$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: R+w+F6gWtLAt2gttzv/FtbEVZ/jej+ekySrv0CICrxo= Subject key identifier: 4E:23:BD:31:62:67:16:9C:29:A8:11:9E:51:5F:56:C1:B5:7E:12:5D Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3582 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 3547 Signing time: Mon 02 Mar 2026 02:11:22 +0000 Manifest this update: Mon 02 Mar 2026 02:11:20 +0000 Manifest next update: Mon 09 Mar 2026 02:11:20 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: 3VN6f1ZbYjTZV4QwzcVN8LfZTvfMDH8SHMVyQX8nsT4=) 2: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM=) 3: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: tHNQzy8hGbC74qvfPySY/DdlrWAoieO3qDg8gWPCkbw=) 4: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: 1fzcpx/xvt8MI/rxgZvshROVbIS3fA549ggTMJ5QBwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13698 (0x3582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Mar 2 02:11:20 2026 GMT Not After : Mar 9 02:11:20 2026 GMT Subject: CN=69a4f1ca-2663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:00:65:85:96:71:82:ad:0f:d9:5e:44:a5:9b: 0a:54:80:67:fc:b6:26:71:83:00:82:8c:2e:2b:46: ab:76:16:da:48:f2:8b:58:ab:62:b6:3a:9c:11:e6: 23:0a:e2:cd:92:79:f9:72:73:b3:55:1a:24:e0:b9: 70:52:2e:9a:01:59:17:ac:35:45:18:a6:87:f6:6a: 1e:c2:61:34:8f:ac:65:80:ef:6d:d8:15:10:35:54: 5d:c6:65:67:0b:be:48:da:38:be:04:9a:2f:f1:14: 78:e6:55:17:1b:cb:00:8f:26:a6:06:fa:6c:ba:5a: ff:16:38:e5:4e:37:24:7d:91:c3:ed:8a:32:56:88: f1:3d:3d:5d:b2:ee:f3:30:43:f5:3a:22:1d:ae:28: 73:46:bf:b9:b4:10:63:1a:88:16:ea:4a:f6:db:98: 22:16:3f:e2:db:84:8e:44:76:ad:a7:db:7e:5e:42: a7:77:6a:c9:0f:69:d4:18:ab:b7:a2:6a:52:55:d8: 84:f1:89:1f:3e:07:e4:a7:2a:ab:c9:0f:07:a2:a7: 75:43:16:02:cd:66:b4:ac:6b:d1:4a:b6:cf:7e:a9: f7:49:5b:6e:ec:fc:55:0d:96:4e:92:88:61:14:00: 7d:f6:15:1b:88:ca:e3:11:78:33:bf:ba:18:26:f9: b2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:23:BD:31:62:67:16:9C:29:A8:11:9E:51:5F:56:C1:B5:7E:12:5D X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:2a:57:72:00:ee:f0:08:10:8c:2a:e5:5b:ad:8a:fc:9b:1e: 42:90:94:30:07:9b:bd:f0:33:4b:48:e1:e8:ef:fc:81:a4:94: a5:2e:d4:43:ce:ec:3c:71:7a:4d:26:d5:78:e5:d5:c6:70:7e: 14:de:6a:fd:a9:a6:d4:03:d9:02:2e:e9:c8:96:12:d6:05:c5: c7:e1:37:33:61:77:48:cf:10:15:da:33:4e:ac:38:85:da:ef: b4:d2:fe:35:54:0c:cc:d2:f8:33:b5:48:61:c8:d6:64:6a:20: 37:ee:aa:2f:69:11:87:bc:5e:70:0b:a4:f5:fa:05:59:a7:c8: b1:e5:95:c3:08:4c:c4:15:72:6a:90:d7:37:b2:95:1b:ff:3e: 8e:ed:88:be:ff:ab:17:79:70:b4:4e:e7:76:62:55:b2:dc:9a: d0:7a:76:77:e3:60:cd:04:7c:10:c9:e0:41:5c:23:8e:dd:da: 1f:a9:00:8f:22:88:c6:e5:00:6d:3c:54:87:c7:65:be:e6:96: 33:97:f5:32:08:47:1f:a5:2c:03:15:8b:7d:53:6f:ff:29:a3: 95:6d:13:c9:62:60:f7:79:5f:f8:9f:b3:05:c6:51:df:c4:a7: 01:f2:be:91:a6:6e:aa:3a:24:5c:4d:6d:6a:41:3d:10:d5:fa: 30:d2:66:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjYwMzAyMDIxMTIwWhcNMjYwMzA5MDIxMTIwWjAYMRYwFAYD VQQDEw02OWE0ZjFjYS0yNjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuABlhZZxgq0P2V5EpZsKVIBn/LYmcYMAgowuK0ardhbaSPKLWKtitjqcEeYj CuLNknn5cnOzVRok4LlwUi6aAVkXrDVFGKaH9moewmE0j6xlgO9t2BUQNVRdxmVn C75I2ji+BJov8RR45lUXG8sAjyamBvpsulr/FjjlTjckfZHD7YoyVojxPT1dsu7z MEP1OiIdrihzRr+5tBBjGogW6kr225giFj/i24SORHatp9t+XkKnd2rJD2nUGKu3 ompSVdiE8YkfPgfkpyqryQ8Hoqd1QxYCzWa0rGvRSrbPfqn3SVtu7PxVDZZOkohh FAB99hUbiMrjEXgzv7oYJvmysQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE4jvTFi ZxacKagRnlFfVsG1fhJdMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvypXcgDu8AgQjCrlW62K/JseQpCUMAebvfAzS0jh6O/8gaSUpS7UQ87sPHF6 TSbVeOXVxnB+FN5q/amm1APZAi7pyJYS1gXFx+E3M2F3SM8QFdozTqw4hdrvtNL+ NVQMzNL4M7VIYcjWZGogN+6qL2kRh7xecAuk9foFWafIseWVwwhMxBVyapDXN7KV G/8+ju2Ivv+rF3lwtE7ndmJVstya0Hp2d+NgzQR8EMngQVwjjt3aH6kAjyKIxuUA bTxUh8dlvuaWM5f1MghHH6UsAxWLfVNv/ymjlW0TyWJg93lf+J+zBcZR38SnAfK+ kaZuqjokXE1takE9ENX6MNJmzg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:18:59 2026 by rpki-client