$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: rBaRSP/SRnknfoVbAZ2t5ZT9O/F3OtwVreGVej94b9k= Subject key identifier: 64:3E:54:41:6B:8B:B1:2F:E7:46:30:E5:46:13:1B:3C:A1:66:FF:40 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 08D1 Signing time: Sat 28 Feb 2026 20:44:42 +0000 Manifest this update: Sat 28 Feb 2026 20:44:41 +0000 Manifest next update: Sat 07 Mar 2026 20:44:41 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: uldBhUsaAhoTdjeWb+c7j0ubi1ProUwqHrUfCTDCkMU=) 2: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) 4: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2283 (0x8eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Feb 28 20:44:41 2026 GMT Not After : Mar 7 20:44:41 2026 GMT Subject: CN=69a353ba-753f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:39:c6:0f:1e:67:bc:8e:b0:cb:d7:d0:81:80: 62:c7:6c:5d:a5:bf:28:3a:a3:52:64:2e:13:24:fe: 35:72:fa:6f:f5:8e:2c:be:6f:b9:fc:85:cc:f8:18: f9:99:fb:99:55:c1:52:a5:60:ba:fc:96:d8:e5:d2: 2f:4e:e9:7d:bb:68:83:1e:ec:26:1d:46:28:7f:5d: 9e:5c:d1:ae:e8:24:7e:12:6f:b4:85:26:c5:43:5c: b5:5c:7c:ba:8b:9f:53:28:ef:91:46:e2:4e:14:b8: 52:7a:dd:b7:06:e8:18:ec:84:b5:8a:d5:b5:89:96: f1:0c:6d:67:dd:04:5e:10:69:23:c8:20:96:9f:54: b9:75:dc:89:94:22:c0:95:bd:e3:2a:79:76:39:90: 9d:48:02:ae:60:3e:f1:3e:ab:99:79:14:b4:7f:ab: 4e:01:60:31:0c:81:2c:a8:77:9c:bf:27:55:ad:76: 54:4e:1e:db:5a:f1:c1:d8:5c:45:02:3c:98:81:11: c7:93:ce:c3:61:00:43:04:8e:ae:ed:b1:da:37:4f: dd:2b:9b:3b:3d:f0:28:2e:e9:0e:8b:07:4c:36:45: 42:95:11:3a:70:5d:5a:c6:0e:89:c1:16:e3:5f:26: 99:09:e8:2c:9e:0d:f7:a8:22:c9:2e:6c:16:f2:8c: 25:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3E:54:41:6B:8B:B1:2F:E7:46:30:E5:46:13:1B:3C:A1:66:FF:40 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:ca:98:69:7e:a4:90:96:d7:7b:81:be:1a:bc:61:22:69:95: 95:a7:e9:1a:8f:9c:a3:8a:a1:d3:8d:1a:ec:e2:aa:91:19:a5: d5:4c:a0:02:cf:82:4f:da:ba:6b:6b:d9:96:76:2c:12:9a:75: 69:01:ec:cb:78:2a:9e:df:e3:49:ab:a4:fa:82:cb:5d:dc:3b: 37:cd:63:f6:ba:c0:6c:71:1c:ca:90:0f:c5:13:4f:9e:20:ea: 78:f0:7b:ee:32:5d:9b:bb:da:05:c9:2f:10:84:9f:5a:b3:c4: 9f:81:5a:a3:5e:59:bc:d0:7f:5e:83:d9:5f:0e:b9:c0:f0:26: be:a4:ed:88:1b:f7:b3:c0:76:91:72:09:3e:4f:bf:25:55:34: b9:45:13:49:9e:5e:0a:39:76:2b:f2:86:b3:04:23:1c:ba:9b: 0d:4c:48:33:3c:c4:79:e2:06:0f:73:2c:21:be:f9:14:e3:40: 0e:28:a8:31:ee:25:e3:b5:15:7a:27:02:01:0c:9b:88:ea:3b: 25:fa:d8:f9:00:9a:55:73:1b:8a:f0:aa:82:be:76:a2:1a:69: 6b:52:f8:dd:27:de:a7:d8:06:8f:3c:3c:86:f8:43:0b:33:12: b2:6c:28:19:e9:7c:1b:3f:bc:de:d0:aa:b5:a7:4f:21:4c:6a: 42:9a:d4:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjYwMjI4MjA0NDQxWhcNMjYwMzA3MjA0NDQxWjAYMRYwFAYD VQQDDA02OWEzNTNiYS03NTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjDnGDx5nvI6wy9fQgYBix2xdpb8oOqNSZC4TJP41cvpv9Y4svm+5/IXM+Bj5 mfuZVcFSpWC6/JbY5dIvTul9u2iDHuwmHUYof12eXNGu6CR+Em+0hSbFQ1y1XHy6 i59TKO+RRuJOFLhSet23BugY7IS1itW1iZbxDG1n3QReEGkjyCCWn1S5ddyJlCLA lb3jKnl2OZCdSAKuYD7xPquZeRS0f6tOAWAxDIEsqHecvydVrXZUTh7bWvHB2FxF AjyYgRHHk87DYQBDBI6u7bHaN0/dK5s7PfAoLukOiwdMNkVClRE6cF1axg6JwRbj XyaZCegsng33qCLJLmwW8owlAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGQ+VEFr i7Ev50Yw5UYTGzyhZv9AMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAMqYaX6kkJbXe4G+GrxhImmVlafpGo+co4qh040a7OKqkRml1UygAs+CT9q6 a2vZlnYsEpp1aQHsy3gqnt/jSauk+oLLXdw7N81j9rrAbHEcypAPxRNPniDqePB7 7jJdm7vaBckvEISfWrPEn4Fao15ZvNB/XoPZXw65wPAmvqTtiBv3s8B2kXIJPk+/ JVU0uUUTSZ5eCjl2K/KGswQjHLqbDUxIMzzEeeIGD3MsIb75FONADiioMe4l47UV eicCAQybiOo7JfrY+QCaVXMbivCqgr52ohppa1L43Sfep9gGjzw8hvhDCzMSsmwo Gel8Gz+83tCqtadPIUxqQprUOw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:42:04 2026 by rpki-client