$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: N4Wd0MUOk12vRVB0co+33kNAteKkW2uYxgK4YQYYD90= Subject key identifier: F9:50:93:59:CF:85:1B:59:7C:0B:9C:0D:01:C7:F8:00:06:68:0B:32 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 0104 Signing time: Sun 01 Mar 2026 07:12:20 +0000 Manifest this update: Sun 01 Mar 2026 07:12:19 +0000 Manifest next update: Sun 08 Mar 2026 07:12:19 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: 4gBGIxIJGKmkUqHDLdq7fSA9F4eoQU7jQejkeQkPSSg=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: Z/zZPYkWKXvraJfJSL/aeXz0Ni43Av6pEICr2Ba1ixA=) 3: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: 9nhYmTgkqcOjR0NO2+wz26tomnd/zZ4DybayX4g1JJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Mar 1 07:12:19 2026 GMT Not After : Mar 8 07:12:19 2026 GMT Subject: CN=69a3e6d4-5758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:2c:29:23:7b:a3:6d:6a:c4:6f:73:73:a9:24: 65:53:08:57:1e:cb:46:c9:55:9c:8d:44:e8:c5:c4: ca:bd:fd:3f:d4:12:05:68:cd:3f:50:67:0c:65:d4: 61:70:ed:d3:78:56:b7:0b:54:23:52:12:a1:08:e0: f6:62:c8:f2:69:06:0d:18:0f:76:8c:63:7a:ef:6a: 7b:b6:8d:89:be:fe:3a:cd:7a:77:7d:8c:e6:6c:f6: 75:cc:0e:f7:7d:70:14:1c:cc:e6:c8:e3:d7:8b:6f: bf:1b:0a:fc:7a:a4:bd:0c:80:bd:42:65:fb:84:d6: 99:48:62:d5:ab:8e:0e:da:17:ba:37:93:5b:59:26: 59:ed:aa:6e:e1:b8:0b:93:34:dd:86:2a:21:e3:bd: a8:06:37:ca:1f:4d:6f:d8:37:28:9e:03:0a:37:a1: 0a:0f:88:ec:88:10:62:06:89:b6:4a:8c:7f:2c:c6: 0d:5e:55:97:a2:d5:6f:22:42:8e:f7:84:5a:a6:52: b8:83:9e:d0:46:f5:bf:7d:37:8f:6b:6e:d6:5a:5b: ea:ae:51:36:aa:94:9a:87:93:0f:56:75:3e:38:73: ec:05:50:3c:5d:57:70:e4:1a:8a:e3:a2:cb:0b:57: 99:2f:8b:46:8c:0f:a5:9f:6c:8a:8b:18:6f:31:11: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:50:93:59:CF:85:1B:59:7C:0B:9C:0D:01:C7:F8:00:06:68:0B:32 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ce:d0:ed:8f:77:d1:80:d5:ad:ba:37:74:81:d1:eb:39:4d: 30:24:87:c2:48:ad:d3:f4:f3:61:c7:d4:a7:02:37:8a:62:9e: 2f:81:35:94:5b:ea:ef:af:42:f0:8b:b9:bd:74:e2:f8:69:c4: d6:d3:09:8a:d5:cb:f3:16:b8:ab:44:2b:08:fe:95:cc:38:8a: 3a:60:51:84:c5:9d:d5:c4:24:fe:0d:9f:25:15:2a:7f:a5:aa: f6:b3:b0:50:3b:29:27:2f:5c:39:f0:15:50:ac:09:3d:90:c1: 83:11:22:5e:7b:d5:dd:11:7a:e8:91:6c:b1:60:9d:1f:63:61: 72:aa:c4:b7:f0:d4:b3:b9:78:ff:55:ac:11:1b:57:6d:72:23: dc:9e:66:19:51:0c:9f:44:3f:88:43:0c:ba:96:a8:fd:ad:5e: a6:7b:91:07:17:e7:21:84:93:49:29:5d:46:6f:ec:01:db:c7: 93:88:d8:b9:9d:52:e9:14:3a:a0:b7:61:a5:5b:11:e8:6e:65: bb:2c:fe:6a:ca:e1:3f:70:c4:b6:e7:ef:4a:8d:61:69:dd:e6: 97:07:12:f9:7c:91:38:00:6b:0a:7f:6f:e3:23:f7:6d:43:a0: e9:c5:21:c3:8d:3a:fe:b6:6a:ad:c6:26:67:ab:0f:9e:24:26: ec:ec:1b:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjYwMzAxMDcxMjE5WhcNMjYwMzA4MDcxMjE5WjAYMRYwFAYD VQQDEw02OWEzZTZkNC01NzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmywpI3ujbWrEb3NzqSRlUwhXHstGyVWcjUToxcTKvf0/1BIFaM0/UGcMZdRh cO3TeFa3C1QjUhKhCOD2YsjyaQYNGA92jGN672p7to2Jvv46zXp3fYzmbPZ1zA73 fXAUHMzmyOPXi2+/Gwr8eqS9DIC9QmX7hNaZSGLVq44O2he6N5NbWSZZ7apu4bgL kzTdhioh472oBjfKH01v2DcongMKN6EKD4jsiBBiBom2Sox/LMYNXlWXotVvIkKO 94RaplK4g57QRvW/fTePa27WWlvqrlE2qpSah5MPVnU+OHPsBVA8XVdw5BqK46LL C1eZL4tGjA+ln2yKixhvMRGFMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPlQk1nP hRtZfAucDQHH+AAGaAsyMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIs7Q7Y930YDVrbo3dIHR6zlNMCSHwkit0/TzYcfUpwI3imKeL4E1lFvq769C 8Iu5vXTi+GnE1tMJitXL8xa4q0QrCP6VzDiKOmBRhMWd1cQk/g2fJRUqf6Wq9rOw UDspJy9cOfAVUKwJPZDBgxEiXnvV3RF66JFssWCdH2NhcqrEt/DUs7l4/1WsERtX bXIj3J5mGVEMn0Q/iEMMupao/a1epnuRBxfnIYSTSSldRm/sAdvHk4jYuZ1S6RQ6 oLdhpVsR6G5luyz+asrhP3DEtufvSo1had3mlwcS+XyROABrCn9v4yP3bUOg6cUh w406/rZqrcYmZ6sPniQm7Owbdw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:21:47 2026 by rpki-client