$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: RnNOzdlTKzby6catgoWX99l8nvYTGFqhVxAIq8Pgp9c= Subject key identifier: A9:E6:05:D1:4B:55:83:57:71:B0:88:86:22:4B:EC:FC:13:F2:7A:0A Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0DEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0DC1 Signing time: Sun 01 Mar 2026 23:28:35 +0000 Manifest this update: Sun 01 Mar 2026 23:28:34 +0000 Manifest next update: Sun 08 Mar 2026 23:28:34 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: dyfHcs/aCSiIDO7X9duEI4IoURI8MT2BWuM8PdaesrA=) 2: 11815E36135311EE94A8A114C4F9AE02.roa (hash: IHjt+3IuvWTbAoXuJFvay/3u60IR8zaJRSJng27KWtY=) 3: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: MxBYlMzK+lNIUkC7iVXHSE4n6c6P5pDFjfMp16RrT6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3566 (0xdee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Mar 1 23:28:34 2026 GMT Not After : Mar 8 23:28:34 2026 GMT Subject: CN=69a4cba3-6c80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:34:2c:ab:34:f0:56:fe:cd:5a:8b:8a:09:c3: df:a9:81:66:52:df:cd:be:59:b9:05:10:31:22:56: 94:0b:50:81:5b:12:d5:b6:5a:7f:9b:10:65:b2:39: 6e:9b:ec:69:5d:76:d4:4f:7b:f2:a3:30:36:c4:21: 9a:0a:d1:7e:ee:b8:4b:0e:85:b0:ad:ce:a9:90:71: 2f:dc:7a:dd:e9:0a:87:a7:fe:07:f1:e6:e6:22:d5: 3d:8a:e4:45:46:93:19:e6:cf:07:d8:5b:ad:d5:8c: 36:06:fe:58:6e:83:37:d9:ef:d2:3e:d9:8a:a5:db: d9:71:ab:5a:37:ed:01:2c:3e:22:84:62:38:73:98: ff:1f:5d:4a:20:ca:87:2c:c4:9e:b1:02:7a:2b:4b: 93:9f:9f:32:59:b0:d0:d7:b6:7b:bd:63:09:a9:ca: 6a:93:8b:68:b8:ab:72:71:79:b9:75:b1:80:6b:68: 2b:aa:ac:54:6e:3a:6a:dc:0f:13:7b:f3:55:2d:b7: 14:05:b7:0a:b9:52:a5:20:be:9d:e4:d5:9c:c3:ba: c4:8d:58:78:f3:4d:82:03:3d:65:e8:21:29:55:6e: 87:80:6b:78:89:f9:d5:d7:50:e0:99:f7:4a:e3:a3: 78:7a:bc:ec:5f:2e:b5:6a:5a:4f:64:17:41:78:07: db:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E6:05:D1:4B:55:83:57:71:B0:88:86:22:4B:EC:FC:13:F2:7A:0A X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:63:82:8f:4a:1c:5f:20:88:a3:b9:17:61:c1:6b:77:ef:a5: da:a9:1d:99:66:45:b2:15:8a:0d:0d:4a:fe:6d:89:bb:43:fb: ea:5e:35:30:a1:0c:37:4c:9a:a6:3f:9f:f4:fd:f5:47:9b:e4: 69:51:ef:d7:b6:6f:8e:02:7b:8f:34:6d:76:f6:34:30:30:2d: c3:f6:d3:08:32:9d:40:fe:00:2d:71:4f:ce:92:d1:25:f0:3d: 2f:1e:1c:23:8e:46:04:63:76:6f:25:d7:ed:af:ab:cc:9c:9a: a5:99:7d:9e:dd:c1:2c:a7:30:6e:86:30:33:25:75:00:6c:4a: cd:1c:2d:ae:10:79:13:f3:a6:93:60:eb:59:37:b4:08:a1:1e: 15:3b:a5:f7:56:7f:e2:71:34:5f:93:f0:2b:d0:f6:04:6c:dd: c9:83:05:05:13:f9:ca:ad:1a:70:56:eb:20:dd:06:d5:8f:b5: 26:ea:b4:9c:25:d3:93:c6:43:3a:67:a1:2a:2f:11:f0:df:18: 8f:97:db:e9:08:60:92:5f:6a:e5:2a:28:d4:c2:6b:5b:e9:b8: 70:52:0f:56:37:a8:de:f8:93:18:8c:91:14:7b:3d:f3:9a:ef: 0f:6a:44:8f:42:5a:2f:8c:91:d5:7d:38:04:4f:77:6d:b6:d6: 11:5a:f4:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjYwMzAxMjMyODM0WhcNMjYwMzA4MjMyODM0WjAYMRYwFAYD VQQDEw02OWE0Y2JhMy02YzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzQsqzTwVv7NWouKCcPfqYFmUt/Nvlm5BRAxIlaUC1CBWxLVtlp/mxBlsjlu m+xpXXbUT3vyozA2xCGaCtF+7rhLDoWwrc6pkHEv3Hrd6QqHp/4H8ebmItU9iuRF RpMZ5s8H2Fut1Yw2Bv5YboM32e/SPtmKpdvZcataN+0BLD4ihGI4c5j/H11KIMqH LMSesQJ6K0uTn58yWbDQ17Z7vWMJqcpqk4touKtycXm5dbGAa2grqqxUbjpq3A8T e/NVLbcUBbcKuVKlIL6d5NWcw7rEjVh4802CAz1l6CEpVW6HgGt4ifnV11DgmfdK 46N4erzsXy61alpPZBdBeAfbhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKnmBdFL VYNXcbCIhiJL7PwT8noKMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfWOCj0ocXyCIo7kXYcFrd++l2qkdmWZFshWKDQ1K/m2Ju0P76l41MKEMN0ya pj+f9P31R5vkaVHv17ZvjgJ7jzRtdvY0MDAtw/bTCDKdQP4ALXFPzpLRJfA9Lx4c I45GBGN2byXX7a+rzJyapZl9nt3BLKcwboYwMyV1AGxKzRwtrhB5E/Omk2DrWTe0 CKEeFTul91Z/4nE0X5PwK9D2BGzdyYMFBRP5yq0acFbrIN0G1Y+1Juq0nCXTk8ZD OmehKi8R8N8Yj5fb6Qhgkl9q5Soo1MJrW+m4cFIPVjeo3viTGIyRFHs985rvD2pE j0JaL4yR1X04BE93bbbWEVr0yg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:48:02 2026 by rpki-client