$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: uDvw2mQ2lj7o1Ryy9dptVuxOVsFGPQMgkHbcfm7j0bA= Subject key identifier: E1:DC:E8:55:C9:FC:D2:2E:68:C2:7D:1A:76:B3:A1:BD:48:61:69:DD Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 0134 Signing time: Mon 02 Mar 2026 02:15:02 +0000 Manifest this update: Mon 02 Mar 2026 02:14:59 +0000 Manifest next update: Mon 09 Mar 2026 02:14:59 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: fXds7C4/Y5V1rDczzDErLG/JpDXMss2DIGBFHHKWJRA=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: OJIwdILNcKxj0xX6Uj1lld3dWONiR8ZjcGc33mTU5vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Mar 2 02:14:59 2026 GMT Not After : Mar 9 02:14:59 2026 GMT Subject: CN=69a4f2a6-df4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:32:95:51:9d:20:d5:32:4c:14:4b:58:d8: 18:1d:11:2b:2d:d8:af:53:0d:cb:3d:5e:a9:b0:eb: 27:9d:66:27:ad:57:9a:74:4e:26:cc:57:15:cf:b3: d0:9d:1c:d4:9a:15:ba:6d:80:2c:38:f4:74:72:90: 83:6a:6a:67:7b:f3:45:86:b7:4d:19:4f:55:63:e7: 19:49:58:f2:f5:b4:f7:9f:51:0b:2d:77:d6:f1:23: 7c:7c:68:65:70:5c:37:e3:45:26:2c:a8:16:d1:f0: 24:ff:5d:e4:d7:80:e8:db:37:90:4f:41:47:87:f1: 9b:c5:64:11:ac:d2:60:fe:f9:e3:32:be:69:9c:b8: 52:95:90:ab:42:e2:80:8a:4e:00:b9:f4:39:bb:59: 1c:aa:07:39:d1:6e:08:72:c0:37:a9:fe:a3:35:0a: 20:ca:ee:f8:b0:a2:fc:bc:44:53:7f:32:d6:33:8d: a3:0d:bd:e2:bb:33:4c:ba:35:ca:6d:cc:15:a5:c8: 04:c2:ff:a5:f6:fa:fc:94:6d:68:5b:bf:7e:cb:8c: e2:1d:c8:70:29:36:3c:75:61:2d:fe:3f:6a:77:4f: 16:7a:b6:c7:db:96:c1:73:3d:c3:77:a1:a4:a1:fc: 69:60:72:12:80:18:20:a2:5d:f5:5f:0f:1c:a8:7a: a7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DC:E8:55:C9:FC:D2:2E:68:C2:7D:1A:76:B3:A1:BD:48:61:69:DD X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:28:6b:2c:22:e9:22:83:9b:72:ac:da:ba:0a:f5:4f:8f:f2: 53:45:5d:46:5a:7d:1c:08:6e:24:0f:f6:38:e8:56:94:4b:fe: de:16:15:4d:58:aa:4e:64:09:91:98:d6:e4:91:31:4b:0b:51: 8b:69:2e:99:5f:e5:46:47:68:fe:b5:15:93:bc:65:a9:8e:9a: ed:c6:c8:6d:d3:a4:f2:a2:24:2c:80:b6:8c:23:95:90:68:e0: 32:64:7c:bb:8d:ca:20:b4:cf:25:98:b3:e5:ee:16:f1:bd:04: 91:0d:af:10:f8:82:b5:13:d5:c7:74:83:71:cb:83:cf:84:73: 4a:a5:11:41:8d:da:eb:0a:7f:4f:d2:b8:9e:8c:ef:a7:16:55: 61:b4:55:3c:25:3a:72:81:3e:42:6b:d2:95:98:aa:95:3a:b2: 3b:b0:59:9d:b5:5f:27:bb:8f:77:f0:31:ce:97:79:c5:9b:a9: 83:e5:67:d0:6f:36:73:27:4b:d6:c1:cc:20:ea:c3:58:9a:76: 7d:ab:32:0d:b3:74:39:9c:5a:47:6e:8e:e6:18:af:95:39:9d: 72:da:17:0f:c4:5d:e1:96:f0:d4:31:f8:2e:78:7d:b4:a3:75: 8f:b6:94:b4:3e:e8:40:98:dc:f4:c0:cf:a3:a9:d6:9e:d8:4b: 84:3a:da:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjYwMzAyMDIxNDU5WhcNMjYwMzA5MDIxNDU5WjAYMRYwFAYD VQQDEw02OWE0ZjJhNi1kZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdYylVGdINUyTBRLWNgYHRErLdivUw3LPV6psOsnnWYnrVeadE4mzFcVz7PQ nRzUmhW6bYAsOPR0cpCDampne/NFhrdNGU9VY+cZSVjy9bT3n1ELLXfW8SN8fGhl cFw340UmLKgW0fAk/13k14Do2zeQT0FHh/GbxWQRrNJg/vnjMr5pnLhSlZCrQuKA ik4AufQ5u1kcqgc50W4IcsA3qf6jNQogyu74sKL8vERTfzLWM42jDb3iuzNMujXK bcwVpcgEwv+l9vr8lG1oW79+y4ziHchwKTY8dWEt/j9qd08WerbH25bBcz3Dd6Gk ofxpYHISgBggol31Xw8cqHqnHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOHc6FXJ /NIuaMJ9Gnazob1IYWndMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsyhrLCLpIoObcqzaugr1T4/yU0VdRlp9HAhuJA/2OOhWlEv+3hYVTViqTmQJ kZjW5JExSwtRi2kumV/lRkdo/rUVk7xlqY6a7cbIbdOk8qIkLIC2jCOVkGjgMmR8 u43KILTPJZiz5e4W8b0EkQ2vEPiCtRPVx3SDccuDz4RzSqURQY3a6wp/T9K4nozv pxZVYbRVPCU6coE+QmvSlZiqlTqyO7BZnbVfJ7uPd/Axzpd5xZupg+Vn0G82cydL 1sHMIOrDWJp2fasyDbN0OZxaR26O5hivlTmdctoXD8Rd4Zbw1DH4Lnh9tKN1j7aU tD7oQJjc9MDPo6nWnthLhDraGA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:16:02 2026 by rpki-client