$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: wUApvzJ2ivJj0CXjkkO+QaUmXMnr7M8txPyHjsbDiCg= Subject key identifier: 3B:3D:37:30:77:33:43:85:8B:65:8F:0B:E8:80:D2:48:56:53:4B:22 Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 030F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 0303 Signing time: Mon 02 Mar 2026 02:37:49 +0000 Manifest this update: Mon 02 Mar 2026 02:37:47 +0000 Manifest next update: Mon 09 Mar 2026 02:37:47 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: TUAAcNhp7EADRH2cYdp0cbt6D9A4lAWI2nf3l55kLWM=) 2: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: h4h9VFlilMq7CKoOcwRr0fslyRPoCa6/sTUwfmGzOxg=) 3: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: VgeFEtMT/M7sth0/aY0YUIbWeg643mp39smFMavgcMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 783 (0x30f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Mar 2 02:37:47 2026 GMT Not After : Mar 9 02:37:47 2026 GMT Subject: CN=69a4f7fc-c174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:63:12:aa:e1:df:44:1c:f7:21:e6:d3:bc:1a: 45:8d:08:f2:c9:23:b7:5c:b7:38:bb:89:14:2e:80: 40:53:e8:5b:29:85:b0:a5:09:21:46:da:82:12:68: 4c:89:d2:14:d0:38:88:48:e8:4f:92:c0:11:65:bf: 26:b7:66:60:9e:86:99:38:99:74:d3:32:d3:19:8a: 4b:66:de:8e:85:75:18:a7:7a:34:dc:f3:76:0c:d2: 0f:8f:5a:b2:fe:8b:d6:77:85:ef:fe:a0:06:b9:b9: 96:20:0c:4b:63:0d:ed:58:67:fc:8b:f3:36:7a:fa: 99:41:97:36:73:cc:0a:11:6d:eb:45:4d:5b:bb:c7: 27:db:f1:b1:46:c0:0f:52:96:07:2b:8b:5b:d7:b0: ff:7b:b6:37:5e:b3:13:16:e8:f7:46:8e:e7:9c:b7: 24:68:dc:da:93:af:c9:d3:55:88:72:b4:97:75:ec: 64:e6:fd:8f:bb:f3:b8:09:54:5f:85:d6:73:93:a0: a0:0c:9e:88:30:b8:f4:52:27:5a:7f:93:77:b9:3e: df:88:c1:eb:80:ea:c7:f4:9e:ba:e6:34:71:a5:3b: e8:52:1c:1f:66:87:9c:f2:60:0e:ce:98:9c:be:a2: fd:7f:e2:5c:b5:91:5c:e2:f4:9a:a8:bb:22:21:9a: 29:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3D:37:30:77:33:43:85:8B:65:8F:0B:E8:80:D2:48:56:53:4B:22 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:25:a9:23:35:a5:f9:65:d7:71:fe:f6:70:6b:16:21:7a:79: a5:9c:6f:73:03:cd:8f:03:5e:8f:49:d9:88:c6:22:de:f7:f8: dd:30:ae:56:e9:a2:6d:46:38:11:c9:a2:60:bd:fa:7a:db:70: e8:b8:16:f1:a1:0f:84:bc:e8:2f:d0:f8:26:20:f0:a0:4b:e7: 09:0f:55:0e:84:a4:38:0f:2b:c0:02:a0:ff:a8:ed:13:3f:74: c2:6c:47:d3:ed:74:35:04:7d:72:90:86:de:c6:a4:b9:83:ce: 81:99:68:3e:28:de:ec:89:6c:cc:6f:ab:89:6b:93:b8:91:dc: 49:06:05:77:83:38:18:31:95:27:a9:87:cf:03:87:d1:9d:66: a2:ec:d1:19:c4:e3:5d:5c:44:c7:91:99:2f:7d:3e:54:6d:17: dc:4a:fd:a1:19:5e:77:4f:fb:69:b1:b5:a4:25:1c:16:9e:60: e7:bb:4d:36:c3:6b:92:16:0e:bb:4e:76:98:c1:85:0b:5d:15: d5:66:e5:57:bd:92:ec:b5:b0:84:61:ad:d0:d0:3a:d3:2d:9a: e9:6f:2f:79:ce:61:55:4b:85:e7:52:f3:0c:d9:50:f0:af:55: 96:54:76:5a:3a:91:dd:48:20:9d:5d:54:8b:11:34:bb:6d:38: 0d:98:ea:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjYwMzAyMDIzNzQ3WhcNMjYwMzA5MDIzNzQ3WjAYMRYwFAYD VQQDEw02OWE0ZjdmYy1jMTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mMSquHfRBz3IebTvBpFjQjyySO3XLc4u4kULoBAU+hbKYWwpQkhRtqCEmhM idIU0DiISOhPksARZb8mt2ZgnoaZOJl00zLTGYpLZt6OhXUYp3o03PN2DNIPj1qy /ovWd4Xv/qAGubmWIAxLYw3tWGf8i/M2evqZQZc2c8wKEW3rRU1bu8cn2/GxRsAP UpYHK4tb17D/e7Y3XrMTFuj3Ro7nnLckaNzak6/J01WIcrSXdexk5v2Pu/O4CVRf hdZzk6CgDJ6IMLj0Uidaf5N3uT7fiMHrgOrH9J665jRxpTvoUhwfZoec8mAOzpic vqL9f+JctZFc4vSaqLsiIZopoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDs9NzB3 M0OFi2WPC+iA0khWU0siMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJiWpIzWl+WXXcf72cGsWIXp5pZxvcwPNjwNej0nZiMYi3vf43TCuVumibUY4 EcmiYL36ettw6LgW8aEPhLzoL9D4JiDwoEvnCQ9VDoSkOA8rwAKg/6jtEz90wmxH 0+10NQR9cpCG3sakuYPOgZloPije7IlszG+riWuTuJHcSQYFd4M4GDGVJ6mHzwOH 0Z1mouzRGcTjXVxEx5GZL30+VG0X3Er9oRled0/7abG1pCUcFp5g57tNNsNrkhYO u052mMGFC10V1WblV72S7LWwhGGt0NA60y2a6W8vec5hVUuF51LzDNlQ8K9VllR2 WjqR3UggnV1UixE0u204DZjqYA== -----END CERTIFICATE-----Generated at Mon Mar 2 12:51:53 2026 by rpki-client