$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft File: DxfzfbyUhNluGgq8eKT5ys1e2oo.mft (raw, json) Hash identifier: nlwRY4UFOCpwbvaC7HJ0VAeZrNVu8PJ1Y7cCljJeZHk= Subject key identifier: 79:85:8A:2F:DD:71:4C:17:5C:EC:57:DF:E1:EC:7E:11:B4:24:B7:59 Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft Manifest number: 01AB Signing time: Sun 01 Mar 2026 23:00:12 +0000 Manifest this update: Sun 01 Mar 2026 23:00:12 +0000 Manifest next update: Sun 08 Mar 2026 23:00:12 +0000 Files and hashes: 1: DxfzfbyUhNluGgq8eKT5ys1e2oo.crl (hash: KltePzo5hpjr0oajNwuVrS5gPyIGA+ne5a4fDNk6uRM=) 2: B060FCD00E4311F1AA27A3801A3D8C67.roa (hash: /jHwnGcod93mkftOIXxHTA503k6CU3aAb5UZbSQZX9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A, serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Validity Not Before: Mar 1 23:00:12 2026 GMT Not After : Mar 8 23:00:12 2026 GMT Subject: CN=69a4c4fc-161e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f9:51:11:23:6f:2d:5f:4b:c2:31:6c:d2:79: ef:09:f4:73:77:3c:75:1a:91:43:0f:1b:12:17:7c: 81:5f:31:57:d8:03:57:33:16:7a:e2:3e:40:36:e0: 9c:1b:6d:62:a3:89:69:75:1c:14:2a:3c:b5:73:91: 5b:eb:e6:fd:20:22:b4:eb:aa:f1:68:0e:74:b2:50: 64:51:3e:04:8a:1b:a8:cc:a1:de:a6:3f:69:13:3e: d0:8c:14:19:17:b8:95:0f:72:43:b5:54:65:5e:72: 82:34:d6:d9:c5:44:6a:7b:40:01:4a:83:dc:28:b1: d0:2a:73:f6:9a:72:af:9f:e8:72:ce:07:ed:b9:22: 63:0d:18:43:c8:8d:6f:b7:78:db:f1:28:be:4e:9f: ae:91:d1:09:e2:4a:44:af:02:ee:b0:5c:bf:f7:d2: 7d:97:d2:57:04:60:c2:59:21:d4:2e:3e:cf:7f:ed: f0:c5:70:c3:46:01:71:53:89:22:b0:89:62:69:d7: dc:fa:59:04:9f:58:a5:48:c3:19:df:78:dc:8a:53: 55:a6:24:68:82:b7:29:48:af:c0:28:fc:fc:8d:b5: eb:41:f5:14:40:57:af:7c:13:c0:a4:e7:05:7f:46: 03:25:29:f2:17:fd:8f:4f:79:21:2d:86:5d:1a:a9: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:85:8A:2F:DD:71:4C:17:5C:EC:57:DF:E1:EC:7E:11:B4:24:B7:59 X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:7b:1c:0a:18:9f:3d:f2:68:60:f4:70:de:97:b4:cc:04:4d: b1:08:84:81:36:2b:08:fb:c8:b8:e5:3c:71:9a:ce:7b:a0:f2: c9:34:41:83:8b:82:e9:45:94:d8:a8:29:bc:b1:27:34:3c:f3: ab:44:8d:c5:50:bc:e4:80:e6:0e:89:50:5b:1d:ca:6f:65:02: d1:68:36:04:df:60:44:12:4c:ff:d7:0d:a0:41:75:ba:26:b3: 0b:b2:35:ff:e7:2c:7e:f6:dd:aa:eb:4d:5e:84:2f:3f:c5:d7: 60:6f:df:67:eb:42:21:42:d8:96:e4:ae:7a:1a:2f:06:2e:c2: 60:6f:db:9b:db:12:96:d0:de:f9:a0:fa:c1:07:c0:be:b1:b5: 9f:f3:86:b3:21:30:03:a7:c6:d1:71:14:49:c7:8c:59:ac:37: 86:62:0b:73:32:4d:14:86:7b:48:b4:a6:d2:95:70:ee:23:59: 8d:75:6e:81:08:36:03:43:6b:16:c0:5b:61:b8:78:77:01:25: 4a:fe:b0:49:17:58:7a:52:f5:03:23:66:a2:da:bd:83:6c:43: 2a:04:37:c0:97:83:c5:ba:07:39:dd:9f:bc:8c:84:09:ca:4f: 39:94:f1:67:5e:47:2a:97:0c:69:e9:e3:12:41:26:2b:71:a1: 81:80:02:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNkExMTAvBgNVBAUTKDBGMTdGMzdEQkM5NDg0RDk2RTFBMEFCQzc4QTRGOUNB Q0Q1RURBOEEwHhcNMjYwMzAxMjMwMDEyWhcNMjYwMzA4MjMwMDEyWjAYMRYwFAYD VQQDEw02OWE0YzRmYy0xNjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvflRESNvLV9LwjFs0nnvCfRzdzx1GpFDDxsSF3yBXzFX2ANXMxZ64j5ANuCc G21io4lpdRwUKjy1c5Fb6+b9ICK066rxaA50slBkUT4EihuozKHepj9pEz7QjBQZ F7iVD3JDtVRlXnKCNNbZxURqe0ABSoPcKLHQKnP2mnKvn+hyzgftuSJjDRhDyI1v t3jb8Si+Tp+ukdEJ4kpErwLusFy/99J9l9JXBGDCWSHULj7Pf+3wxXDDRgFxU4ki sIliadfc+lkEn1ilSMMZ33jcilNVpiRogrcpSK/AKPz8jbXrQfUUQFevfBPApOcF f0YDJSnyF/2PT3khLYZdGqkbTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHmFii/d cUwXXOxX3+HsfhG0JLdZMB8GA1UdIwQYMBaAFA8X8328lITZbhoKvHik+crNXtqK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2QS9CQkMyRjc3NkQx RjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhObHVHZ3E4ZUtUNXlzMWUy b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDM2QS9CQkMyRjc3NkQxRjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhO bHVHZ3E4ZUtUNXlzMWUyb28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAXscChifPfJoYPRw3pe0zARNsQiEgTYrCPvIuOU8cZrOe6DyyTRBg4uC6UWU 2KgpvLEnNDzzq0SNxVC85IDmDolQWx3Kb2UC0Wg2BN9gRBJM/9cNoEF1uiazC7I1 /+csfvbdqutNXoQvP8XXYG/fZ+tCIULYluSuehovBi7CYG/bm9sSltDe+aD6wQfA vrG1n/OGsyEwA6fG0XEUSceMWaw3hmILczJNFIZ7SLSm0pVw7iNZjXVugQg2A0Nr FsBbYbh4dwElSv6wSRdYelL1AyNmotq9g2xDKgQ3wJeDxboHOd2fvIyECcpPOZTx Z15HKpcMaenjEkEmK3GhgYACUg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:17:16 2026 by rpki-client