$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: HP4eaoKISqo91erCwzH4HCls9nUGwv9mit5CVkn8dP0= Subject key identifier: 09:AF:D0:7D:7B:A8:65:AF:1A:A8:B6:D6:99:2D:CC:3D:E2:65:08:CD Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 01B4 Signing time: Sun 01 Mar 2026 04:42:39 +0000 Manifest this update: Sun 01 Mar 2026 04:42:38 +0000 Manifest next update: Sun 08 Mar 2026 04:42:38 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: ryA0FBgP18FBm8XKilXnnG1rP5XmkfKwI71IS5vWgSc=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: 2U1GUUuHz/HspZCAbX8MNYKTWmtmGMuAJscXPNynpMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Mar 1 04:42:38 2026 GMT Not After : Mar 8 04:42:38 2026 GMT Subject: CN=69a3c3bf-a2da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:54:f8:fc:ac:75:91:91:6d:86:d2:22:e7:e9: 5b:5d:ef:9c:e5:ce:23:af:c4:c3:51:f8:b1:7e:4f: f0:4e:3e:fb:07:99:d4:a4:ca:1c:f2:84:5a:3a:d6: 78:26:3f:cd:4a:9f:41:4b:44:2e:5c:9d:ed:38:e4: 4e:1e:68:9f:94:d4:56:47:dd:aa:52:c8:2a:6c:c5: a4:7a:18:b0:78:cd:47:21:82:39:6e:4d:36:e3:19: 41:78:78:b5:ea:8a:ff:eb:cc:52:21:24:0e:0b:68: 83:7d:45:84:d9:d6:cb:0b:ee:12:4b:42:94:79:cd: 9d:58:85:6d:5d:a4:29:14:e7:d4:b9:6c:38:4b:a7: bf:84:c8:e9:79:10:3e:9e:8f:33:12:89:77:d6:d4: 2c:3c:a9:54:10:da:2b:7d:16:ba:c3:f0:f0:31:d9: 74:94:0b:43:f3:06:1b:92:b7:85:e5:9b:af:93:ec: d6:5b:f5:cc:42:58:48:e4:33:91:4c:9b:51:56:60: 97:9f:25:31:4c:45:2b:31:91:64:b3:9c:56:70:d1: 30:7b:6e:ba:3f:6b:fb:85:0e:19:4f:75:e2:54:a7: eb:98:08:90:f2:52:23:83:b0:9f:f3:0e:8c:28:71: c2:74:4c:83:4f:76:84:fd:86:b2:bd:f0:1a:91:03: e3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:AF:D0:7D:7B:A8:65:AF:1A:A8:B6:D6:99:2D:CC:3D:E2:65:08:CD X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ad:15:37:43:ba:15:33:37:26:b0:96:6a:45:f3:b5:60:91: 61:4b:49:91:f9:3b:f4:c5:7e:09:5f:85:2c:4d:bb:c3:47:11: f9:ff:40:27:01:f3:73:c7:d7:a0:e2:6a:62:4d:33:1e:d9:a5: ea:db:b9:7b:79:44:0f:e2:c8:19:f3:cc:bb:42:be:ee:d6:0e: 8f:13:0d:d9:6c:ae:c5:aa:9b:7f:f2:ef:c4:8b:80:69:56:53: c6:56:33:0c:7f:37:85:ff:c3:c1:cd:bc:85:4b:a1:31:45:a4: 0b:4e:59:16:0d:13:be:fe:92:1e:da:9c:7a:3d:5b:c1:c2:9c: 55:dc:8e:bf:df:67:2c:b5:d7:0d:d5:8f:43:7e:f0:75:c2:c9: 01:26:53:67:36:64:d8:48:0e:f3:ba:56:33:54:5a:8e:96:06: 21:34:d1:91:8c:be:f5:2a:67:9f:27:c0:f9:9d:69:4a:aa:06: 83:9b:c6:82:02:7d:22:a2:97:ee:b4:5d:6a:5d:3b:33:72:40: 73:18:f3:a4:ff:34:11:e1:50:88:5c:ac:c2:dd:54:1a:e6:f4: 03:8a:69:e8:0a:cf:3f:a6:d5:42:ac:04:4a:03:b6:50:fb:88: c1:4b:a0:77:3f:99:35:ba:a7:2c:1a:4a:4c:19:25:c7:df:c3: cc:f0:96:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjYwMzAxMDQ0MjM4WhcNMjYwMzA4MDQ0MjM4WjAYMRYwFAYD VQQDDA02OWEzYzNiZi1hMmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1T4/Kx1kZFthtIi5+lbXe+c5c4jr8TDUfixfk/wTj77B5nUpMoc8oRaOtZ4 Jj/NSp9BS0QuXJ3tOOROHmiflNRWR92qUsgqbMWkehiweM1HIYI5bk024xlBeHi1 6or/68xSISQOC2iDfUWE2dbLC+4SS0KUec2dWIVtXaQpFOfUuWw4S6e/hMjpeRA+ no8zEol31tQsPKlUENorfRa6w/DwMdl0lAtD8wYbkreF5Zuvk+zWW/XMQlhI5DOR TJtRVmCXnyUxTEUrMZFks5xWcNEwe266P2v7hQ4ZT3XiVKfrmAiQ8lIjg7Cf8w6M KHHCdEyDT3aE/YayvfAakQPjsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAmv0H17 qGWvGqi21pktzD3iZQjNMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgK0VN0O6FTM3JrCWakXztWCRYUtJkfk79MV+CV+FLE27w0cR+f9AJwHzc8fX oOJqYk0zHtml6tu5e3lED+LIGfPMu0K+7tYOjxMN2Wyuxaqbf/LvxIuAaVZTxlYz DH83hf/Dwc28hUuhMUWkC05ZFg0Tvv6SHtqcej1bwcKcVdyOv99nLLXXDdWPQ37w dcLJASZTZzZk2EgO87pWM1RajpYGITTRkYy+9SpnnyfA+Z1pSqoGg5vGggJ9IqKX 7rRdal07M3JAcxjzpP80EeFQiFyswt1UGub0A4pp6ArPP6bVQqwESgO2UPuIwUug dz+ZNbqnLBpKTBklx9/DzPCWiw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:07:11 2026 by rpki-client