$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: SftM7nNzOGybdPcq/o9DZO3bynHecRoyL/BMIAo9sHU= Subject key identifier: D0:3A:5D:AE:E5:51:5C:CE:63:24:21:54:8C:8F:AA:CD:FC:08:D6:F9 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 12DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 12C0 Signing time: Sun 01 Mar 2026 23:57:05 +0000 Manifest this update: Sun 01 Mar 2026 23:57:04 +0000 Manifest next update: Sun 08 Mar 2026 23:57:04 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: dQQzznSdbwan8llN/6VEtI1LT2PO1diAIbziSuh2NI0=) 2: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: h19/MR9hkMVPGpl7f/+5Vxrt7msI3muNoOIhYt+wOkY=) 3: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: ENmiPhNmvPrhbRyvAeBKsSY9zQmQ1uUazbQzc4bFAXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4829 (0x12dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Mar 1 23:57:04 2026 GMT Not After : Mar 8 23:57:04 2026 GMT Subject: CN=69a4d251-8f63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d8:51:ff:a6:85:8a:5f:d6:88:10:b2:00:a9: b9:3e:01:0f:71:4a:1a:d5:8a:60:81:e9:6d:38:e7: d9:b1:cc:b7:a1:18:36:19:4e:57:b6:73:f3:f9:df: 70:5b:dc:f6:80:6c:bb:57:3d:81:56:5f:14:c4:7f: ab:5c:d5:ff:df:02:e9:f9:b7:49:7f:37:ba:23:b4: 31:2d:51:37:b8:90:94:08:da:55:52:45:c4:0a:71: 1b:fe:8a:3d:61:3b:39:94:78:b3:4c:9f:1f:a9:63: 96:55:02:00:fa:f8:73:07:f4:64:3d:b5:b2:a6:c3: b5:91:8f:5d:41:66:57:27:b5:86:f2:cb:c5:9e:5d: bd:c9:e2:73:6d:80:05:f9:46:ce:bf:8c:38:2b:75: de:f3:08:b6:46:49:c0:e9:72:dc:f0:85:7c:cb:62: 7a:57:37:f1:b1:dd:ab:a1:a2:ca:57:95:a6:0d:45: 01:c6:62:95:3b:51:b6:c4:26:27:61:4b:55:05:82: f4:b6:f2:7d:df:f9:bc:49:7b:9c:bb:34:78:a3:cc: c6:5d:dc:a5:5d:4e:b5:85:92:48:c4:d9:a9:6b:f2: b6:30:91:e4:3f:be:ae:aa:a9:cf:3d:f8:97:4a:56: ef:2a:a9:d9:1e:ff:0e:5f:f7:cd:5d:a1:29:8e:c1: 72:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:3A:5D:AE:E5:51:5C:CE:63:24:21:54:8C:8F:AA:CD:FC:08:D6:F9 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:04:3d:67:56:88:13:dd:fc:06:f0:b4:78:fc:be:de:5d:d7: c8:fb:21:45:d1:7c:90:25:97:0a:bd:c3:62:b4:d6:75:72:cb: 3a:62:60:ae:90:01:8b:12:eb:b9:e7:01:a3:0f:68:43:3b:be: 76:c9:19:c4:1b:71:41:47:48:91:4c:5b:64:5b:92:1e:20:af: 8d:4f:c5:4e:58:3a:1c:ce:60:2b:15:18:44:c7:71:b0:38:5b: 0b:83:2f:b0:af:8e:65:67:aa:4a:f1:76:cd:25:6b:f9:09:82: e7:84:4a:b7:24:f0:ad:5b:89:19:39:52:9a:cf:9d:75:45:07: 91:1c:f3:04:18:c7:bb:4d:4a:9f:69:ea:b0:04:28:d6:7d:ad: 57:88:de:21:12:e7:32:ed:16:da:a7:87:d1:22:4f:56:ad:99: 1c:2f:27:cc:fe:c5:be:ad:7e:0c:81:48:bf:2f:57:c0:3c:3e: d1:4b:fc:af:93:26:d9:b8:fb:b6:48:25:00:ae:db:98:c8:5d: d9:17:ed:64:2a:2a:6d:0b:08:94:74:fd:73:4e:46:41:33:86: ae:bd:fe:a2:72:01:7c:1a:b5:33:2c:fd:9b:d0:37:da:27:a2: 36:f8:3e:a8:ad:45:23:91:98:b0:17:2c:49:72:2e:66:ed:37: 15:86:bb:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjYwMzAxMjM1NzA0WhcNMjYwMzA4MjM1NzA0WjAYMRYwFAYD VQQDEw02OWE0ZDI1MS04ZjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydhR/6aFil/WiBCyAKm5PgEPcUoa1YpggeltOOfZscy3oRg2GU5XtnPz+d9w W9z2gGy7Vz2BVl8UxH+rXNX/3wLp+bdJfze6I7QxLVE3uJCUCNpVUkXECnEb/oo9 YTs5lHizTJ8fqWOWVQIA+vhzB/RkPbWypsO1kY9dQWZXJ7WG8svFnl29yeJzbYAF +UbOv4w4K3Xe8wi2RknA6XLc8IV8y2J6Vzfxsd2roaLKV5WmDUUBxmKVO1G2xCYn YUtVBYL0tvJ93/m8SXucuzR4o8zGXdylXU61hZJIxNmpa/K2MJHkP76uqqnPPfiX SlbvKqnZHv8OX/fNXaEpjsFyiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNA6Xa7l UVzOYyQhVIyPqs38CNb5MB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACgQ9Z1aIE938BvC0ePy+3l3XyPshRdF8kCWXCr3DYrTWdXLLOmJgrpABixLr uecBow9oQzu+dskZxBtxQUdIkUxbZFuSHiCvjU/FTlg6HM5gKxUYRMdxsDhbC4Mv sK+OZWeqSvF2zSVr+QmC54RKtyTwrVuJGTlSms+ddUUHkRzzBBjHu01Kn2nqsAQo 1n2tV4jeIRLnMu0W2qeH0SJPVq2ZHC8nzP7Fvq1+DIFIvy9XwDw+0Uv8r5Mm2bj7 tkglAK7bmMhd2RftZCoqbQsIlHT9c05GQTOGrr3+onIBfBq1Myz9m9A32ieiNvg+ qK1FI5GYsBcsSXIuZu03FYa71g== -----END CERTIFICATE-----Generated at Mon Mar 2 04:13:45 2026 by rpki-client