$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: iuPysg8bWWiLu2Tsmwa463Fr37AA6LM/OZ8POajsOgM= Subject key identifier: B6:0C:98:96:0A:87:70:44:B5:03:50:12:B4:68:22:A7:D5:BA:7D:E6 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 0424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 041D Signing time: Sun 01 Mar 2026 22:34:57 +0000 Manifest this update: Sun 01 Mar 2026 22:34:56 +0000 Manifest next update: Sun 08 Mar 2026 22:34:56 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: cbyotK3uuoN5oBmuDqiKaAJm3efQsrUcem8OSq8FwhA=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: ix7XSDPQUgf6uFBsbdEkZ65Gpk0v5HT2DKaYtZ6xVoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Mar 1 22:34:56 2026 GMT Not After : Mar 8 22:34:56 2026 GMT Subject: CN=69a4bf10-c106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a9:7f:1f:9c:8f:de:84:32:a3:bd:92:c7:d5: bd:10:7e:02:cd:ac:e0:7a:ed:82:28:b6:26:d4:67: 15:36:7a:51:98:c8:9a:64:23:e1:d5:31:94:6a:33: e1:15:de:5b:60:38:63:62:1c:6f:a2:22:27:e7:4e: b3:65:c0:ac:90:1c:3d:8b:93:45:d6:48:e3:c6:ac: da:e3:47:7b:96:8c:4f:cc:6b:2d:70:f9:b0:fa:8f: dd:cf:32:d8:d9:a5:31:96:70:de:d2:4e:16:fe:63: 29:ee:d5:ea:72:38:d2:95:b6:40:b4:dc:2c:db:bc: f8:41:e4:30:85:77:36:dc:a9:8e:0e:38:94:46:86: 40:8c:91:3f:b5:0d:4c:dc:c0:34:46:d0:dd:85:67: 65:a2:84:cb:ad:91:67:ee:6f:96:ce:97:33:dc:b8: bc:3a:c4:e6:69:65:85:a0:9b:65:99:78:1a:9b:f9: 20:4f:26:f1:56:b1:2a:f6:b3:c6:fe:6a:2c:09:47: f5:e6:45:87:f5:04:c5:48:d6:ca:85:49:dc:05:8d: 67:32:45:6e:06:44:e3:46:72:b5:33:9f:90:98:ce: 96:fb:42:75:60:ce:4f:f2:c2:49:02:9b:cc:7e:7c: d9:29:46:3c:8e:69:17:87:9f:4f:38:c9:93:05:1b: 99:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0C:98:96:0A:87:70:44:B5:03:50:12:B4:68:22:A7:D5:BA:7D:E6 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:5c:40:6e:b7:b5:ca:0b:6c:f4:26:c0:6a:4d:84:fa:07:b0: d6:4a:c4:b7:f0:99:1d:56:8d:d4:77:2a:77:e2:75:6a:b2:c4: e3:c7:87:7e:d3:44:70:f8:e0:c1:5f:f4:04:4d:c1:4b:ea:0e: 52:f5:45:9c:08:47:e3:fa:32:af:a2:2e:ed:3f:9b:d6:aa:1e: 50:bd:6e:cd:5f:7a:87:9c:e1:f3:fa:e2:38:85:2b:cf:df:cb: 1f:2d:22:e3:a2:9f:6a:19:19:36:d4:ba:72:c2:49:53:12:40: 06:cd:a3:be:5d:6a:fe:f4:57:1c:7e:12:b6:e5:b3:ac:ab:ad: 26:1a:92:2e:c4:bf:2b:1a:5e:50:e1:7b:71:94:be:bd:fc:60: 7d:da:e4:c8:07:29:3c:f2:93:ec:dd:b2:82:77:d1:26:18:1f: da:47:40:71:2d:0e:93:f5:b8:24:28:53:b7:eb:e4:b6:7c:c4: 52:1d:bb:cd:f2:d7:35:48:44:7a:15:e0:47:e0:ec:cc:90:81: ef:e8:73:97:41:58:d0:ca:17:4e:f6:2a:d3:f6:75:3e:86:07: ab:93:00:01:ba:ba:6d:a5:2b:99:7a:ed:68:c4:2d:8d:45:b6: 60:2f:0e:9b:51:2d:01:53:e8:f3:57:9d:4b:ee:41:e1:e5:4b: 7f:30:c6:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjYwMzAxMjIzNDU2WhcNMjYwMzA4MjIzNDU2WjAYMRYwFAYD VQQDEw02OWE0YmYxMC1jMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKl/H5yP3oQyo72Sx9W9EH4Czazgeu2CKLYm1GcVNnpRmMiaZCPh1TGUajPh Fd5bYDhjYhxvoiIn506zZcCskBw9i5NF1kjjxqza40d7loxPzGstcPmw+o/dzzLY 2aUxlnDe0k4W/mMp7tXqcjjSlbZAtNws27z4QeQwhXc23KmODjiURoZAjJE/tQ1M 3MA0RtDdhWdlooTLrZFn7m+Wzpcz3Li8OsTmaWWFoJtlmXgam/kgTybxVrEq9rPG /mosCUf15kWH9QTFSNbKhUncBY1nMkVuBkTjRnK1M5+QmM6W+0J1YM5P8sJJApvM fnzZKUY8jmkXh59POMmTBRuZOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLYMmJYK h3BEtQNQErRoIqfVun3mMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL1xAbre1ygts9CbAak2E+gew1krEt/CZHVaN1Hcqd+J1arLE48eHftNEcPjg wV/0BE3BS+oOUvVFnAhH4/oyr6Iu7T+b1qoeUL1uzV96h5zh8/riOIUrz9/LHy0i 46KfahkZNtS6csJJUxJABs2jvl1q/vRXHH4StuWzrKutJhqSLsS/KxpeUOF7cZS+ vfxgfdrkyAcpPPKT7N2ygnfRJhgf2kdAcS0Ok/W4JChTt+vktnzEUh27zfLXNUhE ehXgR+DszJCB7+hzl0FY0MoXTvYq0/Z1PoYHq5MAAbq6baUrmXrtaMQtjUW2YC8O m1EtAVPo81edS+5B4eVLfzDG7w== -----END CERTIFICATE-----Generated at Mon Mar 2 06:26:24 2026 by rpki-client