC7 O3m/xn8pntg6vWzBdwj1jYcYqG7WKhggT7CKWZG0tSDy78XTYoP/XEHgMeiDKRMg WV14vTetulx2KP3wYl+cusQLckQu6JIBJ077m2yXiBRWMDVh8CzeyB71Tg8JPNPN yjo8XtEuDw0jsLsle2SBkF/d0j7BJIgRhd3T9UngpIu3dNaPx7+UawAS/gvvcfvh D4SCuYnAH/095as52tuBqzxH2bIhwAxP4Wo+KGDF6pfXnsfqz/CalixhO/4GYy2o Sf9DiHg/X5giD37xQsnuACwRLQ== -----END CERTIFICATE-----Generated at Sun Mar 1 21:06:41 2026 by rpki-client