$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft File: CBzlpnA274VGmQv1lMzWMoB0BR0.mft (raw, json) Hash identifier: wua745EtbVKeeFFqrcZqeVsEaPWFBS3sQDNx2Y0YY5w= Subject key identifier: 67:BA:4C:E9:E8:4B:F1:7C:E3:B1:20:8A:AC:5A:BA:76:6C:D6:86:E2 Authority key identifier: 08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D Certificate issuer: /CN=A91AB1F6/serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Certificate serial: 0A04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft Manifest number: 09F7 Signing time: Mon 02 Mar 2026 02:23:50 +0000 Manifest this update: Mon 02 Mar 2026 02:23:48 +0000 Manifest next update: Mon 09 Mar 2026 02:23:48 +0000 Files and hashes: 1: CBzlpnA274VGmQv1lMzWMoB0BR0.crl (hash: jwsI0aawM/g02dHtbUtnVw32ukvClpynaLhyem+Xm58=) 2: 59675AB20A4011F0AC302962C4F9AE02.roa (hash: 2Iz+yAVxYx71x7F/RxujD049uCoDIu8QgELmnr4mv9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2564 (0xa04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1F6, serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Validity Not Before: Mar 2 02:23:48 2026 GMT Not After : Mar 9 02:23:48 2026 GMT Subject: CN=69a4f4b6-a811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:b8:49:d0:a1:2d:a8:be:12:60:92:5e:8a: 94:44:28:5d:da:46:0e:a4:a3:b8:a4:a9:c8:5a:7f: 9e:bd:9a:d4:67:b4:11:9a:9e:dc:ce:99:2d:8f:17: 21:8e:56:83:38:00:49:7b:74:d2:b0:ee:27:72:cf: 9d:dd:c7:f2:a2:4c:4c:f9:0e:d8:88:ab:f9:8e:d1: 21:4a:22:a2:ef:75:2d:0a:5e:d3:3a:2f:ad:bc:d7: 83:3e:a6:f5:26:ff:aa:2f:27:e1:b4:6e:65:09:7f: ca:64:fa:8c:d8:27:d2:11:a5:de:2b:ca:b9:bf:f6: c8:c3:82:4d:7c:13:77:5b:87:47:ea:e1:69:ac:37: ea:df:3e:01:89:a7:f2:8c:73:60:cb:60:54:2a:b0: 7e:c2:8e:c7:24:9a:a3:84:15:30:d5:12:ad:ec:a1: ca:be:de:44:ea:b2:d8:25:a0:84:e5:73:10:c6:9e: 1f:8a:72:c6:e2:48:d9:57:89:0e:d1:96:bb:77:f4: 8f:33:f4:e7:9f:55:9f:ca:18:22:7f:20:ed:56:f5: da:12:e7:9c:4e:74:ac:28:74:60:9a:42:f1:39:01: 62:8d:8d:aa:20:8e:8d:f2:af:e8:5c:c3:d1:3e:c8: 5f:33:5f:24:8a:f3:01:3b:8d:58:93:8a:cf:c3:17: 2e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:BA:4C:E9:E8:4B:F1:7C:E3:B1:20:8A:AC:5A:BA:76:6C:D6:86:E2 X509v3 Authority Key Identifier: keyid:08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:d0:1a:82:f7:e3:84:09:b0:7d:b5:ae:44:ad:06:4d:f8:eb: f3:e8:e9:e3:1f:80:46:ad:c9:ac:d7:bc:d4:d5:03:74:6b:6e: 75:17:de:d2:5a:37:31:ea:3d:60:29:38:e7:5b:67:9e:60:83: 1a:72:a9:cf:4e:79:22:9d:59:f3:52:91:fa:94:0d:6a:37:6b: 7c:35:69:de:cd:c9:a2:f2:12:ee:d2:4b:79:29:84:06:62:9d: 86:89:78:14:da:60:ef:5a:e9:7e:79:42:65:3a:7e:ce:12:a0: b3:23:5c:36:ca:d4:c4:81:27:f6:6e:5f:53:1c:d0:5c:1f:ff: 34:74:0c:b9:ea:75:ee:c7:b9:af:fa:ea:bf:2f:ee:2a:9d:9c: c9:26:ef:53:1a:32:c1:84:e7:ea:99:13:8b:f4:2b:f8:7d:e3: 8f:7f:bd:02:3f:c0:96:9c:1b:27:c7:22:29:20:f5:a4:9c:81: 34:d1:94:96:db:13:f2:d7:34:19:b4:f3:2b:c8:7c:45:66:5c: a8:91:ac:5a:9f:53:b8:5a:6e:fc:7a:04:c6:a1:5f:8a:c2:cf: df:43:39:3a:83:b9:34:72:dc:2e:7a:1a:0e:1c:1f:a9:74:c3: 4e:e2:5f:58:10:af:d8:6b:86:c7:2b:7c:26:1d:b9:c9:85:21: 75:3c:e5:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIxRjYxMTAvBgNVBAUTKDA4MUNFNUE2NzAzNkVGODU0Njk5MEJGNTk0Q0NENjMy ODA3NDA1MUQwHhcNMjYwMzAyMDIyMzQ4WhcNMjYwMzA5MDIyMzQ4WjAYMRYwFAYD VQQDEw02OWE0ZjRiNi1hODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxm4SdChLai+EmCSXoqURChd2kYOpKO4pKnIWn+evZrUZ7QRmp7czpktjxch jlaDOABJe3TSsO4ncs+d3cfyokxM+Q7YiKv5jtEhSiKi73UtCl7TOi+tvNeDPqb1 Jv+qLyfhtG5lCX/KZPqM2CfSEaXeK8q5v/bIw4JNfBN3W4dH6uFprDfq3z4Biafy jHNgy2BUKrB+wo7HJJqjhBUw1RKt7KHKvt5E6rLYJaCE5XMQxp4finLG4kjZV4kO 0Za7d/SPM/Tnn1WfyhgifyDtVvXaEuecTnSsKHRgmkLxOQFijY2qII6N8q/oXMPR PshfM18kivMBO41Yk4rPwxcugwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGe6TOno S/F847EgiqxaunZs1obiMB8GA1UdIwQYMBaAFAgc5aZwNu+FRpkL9ZTM1jKAdAUd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjFGNi8wRjE0MDE1MDk0 QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0VkdtUXYxbE16V01vQjBC UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCemxwbkEyNzRWR21RdjFsTXpXTW9CMEJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjFGNi8wRjE0MDE1MDk0QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0 VkdtUXYxbE16V01vQjBCUjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARtAagvfjhAmwfbWuRK0GTfjr8+jp4x+ARq3JrNe81NUDdGtudRfe0lo3Meo9 YCk451tnnmCDGnKpz055Ip1Z81KR+pQNajdrfDVp3s3JovIS7tJLeSmEBmKdhol4 FNpg71rpfnlCZTp+zhKgsyNcNsrUxIEn9m5fUxzQXB//NHQMuep17se5r/rqvy/u Kp2cySbvUxoywYTn6pkTi/Qr+H3jj3+9Aj/AlpwbJ8ciKSD1pJyBNNGUltsT8tc0 GbTzK8h8RWZcqJGsWp9TuFpu/HoExqFfisLP30M5OoO5NHLcLnoaDhwfqXTDTuJf WBCv2GuGxyt8Jh25yYUhdTzlCA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:17:16 2026 by rpki-client