$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft File: hRAOWh-65f4aZcvxVzQTCo5UG7I.mft (raw, json) Hash identifier: DxkUPMu2vR+WkTchtnnBT0yiJLT/55CZ7LC9I9nU5r0= Subject key identifier: D3:BA:5C:CA:FC:D3:FE:B8:23:4C:71:99:4C:9D:74:B2:8B:D8:85:02 Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft Manifest number: 60 Signing time: Sun 01 Mar 2026 09:31:49 +0000 Manifest this update: Sun 01 Mar 2026 09:31:49 +0000 Manifest next update: Sun 08 Mar 2026 09:31:49 +0000 Files and hashes: 1: hRAOWh-65f4aZcvxVzQTCo5UG7I.crl (hash: 1K3pvIgiaaF7NxQWzozRm3gaazmr9WPDq2o7VXJ5VfA=) 2: 3D51EF7C8F0111F087307F35C4F9AE02.roa (hash: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw=) 3: 8F35765ACF5811F085DD836EC4F9AE02.roa (hash: Tw5k9/cuQwB71OFXRXiv/bwE46v5T5qgIQMcMfV+JV4=) 4: 1F578DB08F0111F0BF750433C4F9AE02.roa (hash: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Mar 1 09:31:49 2026 GMT Not After : Mar 8 09:31:49 2026 GMT Subject: CN=69a40785-9aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:82:1b:41:f3:8d:7d:c9:e1:ac:2d:a9:ed:ee: f7:03:58:c0:4f:3d:9a:70:bc:7f:e4:d3:34:74:ac: bc:73:b7:8b:3c:91:12:76:be:26:f5:5f:bb:98:7e: e7:62:23:49:18:f3:1b:ac:76:32:56:52:cd:73:71: 9a:d5:c3:c4:be:6e:c4:8f:02:2f:8d:ec:35:ce:44: bd:1d:bf:ad:51:97:fa:ac:d0:d5:48:ac:02:64:0c: 05:67:c6:da:67:9c:3b:41:cd:3b:ac:1a:3b:53:b5: 85:07:ad:b2:7a:d4:67:21:a1:62:86:e7:57:01:12: fc:10:c3:7e:a5:fd:69:59:85:df:e1:d2:52:22:e1: 2d:06:1f:ed:2c:0b:77:6b:f4:30:f4:2b:bd:f8:b1: f8:90:68:b5:ac:56:73:1a:a5:c7:b1:72:68:35:1e: 97:71:d5:28:18:92:a8:f3:ea:ac:21:39:35:5a:e5: 12:2f:27:57:da:1f:94:2f:f6:e9:a3:50:e5:91:0c: 63:94:45:5e:ba:5b:49:27:4a:5e:d5:50:f7:5e:36: 59:1d:96:ab:fe:78:06:43:5f:af:a6:8a:bb:1e:7f: 98:71:00:12:74:aa:b3:ab:f5:77:77:54:c8:37:e0: 2b:01:29:a8:07:c9:a1:a8:74:f5:bc:43:8d:27:90: c8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BA:5C:CA:FC:D3:FE:B8:23:4C:71:99:4C:9D:74:B2:8B:D8:85:02 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:9c:ff:ef:8d:b2:ed:11:95:13:ac:dd:72:9f:fd:5f:dd:4d: a9:2a:9e:8e:da:d8:77:a9:cb:21:16:f6:e2:c7:dd:06:fa:87: 4b:5b:1f:4b:28:11:16:ce:fd:0a:b7:7a:ff:a6:9c:bf:8c:56: 64:4b:20:b8:16:5e:4d:86:2d:49:c0:b7:24:4a:4c:6b:9e:95: b1:6c:65:4b:13:a5:89:49:37:0e:a8:3d:2c:3c:dd:a5:95:5a: 39:f8:1c:4e:53:6f:b3:ca:e1:3d:ee:1b:72:5d:27:42:98:06: 8d:dc:ed:74:72:63:1c:ff:bd:71:b0:bc:85:62:b4:ab:19:15: d5:7e:13:b4:0b:c3:f8:96:5e:c5:90:a7:d0:5e:22:6b:9b:41: 79:7c:fb:01:a2:13:e0:ba:61:56:b0:e1:b9:d0:1f:73:a2:3f: a9:6b:20:16:28:a0:26:90:d1:9c:bb:ec:99:e1:b1:4f:c0:5d: ff:67:17:37:5b:9e:ca:da:27:9a:2c:84:10:d5:07:fa:99:f5: 6c:4f:56:83:c3:29:89:36:02:6f:b3:c4:08:b7:9e:91:8f:e7: 9f:41:f7:6b:18:8b:ba:95:c8:0e:76:17:a4:02:01:a9:b4:33: 40:c2:ea:c4:47:3b:ce:7e:4c:a2:7a:65:20:03:22:6f:19:ca: 1b:4e:73:76 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNjAzMDEwOTMxNDlaFw0yNjAzMDgwOTMxNDlaMBgxFjAUBgNV BAMTDTY5YTQwNzg1LTlhYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqghtB8419yeGsLant7vcDWMBPPZpwvH/k0zR0rLxzt4s8kRJ2vib1X7uYfudi I0kY8xusdjJWUs1zcZrVw8S+bsSPAi+N7DXORL0dv61Rl/qs0NVIrAJkDAVnxtpn nDtBzTusGjtTtYUHrbJ61GchoWKG51cBEvwQw36l/WlZhd/h0lIi4S0GH+0sC3dr 9DD0K734sfiQaLWsVnMapcexcmg1Hpdx1SgYkqjz6qwhOTVa5RIvJ1faH5Qv9umj UOWRDGOURV66W0knSl7VUPdeNlkdlqv+eAZDX6+mirsef5hxABJ0qrOr9Xd3VMg3 4CsBKagHyaGodPW8Q40nkMidAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU07pcyvzT /rgjTHGZTJ10sovYhQIwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MDg3LzQ4ODgzMTMyOEVBQTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0 YVpjdnhWelFUQ281VUc3SS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBXnP/vjbLtEZUTrN1yn/1f3U2pKp6O2th3qcshFvbix90G+odLWx9LKBEWzv0K t3r/ppy/jFZkSyC4Fl5Nhi1JwLckSkxrnpWxbGVLE6WJSTcOqD0sPN2llVo5+BxO U2+zyuE97htyXSdCmAaN3O10cmMc/71xsLyFYrSrGRXVfhO0C8P4ll7FkKfQXiJr m0F5fPsBohPgumFWsOG50B9zoj+payAWKKAmkNGcu+yZ4bFPwF3/Zxc3W57K2iea LIQQ1Qf6mfVsT1aDwymJNgJvs8QIt56Rj+efQfdrGIu6lcgOdhekAgGptDNAwurE RzvOfkyiemUgAyJvGcobTnN2 -----END CERTIFICATE-----Generated at Mon Mar 2 01:13:29 2026 by rpki-client