$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: iJxxJTyTNHbb+UOwLkVTFH03b/wuGwHauDRZxcnShVY= Subject key identifier: 0B:2A:75:99:3F:E8:D5:AB:0B:4F:64:25:F7:4C:D3:76:7E:D6:02:5D Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 06A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 069F Signing time: Sat 28 Feb 2026 22:57:48 +0000 Manifest this update: Sat 28 Feb 2026 22:57:48 +0000 Manifest next update: Sat 07 Mar 2026 22:57:48 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: My02UnYxttgPEhoOMWASQcGQAG92M3cNwIJBrNsREYc=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 22:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Feb 28 22:57:48 2026 GMT Not After : Mar 7 22:57:48 2026 GMT Subject: CN=69a372ec-4735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:c9:c2:6e:3a:2b:80:75:ce:4b:fa:0b:dd:27: 28:38:98:20:e4:ae:b9:a6:68:c0:51:7d:b5:9b:58: 64:a8:b6:3d:d2:cc:bd:f7:aa:c9:98:1f:60:b1:53: 18:03:ac:2e:2d:80:8d:92:ad:ed:3e:2d:a9:5d:7c: ec:c6:5f:62:41:ee:a9:e5:da:d3:6c:ae:89:f2:b0: ff:55:89:09:a2:b8:b6:5f:2b:c5:49:a3:93:1e:22: b9:4d:85:96:a0:7f:8e:2a:54:3c:22:0e:26:6d:92: ca:6a:93:49:31:9c:11:fe:ba:23:7a:9b:3e:69:31: 12:8c:e4:c6:9c:14:4b:9f:66:f2:e3:db:ce:29:83: 4e:fd:32:69:52:8d:2b:d6:04:c9:b0:fb:a8:96:8a: 0b:92:0b:b0:da:99:b4:ac:9a:8b:88:be:56:e4:ca: a8:18:16:8b:f4:d9:1e:06:ac:2b:ed:59:58:03:77: 5b:2e:86:b1:9d:b5:d1:40:c1:0a:c5:64:9b:1f:82: de:21:53:82:df:80:5e:1a:4a:ec:8c:4d:9e:21:68: 13:f2:63:d0:e3:5f:b7:8e:ee:a3:1d:51:08:95:30: 85:d3:dd:56:1e:f5:67:bd:d2:5c:f2:e6:c7:b5:af: 35:2f:a3:1f:9c:51:2e:39:f6:00:5d:a4:7b:cf:2c: a0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2A:75:99:3F:E8:D5:AB:0B:4F:64:25:F7:4C:D3:76:7E:D6:02:5D X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ae:0c:62:2b:2e:c1:aa:25:3a:b5:6c:2a:f9:27:a0:2e:78: 33:23:bb:c9:82:9b:75:79:1a:9b:b7:c5:01:f7:92:b4:78:08: 7c:5f:4a:22:4e:f6:b3:7f:18:da:7a:0b:4b:61:8f:3d:19:71: 74:77:22:69:9c:39:10:8f:39:44:c9:54:b6:94:f9:2f:7d:59: 9a:01:83:27:26:d6:34:df:a5:b8:79:94:59:0c:92:a3:16:9f: dd:d2:5e:fb:0f:de:48:7b:ca:e0:59:49:ac:8b:58:7d:14:35: 8f:54:c6:f4:9e:89:42:72:dc:62:c1:eb:19:50:96:1d:0e:ba: 32:72:c2:9a:3a:98:ff:20:63:c9:38:89:fd:fa:d4:07:46:e2: 47:ca:dc:01:53:02:6d:f7:5b:5c:27:ba:6e:1e:79:5d:16:13: 53:0e:75:17:a3:d8:ca:db:32:e4:e8:d8:f3:62:8a:4f:4f:8e: 8e:93:28:60:5b:7c:02:c9:03:a9:1c:14:68:60:53:c6:8b:68: d9:9a:2f:81:dc:40:0f:64:83:31:fd:2d:77:0a:0c:dd:25:24: fd:db:e9:84:3a:2e:16:86:fe:b9:67:13:c2:45:d8:06:b1:ab: 8a:43:3d:c7:81:26:c0:a2:66:66:26:64:13:47:20:54:f6:ef: f1:cc:9a:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjYwMjI4MjI1NzQ4WhcNMjYwMzA3MjI1NzQ4WjAYMRYwFAYD VQQDDA02OWEzNzJlYy00NzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhMnCbjorgHXOS/oL3ScoOJgg5K65pmjAUX21m1hkqLY90sy996rJmB9gsVMY A6wuLYCNkq3tPi2pXXzsxl9iQe6p5drTbK6J8rD/VYkJori2XyvFSaOTHiK5TYWW oH+OKlQ8Ig4mbZLKapNJMZwR/rojeps+aTESjOTGnBRLn2by49vOKYNO/TJpUo0r 1gTJsPuolooLkguw2pm0rJqLiL5W5MqoGBaL9NkeBqwr7VlYA3dbLoaxnbXRQMEK xWSbH4LeIVOC34BeGkrsjE2eIWgT8mPQ41+3ju6jHVEIlTCF091WHvVnvdJc8ubH ta81L6MfnFEuOfYAXaR7zyygRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAsqdZk/ 6NWrC09kJfdM03Z+1gJdMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo64MYisuwaolOrVsKvknoC54MyO7yYKbdXkam7fFAfeStHgIfF9KIk72s38Y 2noLS2GPPRlxdHciaZw5EI85RMlUtpT5L31ZmgGDJybWNN+luHmUWQySoxaf3dJe +w/eSHvK4FlJrItYfRQ1j1TG9J6JQnLcYsHrGVCWHQ66MnLCmjqY/yBjyTiJ/frU B0biR8rcAVMCbfdbXCe6bh55XRYTUw51F6PYytsy5OjY82KKT0+OjpMoYFt8AskD qRwUaGBTxoto2ZovgdxAD2SDMf0tdwoM3SUk/dvphDouFob+uWcTwkXYBrGrikM9 x4EmwKJmZiZkE0cgVPbv8cyasA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:38:47 2026 by rpki-client