$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: mzgVnDffluXf2QRdagBLUhIVyPei3+BwDyF2TxXOsJA= Subject key identifier: 10:3B:DF:A2:C2:A7:C7:83:A8:1E:FE:F7:31:C8:A7:80:3D:6D:11:05 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0FF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0FB8 Signing time: Mon 02 Mar 2026 00:06:55 +0000 Manifest this update: Mon 02 Mar 2026 00:06:53 +0000 Manifest next update: Mon 09 Mar 2026 00:06:53 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: LGiek+cKu4SMjFpis1Q7iaRGpR/M6qCerDi81iOf0YA=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: thWs/wjgTce2OH8uRbqin2U/9yRfT0t37bg0yz1umNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4085 (0xff5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Mar 2 00:06:53 2026 GMT Not After : Mar 9 00:06:53 2026 GMT Subject: CN=69a4d49e-16ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:f5:b8:87:6f:6f:09:08:9e:2a:ca:5c:a1: 15:4f:16:2a:ee:61:96:a2:ed:96:2e:72:6b:77:db: 09:27:5d:90:27:76:54:28:f6:26:20:ce:12:1f:be: cd:7d:3e:d4:46:08:85:b9:22:96:da:d4:b8:68:81: be:22:ee:a2:8d:45:d0:fc:62:38:f2:de:e8:ed:a8: 70:54:53:6f:9a:2a:3c:96:cd:d7:53:8d:08:c0:30: 47:1e:1f:3f:3a:b8:7f:18:fa:40:c7:63:04:ec:92: 5c:20:c0:f4:06:80:0c:cb:c2:34:55:2e:f4:d4:79: 9f:c2:dd:83:a9:a5:48:f8:a5:6c:00:9e:7c:4d:7a: 17:da:65:7c:2d:82:59:e0:51:de:8a:04:2a:ac:18: 90:a8:83:dd:62:db:3d:14:d6:0b:19:12:79:13:e1: 54:ae:0e:6b:11:c8:9c:ce:6b:ab:66:81:00:14:b3: d8:77:51:b7:cf:ea:89:a7:cd:51:65:ad:f0:b7:dc: 5c:45:39:b4:fb:fb:4e:59:53:cb:0d:fc:ae:eb:42: c2:fc:1b:5e:74:fb:40:58:2c:73:5f:9a:a7:71:7b: 2f:9d:66:e9:ff:0b:99:3f:24:55:41:d2:48:4c:56: b1:af:39:6c:e7:51:45:f9:91:3a:68:74:78:cb:33: 42:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:3B:DF:A2:C2:A7:C7:83:A8:1E:FE:F7:31:C8:A7:80:3D:6D:11:05 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:b5:8e:0b:13:a3:eb:fd:e9:06:45:85:ef:78:49:1f:92:aa: ce:95:df:6a:0b:d4:1f:bc:a2:79:f3:6d:5e:ad:88:28:27:ba: aa:20:2f:e8:2f:5b:9c:76:b1:b5:87:c3:c6:2b:a0:38:29:ea: d1:d1:d1:4b:64:56:a0:f2:f6:b3:77:a6:d7:85:ee:e3:4d:20: 81:63:dd:6a:78:bc:b2:54:01:32:41:dc:d3:5a:34:7f:48:14: 9f:e5:0b:13:44:d2:ad:a0:8b:cd:b3:49:13:55:7b:68:45:82: 99:dd:6f:7f:36:88:98:e1:b4:71:c2:e2:be:96:df:41:8f:b3: de:43:5f:8f:9d:96:14:4d:d7:74:a2:74:f6:dc:fc:0e:47:96: d7:4f:46:53:03:f9:44:d7:3b:e0:9b:6b:4a:cb:b2:a7:55:e1: bd:c7:3e:24:df:71:87:85:d8:13:f1:2f:52:f3:4b:4b:63:c3: e4:9a:d0:0b:d5:bb:9b:83:93:72:fc:8a:53:a4:1b:a1:12:cc: 79:6c:54:e1:bd:95:67:36:df:89:cc:0f:d0:e9:64:98:48:86: 4d:76:76:36:6c:b5:6a:f4:f1:d8:8d:09:ae:1c:61:a0:e0:25: c2:28:fd:86:4e:c8:e4:33:93:91:36:24:c9:34:c6:52:72:39: 4c:21:b8:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjYwMzAyMDAwNjUzWhcNMjYwMzA5MDAwNjUzWjAYMRYwFAYD VQQDEw02OWE0ZDQ5ZS0xNmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugL1uIdvbwkInirKXKEVTxYq7mGWou2WLnJrd9sJJ12QJ3ZUKPYmIM4SH77N fT7URgiFuSKW2tS4aIG+Iu6ijUXQ/GI48t7o7ahwVFNvmio8ls3XU40IwDBHHh8/ Orh/GPpAx2ME7JJcIMD0BoAMy8I0VS701Hmfwt2DqaVI+KVsAJ58TXoX2mV8LYJZ 4FHeigQqrBiQqIPdYts9FNYLGRJ5E+FUrg5rEciczmurZoEAFLPYd1G3z+qJp81R Za3wt9xcRTm0+/tOWVPLDfyu60LC/BtedPtAWCxzX5qncXsvnWbp/wuZPyRVQdJI TFaxrzls51FF+ZE6aHR4yzNCGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBA736LC p8eDqB7+9zHIp4A9bREFMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ7WOCxOj6/3pBkWF73hJH5KqzpXfagvUH7yiefNtXq2IKCe6qiAv6C9bnHax tYfDxiugOCnq0dHRS2RWoPL2s3em14Xu400ggWPdani8slQBMkHc01o0f0gUn+UL E0TSraCLzbNJE1V7aEWCmd1vfzaImOG0ccLivpbfQY+z3kNfj52WFE3XdKJ09tz8 DkeW109GUwP5RNc74JtrSsuyp1Xhvcc+JN9xh4XYE/EvUvNLS2PD5JrQC9W7m4OT cvyKU6QboRLMeWxU4b2VZzbficwP0OlkmEiGTXZ2Nmy1avTx2I0JrhxhoOAlwij9 hk7I5DOTkTYkyTTGUnI5TCG4Lg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:55:04 2026 by rpki-client